Security Directory

T

Touch Endocrinology

touchendocrinology.com

59

Touch Endocrinology operates as a specialized online education platform providing CME-accredited learning resources and clinical updates for endocrinologists. Established since 2006, it holds a strong market position as a leading provider in the endocrinology healthcare education sector. The website offers a rich array of content including journal articles, congress highlights, and learning activities tailored to healthcare professionals. Technically, the site is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, and Borlabs Cookie for consent management, ensuring good performance and mobile optimization. Security posture is robust with HTTPS enforced and domain transfer lock enabled, though DNSSEC is not yet implemented. Privacy compliance is partial with cookie consent mechanisms in place but lacking explicit privacy and terms of service pages. Overall, the site demonstrates high professionalism, trustworthiness, and user experience, supported by active social media presence and advertising transparency.

T

Touch Medical Media

touchcardio.com

61

touchCARDIO is a specialized online education platform providing cardiologists with focused medical education, congress highlights, and CME-accredited learning activities. The platform is operated by Touch Medical Media, an established entity in medical publishing since 2014. The website targets healthcare professionals in cardiology, offering journal articles, clinical updates, and educational resources to support continuous professional development. The business model centers on content publishing and education services within the healthcare sector, positioning itself as a niche leader in cardiology education. Technically, the website is built on WordPress CMS, leveraging modern web technologies including jQuery, Google Tag Manager, DoubleClick for Publishers, and social login plugins. The site demonstrates good SEO practices, mobile optimization, and integrates multiple analytics and advertising tools such as Facebook Pixel and Microsoft Clarity. Hosting and DNS services are managed via Cloudflare, ensuring robust infrastructure and performance. From a security perspective, the site enforces HTTPS with a valid SSL certificate and employs domain transfer protection. However, DNSSEC is not enabled, and security headers are not explicitly detected in the provided data. There is no visible security policy, incident response information, or vulnerability disclosure mechanism, which are areas for improvement. Cookie consent is implemented via Borlabs Cookie plugin, indicating some level of privacy compliance, though no explicit privacy policy or terms of service were found in the analyzed content. Overall, touchCARDIO presents as a professional, trustworthy platform with a solid business foundation and technical infrastructure. Strategic enhancements in security transparency, privacy documentation, and DNS security would further strengthen its posture and compliance standing.

C

CREEM Magazine LLC

creem.com

66

CREEM Magazine LLC operates a niche, premium rock 'n' roll print magazine with a strong digital presence and e-commerce platform. Founded in 1969 and relaunched in 2022, the company targets rock music enthusiasts and collectors with subscription plans and branded merchandise. The website is built on Shopify, leveraging modern web technologies and multiple marketing and analytics tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and security headers, though the absence of a public security policy and incident response details suggests room for improvement. The missing WHOIS data reduces transparency but does not negate the site's legitimacy given its professional presentation and consistent branding. Overall, CREEM presents a credible and well-executed business with moderate risk primarily due to domain registration opacity.

S

Simple Plan

officialsimpleplan.com

57

Simple Plan's official website serves as a comprehensive digital platform for the internationally recognized pop-punk band. It provides fans with up-to-date tour information, VIP options, music streaming and purchase links, merchandise stores, and access to the band's charitable foundation. The site effectively targets music enthusiasts and concertgoers, supporting the band's engagement and revenue through ticket sales and merchandise. The website's market position is strong within the entertainment sector, leveraging a loyal fanbase and active touring schedule. Technically, the site is built on WordPress with modern performance optimizations such as WP Rocket and integrates multiple analytics and marketing tools including Google Analytics, Facebook Pixel, TikTok Pixel, and The Trade Desk. Cookie consent is managed via CookieYes, ensuring GDPR compliance with detailed user controls. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Hosting and DNS are managed through GoDaddy and Cloudflare, providing reliable infrastructure. From a security perspective, the website enforces HTTPS and employs domain status protections to prevent unauthorized changes. However, some security headers are not explicitly detected and there is no published security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found. Privacy compliance is well addressed through cookie consent mechanisms and a basic privacy policy. Overall, the website presents a professional, trustworthy, and user-friendly experience with moderate to good security and privacy practices. Strategic improvements include enabling DNSSEC, enhancing security headers, publishing a security.txt file, and providing explicit incident response contacts to further strengthen the security posture and user trust.

B

Big Machine Label Group

bigmachinelabelgroup.com

69

Big Machine Label Group is a prominent music label group operating under the umbrella of Universal Music Group. The website serves as the official digital presence for the label, offering information about its artists, releases, and corporate identity. The site targets music industry professionals, artists, and fans, providing access to music content and promotional materials. The business model centers on music publishing, artist management, and distribution services within the media industry. The company is positioned as a large, established entity with strong branding and market presence. Technically, the website is built on WordPress 6.6.2 and leverages modern web technologies including jQuery, Google Tag Manager, and YouTube APIs. The site demonstrates good mobile optimization and SEO practices, with structured data and meta tags implemented. Performance is moderate, with room for improvement in accessibility and security headers. The presence of cookie consent and privacy policies indicates attention to privacy compliance. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and explicit incident response information. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a concern for transparency but does not necessarily indicate malicious intent given the strong association with Universal Music Group. Overall, the website is professional and trustworthy, with a solid business foundation and adequate technical infrastructure. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and compliance.

