Security Directory

I

Islamske informativne novine Preporod

preporod.com

47

Preporod.com is the online presence of Islamske informativne novine Preporod, an established Islamic informational newspaper based in Bosnia and Herzegovina. The website serves a Bosnian-speaking Muslim audience with news, cultural, spiritual, and community content. It operates a print and digital media model with subscription options and advertising. Technically, the site is built on Joomla CMS with modern web technologies like Bootstrap and jQuery, and integrates Google Analytics and Facebook Pixel for user tracking. The security posture is moderate with HTTPS enabled and CSRF protections, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing explicit privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, content-rich, and trustworthy, but could improve privacy and security practices.

R

Radio BIR

bir.ba

44

Radio BIR is a Bosnian Islamic community radio broadcaster offering a diverse range of religious, educational, informational, political, youth, and musical programming. It serves a Bosnian-speaking Muslim audience across multiple regional FM frequencies, positioning itself as a key media outlet within the Islamic community in Bosnia and Herzegovina. The website is built on Joomla CMS and employs common web technologies such as jQuery, Bootstrap, and Font Awesome, reflecting a moderate level of digital maturity. The site is mobile optimized and provides clear navigation and relevant content for its target audience. Security posture is moderate; HTTPS is used, but security headers and privacy policies are lacking, indicating room for improvement in compliance and security best practices. Overall, the domain registration data aligns well with the website's claims, supporting its legitimacy.

I

Islamska zajednica u Bosni i Hercegovini

islamskazajednica.ba

50

Islamska zajednica u Bosni i Hercegovini operates as the official religious authority for Muslims in Bosnia and Herzegovina, providing religious guidance, news, educational content, and community services. The website serves a Bosnian-speaking audience including local and diaspora communities, offering structured information about religious offices, events, and educational resources. The organization holds a strong market position as a government-recognized non-profit religious entity. Technically, the website is built on Joomla CMS with a modern tech stack including jQuery, Bootstrap, and Mootools. It is mobile responsive and provides a good user experience with clear navigation and relevant content. Performance is moderate, and SEO practices are adequately implemented. However, accessibility features are basic and could be improved. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but lacks several important security headers such as Content-Security-Policy and HSTS. No exposed sensitive data or vulnerable libraries were detected, but the absence of explicit privacy and cookie policies indicates compliance gaps, especially regarding GDPR. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and providing clear incident response contacts to improve user trust and regulatory compliance.

Exekutorský úřad Praha 3 operates as a judicial enforcement office serving the Prague 3 district, providing official court execution and legal enforcement services. The website presents basic information about the office, contact details, and official notices, targeting local citizens and legal participants. The business is positioned as a small government entity with a clear local jurisdiction and a long-established presence since 2010. Technically, the website is built on Joomla CMS using older JavaScript libraries such as jQuery 1.8 and MooTools, with a basic Artisteer template. The site is moderately performant with basic mobile optimization and accessibility features. There is no evidence of advanced analytics or marketing tools, and no social media presence is linked. From a security perspective, the site uses HTTPS (implied by base href https://), includes a CSRF token in scripts, but lacks visible security headers and uses outdated JavaScript libraries, which may pose risks. No privacy, cookie, or incident response policies are published, indicating gaps in compliance and security transparency. Overall, the website is functional and trustworthy for its purpose but would benefit from modernization of its technical stack, improved security practices, and publication of privacy and security policies to enhance compliance and user trust.

D

Deutscher Landkreistag (DLT)

kreisnavigator.de

63

The Deutscher Landkreistag (DLT) is a prominent German governmental association representing 294 counties, covering a significant portion of Germany's population and land area. The website serves as an authoritative resource listing all member counties and their respective leaders, targeting government officials, local authorities, and interested citizens. It operates as a non-profit entity focused on advocacy and information dissemination within the public administration sector. Technically, the website is built on the Joomla CMS platform enhanced with Gantry5 framework and utilizes modern web technologies such as jQuery and FontAwesome. The site demonstrates good digital maturity with responsive design, structured data for SEO, and a cookie consent mechanism aligned with GDPR requirements. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site enforces HTTPS and includes CSRF tokens and cookie consent, indicating a reasonable security posture. However, it lacks explicit security policies, incident response contacts, and security headers, which are recommended for enhanced protection and transparency. No vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy, professional, and compliant with privacy regulations. It effectively supports its mission as a governmental association platform. Strategic improvements in security policy publication and header implementation could further strengthen its security posture.

W

Wirtschaftsförderung im Landkreis Neuwied GmbH

wfg-nr.de

55

Wirtschaftsförderung im Landkreis Neuwied GmbH is a regional economic development organization focused on promoting the economic strengths and tourism of the Neuwied district in Germany. The website presents a professional and well-structured digital presence using Joomla CMS and modern frontend technologies. It targets local businesses, startups, students, and regional stakeholders with services including economic promotion, tourism, regional development, and networking projects. The organization maintains active social media channels and provides clear privacy and cookie policies compliant with GDPR. Technically, the site uses HTTPS, Google Analytics with IP anonymization, and a cookie consent mechanism, reflecting a moderate to good digital maturity level. Security posture is adequate but could be improved by adding explicit security headers and publishing security policies or incident response information. Overall, the website is trustworthy, safe, and professionally maintained, serving its public sector mission effectively.

