Security Directory

B

bedrop - Shop für Propolis, Geleé Royal & Manuka Honig | Hier kaufen – bedrop.de

bedrop.de

72

Bedrop.de is an e-commerce website specializing in natural bee products such as Propolis tinctures, Gelee Royal capsules, pollen, and Manuka honey. The site targets consumers interested in natural health supplements and bee-derived products, positioning itself in a niche market within Germany. The business operates on the Shopify platform, leveraging a modern tech stack including jQuery, Alpine.js, and various marketing and analytics tools like Klaviyo, Yotpo, and Facebook Pixel. The website demonstrates good technical maturity with mobile optimization and SEO best practices. Security posture is solid with HTTPS, Shopify Payments integration supporting 3DS, and a comprehensive cookie consent mechanism, although it lacks published privacy and security policies. Overall, the site is professional and trustworthy but could improve transparency by publishing privacy, terms, and incident response information.

S

Stadt Friedrichshafen

friedrichshafen.de

51

The Stadt Friedrichshafen website serves as the official digital presence of the city government of Friedrichshafen, Germany. It provides comprehensive information and services for residents, tourists, and businesses, including citizen services, tourism, cultural events, economic development, and municipal news. The site is well-branded, professionally designed, and targets a broad audience including local citizens and visitors. The business model is that of a municipal government entity focused on public service and community engagement. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery, Bootstrap, Swiper, and Slick Slider for interactive and responsive user experience. It employs Matomo for analytics, ensuring privacy-conscious data collection. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive digital maturity profile. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. However, explicit security policies and incident response contacts are not publicly disclosed, representing an area for improvement. No critical vulnerabilities or suspicious content were detected. The WHOIS data aligns with the official city identity, supporting legitimacy and trustworthiness. Overall, the website presents a low-risk profile with strong content quality and privacy compliance. Strategic recommendations include publishing formal security policies, enhancing security headers, and providing incident response information to further strengthen trust and security posture.

C

CGTN

cgtn.com

64

CGTN is a large international media organization providing global news coverage with a focus on Chinese perspectives. The website offers a wide range of news content including politics, business, culture, and technology, supported by video and live streaming services. The platform targets a global audience interested in China and international affairs. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and Google Analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data limits domain registration trust analysis, but the website's professional presentation and official social media presence support its legitimacy.

H

Hirsch & Wölfl GmbH

hirsch-woelfl.de

60

Hirsch & Wölfl GmbH is a well-established digital agency based in Germany, specializing in creating professional websites, mobile apps, and print media primarily for municipalities, cities, counties, and companies. With over 23 years of experience and more than 1,400 completed projects, the company holds a strong market position in the technology sector, focusing on digital transformation and compliance with regulations such as the Onlinezugangsgesetz (OZG) and GDPR. Their services include web development, citizen apps, online shops, and digital marketing materials, targeting a broad audience from small communities to global enterprises. Technically, the website is built on the TYPO3 CMS platform, leveraging modern JavaScript libraries and frameworks such as LightGallery and Swiper for enhanced user experience. The site is hosted behind Cloudflare, ensuring performance and security benefits. The website is mobile-optimized, accessible, and SEO-friendly, with a comprehensive cookie consent mechanism and GDPR-compliant privacy policy. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses cookie consent to manage tracking technologies like Google Analytics. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which could be areas for improvement. Overall, Hirsch & Wölfl GmbH presents a professional and trustworthy digital presence with strong compliance and technical maturity. Strategic enhancements in security transparency and incident response readiness would further strengthen their security posture and trustworthiness.

C

ComperiaLead

comperialead.pl

60

ComperiaLead.pl operates as a leading affiliate marketing program in Poland, offering innovative tools and a mobile application to enable users to earn money online. The platform targets Polish internet users interested in affiliate marketing and online business opportunities. The website presents a professional and consistent brand image with a focus on finance-related affiliate services. Technically, the site employs a modern tech stack including Bootstrap, Google Analytics, Facebook Pixel, and Cookiebot for consent management, indicating a mature digital infrastructure. Security posture is moderate with HTTPS usage and cookie consent mechanisms, but lacks visible HTTP security headers and explicit security policies. The absence of WHOIS data due to privacy protection slightly reduces trust but is common in this business sector. Overall, the site is safe, compliant with GDPR, and well-positioned in its market niche.

V

VDB Holidayhome

vdbholidayhome.nl

41

VDB Holiday Home is a Dutch company specializing in the sale and investment of recreational holiday homes located in scenic natural parks across the Netherlands. The company offers both new and occasion chalets, targeting individuals seeking private holiday residences as well as investors interested in combining recreation with investment. The website reflects a niche market position with a focus on quality and location. Technically, the website is built on Joomla CMS with modern libraries such as Bootstrap and jQuery, and integrates common marketing and analytics tools like Google Analytics and Facebook Pixel. The site is mobile optimized and performs moderately well. Security posture is adequate with HTTPS and DNSSEC enabled, but lacks some advanced security headers and formal vulnerability disclosure mechanisms. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Overall, the website is professional and trustworthy, with clear contact information and consistent branding, but could improve in privacy and security transparency.