L

LBS - Die Bausparkasse der Sparkassen

lbs.de

67

LBS - Die Bausparkasse der Sparkassen is a well-established financial institution in Germany specializing in building savings contracts, financing, modernization loans, and real estate services. The company is affiliated with the Sparkassen group, positioning it strongly in the German finance and real estate market. Their website offers comprehensive information and tools for customers, including calculators and online contract access, targeting private individuals seeking secure and reliable home financing solutions. Technically, the website is built on modern frameworks such as Next.js and Material-UI, ensuring fast performance, mobile optimization, and good accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although a dedicated security policy or incident response page is not found. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website reflects a professional, trustworthy, and user-friendly digital presence.

B

BW-Bank

meinextend.de

70

The website meinextend.de is a customer service and benefits portal for BW-Bank's extend program, offering travel, ticketing, cashback, and insurance services to its customers. It is positioned as a regional banking service platform with a focus on customer loyalty and value-added services. The site is professionally designed with consistent branding and provides clear navigation and relevant content targeted at German-speaking BW-Bank customers. Technically, the site uses a modern tech stack including jQuery, PrimeNG, and Google Tag Manager, built on an ASP.NET framework with onpublix CMS. The site is mobile optimized and includes accessibility features, though some areas could be improved. Security posture is good with HTTPS enforced, secure login forms, and cookie consent mechanisms, but lacks explicit security policy pages and some HTTP security headers. Privacy compliance is strong with a comprehensive privacy policy and cookie consent. WHOIS data is minimal but consistent with the business branding. Overall, the site is trustworthy and professionally maintained.

L

LOBECO

lobeco.de

44

LOBECO is a well-established digital marketing and communication agency headquartered in Germany with over 130 employees and multiple international offices including Munich, Shanghai, Zurich, and Berlin. The company focuses on leveraging technological and societal changes to optimize client competitiveness through services such as consulting, content creation, performance marketing, sports marketing, digital innovation, and data analytics. The website reflects a mature digital presence with multilingual support and professional branding. Technically, the site is built on WordPress with modern plugins like Elementor and Yoast SEO, hosted on servers associated with kasserver.com. Security posture is solid with HTTPS and cookie consent mechanisms in place, though there is room for improvement in security headers and published policies. Overall, the site is professional, trustworthy, and well-positioned in its market niche.

H

Hochschulföderation SüdWest

hfsw.de

50

Hochschulföderation SüdWest (HfSW) is a collaborative federation of eight universities of applied sciences in Baden-Württemberg, Germany. It focuses on enhancing applied teaching and research quality through joint projects and degree programs in cutting-edge fields such as Electromobility, Autonomous Driving, Hydrogen and Fuel Cell Technology, and Artificial Intelligence. The federation positions itself as one of the largest university federations in Germany, targeting students and academic professionals. Technically, the website is built on Angular 14, hosted on DigitalOcean, and uses Google Tag Manager for analytics. The site is mobile-optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and professional, supporting the federation's educational mission.

H

Hevert-Arzneimittel

hevert.com

64

Hevert-Arzneimittel is a well-established German manufacturer specializing in homeopathic, herbal, and micronutrient pharmaceutical products with over 65 years of experience. The company holds a strong market position as one of the leading producers in its sector, targeting a general audience interested in natural and naturopathic medicines. The website reflects a professional digital presence with good SEO practices, structured data, and active social media engagement. Technically, the site is built on WordPress using Elementor and integrates modern tools such as Google Tag Manager and WP Rocket for performance optimization. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though improvements like DNSSEC and enhanced security headers are recommended. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website demonstrates a mature digital infrastructure supporting the company's business objectives.

Hashimoto vitalis is a German-based small healthcare e-commerce business specializing in dietary supplements aimed at supporting thyroid function, particularly for individuals affected by Hashimoto thyroiditis. The company operates primarily through its website and partners with Löwen Apotheke24 for online pharmacy sales. The website provides educational content, product information, and a streamlined purchasing experience. Technically, the site is built on WordPress with WooCommerce and WPBakery, leveraging modern web technologies and SEO best practices. It includes GDPR-compliant cookie consent mechanisms and uses Google Analytics for traffic analysis. Security posture is solid with HTTPS and secure forms, though it lacks explicit security policies and some HTTP security headers. Overall, the site is professional, trustworthy, and well-optimized for its target audience.

T

Trusted Shops

trustedshops.it

69

Trusted Shops operates a European e-commerce trust platform that certifies online shops, provides buyer protection, and collects verified customer reviews to ensure safe online shopping experiences. The website is professionally designed, mobile-optimized, and uses modern technologies including WordPress, Bootstrap, and Google Tag Manager. Security posture is solid with HTTPS and consent management, though explicit security headers and policies are not clearly published. WHOIS data is missing, which reduces transparency and trustworthiness despite the professional appearance and extensive trust signals on the site. Overall, the site serves a large community of over 45 million consumers and 32,000 shops, positioning itself as a key player in e-commerce trust in Italy and Europe.