N

Naturpark Rhein-Westerwald e.V.

naturpark-rhein-westerwald.de

59

Naturpark Rhein-Westerwald e.V. operates a regional nature park website focused on promoting nature conservation, environmental education, and sustainable enjoyment of the Rhein-Westerwald region in Germany. The organization targets a broad audience including families, educators, and nature enthusiasts. The website serves as an informational and community resource with event calendars, educational content, and conservation project details. Technically, the site is built on Joomla CMS with common libraries such as Bootstrap and jQuery, hosted likely by 1&1 IONOS, and employs HTTPS with a GDPR-compliant cookie consent mechanism. Security posture is solid with no visible vulnerabilities or exposed sensitive data, though security headers could be improved. Privacy compliance is strong with clear policies and opt-in consent. Business credibility is supported by consistent branding, official contact details, and a professional presentation. Overall, the site is well-maintained, accessible, and trustworthy.

V

VDB Holiday

vdbholiday.com

52

VDB Holiday is a medium-sized hospitality company operating six vacation parks in the Netherlands, primarily focused on the Veluwe region and surrounding areas. Their business model centers on providing recreational accommodations, chalet sales, and associated hospitality services such as restaurants and adventure activities like a climbing forest. The company maintains a consistent brand presence with a professional website that targets families and vacationers seeking both relaxation and active outdoor experiences. Technically, the website is built on Joomla CMS with modern frontend frameworks like Bootstrap and jQuery, supported by multiple marketing and analytics tools including Google Analytics, Facebook Pixel, SharpSpring, and Lucky Orange. The hosting is managed via TransIP, a reputable provider, and the domain is secured with HTTPS and clientTransferProhibited status, though DNSSEC is not enabled. Security posture is moderate with room for improvement in security headers and explicit security policies. Privacy compliance is basic but present, with clear privacy and cookie policies and GDPR considerations. Overall, the website is trustworthy, well-structured, and professionally maintained, with no signs of blocking or malicious content.

R

Recreatiepark Het Eperwoud

eperwoud.nl

45

Recreatiepark Het Eperwoud is a small hospitality and real estate business operating a holiday park in Epe, Netherlands, focused on nature tourism and family-friendly camping and rental accommodations. The website presents a professional and consistent brand image with clear navigation and relevant content targeting vacationers seeking tranquility and outdoor experiences on the Veluwe. Technically, the site uses Joomla CMS with modern libraries such as jQuery and Bootstrap, and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. Security posture is good with HTTPS and CSRF tokens, though some security headers and policies are missing. Overall, the site is trustworthy and compliant with GDPR, with clear contact information and social media presence.

E

Edwin & Karel van Dongen

mosel-camping-platz.de

52

Mosel Campingplatz is a small hospitality business specializing in camping and rental accommodations in the Mosel region of Germany. The company offers a variety of camping pitches and unique rental options such as camping wine barrels, targeting tourists interested in nature, wine culture, and outdoor activities. The website is built on Joomla CMS with modern web technologies including Bootstrap, jQuery, and Google Analytics integration, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, though explicit security policies and incident response information are absent. The business maintains a trustworthy online presence with clear contact details and partnerships with recognized camping directories.

M

Molen van Medael

molenvanmedael.eu

49

Molen van Medael is a hospitality business offering luxury vacation homes and group accommodations located in the Ardennes region of Belgium. The website presents a professional and well-structured digital presence, targeting families, groups, and corporate clients seeking premium lodging and meeting venues in a natural setting. The business emphasizes 5-star hospitality and a variety of services including group activities and catering. Technically, the site is built on Joomla CMS with modern libraries such as Bootstrap and jQuery, and integrates Google Analytics and Tag Manager for marketing and analytics. The site is mobile-optimized and includes a comprehensive cookie consent mechanism, reflecting good GDPR compliance. Security posture is solid with HTTPS and cookie controls, though some security headers could be improved. Overall, the domain registration and website content are consistent and legitimate, with no signs of blocking or malicious activity.

C

Camping Holländischer Hof

moselcamping.com

50

Camping Holländischer Hof is a small family-run hospitality business offering camping and accommodation rental services directly on the Moezel river in Germany. The website targets families and outdoor enthusiasts with services including camping pitches, rental caravans and huts, a marina, and recreational activities such as hiking. The business maintains a professional online presence with clear contact information, social media integration, and partner affiliations. Technically, the site is built on Joomla CMS with modern libraries like jQuery and Bootstrap, and integrates third-party booking and analytics tools. Security posture is generally good with HTTPS and CSRF protections, though explicit security headers and incident response information are lacking. The absence of WHOIS data for the domain raises some concerns about domain registration legitimacy, but the website content and business information appear trustworthy and consistent with a legitimate hospitality service. Overall, the site is well-structured, user-friendly, and compliant with privacy regulations, making it a reliable platform for customers.

L

La Société d'Editions Architecturales (SEA)

darchitectures.com

63

d'architectures is a well-established French architectural magazine focused on architectural creation, innovation, and industry news. It operates under the parent company Groupe Ficade and offers rich editorial content, event listings, and product showcases. The website is built on Joomla CMS with modern front-end technologies and provides a professional user experience with good mobile optimization and clear navigation. Security posture is adequate with HTTPS and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. Privacy policies are linked via the parent company, indicating GDPR compliance. Advertising and analytics are managed through recognized platforms. Overall, the website is trustworthy and professionally maintained, targeting architects and design professionals.