G

Giritech GmbH

giritech.energy

57

Giritech GmbH is a German company specializing in sustainable e-mobility infrastructure solutions, including electric vehicle chargers, management platforms, and related services. Founded in 2022, the company targets businesses, municipalities, and fleet operators with innovative financing models such as Zero Invest and leasing options. Their market position is supported by partnerships with European market leaders and membership in relevant industry associations. Technically, the website employs common web technologies like jQuery and Bootstrap, with moderate performance and good mobile optimization. Security posture is moderate with HTTPS implied but lacking advanced security headers and DNSSEC. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy but could improve in security and privacy practices.

Z

Zwanenmeer

zwanemeer.nl

52

Boscamping Zwanemeer is a well-established hospitality business specializing in nature camping and accommodations in Drenthe, Netherlands. The website reflects a strong market position targeting families and nature enthusiasts with a variety of camping options and recreational facilities. The technical infrastructure is modern, leveraging Joomla CMS and multiple analytics and marketing tools, ensuring a good digital maturity level. Security posture is adequate with HTTPS and consent management but lacks some advanced security headers and explicit security policies. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting a positive user experience and business credibility.

C

Camping de Hondsrug

hondsrug.nl

41

Camping de Hondsrug is a well-established 4-star camping and holiday accommodation provider located in Drenthe, Netherlands. The company offers a variety of camping pitches and rental accommodations including chalets, bungalows, tents, and unique Sheddies, targeting families and tourists seeking a quality holiday experience. The website reflects a strong regional market position with good content quality and consistent branding. Technically, the site uses a modern stack with popular JavaScript libraries and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile optimized and SEO friendly, though some external resources are loaded over HTTP which poses a minor security risk. Security posture is moderate with HTTPS enforced but lacking explicit security headers and visible security policies. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and suitable for its target audience.

N

Novi B.V.

miki.com

65

Miki.com operates as an online gambling platform specializing in casino games, live casino, and sports betting, including esports markets. Licensed under Curacao jurisdiction and operated by Novi B.V., the platform targets adult users interested in crypto and traditional payment methods. The website offers a comprehensive gaming experience with a variety of bonuses, fast payment options, and 24/7 customer support via live chat. Technically, the site uses a modern tech stack including jQuery, Bootstrap, and Cloudflare DNS, with integrations for marketing and support such as Smartico and Zendesk. Security posture is solid with HTTPS and domain transfer protections, though improvements like DNSSEC and security headers are recommended. Privacy and cookie policies are present and reasonably comprehensive, supporting GDPR compliance. No incident response or vulnerability disclosure policies were found, indicating an area for enhancement. Overall, the site is professionally designed, user-friendly, and trustworthy within the online gambling niche, but should enhance security and compliance transparency to further strengthen its position.

L

La Société d'Editions Architecturales (SEA)

darchitectures.com

63

d'architectures is a well-established French architectural magazine focused on architectural creation, innovation, and industry news. It operates under the parent company Groupe Ficade and offers rich editorial content, event listings, and product showcases. The website is built on Joomla CMS with modern front-end technologies and provides a professional user experience with good mobile optimization and clear navigation. Security posture is adequate with HTTPS and domain transfer protection, but could be improved by enabling DNSSEC and adding security headers. Privacy policies are linked via the parent company, indicating GDPR compliance. Advertising and analytics are managed through recognized platforms. Overall, the website is trustworthy and professionally maintained, targeting architects and design professionals.

M

Muuuz

muuuz.com

59

Muuuz is a leading French online magazine and community platform dedicated to architecture, design, and related arts. Founded in 2008 and operated under Groupe Ficade, it serves as a primary source of inspiration and information for French-speaking architects and design enthusiasts. The website offers rich editorial content, event coverage, and awards such as MIAW, positioning itself as a key player in the French media landscape for architecture and design. Technically, the site is built on Joomla CMS version 3.10.12, leveraging Bootstrap 3, jQuery, and various front-end libraries like Owl Carousel and Swiper for a responsive and engaging user experience. It integrates Google Analytics and Google Tag Manager for visitor tracking and uses OpenX Mediamatis for advertising. The site is mobile-optimized and features a clear navigation structure, although some accessibility features are basic. From a security perspective, the site uses HTTPS (implied by base href https://), but no explicit security headers were detected in the provided data. There is no visible privacy or cookie policy on the homepage, which may raise compliance concerns. The WHOIS data for the domain www.muuuz.com is unavailable or indicates the domain may not be registered under the expected name, which is a significant trust concern. Overall, while the website content and business presence are professional and credible, the lack of WHOIS transparency and missing privacy disclosures suggest areas for improvement in trust and compliance. Strategic recommendations include enhancing security headers, publishing clear privacy and cookie policies, and resolving domain registration transparency to strengthen legitimacy.

M

Muuuz

archidesignclub.com

60

Muuuz is a leading French online media platform dedicated to architecture, design, and related arts, established in 2008 and operated under Groupe Ficade. It serves a professional and enthusiast audience with news, inspiration, event coverage, and multimedia content. The website is built on Joomla! CMS with modern web technologies and integrates multiple third-party services for analytics and advertising. Security posture is moderate with HTTPS usage but lacks visible security headers and explicit privacy policies. WHOIS data is unavailable, which slightly impacts trust but the site’s professional presentation and active content mitigate concerns. Overall, Muuuz presents a credible and authoritative presence in its niche.