X

XO Life GmbH

medikura.com

68

XO Life GmbH operates a sophisticated digital health platform called brite™, designed to connect pharmaceutical and medical product manufacturers with patients and healthcare experts. The platform offers a unique One-Stop-Shop solution for digital product and therapy support, content publishing, real world data insights, and pharmacovigilance services. Positioned as an innovative leader in healthcare technology, XO Life targets pharma companies and patients seeking enhanced treatment support. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to its audience. Technically, the website is built on Webflow CMS and integrates modern analytics tools such as Google Tag Manager and Microsoft Clarity. It demonstrates fast performance, excellent mobile optimization, and good accessibility features. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though the absence of explicit security headers and incident response information suggests room for improvement. The WHOIS data is notably incomplete or unavailable, which raises some concerns about domain registration transparency. However, the website's extensive partner network, certifications, and professional content strongly support its legitimacy. Overall, XO Life presents a credible and trustworthy digital health business with a solid technical foundation and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a formal security policy and incident response contacts, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

QR Code Generator is a technology service provider specializing in QR code creation and URL shortening services. The analyzed page is part of their support/help center, providing guidance on common issues related to QR codes and links. The company targets a general audience including businesses and individuals needing QR code solutions. The website is professionally designed, mobile-optimized, and uses modern web technologies including Zendesk for support, Google Tag Manager for analytics, and OneTrust for cookie consent management. Security posture is strong with HTTPS enforced and privacy compliance evident through clear policies and consent mechanisms. However, explicit security headers and incident response contacts are not present on this page. WHOIS data for the subdomain is unavailable, which is typical, but the main domain is known and legitimate. Overall, the site demonstrates a mature digital presence with good security and privacy practices, suitable for its business model and audience.

R

RMA Gesundheit GmbH

gesund.at

62

Gesund.at is a specialized healthcare portal operated by RMA Gesundheit GmbH, a subsidiary of RegionalMedien Austria. The website provides comprehensive medical knowledge, continuing education courses (DFP and BdA), event calendars, newsletters, and multimedia content targeted at medical professionals in Austria. The portal holds a strong niche position in the Austrian healthcare media market, leveraging its parent company's media expertise and regional reach. Technically, the site employs modern web technologies including Google Tag Manager, OneTrust for cookie consent, and advanced analytics tools such as Piano Analytics and INFOnline Measurement Manager. The site is well-structured, mobile-optimized, and uses structured data to enhance SEO and business transparency. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but could improve by implementing additional security headers and ensuring all forms have robust protections. No critical vulnerabilities or suspicious activities were detected. Overall, Gesund.at presents a professional, trustworthy, and content-rich platform for its target audience.

S

Springer Medizin

springermedizin.at

64

Springer Medizin operates a professional medical information portal primarily targeting healthcare professionals in Austria and German-speaking regions. The website offers scientific medical news, journals, podcasts, and continuing education resources, positioning itself as a trusted source affiliated with the reputable Springer Nature publishing group. The business model focuses on content delivery and professional education within the healthcare sector. Technically, the site employs modern web technologies including responsive design, SVG icons, and asynchronous script loading, hosted likely on Springer Nature's infrastructure. Privacy compliance is partially implemented with a cookie consent mechanism but lacks a clearly accessible privacy policy page and terms of service. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are not published. Overall, the site is professional, trustworthy, and safe for its target audience.

F

FLYERALARM Digital

flyeralarm.digital

69

FLYERALARM Digital is a German-based digital marketing platform specializing in online advertising across over 20 platforms including Facebook, Instagram, Google, and TikTok. The company targets businesses and agencies seeking comprehensive digital marketing solutions, including content creation for various digital channels. The website demonstrates a strong market position as a trusted marketing partner with consistent branding and professional presentation. Technically, the site is built on WordPress with WooCommerce, leveraging modern technologies such as Google Tag Manager and Iubenda for cookie consent, indicating a mature digital infrastructure. Security posture is robust with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies and GDPR-aligned consent mechanisms. Overall, the website is professional, secure, and trustworthy, though it lacks explicit contact information and a dedicated security policy or incident response page. Strategic recommendations include publishing security policies, incident response contacts, and vulnerability disclosure information to enhance trust and compliance further.

D

DNN Software

dnnsoftware.com

63

DNN Software is a technology company specializing in ASP.NET-based content management systems, offering a comprehensive platform that integrates content management, customer relations, marketing, and social engagement. The company positions itself as a leader in the .NET CMS ecosystem with a large community and a broad partner network. Their product suite includes Evoq Content and Evoq Engage, targeting businesses and developers seeking scalable and extensible CMS solutions. The website reflects a mature digital presence with professional design, clear navigation, and extensive resources for customers and partners. Technically, the site leverages a modern tech stack including ASP.NET, jQuery, Google Analytics, Marketo, and Google Tag Manager, ensuring robust marketing and analytics capabilities. The platform is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate, with room for optimization. Security practices include HTTPS enforcement and cookie consent mechanisms, but lack explicit security headers and published security policies. The security posture is solid but could be enhanced by publishing incident response details and vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with a comprehensive privacy policy and cookie consent banner, indicating GDPR awareness. Business credibility is supported by clear company information, testimonials, and a consistent brand presence. Overall, the website is professional, trustworthy, and well-structured, though the absence of WHOIS data for the domain introduces some uncertainty about domain registration legitimacy. Strategic recommendations include improving security header implementation, publishing security policies, and clarifying domain registration details to enhance trust.