G

Groupe Ficade

ficade.fr

56

Groupe Ficade is a French media and communication group operating across multiple countries, offering services including B2B media, audiovisual content, rating agency activities, events, training, and consulting. The company targets professional communities and businesses, positioning itself as a key player in media and communication with an international footprint. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on Joomla CMS with the Helix Ultimate framework, leveraging modern libraries such as Bootstrap 5 and jQuery. The site is mobile-optimized and uses standard web technologies for sliders and popups. Performance is moderate, with room for improvement in accessibility and SEO. Security-wise, the site enforces HTTPS and uses secure forms with CSRF tokens but lacks explicit security headers and incident response information. The WHOIS data is missing, which slightly reduces domain trustworthiness, but the professional web presence and compliance with privacy regulations mitigate this concern. Overall, the site is secure, compliant, and professionally maintained, suitable for its business audience.

G

Groupe Ficade

groupeficade.fr

59

Groupe Ficade is a French-based international media and communication group operating in over 50 countries, specializing in B2B media, audiovisual content, events, consulting, and training services. The company targets professional communities and businesses, providing platforms for information and communication to support business growth and networking. The website reflects a mature digital presence with a professional design and clear navigation, supporting the company's market position as a diversified media and consulting group. Technically, the website is built on Joomla CMS with modern frameworks such as Helix Ultimate and Bootstrap 5, incorporating popular JavaScript libraries for enhanced user experience. Hosting is provided by OVH, a reputable provider, and the site uses HTTPS with a good SSL configuration. Performance is moderate with good mobile optimization, though accessibility features could be improved. From a security perspective, the site employs HTTPS and CSRF tokens in forms, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. Analytics usage is moderate, primarily via Google Analytics and Google Tag Manager. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility to further strengthen trust and compliance.

L

Leaders League

decideurs-rh.com

60

Décideurs RH is a French media platform specializing in human resources and business news, operated by Leaders League under Groupe Ficade. The website offers news articles, rankings, events, and subscription services targeting HR professionals and business decision-makers. The platform uses Joomla CMS with modern front-end technologies and integrates multiple advertising and analytics services. Security posture is solid with HTTPS and domain locking, though DNSSEC is not enabled and cookie consent mechanisms are absent. The site maintains a professional design and consistent branding, with active social media presence and event partnerships.

L

Leaders League

decideurs-juridiques.com

63

Décideurs Juridiques is a French media platform specializing in legal news, rankings, and expert content for legal professionals. Owned by Leaders League under Groupe Ficade, it serves a niche audience of lawyers, law firms, and corporate legal departments. The website uses Joomla CMS with a modern tech stack including Bootstrap and jQuery, and integrates multiple analytics and advertising services. The content is professionally curated and updated regularly, reflecting a mature media operation. Security posture is adequate with HTTPS and domain protections, but lacks advanced security headers and explicit privacy compliance mechanisms. No direct contact information or security policies are published, which could be improved to enhance trust. Overall, the site is legitimate, well-branded, and serves its target audience effectively.

D

DECIDEURS MAGAZINE

100-transitions.fr

55

100 Transitions is a French media platform specializing in sustainable transformation and green technologies. It operates under the umbrella of DECIDEURS MAGAZINE and Leaders League, providing news articles, magazines, and newsletters targeted at professionals interested in sustainability and corporate transformation. The website is professionally designed, mobile-optimized, and uses Joomla CMS with modern JavaScript libraries such as Swiper.js and Google Tag Manager for analytics and marketing. Advertising is managed through OpenX ad network. Security posture is adequate with HTTPS and CSRF protections, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is trustworthy and well-positioned in its niche media market.

C

Consortium GARR

garr.it

78

Consortium GARR operates as Italy's national high-capacity network dedicated to the education, research, and cultural communities. It provides ultrafast connectivity and innovative services tailored for educators, researchers, and students. The organization holds a strong market position as a key infrastructure provider in the Italian research and education sector, offering services such as cloud infrastructure, IP and DNS management, digital identity, and web conferencing. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content relevant to its audience. Technically, the site leverages Joomla CMS, UIkit framework, and Matomo analytics with privacy-conscious configurations, ensuring good performance and accessibility. Security posture is robust with HTTPS enforcement, security headers, and GDPR-compliant cookie consent mechanisms, although explicit security policies and incident response details are not publicly disclosed. Overall, the domain registration and website content are consistent and trustworthy, supporting the legitimacy of the consortium.

D

Décideurs Magazine - Accédez à toute l’actualité de la vie des affaires : politique, stratégie, finance, RH, innovation - DECIDEURS MAGAZINE - Accédez à toute l’actualité de la vie des affaires : stratégie, finance, RH, innovation

decideurs-magazine.com

60

Décideurs Magazine is a French business media publication providing comprehensive news and analysis across multiple sectors including politics, strategy, finance, human resources, and innovation. The website serves a professional French-speaking audience with a broad range of content including articles, rankings, events, and e-commerce for magazine sales. Technically, the site is built on Joomla CMS with modern frameworks like Bootstrap and jQuery, and integrates multiple analytics and advertising platforms such as Matomo, Google Tag Manager, Quantcast, and Smart AdServer. Security posture is moderate with HTTPS enforced and CSRF protections in forms, but lacks visible security headers and explicit privacy or cookie policies. WHOIS data is unavailable, which slightly reduces trustworthiness but the site content and branding indicate a legitimate media entity. Overall, the site is professional and content-rich but would benefit from improved transparency and security practices.