E

Emercoin

emercoin.com

67

Emercoin is a blockchain platform established in 2013, providing decentralized solutions and a suite of blockchain-based services targeting businesses and individual coinholders. The platform offers a variety of services including decentralized DNS, secure SSH, SSL certificates, ownership ledgers, micropayments, and file validation, positioning itself as a versatile blockchain infrastructure provider. The website demonstrates a professional and consistent brand presence with credible media coverage and partnerships, reinforcing its market position in the blockchain technology sector. Technically, the site uses modern web technologies, is mobile-optimized, and hosted behind Cloudflare DNS, ensuring moderate performance and accessibility. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements are recommended in DNSSEC adoption and security headers. Privacy compliance is partial, with privacy and terms policies present but lacking cookie consent mechanisms. Overall, the site is trustworthy and well-maintained, with room for enhancements in security and privacy transparency.

I

isabelle garcia – Simply Simple

isabellegarcia.me

59

The website is a personal blog titled 'isabelle garcia – Simply Simple' hosted on WordPress.com and registered through Automattic Inc. It features content focused on travel, vanlife, adventures, and personal reflections, targeting a general audience interested in lifestyle and travel stories. The business model is content blogging with a niche focus, and the site has been active since 2007, indicating a mature presence. Technically, the site uses WordPress with Jetpack and Gutenberg, hosted on WordPress.com infrastructure, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanism. No direct contact information or security policies are published. Overall, the site is safe, trustworthy, and professionally presented but could improve privacy and security transparency.

L

Legacy Sarl

storyshare.co

49

StoryShare is a technology company specializing in a video recording and community engagement platform that enables organizations to embed video recording and playback directly on their websites. The platform supports video feedback, testimonials, interviews, surveys, and event engagement, targeting organizations, authors, and event organizers. The company operates primarily in the technology sector with a small business profile and was founded in 2018. The website is built on WordPress with Elementor, indicating a modern but standard CMS infrastructure. The technical setup includes common libraries such as jQuery and Swiper, with hosting likely provided by GoDaddy based on WHOIS data. Security posture is moderate with HTTPS enabled but lacking advanced security headers and DNSSEC. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Contact information is limited to a contact form with no direct emails or phone numbers published. Overall, the website is professional and functional but could improve in security and privacy transparency.

O

osb international

osb-i.com

55

osb international is a medium-sized consulting firm based in Germany, specializing in systemic consulting, organizational design, leadership development, and change management. The company targets organizations and family businesses, offering coaching, seminars, and strategy consulting services. The website is professionally designed using TYPO3 CMS and modern frontend technologies, providing a good user experience with mobile optimization and clear navigation. The presence of a detailed cookie consent mechanism indicates a commitment to privacy compliance, including GDPR. However, the absence of WHOIS data for the domain www.osb-i.com raises concerns about domain legitimacy and registration status, which should be verified to ensure trustworthiness. Security posture is strong with HTTPS and cookie consent, but the site lacks explicit security policies and incident response information. Overall, the website is functional, professional, and privacy-aware but would benefit from enhanced transparency and verified domain registration.

S

SCAN-MATCH

captag.events

63

Captag, operated by SCAN-MATCH, is a French event technology company founded in 2012, providing a comprehensive platform for managing physical, hybrid, and digital events. Their services include event registration, RFID parcours, interactive questionnaires, live voting, web applications, VIP management, gamification, and more. The company targets B2B, B2C, VIP, associative, and retail sectors, boasting a strong client portfolio including Orange, Air France, Roland Garros, and Google. Technically, the website employs modern frameworks such as Bootstrap, jQuery, and Leaflet, hosted on Google Cloud Platform, with good mobile optimization and SEO practices. Security posture is strong, supported by ISO 27001 and ISO 20121 certifications, HTTPS enforcement, and a robust cookie consent mechanism. No critical vulnerabilities or blocking mechanisms were detected, and privacy compliance is well addressed with clear policies and a dedicated DPO contact. Overall, Captag presents a professional, trustworthy, and mature digital presence aligned with its business claims.

M

Moravskoslezské energetické centrum, příspěvková organizace

mskec.cz

54

Moravskoslezské energetické centrum, p. o., is a Czech regional public organization founded in 2014, specializing in energy consulting, management, and clean mobility development for the Moravskoslezský kraj region. The organization provides expert advisory services to regional public institutions and municipalities, focusing on energy savings, renewable sources, and strategic regional development. The website reflects a professional and consistent brand image with comprehensive content tailored to its target audience. Technically, the site is built on WordPress with modern libraries and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response details. Overall, the site is trustworthy, compliant with GDPR, and well-positioned as a regional energy consultancy.