A

AIPS - Associazione Installatori Professionali di Sicurezza

aips.it

40

AIPS (Associazione Installatori Professionali di Sicurezza) is a well-established non-profit association founded in 1998, representing companies specialized in the installation and maintenance of security systems in Italy. It serves as a key reference point for professional security system installers, offering membership services, training, events, and industry news. The website reflects a professional and consistent brand presence targeting Italian security professionals and companies. The association maintains partnerships with multiple industry sponsors and provides a member login area and installer search functionality.

F

Fiera Milano S.p.A.

fieramilano.it

11

Fiera Milano S.p.A. is a well-established Italian company specializing in organizing, hosting, and managing international-level events, trade fairs, and congresses since 1920. The company operates a comprehensive business platform that serves exhibitors, visitors, suppliers, and investors, positioning itself as a leading event organizer in Italy with a strong emphasis on promoting Made in Italy sectors. The website reflects a professional and consistent brand image, providing rich content and clear navigation tailored to its diverse audience segments. Technically, the website employs modern web technologies including jQuery, Bootstrap, and advanced cookie consent management via Iubenda, integrated with Google Tag Manager and Google Consent Mode for privacy-aware analytics. The CMS appears to be Adobe Experience Manager, indicating a mature digital infrastructure. The site is mobile-optimized with good performance and basic accessibility features, supporting a positive user experience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. While some security headers are not explicitly detected, the overall posture is solid with no visible vulnerabilities or exposed sensitive data. The presence of a whistleblowing channel and comprehensive legal disclosures further enhance governance and compliance. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations, supporting Fiera Milano's business credibility and market position. Strategic improvements in security headers and incident response transparency could further strengthen the security posture.

M

MiCo DMC S.r.l.

micodmc.it

65

MiCo DMC S.r.l. is a specialized hospitality service provider focused on the MICE sector in Milan, Italy. The company acts as an official agency and organizational secretariat for congresses, exhibitions, and private events, offering tailored, high-quality services including accommodation, train bookings, and unique experiences. The website reflects a professional and consistent brand image aligned with its market position as a leading reference in Milan's event hospitality sector. Technically, the site is built on Adobe Experience Manager with modern JavaScript libraries and frameworks, ensuring good mobile optimization and user experience. Security posture is solid with HTTPS and consent management implemented, though security headers are lacking and could be improved. Privacy compliance is strong with comprehensive policies and consent mechanisms. Overall, the domain registration and WHOIS data align well with the business claims, supporting legitimacy and trustworthiness.

M

Migros Group

migros-engagement.ch

75

The website engagement.migros.ch is a professionally designed platform representing the social engagement arm of the Migros Group, a leading Swiss enterprise. It focuses on promoting and funding cultural, community, health, education, climate, and technology initiatives. The site targets a broad audience interested in social projects and funding opportunities, positioning itself as a trusted non-profit resource under the Migros brand. Technically, the site uses modern JavaScript libraries, Google Analytics, Facebook Pixel, and OneTrust for cookie consent, indicating a mature digital infrastructure likely powered by Adobe Experience Manager. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security policies and vulnerability disclosures are absent. The site shows no signs of adult or unsafe content and is fully accessible without WAF or blocking mechanisms. Overall, the domain registration and website content align well, reflecting high legitimacy and trustworthiness.

V

Verkehrsbetriebe Biel

vb-tpb.ch

61

Verkehrsbetriebe Biel (VB) operates as a regional public transportation provider in Switzerland, primarily serving the Biel area with bus, trolleybus, and cable car services. The website offers comprehensive information on schedules, tickets, and current operational updates, targeting local commuters and residents. The company maintains a consistent brand presence and active social media channels to engage its audience. Technically, the website employs modern JavaScript frameworks such as Vue.js and jQuery, alongside libraries like Axios and Slick Carousel, indicating a contemporary and interactive user experience. The use of Wagtail CMS is evident, supporting content management and digital maturity. Performance and mobile optimization are good, though accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements. However, explicit security headers and incident response policies are not visible, and no vulnerability disclosure or security.txt files are present. Tracking technologies include Google Analytics and Facebook Pixel, with moderate user tracking levels balanced by privacy compliance. Overall, the website is professional, trustworthy, and well-suited for its public transportation business model. Strategic improvements in security headers, incident response transparency, and accessibility would further strengthen its posture and user trust.

R

Rubikon Werbeagentur GmbH

rubikon.at

54

Rubikon Werbeagentur GmbH is a medium-sized full-service advertising and digital agency based in Graz, Austria. The company specializes in branding, digital projects including websites, online shops, and app development, as well as comprehensive digital marketing services such as SEO, performance marketing, and social media management. With a team of over 25 creative professionals and multiple international awards, Rubikon positions itself as a reputable and innovative agency in the regional market. Technically, the website is built on WordPress and leverages modern web technologies including jQuery and Borlabs Cookie for GDPR-compliant cookie management. The site demonstrates good performance, mobile optimization, and accessibility standards. Integration with Google Analytics, Google Tag Manager, and CleverReach indicates a mature digital marketing infrastructure. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. However, there is room for improvement in implementing HTTP security headers and publishing explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website reflects a professional and trustworthy business with strong branding and digital presence. The risk profile is low, with recommendations focusing on enhancing security headers and formalizing security policies to further strengthen the security posture.