A

Artd Webdesign GmbH

artd.ch

67

Artd Webdesign GmbH is a Swiss-based web design and digital marketing agency located in Bern, specializing in creating responsive websites, online shops, SEO optimization, and marketing automation solutions. The company targets a diverse clientele including agencies, SMEs, public sector entities, IT providers, and graphic designers, positioning itself as a trusted local partner with recognized certifications from Salesforce, Mailchimp, Brevo, and ActiveCampaign. Their website reflects a professional and modern digital presence with clear navigation, quality content, and strong branding consistency. Technically, the website is built on Joomla CMS with Bootstrap and jQuery frameworks, integrating marketing automation tools like Mautic and Google Analytics for data-driven insights. The site is mobile-optimized, accessible, and employs modern security measures such as HTTPS and Cloudflare Turnstile CAPTCHA for form protection. Cookie consent mechanisms comply with GDPR requirements, enhancing privacy compliance. From a security perspective, the site demonstrates good practices including encrypted connections and secure form handling, though it lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. WHOIS data aligns well with the business identity, supporting legitimacy and trustworthiness. Overall, Artd Webdesign GmbH presents a low-risk profile with a strong digital maturity level, professional business credibility, and good privacy and security posture. Strategic improvements could focus on publishing security policies and enhancing HTTP security headers to further strengthen their security stance.

Stiftung Refdata is a Swiss foundation providing essential standardized reference data services for the healthcare sector, focusing on unique identification of medicines, medical products, healthcare professionals, and organizations using GS1 standards such as GTIN and GLN. The website demonstrates a solid market position with exclusive licensing rights and partnerships with Swissmedic and GS1 Schweiz. Technically, the site is built on Joomla CMS with modern frontend technologies including Bootstrap and jQuery, and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and accessible with good SEO practices. Security posture is good with HTTPS enforced and CSRF protections, though lacking explicit security policies and some security headers. Privacy compliance is well addressed with cookie consent mechanisms and a privacy policy in German. Overall, the site is professional, trustworthy, and well-aligned with its healthcare audience.

V

Verso Versicherungstreuhand AG

verso.ch

53

Verso Versicherungstreuhand AG is a Swiss insurance brokerage firm established in 2004, providing comprehensive and independent insurance management services. The company targets individuals and businesses seeking reliable insurance consulting and brokerage, positioning itself as a trusted regional player with over 30 experts and multiple locations in Eastern Switzerland. The website reflects a professional and consistent brand image with clear service offerings and customer engagement channels. Technically, the site is built on Joomla CMS with modern frameworks like UIkit and integrates common web technologies such as jQuery and Google Tag Manager. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and CSRF protections, though some security headers are missing and no explicit security policies are published. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, with no signs of malicious activity or content safety concerns.

G

Gemeinde Lantsch/Lenz Graubünden

lantsch-lenz.ch

50

The website www.lantsch-lenz.ch serves as the official online presence of the Gemeinde Lantsch/Lenz, a political municipality in the Albula region of the canton of Graubünden, Switzerland. It provides comprehensive information and services relevant to local residents and visitors, including municipal news, political governance, administrative services, tourism, and community events. The site is well-branded and structured to serve its target audience effectively. Technically, the website is built on the Joomla CMS platform with the Yootheme theme and utilizes modern web technologies such as jQuery, UIkit, and Font Awesome. It is mobile-optimized and includes accessibility features, providing a good user experience. Google Analytics is used for visitor tracking, indicating moderate user tracking practices. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, which are positive indicators. However, it lacks several important security headers and explicit privacy or cookie policies, which are compliance gaps. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is a trustworthy and professional municipal portal with good content quality and technical implementation. The main areas for improvement include adding privacy and cookie policies to enhance GDPR compliance and implementing additional security headers to strengthen the security posture.

M

Maltas apvienības pārvalde

malta.lv

52

Maltas apvienības pārvalde operates as a local government administrative body serving six parishes in the Rēzeknes novads region of Latvia, including Maltas pagasts. The website provides residents and stakeholders with information on governance, cultural events, educational institutions, infrastructure, and community services. It maintains an active online presence with social media integration and contact details for public engagement. The site is built on Joomla CMS with a variety of common web technologies and plugins, offering a moderate level of digital maturity and mobile responsiveness. Security posture is adequate with HTTPS enabled and cookie consent implemented, though it lacks advanced security headers and explicit security policies. Overall, the website is professional, trustworthy, and serves its community effectively.

I

International Federation of Mountain Guides Associations

ifmga.info

52

The International Federation of Mountain Guides Associations (IFMGA) is a globally recognized non-profit federation that represents professional mountain guides and coordinates national member associations. The organization focuses on maintaining high standards in training, certification, and safety for mountain guides worldwide. Their website reflects a professional and consistent brand presence, targeting professional guides and related stakeholders. Technically, the site is built on Joomla CMS with modern frontend technologies and is hosted via GoDaddy. The site is responsive and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and domain locking, but lacks DNSSEC and formal privacy and cookie policies, which are compliance gaps. No signs of blocking or WAF interference were detected, and the domain registration is consistent and legitimate. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and DNS security.