E

Ennio Mattarelli

mattarelliennio.com

50

Ennio Mattarelli is a specialized manufacturer of clay target shooting machines based in Bologna, Italy, with a history dating back to 1988. The company offers a range of products including Olympic and Sporting lines, targeting professional shooters, sporting clubs, and distributors. Their market position is supported by sponsorships and official approvals from shooting sport organizations. The website reflects a professional and consistent brand image with clear product information and contact details. Technically, the site uses modern web technologies such as jQuery, Bootstrap, and Google Analytics, and implements GDPR-compliant cookie consent mechanisms. However, the absence of WHOIS registration data raises some concerns about domain legitimacy, though the website content and business information appear authentic. Security posture is moderate with HTTPS usage and reCAPTCHA integration but lacks explicit security headers and published security policies. Overall, the site is well-designed and functional but would benefit from enhanced security documentation and verification of domain registration.

S

SkalkaStar – Unikátní pěvecká soutěž

skalkastar.cz

45

SkalkaStar.cz is a Czech website dedicated to organizing a unique singing competition for children and youth aged 5 to 21 years. The event culminates in a final scheduled for September 13, 2025, at Skalka Family Park Ostrava. The competition is segmented into age categories, offering prizes such as park passes, annual subscriptions to a children's TV app, single recordings, music video productions, and cash awards. The website is built on WordPress using the Elementor page builder, incorporating modern web technologies including jQuery, Google Analytics, and Meta Pixel for tracking. While the site demonstrates good design quality, mobile optimization, and clear navigation, it lacks critical privacy and cookie policies, which impacts its compliance posture. Security practices include HTTPS and reCAPTCHA integration, but absence of security headers and explicit contact information are notable gaps. Overall, the site appears legitimate and focused on its niche event, but improvements in privacy compliance and security hardening are recommended.

Y

Yates Gear

yatesgear.com

38

Yates Gear is a specialized manufacturer focused on mountaineering, rock climbing, tactical, helo-ops, and search and rescue equipment. The company has a long-established domain since 1999, indicating a mature presence in the manufacturing sector. Their website is built on a modern e-commerce platform (likely OpenCart) with a professional design and good mobile optimization. The technical infrastructure includes popular libraries and frameworks such as Bootstrap, Font Awesome, and Swiper, supporting a responsive and user-friendly experience. However, the site lacks visible privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS enforced but missing DNSSEC and security headers, suggesting room for improvement in hardening the site against attacks. Tracking via Facebook Pixel indicates marketing efforts but also raises privacy considerations. Overall, the website is functional and credible but would benefit from enhanced privacy compliance and security best practices.

C

Câmara Municipal Santo Tirso

cm-stirso.pt

70

The Câmara Municipal Santo Tirso website serves as the official digital presence of the municipal government of Santo Tirso, Portugal. It provides comprehensive information about the municipality, including news, events, investment opportunities, tourism, and public services. The site targets residents, visitors, and investors, offering a user-friendly platform with clear navigation and multilingual support via Google Translate. The business model is that of a public sector entity focused on transparency, citizen engagement, and local development. Technically, the website employs a modern tech stack including React, jQuery, and the Wiremaze CMS platform. It integrates accessibility features and is optimized for mobile devices, ensuring a good user experience. The site uses HTTPS with a good SSL configuration and includes cookie consent mechanisms aligned with GDPR requirements. Analytics are implemented via Google Analytics and Google Tag Manager, with moderate user tracking. From a security perspective, the site enforces HTTPS and uses cookie consent banners but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious content were detected. WHOIS data confirms the legitimacy of the domain, matching the municipal government identity and location. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though it could improve by publishing formal security policies and enhancing security headers. The risk level is low, and the site effectively supports the municipality's communication and service delivery objectives.

P

Photon Remediation

photonremediation.com

52

Photon Remediation is a specialized environmental remediation company focused on providing advanced solutions for PFAS and other contamination challenges. The company leverages innovative technologies such as WaterGuard Nano™ and EarthGuard PRB™ to deliver sustainable cleanup services targeting groundwater, soil, surface water, and biosolids. Positioned as a trusted partner to militaries, airports, chemical manufacturers, and academic institutions, Photon Remediation operates under the Photon Energy Group umbrella, emphasizing eco-friendly and customized remediation strategies. Technically, the website demonstrates a modern and professional digital presence, utilizing contemporary JavaScript libraries, Google Tag Manager, and invisible reCAPTCHA for form security. The site is mobile-optimized with good SEO practices and a clear navigation structure. However, some technical improvements could be made in accessibility and security headers to enhance overall robustness. From a security perspective, the site enforces HTTPS and employs Google reCAPTCHA to protect forms, alongside a cookie consent mechanism aligned with GDPR requirements. Despite these strengths, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. No explicit security policies or incident response contacts are published, indicating room for maturity in security governance. Overall, Photon Remediation presents a credible and professional business front with solid technical implementation and privacy compliance. The main risk lies in the domain registration inconsistency, which should be addressed to strengthen trust and reduce potential reputational risks.