R

RegionalMedien Gesundheit

meinmed.at

61

MeinMed.at is a reputable Austrian medical information portal operated by RegionalMedien Gesundheit GmbH, a subsidiary of RegionalMedien Austria. Founded in 2014, the company provides expert-reviewed health content, including articles, symptoms, therapies, and free health lectures and webinars across Austria. The portal targets patients and health-interested individuals, aiming to improve health literacy and empower users to make informed decisions. The website demonstrates a strong market position as a trusted source of medical knowledge in Austria, supported by collaborations with local medical experts and a consistent brand presence across social media platforms. Technically, the site employs modern tracking and consent management tools such as Google Tag Manager, OneTrust, and Piano Analytics, ensuring compliance with GDPR and providing a good user experience with responsive design and accessibility features. Security posture is solid with HTTPS enforcement and security headers, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is professional, trustworthy, and well-optimized for its audience and business goals.

A

Airship Services Ltd

airship.co.uk

66

Airship Services Ltd operates a specialized CRM platform tailored exclusively for the hospitality industry, including restaurants, bars, hotels, and pubs. The company offers a data-driven loyalty CRM solution that centralizes customer data, enables tailored email marketing, and drives customer visit frequency. Their market position is strong within the hospitality sector, supported by a comprehensive suite of services such as marketing automation, segmentation, rewards, and proof of presence technology. The website demonstrates a professional and consistent brand image with clear pricing models and customer testimonials, indicating a mature and customer-focused business model. Technically, the website is built on the Webflow CMS platform, leveraging modern web technologies and integrations including Google Analytics, Facebook Pixel, Hotjar, and Snitcher for analytics and marketing. The site is hosted on Amazon CloudFront CDN, ensuring fast performance and excellent mobile optimization. Accessibility and SEO practices are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS with good SSL configuration and employs cookie consent mechanisms to comply with privacy regulations. However, there is no publicly available security policy or incident response information, and security headers are not explicitly detected. No vulnerabilities or exposed sensitive data were found in the HTML content. The domain registration is consistent and long-standing, supporting the legitimacy of the business. Overall, Airship presents a low-risk profile with a strong business credibility and a well-implemented digital presence. Strategic recommendations include publishing a dedicated security policy, adding incident response contacts, enhancing security headers, and maintaining vigilance on third-party script security to further strengthen their security posture.

D

doinstruct

doinstruct.com

68

Doinstruct is a technology company specializing in AI-powered operational excellence and compliance training solutions for frontline workforces. Their platform automates multilingual training delivery, compliance tracking, and operational efficiency, targeting industries that require consistent and audit-ready workforce training. The website demonstrates a mature digital presence with modern design, mobile optimization, and integration of marketing and analytics tools such as HubSpot and Microsoft Clarity. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is generally good with HTTPS and cookie consent mechanisms, but lacks explicit security headers and published privacy or security policies. Overall, the site is professional and trustworthy in content but would benefit from enhanced transparency and security disclosures.

P

Pipelife Ireland

pipelife.ie

10

Pipelife Ireland is a manufacturing company specializing in plastic pipe systems and fittings, serving the plumbing, construction, and agricultural sectors. With over fifty years of experience, the company positions itself as a quality producer of polyethylene pipes in Ireland. The website reflects a professional and consistent brand presence, leveraging Adobe Experience Manager as its CMS and integrating modern marketing and analytics tools such as Google Tag Manager and Cookiebot for compliance and user tracking. The technical infrastructure appears robust with good mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit security policies could enhance trust. The absence of visible contact information on the homepage is a minor gap in business credibility. Overall, the website is trustworthy and well-maintained, supporting the company's market position as a reputable manufacturer.

E

ESSERBELLA

esserbellaprofumerie.it

53

Esserbella is a well-established Italian e-commerce and retail platform specializing in beauty and cosmetic products. It operates under the Esselunga Group umbrella, which strengthens its market position and trustworthiness. The website offers a broad range of products including perfumes, skincare, make-up, haircare, and accessories, targeting primarily Italian-speaking consumers interested in personal care. The platform supports online sales and product reservations, indicating a hybrid business model combining digital and physical retail experiences. Technically, the website is built on modern frameworks such as Angular and integrates third-party services like PayPal and Google Tag Manager, reflecting a mature digital infrastructure. The site demonstrates good mobile optimization and basic accessibility features, although there is room for improvement in SEO and accessibility compliance. Security-wise, the website enforces HTTPS and avoids exposing sensitive data, but lacks explicit security headers and publicly available incident response policies. Privacy and cookie policies are present and appear GDPR compliant, enhancing user trust. Overall, the website scores well on professionalism, security posture, and business credibility, making it a reliable platform for its target audience.