M

Município de Cinfães

cm-cinfaes.pt

45

The website https://cm-cinfaes.pt/ serves as the official digital presence of the Município de Cinfães, a municipal government entity in Portugal. It provides comprehensive information about local governance, citizen services, events, and cultural activities, targeting residents and visitors. The site is well-structured with a focus on accessibility and transparency, including GDPR-compliant privacy and cookie policies. The business model is public sector focused, delivering municipal services and information digitally. Technically, the website is built on Joomla CMS with Yootheme Pro and UIkit frameworks, leveraging modern web technologies such as jQuery and Google Analytics for user insights. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS, includes multiple security headers, and uses nonce attributes to mitigate script injection risks. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not published, which could be improved to enhance trust and readiness. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include publishing a formal security policy, adding incident response contact details, and considering a vulnerability disclosure policy to further strengthen security posture and transparency.

M

Município de Mondim de Basto

mondimdebasto.pt

43

Mondim de Basto is a municipal government website providing information about the local government, cultural activities, tourism, and public services for the Mondim de Basto region in Portugal. The site targets residents, tourists, and cultural visitors, serving as an official portal for municipal information and community engagement. The business model is governmental, focusing on public service and information dissemination. Technically, the website is built on Joomla CMS with Bootstrap and jQuery frameworks, using Google Fonts and Font Awesome for styling and icons. The site is mobile optimized with a moderate performance profile. However, accessibility and SEO optimizations are basic, and no advanced analytics or tracking tools are detected. From a security perspective, the site uses HTTPS and includes CSRF tokens, but lacks important security headers and published security policies. No cookie consent mechanism is present, which may impact GDPR compliance. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is trustworthy and professional, with good content quality and clear navigation. Strategic improvements in security headers, privacy compliance, and incident response transparency are recommended to enhance the security posture and regulatory compliance.

C

Comunidade Intermunicipal do Algarve (AMAL)

amal.pt

44

AMAL (Comunidade Intermunicipal do Algarve) is a regional governmental entity coordinating 16 municipalities in the Algarve region of Portugal. The website serves as an official portal providing information on regional governance, environmental initiatives, social development, cultural programs, economic projects, mobility, and digital transformation efforts. It targets residents, municipal authorities, and stakeholders interested in Algarve's regional affairs. The site is well-structured, regularly updated with news, and maintains a consistent brand identity aligned with its governmental role. Technically, it is built on Joomla CMS with modern front-end technologies and includes accessibility features such as a screen reader plugin. Security posture is adequate with HTTPS and HSTS enabled, but lacks some security headers and a vulnerability disclosure mechanism. Privacy compliance is supported by a comprehensive GDPR policy, though cookie consent mechanisms are absent. Overall, the site is trustworthy and professional, reflecting its official status.

Associação Nacional do Ramo Automóvel (ARAN) is a Portuguese national association representing the automotive sector. The organization provides member support, training, publications, and events to automotive professionals and companies in Portugal. The website reflects a mature and professional digital presence with clear branding and comprehensive content tailored to its target audience. The association recently renewed its leadership, signaling ongoing organizational vitality. Technically, the website is built on Joomla CMS with modern frontend technologies such as Bootstrap, jQuery, and Font Awesome. It incorporates GDPR-compliant cookie consent mechanisms and uses Google Analytics for traffic analysis. The site is mobile-optimized and structured with SEO best practices, although some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, indicating good baseline security hygiene. However, no advanced security headers were detected, and there is no public security policy or incident response contact information. The absence of a vulnerability disclosure or security.txt file suggests room for improvement in transparency and security maturity. Overall, ARAN's website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic improvements in security headers and incident response disclosures would further strengthen its security posture and stakeholder confidence.

C

Centro de Arbitragem de Conflitos de Consumo do Algarve (CIMAAL)

consumidoronline.pt

56

The Centro de Arbitragem de Conflitos de Consumo do Algarve (CIMAAL) operates as a regional consumer arbitration center in the Algarve region of Portugal, providing an accessible, low-cost, and efficient dispute resolution service between consumers and businesses. The website clearly targets local consumers and companies, offering information, complaint submission, and arbitration services under Portuguese law. The business model is public service-oriented, with strong ties to government and consumer protection entities, reinforcing its authoritative market position. Technically, the website is built on Joomla CMS with modern frontend frameworks like Bootstrap and jQuery, ensuring a responsive and user-friendly experience. Integration of Google reCAPTCHA v3 and Google Analytics indicates a moderate level of digital maturity and user tracking, balanced with privacy compliance. The site is well-structured with multilingual support (Portuguese and English) and includes embedded data visualization via Power BI. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and GDPR compliant, with clear user consent mechanisms. Overall, the website presents a trustworthy and professional front for a government-related consumer arbitration service. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance its security posture and user trust.

V

Vaseliteratura.cz

vaseliteratura.cz

43

Vaseliteratura.cz is a Czech literary magazine providing daily articles, book reviews, author interviews, and literary news targeting a general audience interested in literature. The website operates on Joomla CMS and integrates common web technologies such as MooTools and Google Analytics for tracking user engagement. The site demonstrates moderate technical maturity with basic mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit cookie consent mechanisms, indicating room for improvement in privacy compliance. The absence of WHOIS data limits transparency, but the website content and social media presence support its legitimacy as a media outlet. Overall, the site is functional and content-rich but could benefit from enhanced security and privacy features.