V

Vent | Ötztal | oetztal.com

vent.at

72

The website www.oetztal.com/de/regionen-orte/vent serves as a regional tourism portal focused on the Vent village in the Ötztal valley, Austria. It provides visitors with information about alpine hiking, skiing, and local attractions. The site targets tourists and outdoor enthusiasts seeking authentic mountain experiences. The business model centers on tourism promotion and regional marketing, positioning itself as a trusted source for travel planning in the region. Technically, the website employs modern JavaScript libraries such as GSAP, Swiper, Leaflet, and Rive for interactive and visual content. It integrates Google Tag Manager for analytics and Cookiebot for cookie consent management, reflecting a moderate level of digital maturity. The site is mobile-optimized with good SEO practices and a professional design, although accessibility features are basic. From a security perspective, the site uses HTTPS and a comprehensive cookie consent mechanism, but lacks visible security headers and explicit privacy or security policies in the provided content. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces the trust score, but the website content and technical setup indicate a legitimate and professional operation. Overall, the website presents a solid tourism information platform with room for improvement in privacy transparency, security headers, and incident response readiness. Strategic enhancements in these areas would strengthen user trust and compliance posture.

深圳市达妙科技有限公司是一家成立于2019年的中国科技公司，专注于智能电机及驱动解决方案，产品广泛应用于机器人及自动化领域。公司提供多款关节电机、轮毂电机及开发套件，面向机器人制造商和科技竞赛团队，拥有一定的市场认可度。技术基础包括使用主流前端库和自建CMS，网站设计专业且移动优化良好。安全方面，网站缺乏HTTPS支持和安全头，且未发现隐私政策或安全事件响应机制，存在一定安全风险。WHOIS信息缺失，域名注册状态不明，影响整体信任度。建议尽快部署HTTPS，完善隐私合规和安全策略，提升整体安全与合规水平。

O

Holidays in Ötztal | Ötztal | oetztal.com

oetztal.xyz

71

The website www.oetztal.com serves as a tourism and holiday information portal for the Ötztal region, offering a variety of activity options for summer and winter visitors. The site targets tourists and holidaymakers interested in exploring the region, providing content focused on travel planning and local attractions. The business model appears to be centered on tourism promotion and information dissemination, with partnerships to related regional tourism sites. Technically, the website employs modern JavaScript libraries and tools such as Google Tag Manager and Cookiebot for analytics and cookie compliance, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS usage and cookie consent mechanisms, but lacks visible security headers and published security policies. The absence of WHOIS data for the domain reduces trustworthiness and raises questions about domain registration transparency. Overall, the site is safe for general audiences and does not contain adult or questionable content.

Ö

Ötztal Tourismus

oetztaltourismus.com

67

Ötztal Tourismus operates a B2B information and service portal focused on tourism in the Ötztal region of Austria. The website serves as a resource for local accommodation providers and tourism professionals, offering marketing campaign details, product development updates, and service ordering options. The organization positions itself as a regional tourism authority with a medium-sized operational scale. Technically, the website employs modern JavaScript libraries and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though explicit security policies and incident response information are not publicly available. The absence of WHOIS data for the domain reduces confidence in domain registration legitimacy, but the website content and technical setup indicate a professional and trustworthy entity. Strategic recommendations include enhancing security headers, publishing security policies, and improving contact information visibility.

G

Gurgl Carat

gurgl-carat.com

70

Gurgl Carat is a professional event and congress venue located in the Ötztal/Tirol region of Austria, catering to events with up to 500 attendees. The website presents a modern and well-structured digital presence, utilizing advanced technologies such as Google Tag Manager, Cookiebot for cookie consent management, and interactive JavaScript libraries. The site is mobile optimized and provides a good user experience with clear navigation and relevant content focused on event hosting services. However, the absence of publicly accessible privacy policy and terms of service pages, as well as missing contact information, limits full transparency and user trust. The security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks some security headers and vulnerability disclosure mechanisms. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy and should be further investigated. Overall, the website is functional and professional but would benefit from enhanced compliance documentation and security best practices.

G

Winter & summer holidays | Gurgl | gurgl.com

gurgl.com

71

The website www.gurgl.com presents itself as a tourism and hospitality platform focused on alpine holidays in Obergurgl & Hochgurgl, offering skiing, hiking, and nature relaxation experiences. The content is professionally presented with good design quality and clear navigation, targeting tourists and holidaymakers interested in alpine vacations. The technical infrastructure includes modern JavaScript libraries and modules, Google Tag Manager, and Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent mechanisms denying ad personalization by default, but lacks explicit security headers and published security policies. The absence of WHOIS registrant data and privacy policy pages introduces some trust concerns. Overall, the site is functional and professional but could improve transparency and security practices.

O

Holidays in Ötztal | Ötztal | oetztal.com

oetztal.com

73

The website www.oetztal.com serves as a regional tourism portal for the Ötztal valley in Austria, offering comprehensive information about holiday options, activities, and seasonal events. It targets tourists and holidaymakers interested in exploring the region, providing a user-friendly platform to plan vacations. The site leverages modern web technologies including JavaScript frameworks and third-party services such as Google Tag Manager and Cookiebot for analytics and privacy compliance. Despite the lack of WHOIS data, the website presents a professional and trustworthy front with good content quality and user experience. Security posture is moderate with HTTPS enforced and cookie consent implemented, though improvements in security headers and explicit privacy policies are recommended. Overall, the site is suitable for general audiences and maintains a good balance between functionality and compliance.