R

Reisebank AG

reisebank.de

69

Reisebank AG operates as a specialized financial institution in Germany, focusing on currency exchange and precious metals sales both through a large network of physical branches and an online webshop. The company positions itself as a trusted expert for travel money and gold/silver products, targeting travelers and business customers. The website reflects a mature digital presence built on Magento Commerce, integrating modern technologies such as RequireJS, KnockoutJS, and Usercentrics for consent management. Security measures include HTTPS enforcement, captcha on login forms, and cookie consent mechanisms, indicating a solid security posture. However, the absence of a public security policy or incident response contact suggests room for improvement in transparency. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting Reisebank's market position as a reliable financial service provider.

M

Münchener Hypothekenbank eG

muenchenerhyp.de

53

Münchener Hypothekenbank eG is a well-established cooperative bank specializing in long-term real estate financing for private and commercial clients, with a strong emphasis on sustainability and member benefits. The bank operates primarily in Germany with additional presence in Western Europe and the USA. Their website reflects a mature digital presence built on Drupal 10, incorporating modern web technologies and analytics tools such as Matomo and Google Tag Manager. The site is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content including press releases, career opportunities, and investor information. Security posture is solid with HTTPS enforced and cookie consent managed via Cookiebot, though some security headers and explicit security policies could be improved. WHOIS data aligns well with the business claims, indicating a trustworthy and legitimate domain. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations.

V

VR Smart Finanz

vr-smart-finanz.de

58

VR Smart Finanz is a German financial services provider focused on delivering tailored financing solutions and digital services to medium-sized enterprises (Mittelstand). The company positions itself as a cooperative partner, emphasizing simplicity and regional business support. The website reflects a professional and consistent brand image targeting SMEs in Germany. Technically, the site employs modern tools such as Google Tag Manager for analytics and CookieFirst for cookie consent management, hosted likely via Deutsche Telekom infrastructure. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks published privacy policies, terms of service, and explicit security policies, which are important for compliance and trust. No blocking or WAF challenges were detected, allowing full content access for analysis.

D

DZ PRIVATBANK S.A.

dz-privatbank.com

50

DZ PRIVATBANK S.A. is a specialized financial institution focusing on private banking, fund services, and currency loans within the cooperative banking group Volksbanken Raiffeisenbanken. With headquarters in Luxembourg and multiple locations in Germany and Switzerland, it offers tailored wealth management and asset servicing solutions. The website reflects a professional and consistent brand presence, targeting private banking clients, fund initiators, and institutional investors. Technically, the site employs modern tracking and consent management tools, ensuring GDPR compliance and a good user experience across devices. Security posture is strong with HTTPS and no visible vulnerabilities, though some security headers and explicit policies could be improved. However, the domain WHOIS data is missing, raising concerns about domain registration legitimacy that should be further investigated. Overall, the site is trustworthy and professionally maintained, but domain registration inconsistencies reduce the trust score.

D

DZ BANK AG

dzbank.de

64

DZ BANK AG is a major German cooperative central bank serving over 700 cooperative banks in Germany. It offers a broad range of financial services including corporate banking, institutional client services, capital markets, and sustainability consulting. The website is professionally designed, well-structured, and targets financial institutions and corporate clients. Technically, the site uses Adobe Experience Manager CMS, modern JavaScript libraries, and integrates Matomo and Google Tag Manager for analytics with user consent management via Usercentrics. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is robust with clear cookie and privacy policies. Overall, the domain and website present a trustworthy and professional digital presence for DZ BANK AG.

U

Union Investment

union-investment.de

60

Union Investment is a well-established financial services company based in Germany, specializing in investment funds, savings plans, asset structuring, and retirement provision. The website targets private and institutional investors, offering a comprehensive digital presence with modern web technologies and a consistent brand image. The company maintains a strong market position in the German banking and investment sector. Technically, the website employs modern JavaScript frameworks, modular components, and integrates advanced tracking and consent management tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and privacy consent mechanisms, though explicit security headers and incident response information are not evident. Overall, the site demonstrates professionalism, good user experience, and compliance with privacy standards, though improvements in explicit policy disclosures and security documentation are recommended.

S

Società editoriale Il Portico Spa

emi.it

53

EMI - Editrice Missionaria Italiana is a well-established Italian publishing company specializing in books, cultural events, and educational materials with a mission-oriented focus. The company operates under Società editoriale Il Portico Spa and has a strong market presence in Italy, targeting a general audience interested in literature and cultural content. The website reflects a professional and consistent brand image, offering a variety of services including book sales, event promotion, and newsletter subscriptions. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and Swiper.js, with good mobile optimization and SEO practices. Security-wise, the site uses HTTPS with DNSSEC enabled and implements cookie consent via Iubenda, though it lacks explicit security headers and a published security policy. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information and social media integration.