2

2getonline GmbH

2getonline.com

54

2getonline GmbH is a small technology company based in Innsbruck, Tirol, Austria, specializing in professional IT solutions including web design, hosting, cloud services, photo and video services, and groupware solutions. The company targets businesses and individuals seeking comprehensive online presence and IT infrastructure support in the Tirol region. Their website is well-structured, professionally designed, and provides clear information about their services and team. Technically, the website is built on Joomla CMS with Yootheme templates and UIkit framework, ensuring good mobile responsiveness and accessibility. The site uses HTTPS with SSL certificates, but lacks visible HTTP security headers and cookie consent mechanisms, which are areas for improvement. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the website demonstrates good practices such as SSL encryption and CSRF token usage, but could enhance security posture by implementing standard security headers and a vulnerability disclosure policy. The absence of WHOIS registration data is a notable anomaly that reduces trustworthiness, although the website content and business information appear legitimate and consistent. Overall, 2getonline GmbH presents a credible and professional online presence with room for technical and security enhancements to strengthen trust and compliance.

W

Werbeagentur Auer

werbeagentur-auer.at

56

Werbeagentur Auer is a small, established advertising and marketing agency based in Tirol, Austria, with over 25 years of experience specializing in tourism and local business marketing. Their services include web design, social media marketing, print products, consulting, photography, textile finishing, signage, and advertising space rental. The website is professionally designed using Joomla CMS and Yootheme templates, featuring responsive design and clear navigation. The technical infrastructure includes modern JavaScript libraries and Google Analytics for tracking. Security posture is good with HTTPS enforced and a comprehensive cookie consent mechanism, though additional security headers and a security policy page could enhance protection. Privacy compliance is basic but includes GDPR-aligned policies and cookie consent. Overall, the website is trustworthy, business-focused, and safe for general audiences.

M

Městské muzeum Rýmařov

muzeumrymarov.cz

42

Městské muzeum Rýmařov is a small regional museum in the Czech Republic dedicated to preserving and presenting the history and culture of the Rýmařov region. The museum offers exhibitions, educational programs, and digital experiences such as 3D virtual tours. It operates as a non-profit cultural institution supported by the city and various partners. The website is built on Joomla CMS with a modern Helix Ultimate template and includes integrations like Google Analytics for visitor tracking. While the site is well-structured and content-rich, it lacks some privacy and security policy disclosures and cookie consent mechanisms. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, although the website content and partner affiliations suggest legitimacy.

G

Geierwallihof

geierwallihof.at

54

Geierwallihof is a small family-run hospitality business located in Vent, Austria, offering mountain lodging and traditional Tyrolean cuisine at 2,000 meters altitude. The website reflects a well-established business with a strong local heritage dating back to 1985, supported by positive customer reviews and comprehensive service offerings. Technically, the site is built on Joomla CMS with modern frameworks like UIkit and Leaflet.js, providing a good user experience with mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data limits domain trust analysis but external trust signals and professional presentation support legitimacy. Overall, the website is professional, secure, and compliant with privacy regulations.

C

Calm Radio Corp.

calmradio.com

68

Calm Radio Corp. operates a specialized streaming platform offering over 700 HD channels of relaxing and calming music, targeting users seeking stress relief, meditation, sleep aid, and focus enhancement. Established in 2008, the company has positioned itself as a niche leader in the wellness and media streaming industry, providing both free and premium subscription models with multi-platform support including mobile, desktop, and smart devices. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to its audience. Technically, the site is built on Joomla CMS with a modern tech stack incorporating popular JavaScript libraries and analytics tools such as Google Analytics, Facebook Pixel, Segment, and AppsFlyer. Hosting is managed via Amazon AWS infrastructure, ensuring scalability and reliability. The site is mobile-optimized and SEO-friendly, though performance is moderate, likely due to extensive third-party scripts and media content. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms compliant with GDPR. However, DNSSEC is not enabled, and explicit security headers are not evident in the HTML content. No public security policy or incident response information is available, and no vulnerability disclosure program is published. The WHOIS data indicates a long-standing domain registration consistent with the company's history, enhancing trustworthiness. Overall, Calm Radio demonstrates a strong business and technical foundation with good privacy compliance and user experience. Security posture is adequate but could be improved by implementing DNSSEC, security headers, and a formal vulnerability disclosure process. The absence of direct contact emails or phone numbers is mitigated by a professional support portal. The site is safe for general audiences and free from adult or explicit content.

Ateliér AJV, s.r.o. is a Czech family-run architectural and engineering studio specializing in project design, engineering activities, industrial construction, developer projects, engineering networks, and heritage reconstruction. With over 33 years of experience and more than 1000 completed projects, the company serves a diverse clientele including industrial firms, developers, and public institutions. Their website reflects a professional and consistent brand image with detailed service descriptions and client testimonials, positioning them as a trusted regional player in the real estate and construction sector. Technically, the website is built on Joomla CMS with modern web technologies such as Bootstrap and jQuery, and includes Google Analytics for visitor tracking. The site is mobile-optimized and provides a cookie consent mechanism, though it lacks a dedicated privacy policy and terms of service pages, which are important for GDPR compliance. Security posture is moderate with HTTPS enabled and email obfuscation implemented, but missing security headers and incident response information suggest room for improvement. WHOIS data is unavailable, limiting domain legitimacy verification, but the presence of company contact details and consistent branding supports credibility.