Ö

Ötztal

oetztal-hub.com

74

Ötztal.com is a professionally designed tourism website promoting the Ötztal valley in Austria as a year-round holiday destination. It offers comprehensive information about summer and winter activities, targeting tourists and holidaymakers. The site uses modern web technologies including Google Tag Manager and Cookiebot for analytics and privacy compliance. The presence of detailed cookie consent mechanisms indicates a good level of privacy awareness. However, the absence of explicit privacy policy and terms of service pages in the analyzed content is a gap. The WHOIS data is missing or inaccessible, which raises concerns about domain registration legitimacy despite the professional appearance of the website. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but security headers are not detected and no incident response or security policy information is found. Overall, the site is safe and trustworthy for general audiences, but domain registration status should be verified for full trust.

H

Hörmann

hormann.cz

55

Hörmann.cz is the Czech Republic localized website of Hörmann, a leading European manufacturer specializing in garage doors, residential and interior doors, door frames, and drive systems. The company targets private builders and renovators, offering a broad product portfolio including sectional garage doors, aluminum frame doors, and various door automation solutions. The website is professionally designed using TYPO3 CMS, featuring comprehensive product information, promotional offers, and a multi-language structure indicating a mature international presence. Technically, the site employs modern web technologies, including jQuery, Bootstrap, and advanced analytics tools like Google Tag Manager and Webtrekk, alongside a GDPR-compliant cookie consent mechanism. Security posture is strong with HTTPS enforced and no evident vulnerabilities, though security headers could be improved. The absence of WHOIS data slightly impacts trust but the overall digital maturity and business credibility remain high.

Ocular Therapeutix, Inc. operates the DEXTENZA website, promoting a corticosteroid ophthalmic insert for treating ocular inflammation and pain post-surgery. The company targets US healthcare professionals, providing detailed product information, safety data, and surgeon testimonials. The website reflects a specialized pharmaceutical business model with a focus on innovative drug delivery technology. Technically, the site is built on WordPress with modern libraries and SEO tools, delivering a professional and responsive user experience. Security posture is solid with HTTPS and basic security headers, though additional headers and explicit security policies could enhance protection. The absence of WHOIS data is a notable anomaly but does not detract from the site's professional presentation and trust signals. Overall, the site demonstrates good digital maturity and compliance with privacy regulations, supporting its credibility in the healthcare sector.

S

Summer holidays & Winter holidays | Sölden | soelden.com

soelden.com

68

The website www.soelden.com serves as a tourism portal for the Sölden region in Austria, promoting summer and winter holiday activities such as skiing, biking, and hiking. The site targets tourists and outdoor sports enthusiasts, providing information and services related to alpine nature exploration and urban experiences in the valley. The business model focuses on destination marketing and visitor engagement, positioning itself within the hospitality industry. The website demonstrates a good level of content quality and branding consistency, with a professional design and clear navigation. From a technical perspective, the site employs modern JavaScript libraries including GSAP, Swiper, Leaflet, and Rive, alongside Google Tag Manager and Cookiebot for analytics and cookie consent management. The performance is moderate with good mobile optimization, though accessibility features are basic. No CMS or hosting provider details were identified from the provided data. Security posture shows room for improvement; while HTTPS is presumably enabled (not explicitly confirmed), no security headers were detected in the analyzed content. The site implements a cookie consent mechanism, indicating some privacy compliance efforts, but lacks visible privacy policy, terms of service, or security incident contact information. The WHOIS data is unavailable, raising concerns about domain registration legitimacy. Overall, the website is functional and professionally presented but would benefit from enhanced security practices, transparent privacy policies, and verified domain registration to improve trustworthiness and compliance.

S

Sklárna Janštejn, s.r.o.

janstejn.cz

45

Sklárna Janštejn, s.r.o. is a historic Czech glass manufacturing company specializing in hand-blown lighting glass products with a tradition dating back to 1809. The company holds a strong artisanal reputation and serves both domestic and international markets, including a notable partnership with BROKIS. Their website reflects a medium-sized manufacturing business with a professional online presence, including social media engagement and detailed company information. Technically, the website is built on WordPress using Elementor and several plugins, offering a good user experience with moderate performance and mobile optimization. Security posture is solid with HTTPS and security headers implemented, though privacy and cookie policies are lacking, which impacts compliance. The absence of WHOIS data reduces domain trustworthiness but does not detract from the legitimacy of the business as presented online. Overall, the site is safe, professional, and well-structured, serving its target audience effectively.

K

KuchynskePotreby.cz

kuchynskepotreby.cz

57

KuchynskePotreby.cz is a Czech Republic-based e-commerce retailer specializing in kitchen and household products. The website offers a broad range of items including cookware, bakeware, kitchen utensils, tableware, and storage solutions. With over 30 years of experience and more than 200,000 orders, the company positions itself as a trusted provider in its market segment. The site features customer reviews, clear contact information, and comprehensive policies, supporting a professional and trustworthy online presence. Technically, the website employs modern JavaScript libraries and tracking tools, is mobile optimized, and uses HTTPS with a cookie consent mechanism, indicating a mature digital infrastructure. Security posture is generally good, though the absence of explicit security policies and incident response information suggests room for improvement. The lack of WHOIS data reduces transparency and slightly impacts trustworthiness. Overall, the site is well designed, user-friendly, and compliant with GDPR, making it a reliable platform for its target audience.