Y

Young European Greens

fyeg.org

63

Young European Greens is a European non-profit youth political organization focused on green and progressive activism. The organization operates a well-structured website hosted on Squarespace, providing information about its campaigns, events, and member organizations. The technical infrastructure is modern and leverages standard web technologies and third-party services such as Google Tag Manager and social media integrations. Security posture is solid with HTTPS and HSTS enabled, though DNSSEC is not implemented. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. No contact emails or phone numbers are explicitly provided on the site, which may impact user trust and compliance. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

E

Earth4All

earth4all.life

66

Earth4All is a non-profit advocacy and research initiative focused on transforming economic systems to prioritize wellbeing and planetary stability. The organization leverages scientific research, cultural engagement, and policy advocacy to promote sustainable development globally. The website is built on WordPress with modern tools like Elementor and integrates Google Analytics and CookieYes for tracking and compliance. Security posture is good with HTTPS and bot protection, though explicit security policies and privacy documentation are lacking. The domain WHOIS data is privacy protected, which is common for such organizations but limits transparency. Overall, the site presents a professional and trustworthy front with room for improvement in privacy and security disclosures.

U

Ultima Generazione

ultima-generazione.com

54

Ultima Generazione is a non-profit climate activism organization founded in 2021 in Italy, focused on nonviolent civil resistance against climate and social crises. The website serves as a platform for campaigns such as supermarket boycotts, events, and donations, targeting environmentally and socially conscious Italian citizens. Technically, the site is built on WordPress using the Divi theme, integrating analytics tools like Matomo, Google Tag Manager, and Hotjar, and hosted by Infomaniak Network SA. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with clear cookie and privacy policies and consent mechanisms. Overall, the website is professional, content-rich, and trustworthy, supporting the organization's mission effectively.

C

Centro Internazionale Crocevia

croceviaterra.it

46

Centro Internazionale Crocevia is a well-established Italian non-profit organization founded in 1958, dedicated to advocating for agroecology, food sovereignty, and human rights globally and nationally. The website serves as a platform to support movements, disseminate information, and organize campaigns and projects related to sustainable agriculture and social justice. The organization maintains a consistent brand presence and leverages modern web technologies to engage its audience effectively. Technically, the website is built on WordPress with Elementor and Yoast SEO, ensuring good SEO optimization and mobile responsiveness. The use of Google Tag Manager and CookieYes indicates a moderate level of analytics and privacy compliance. Security measures such as HTTPS and security headers are properly implemented, contributing to a strong security posture. While the site lacks explicit security and incident response policies, it demonstrates good privacy compliance with GDPR-aligned policies and cookie consent mechanisms. Contact is primarily through web forms, with no direct emails or phone numbers publicly listed. Overall, the site is professional, trustworthy, and safe for general audiences. Recommendations include enhancing accessibility, adding explicit security and incident response documentation, and implementing a vulnerability disclosure policy to further strengthen security and trust.

C

Club of Rome

clubofrome.org

55

The Club of Rome is a well-established non-profit organization dedicated to addressing global systemic challenges such as climate emergency, economic reform, and youth leadership. The website serves as a platform for disseminating research, policy briefs, and hosting events, targeting policymakers, academics, and activists. Technically, the site is built on WordPress with a modern tech stack including Divi theme, Bootstrap, and various plugins for events and social sharing. The site is moderately performant, mobile-optimized, and SEO-friendly. Security posture is solid with HTTPS, hCaptcha integration, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site projects high professionalism and trustworthiness, though WHOIS data is privacy protected, which is typical for non-profits.

W

Wellbeing Economy Alliance

weall.org

53

Wellbeing Economy Alliance (WEAll) is a UK-registered non-profit organization established in 2011, focused on transforming the economic system towards a wellbeing economy that prioritizes people and planet. The website serves as a hub for changemakers, governments, businesses, and organizations to collaborate, access resources, and participate in advocacy and education efforts. WEAll maintains a strong market position with over 500 member organizations and multiple national governments involved. Technically, the website is built on WordPress with modern JavaScript frameworks and libraries, offering a good user experience with mobile optimization and moderate performance. Security practices include HTTPS, GDPR-compliant cookie consent, and use of reCAPTCHA, though improvements such as DNSSEC and security headers are recommended. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though it lacks explicit terms of service and direct contact emails or phone numbers.

P

Partners For A New Economy

p4ne.org

54

Partners For A New Economy (P4NE) is a small, international philanthropic fund focused on redesigning economic systems to better serve people and nature. Founded in 2015 and hosted by the Swiss Philanthropy Foundation, P4NE collaborates with multiple funding partners to support systemic change initiatives primarily in Europe. The website reflects a professional and consistent brand presence, providing clear information about their mission, grant-making activities, and field-building efforts. Technically, the site is built on WordPress with modern plugins and analytics tools, hosted by Infomaniak, and optimized for mobile and SEO. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is strong with comprehensive policies and GDPR-aligned consent. Overall, the domain registration and hosting details align well with the organization's claims, supporting legitimacy and trustworthiness.

W

Wirhelfen.shop

wirhelfen.shop

71

Wirhelfen.shop is a charitable e-commerce platform affiliated with Caritas, focused on enabling easy, fast, and impactful donations alongside sustainable product sales. The website targets a general audience interested in social aid and sustainability, operating primarily in Austria. The platform leverages Magento 2 technology and integrates multiple marketing and analytics tools such as Google Tag Manager, Klaviyo, and New Relic for performance monitoring. The domain registration data aligns well with the business profile, indicating legitimacy and consistent geographic focus. Security posture is adequate with HTTPS enforced and domain transfer protections, though improvements are recommended in security headers and explicit policy disclosures. Privacy compliance is basic with a cookie consent mechanism but lacks a clearly accessible privacy policy. Overall, the website presents a professional and trustworthy front for its non-profit mission.