G

GriToN CZ s.r.o.

griton.cz

64

GriToN CZ s.r.o. is a medium-sized Czech construction company specializing in reinforced concrete monolithic structures and steel constructions, serving clients in the Czech Republic and Slovakia. The company emphasizes turnkey construction deliveries and has a workforce of approximately 80 employees. Their website is professionally designed using Joomla CMS and modern web technologies, providing clear information about their services and projects. The presence of cookie consent and privacy policies indicates compliance with GDPR requirements. However, the absence of WHOIS data and explicit contact emails or phone numbers on the website slightly reduces the overall trustworthiness from a domain registration and contact transparency perspective. The website is accessible without any WAF or security challenges, and security best practices such as HTTPS and Google reCAPTCHA are implemented. Overall, the company presents a credible and professional online presence in the construction sector.

M

MDPO, a.s.

mdpo.cz

58

MDPO, a.s. is a well-established public transportation company based in Opava, Czech Republic, with a history spanning over 120 years. The company provides a range of transportation services including city bus schedules, ticketing, senior taxi, charter services, and vehicle maintenance. Their website serves as an information hub for passengers, offering schedules, pricing, and service details. The company maintains a professional digital presence with clear contact information and active social media channels. Technically, the website is built on Joomla CMS using the Helix Ultimate framework, incorporating modern libraries such as Bootstrap and jQuery, and includes interactive features like live chat and search functionality. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and implements a comprehensive cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and a dedicated security policy or incident response contact. Overall, the website is trustworthy and professionally maintained, supporting the company's credibility in the transportation sector.

J

JPF Czech s.r.o.

jpf.pl

61

JPF Czech s.r.o. is a professional interim management company specializing in business restructuring, revitalization, and crisis management primarily targeting small and medium-sized enterprises. The company offers hands-on management services to help firms overcome crises or scale their operations, with a strong track record of managing approximately 150 firms annually and over 20 years of experience. Their website is well-structured, professionally designed, and provides comprehensive information about their services, client successes, and contact options. The company maintains a strong market position in the Czech Republic and Poland, supported by certifications such as the AAA Gold Excellence. Technically, the website is built on Joomla CMS with modern frameworks like Helix Ultimate and Bootstrap 5, incorporating Google Tag Manager and Analytics for marketing and performance tracking. The site is mobile-optimized and provides a cookie consent mechanism compliant with GDPR, reflecting a mature digital infrastructure. However, some security headers are not explicitly detected, and no public security or incident response policies are found on the site. From a security perspective, the site uses HTTPS and enforces cookie consent, but the absence of WHOIS data for the domain registration reduces trustworthiness and raises questions about domain legitimacy. No critical vulnerabilities or exposed sensitive data were found. Overall, the website demonstrates a good security posture but would benefit from enhanced security headers and transparency regarding security policies. Strategically, the company should verify and publish domain registration details to improve trust, implement additional security headers, and consider publishing incident response and vulnerability disclosure information to strengthen their security culture and client confidence.

R

Radio Fantasy GmbH

fantasy.de

55

Radio Fantasy GmbH operates a local radio station broadcasting at 93.4 FM serving Augsburg and its surrounding areas in Germany. The company offers a mix of music, local news, traffic updates, podcasts, and event promotions, positioning itself as a community-focused media outlet. The website is professionally designed with a strong digital presence including live streaming and social media engagement. Technically, the site uses Joomla CMS with modern front-end frameworks and integrates privacy-conscious analytics and consent management tools. Security posture is good with HTTPS enforced and CSRF protections, though some security headers could be improved. Privacy compliance is strong with clear privacy and cookie policies and a consent mechanism. Overall, the site is trustworthy, well-maintained, and suitable for a general audience.

S

SV OG Darmstadt08

svogdarmstadt08.de

36

SV OG Darmstadt08 is a local non-profit dog training club based in Darmstadt, Germany, specializing in training German Shepherds and dogs of all breeds and ages. The club offers a variety of training programs including puppy groups, obedience, protection training, agility, rally obedience, and mantrailing. They actively engage their community through events, competitions, and news updates, supported by several sponsors and partners. The website serves as an information hub for members and prospective visitors, providing training schedules, news, and event details. Technically, the website is built on Joomla CMS with common extensions such as K2 and JEvents, and uses frontend frameworks like Bootstrap and UIkit. The site is moderately performant, mobile-optimized, and SEO-friendly. Hosting appears to be provided by kasserver.com based on nameserver data. No advanced analytics or tracking tools are detected, indicating a privacy-conscious approach. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks security headers and explicit incident response or security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Contact information is not explicitly provided on the homepage, which may impact user trust and support accessibility. Overall, the website is a well-maintained community resource with good content quality and technical implementation but could improve in security best practices and user contact accessibility to enhance trust and compliance.