H

Hobbytec

hobbytec.uk

55

Hobbytec is a manufacturer and supplier specializing in aluminium winter gardens, roofing, pergolas, carports, and photovoltaic systems. The company positions itself as a leading manufacturer in the Czech Republic with a strong showroom presence and a focus on custom manufacturing tailored to customer needs. The website targets homeowners and businesses seeking quality home and garden equipment solutions. Technically, the website uses a modern tech stack including jQuery, Google Tag Manager, and Google reCAPTCHA, hosted on a proprietary CMS platform by Shean s.r.o. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and reCAPTCHA protecting forms, but lacks some security headers and explicit incident response policies. Privacy compliance is basic with cookie consent and privacy policy present. The WHOIS data for the www subdomain is unavailable due to domain registration errors, which raises some legitimacy concerns, though the website content and branding are consistent and professional. Overall, the site scores well on content quality, technical implementation, and business credibility, with room for improvement in security best practices and WHOIS registration clarity.

H

Hobbytec

hobbytec.sk

59

Hobbytec is a medium-sized Slovak company specializing in the manufacturing and installation of aluminum winter gardens, pergolas, car shelters, and glazing solutions for homes and gardens. Established in 2010, it holds a leading market position in Slovakia and the Czech Republic, supported by a large showroom and direct customer engagement. The company emphasizes quality, design, and turnkey installation services, targeting homeowners and businesses seeking premium outdoor living solutions. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, and reCAPTCHA, hosted on a CMS platform named Shean. The site is mobile-optimized with good SEO and accessibility features. Security posture is strong with HTTPS, security headers, and anti-bot measures, though explicit security policies and incident response contacts are absent. Privacy compliance is robust with comprehensive cookie and privacy policies aligned with GDPR. Overall, the website reflects a professional and trustworthy business with moderate to good digital maturity.

H

HOGENT

hogent.be

67

HOGENT is a well-established higher education institution based in Belgium, with a domain age dating back to 1995, reflecting its long-standing presence in the education sector. The website serves to inspire and stimulate individuals to make a difference in society, targeting students, educators, and the broader community. It offers educational services, research, and community engagement, positioning itself as a key regional player in higher education. Technically, the website employs a modern technology stack including Mura CMS, jQuery, Bootstrap, and various third-party libraries for UI and analytics. It integrates Google Tag Manager, Google Analytics, and Cookiebot for consent management, demonstrating a reasonable level of digital maturity. The site is mobile-optimized and shows good SEO and accessibility practices, although accessibility could be further improved. From a security perspective, the site uses HTTPS with anonymized IP tracking in analytics, and a comprehensive cookie consent mechanism. However, explicit privacy policies, terms of service, and incident response information are not clearly found, indicating areas for compliance enhancement. No critical vulnerabilities or suspicious activities were detected, and the WHOIS data aligns well with the institution's profile, reinforcing legitimacy. Overall, the website is professional, secure, and trustworthy, with moderate to good privacy compliance. Strategic recommendations include publishing detailed privacy and security policies, implementing incident response disclosures, and enhancing accessibility and security transparency to further strengthen trust and compliance.

Q

Quarkslab

quarksflow.io

55

Quarkslab is a cybersecurity company specializing in software protection, data protection, and security audit consulting services. The company targets technology professionals and enterprises seeking advanced security solutions. Their market position is that of a specialized cybersecurity provider with a focus on innovation protection, data security, and IoT lifecycle security. The website is built on WordPress with Elementor and integrates modern analytics and consent management tools, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS and cookie consent mechanisms in place, but lacks explicit privacy policies and security headers. The absence of WHOIS data for the domain raises some concerns about domain registration transparency. Overall, the website is professional but the missing page and lack of some compliance documents suggest room for improvement.

M

MEZeroE H2020 Project

mezeroe-platform.eu

50

MEZeroE is a specialized platform focused on advancing zero energy building envelope technologies by connecting manufacturers, service providers, and research institutions. It offers a suite of services including open innovation, measurement and verification, and living laboratories to support product development and market readiness. The platform is supported by EU Horizon 2020 funding, enhancing its credibility and positioning within the European energy and construction sectors. Technically, the website is built on Drupal 9 with modern front-end libraries and integrates Matomo for privacy-conscious analytics. Security posture is solid with HTTPS and some best practices, though improvements are needed in security headers and cookie consent compliance. Overall, the website presents a professional and trustworthy digital presence aligned with its business goals.

ČIERNA HVIEZDA is a small Slovak dog breeding station specializing in the Puli breed, with a history dating back to 2000. The website serves as an informational and promotional platform for the breeder's dogs, history, and kynological activities. The site is built on WordPress using Elementor, featuring a moderate technical infrastructure with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled but lacks advanced security headers and privacy compliance elements such as a privacy policy or cookie consent. No contact emails or phone numbers are explicitly provided, but social media links to Facebook and Instagram offer alternative contact channels. Overall, the site is safe, family-friendly, and professionally presented, though it would benefit from enhanced privacy and security features.