K

Kadans Science Partner

kadans.com

69

Kadans is a European company specializing in creating tailored laboratory and office spaces within over 30 science clusters across Europe, supporting more than 400 clients primarily in key research sectors such as healthcare and technology. The company positions itself as a leading science partner, providing specialized real estate solutions to research institutions and companies. The website reflects a professional and consistent brand image with a focus on its business offerings and market presence. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates several analytics and marketing tools such as Hotjar, Google Tag Manager, and Visual Website Optimizer, indicating a mature digital infrastructure. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. The WHOIS data is incomplete, showing no registration details, which raises some concerns about domain legitimacy. Overall, the website is professional and trustworthy in content and design but would benefit from enhanced transparency in privacy, security policies, and domain registration information.

B

BioCampus Cologne & RTZ Köln

biocampuscologne.de

60

BioCampus Cologne & RTZ Köln operate as high-tech innovation hubs in Cologne, Germany, providing infrastructure and community support for startups, scaleups, and corporates in deep technology, high technology, and STEM fields. The website presents a professional and well-structured digital presence, highlighting over 70 knowledge-based companies, available office and lab spaces, and active community events. The technical infrastructure is modern, leveraging Webflow CMS, Google Tag Manager, and reCAPTCHA for security and analytics. Security posture is solid with HTTPS and form protections, though improvements in security headers and explicit incident response policies are recommended. Overall, the website reflects a credible and active business ecosystem with moderate to high digital maturity.

M

markt.de GmbH & Co. KG

markt.ch

64

Markt.de GmbH & Co. KG operates a well-established online classifieds platform targeting private and commercial users in Germany. Founded in 2005 and part of the Markt Gruppe, the company offers a broad range of classified ad categories including vehicles, real estate, jobs, services, pets, and electronics. The platform supports free and paid ads, serving millions of listings with a focus on ease of use and comprehensive search capabilities. The website is professionally designed with consistent branding and good content quality, targeting a general audience without adult content exposure on the main domain.

I

Information Solutions Limited

theweborchard.com

60

The Web Orchard is a creative web design and digital marketing agency based in Shrewsbury, Shropshire, operating under Information Solutions Limited. The company offers a comprehensive suite of services including bespoke web design, WordPress development, e-commerce solutions, SEO, PPC, content marketing, and hosting support. Positioned as a leading agency in the Shropshire region, it serves a diverse clientele including businesses, public sector organizations, and charities. The website reflects a professional and consistent brand image with strong client testimonials and certifications such as Cyber Essentials, reinforcing its market credibility. Technically, the website is built on WordPress with modern technologies including WPBakery Page Builder, jQuery, and integrates multiple analytics and marketing tools such as Google Analytics, Google Tag Manager, and Microsoft Clarity. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in implementing security headers and publishing explicit security policies. From a security and compliance perspective, the site demonstrates good privacy compliance with a comprehensive privacy policy and cookie consent banner. However, no explicit incident response or vulnerability disclosure information is publicly available. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trustworthiness, though the professional presentation and business information mitigate concerns. Overall, the site presents a low-risk profile with recommendations to enhance security headers and transparency. Strategically, the company should focus on improving its public security posture by publishing incident response details and security policies, and consider registering or updating WHOIS information to enhance domain legitimacy. Continued investment in technical modernization and accessibility will support sustained growth and client trust.

D

DigitalGenius

digitalgenius.com

64

DigitalGenius is an AI-powered customer service automation platform tailored for ecommerce businesses. The company positions itself as a specialized AI agent that handles pre- and post-purchase customer inquiries, aiming to transform customer experience in the ecommerce sector. The website presents a professional design built on the Framer CMS platform and integrates modern marketing and analytics tools such as HubSpot, TikTok Pixel, and Google Analytics. However, the site lacks visible privacy, cookie, and terms of service policies, as well as explicit contact information, which impacts its compliance and trustworthiness. The domain WHOIS data is unavailable, raising questions about the domain's registration status and legitimacy.

M

MSV GmbH

recyclingportal.eu

39

Recyclingportal.eu is a professional German-language media portal specializing in news, market data, and resources related to waste management, recycling, and the circular economy. Operated by MSV GmbH, the site targets industry professionals and stakeholders, providing timely updates, event information, and advertising opportunities. The platform maintains a consistent brand presence and leverages social media channels to extend its reach. Technically, the website is built on WordPress 6.8.3, utilizing modern libraries such as jQuery and FontAwesome, and integrates Google Analytics and Tag Manager for user tracking. The site is mobile-optimized with a moderate performance profile and good SEO practices. However, some accessibility features and security headers are lacking. From a security perspective, the site enforces HTTPS and uses secure login forms but lacks comprehensive security headers like CSP and X-Frame-Options. There is no visible security policy or incident response contact, and cookie consent mechanisms are absent, which may impact GDPR compliance. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, recyclingportal.eu presents a trustworthy and professional online presence with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.