B

BB FM rádio

bbfm.sk

55

BB FM rádio is a local commercial radio station based in Banská Bystrica, Slovakia, focusing on news, publicistic content, and music from the 1980s to the present. The station targets local residents and offers a variety of specialized shows and regional musician features. The website is built on Joomla CMS with K2 content management and integrates common web technologies including jQuery, MooTools, and Radiojar for streaming. It employs Google Analytics and Facebook Pixel for analytics and advertising, alongside Cookiebot for GDPR-compliant cookie consent. Security posture is moderate with HTTPS enabled but lacks explicit security headers and privacy policies. WHOIS data is consistent and trustworthy, indicating a legitimate domain registration. Overall, the website is professional, content-rich, and safe for general audiences.

D

DIE BÜCHEREI St. Johannes Baptist Beverungen

buecherei-beverungen.de

47

DIE BÜCHEREI St. Johannes Baptist Beverungen is a small, community-focused public library serving the Beverungen area in Germany. The website provides information about library services, reading promotion programs such as the SommerLeseClub, and access to media catalogs and digital lending platforms. The library is affiliated with the local parish, indicating a non-profit and community-supported business model. The site is well-structured, content-rich, and targets a broad audience including children, youth, and families. Technically, the website is built on Joomla CMS using the Helix Ultimate template framework and Bootstrap 5.3.2, hosted by webgo.de. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers are missing and no explicit security policy or incident response information is published. Overall, the website demonstrates a solid security and privacy compliance stance with GDPR-aligned policies and minimal user tracking. No critical vulnerabilities or suspicious elements were detected. The domain registration data aligns with the website content and hosting provider, supporting legitimacy. Strategic improvements could include adding security headers, publishing a security.txt file, and enhancing accessibility. The risk level is low given the nature of the site and its limited exposure to sensitive data or complex transactions. The site is suitable for its community audience and maintains a trustworthy online presence.

K

Kliniken an der Paar

klipa.de

62

Kliniken an der Paar operates as a regional healthcare provider in Bavaria, Germany, managing two hospitals: Krankenhaus Friedberg and Krankenhaus Aichach. The website serves as an informational portal for patients, visitors, and healthcare professionals, offering updates on hospital news, visitor regulations, and career opportunities. The business model focuses on providing hospital and emergency medical services within the local community. Technically, the website is built on Joomla CMS with Smart Slider 3 for dynamic content presentation. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. Privacy compliance is supported by a privacy policy and cookie banner with opt-out options. Overall, the website is professional, trustworthy, and well-aligned with its healthcare mission.

A

Aachener Krimitage

aachener-krimitage.de

44

Aachener Krimitage is a regional cultural event organizer specializing in literary festivals focused on crime and suspense literature in Aachen, Germany. The website provides detailed event information, partner and sponsor details, and contact information primarily targeting fans of crime literature and cultural event attendees. The business model revolves around organizing events, ticket sales, and collaboration with local partners and sponsors. Technically, the website is built on Joomla CMS using the Helix Ultimate template framework and Bootstrap, hosted by Cloudpit. The site is mobile-optimized and performs moderately well with good SEO practices. Security posture is solid with HTTPS enforced and a cookie consent mechanism in place, though it lacks security headers and a privacy policy page. Overall, the domain registration is consistent with the website's purpose and location, indicating legitimacy. The site is safe for general audiences with no adult content detected.

U

Unified Communications EXPO

ucxevents.io

50

Unified Communications EXPO (UCX) is a UK-based event organizer specializing in hosting the leading expo for unified communications, collaboration, and customer experience technology. The website promotes the UCX London event scheduled for 1-2 October 2025 at ExCeL London, targeting professionals and businesses interested in AI, UCaaS, and related technologies. The site uses Joomla CMS with modern JavaScript libraries and integrates multiple analytics and marketing tools to optimize user engagement and event promotion. Security posture is adequate with HTTPS and CSRF protections, but lacks visible security headers and formal privacy or cookie policies. WHOIS data is unavailable due to privacy protection or query issues, slightly reducing trust. Overall, the site is professional and functional, serving its business purpose effectively.

O

OZ eSlovensko

zodpovedne.sk

59

www.zodpovedne.sk is a Slovak non-profit website operated by OZ eSlovensko, focusing on internet safety, digital responsibility, and prevention of online threats such as cyberbullying and internet addiction. The platform hosts multiple projects and initiatives aimed at educating schools, children, parents, and the general public. It is co-financed by the EU Connecting Europe Facility and partners with Slovak government ministries and child safety organizations. Technically, the site is built on Joomla CMS with Bootstrap and Helix Framework, integrating common web technologies and social media widgets. While HTTPS is enabled and Google Analytics is used, the site lacks explicit privacy and cookie policies, as well as security headers, which are compliance and security gaps. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. Overall, the site is professionally designed with good content relevance and navigation, but improvements in privacy compliance and security posture are recommended.

D

Die Lausitz. Krasse Gegend.

krasse-lausitz.de

51

Die Lausitz. Krasse Gegend. is a regional promotional initiative focused on the Lusatia region in eastern Germany, emphasizing quality of life, structural transformation from coal mining to sustainable industries, and regional development. The website serves as an image campaign supported by government and regional partners, targeting investors, residents, and tourists. Technically, the site is built on Joomla CMS, uses modern JavaScript libraries, and integrates Matomo analytics with a strong cookie consent mechanism, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and cookie consent, though lacks explicit security policy and incident response details. Overall, the site is professional, trustworthy, and compliant with GDPR, with no critical vulnerabilities detected.