A

ASV Hiltenfingen

asvhiltenfingen.de

42

ASV Hiltenfingen is a local non-profit sports club based in Germany, offering a variety of sports activities including football, gymnastics, and youth programs. The website serves as an information hub for members and the local community, providing event details, hall occupancy plans, and galleries. The club maintains an active social media presence on Facebook and Instagram, enhancing community engagement. Technically, the website is built on WordPress using modern plugins and page builders, delivering a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional, suitable for its community-oriented purpose.

A

Azerion

azerion.com

62

Azerion is a digital media and technology platform focused on delivering content and technology solutions globally. The company positions itself as an established player in the digital media industry, targeting a broad audience with its services. The website is built on WordPress using the Divi theme and incorporates SEO best practices via Yoast SEO, indicating a moderate level of digital maturity. The technical infrastructure is modern but lacks visible advanced security headers and explicit privacy or cookie policies, which are important for compliance and trust. Security posture is moderate with room for improvement, especially in implementing security headers and publishing clear privacy and incident response policies. Overall, the website is professional and functional but would benefit from enhanced transparency and security measures to improve trust and compliance.

J

JUDICIUM, s. r. o.

judicium.sk

60

JUDICIUM, s. r. o. operates a specialized web application platform focused on managing cybersecurity, personal data protection (GDPR), and anti-money laundering (AML) compliance primarily for Slovak and Czech entities. Their product suite includes modules tailored to legal and regulatory requirements, offering continuous compliance management, risk assessment, documentation generation, and training. The company targets a broad range of obligated entities including businesses, government bodies, and professionals requiring regulatory adherence. Their market position is that of a niche provider with a clear focus on compliance and security solutions. Technically, the website employs modern web technologies such as Bootstrap and jQuery, with a moderate performance profile and good mobile optimization. Security-wise, the site enforces HTTPS and integrates a comprehensive cookie consent mechanism, though it lacks some advanced security headers and a vulnerability disclosure policy. Overall, the site presents a professional and trustworthy front with transparent business and contact information, supporting a high legitimacy score.

T

Techsavers.sk

techsavers.sk

58

Techsavers.sk is a Slovakian e-commerce retailer specializing in refurbished laptops and computers, offering quality products with warranty and free shipping. The website is built on the Shopify platform, leveraging modern web technologies and third-party integrations for customer reviews, loyalty programs, and analytics. The technical infrastructure is solid, with HTTPS and DNSSEC enabled, ensuring secure communications and domain integrity. However, the site lacks explicit privacy and terms of service pages, which are critical for compliance and user trust. Contact information is not directly visible, which may impact customer confidence. Overall, the site presents a professional and trustworthy front for its niche market but would benefit from enhanced compliance documentation and clearer contact channels.

J

JUDICIUM, s. r. o.

appgdpr.sk

62

JUDICIUM, s. r. o. operates a specialized web application platform focused on managing cybersecurity, GDPR compliance, and anti-money laundering (AML) obligations primarily for Slovak and Czech businesses and governmental entities. Their product suite includes modules for GDPR data management, AML compliance, and cybersecurity risk management, complemented by training and incident management features. The company positions itself as a niche compliance solution provider with transparent pricing and clear business information. Technically, the website employs modern frontend technologies such as Bootstrap and jQuery, with a cookie consent mechanism powered by Cookiebot ensuring GDPR compliance. The site is well-structured, mobile-optimized, and provides clear navigation and contact details. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the site reflects a professional and trustworthy business with a strong focus on compliance and data protection.

C

E-Zigaretten für Einsteiger und Profis| Club der Dampfer Shop

clubderdampfer.de

56

Club der Dampfer is a German e-commerce retailer specializing in vaping products including e-cigarettes, liquids, flavors, bases, pods, and accessories. The website targets both beginners and professional vapers, offering a broad product range with frequent promotions. The site is built on the Magento 2 platform, leveraging various third-party modules for enhanced functionality and user experience. The technical infrastructure is modern and mobile-optimized, providing good SEO and accessibility features. Security posture is adequate with HTTPS enabled, but lacks visible security headers and formal policies such as privacy and cookie policies. No contact or incident response information is publicly available, which limits transparency and trust. Overall, the site is functional and professional but could improve compliance and security transparency.

L

Lightguide

lightguide.com

62

Lightguide International is a European company specializing in the development, manufacturing, and supply of optical fibers, fiber bundles, cables, and laser delivery systems for sophisticated scientific, industrial, and medical applications worldwide. The company positions itself as a leading optical fiber production lab with a strong emphasis on innovation, custom solutions, and product scaling. Their website reflects a professional and modern digital presence, leveraging WordPress CMS with multiple advanced analytics and marketing tools integrated. The site is well-structured, mobile-optimized, and includes comprehensive privacy and cookie policies, indicating a mature approach to user data protection and compliance. However, the absence of WHOIS registration data raises concerns about domain legitimacy, which contrasts with the professional appearance and certifications displayed on the site. Security posture is generally strong with HTTPS and cookie consent mechanisms, but lacks explicit security policies or incident response information. Overall, the website demonstrates a solid business and technical foundation but would benefit from enhanced transparency in domain registration and security disclosures.