Security Directory

O

osnatel

osnatel.de

65

osnatel is a regional telecommunications and energy service provider in Germany, offering internet (DSL and fiber), mobile tariffs with devices, and energy solutions under the umbrella of its parent company EWE. The website targets both private and business customers with a clear, professional presentation of services and easy navigation. Technically, the site uses modern JavaScript frameworks, a consent management platform for GDPR compliance, and integrates analytics tools such as Matomo and Google Analytics. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates a mature digital presence with good privacy and security practices, supporting a trustworthy user experience.

F

FRCI

frci.net

66

FRCI is a Mauritius-based IT consultancy specializing in Microsoft technologies, digital transformation, and training services. The company positions itself as a trusted partner enabling business success through people and technology, serving clients across multiple continents. Their key offerings include Microsoft licensing, project delivery, change management, technical support, business and digital solutions, and comprehensive IT training programs. The website reflects a professional and modern digital presence with clear navigation and relevant content targeting business clients seeking IT expertise. Technically, the website is built on the Umbraco CMS platform and leverages modern JavaScript libraries such as Swiper.js, Fancybox, GSAP, and jQuery. It uses Google Fonts and integrates Google Analytics for visitor tracking. The site is mobile-optimized with good design quality and user experience, though accessibility features are basic. The presence of a privacy policy is noted, but cookie consent mechanisms and detailed security policies are lacking. From a security perspective, the site uses HTTPS and employs email obfuscation to protect contact information. However, no explicit security headers were detected in the HTML content, and there is no published incident response or vulnerability disclosure information. The WHOIS data for the domain is missing or indicates the domain may be unregistered or expired, which raises concerns about domain legitimacy despite the professional website content. Overall, the website demonstrates a solid business and technical foundation but requires improvements in security posture, privacy compliance, and domain registration transparency to enhance trust and reduce risk.

M

Milva Stutz

milvastutz.ch

49

Milva Stutz is a visual artist based in Zurich, Switzerland, showcasing her portfolio of animated videos, drawings, and sculptures through a professionally designed WordPress website. The site targets art enthusiasts and potential collaborators in the niche visual arts market. The technical infrastructure is modern, leveraging WordPress with Yoast SEO and Swiper.js for interactive content, providing a good user experience with mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal policies. Privacy compliance is minimal, with no visible privacy or cookie policies, which could be improved to meet GDPR standards. Overall, the website is trustworthy and professional but would benefit from enhanced security and compliance documentation.

S

Sharp Consumer UK

sharpconsumer.uk

53

Sharp Consumer UK operates a professional and well-branded website focused on consumer electronics including TVs, audio equipment, and mobility products such as e-scooters. The site highlights award-winning products and provides a rich user experience with modern technologies and good mobile optimization. However, the domain WHOIS data is unavailable due to a naming rules violation error, which raises questions about the domain registration legitimacy. The website lacks explicit privacy policy, terms of service, and contact information pages, which are important for compliance and trust. Security posture is generally good with HTTPS and no exposed sensitive data, but missing security headers and incident response information are areas for improvement.

W

Wirtschaftskammer Oberösterreich

wkooe.at

10

Wirtschaftskammer Oberösterreich (WKOÖ) is the regional chamber of commerce for Upper Austria, providing a wide range of services, information, and consulting to entrepreneurs and business owners in the region. The website serves as an official portal offering news, events, legal and financial guidance, and access to various business support services. It is part of the larger Austrian WKO network, positioning itself as a key regional business support entity. Technically, the website is built on a modern stack with responsive design, accessibility considerations, and uses a CMS likely based on Gentics. It integrates Google Tag Manager and a custom chatbot for enhanced user interaction. The site is well-optimized for SEO and mobile devices, with good performance and structured navigation. From a security perspective, the site enforces HTTPS and includes some security headers, though it lacks explicit published security policies, vulnerability disclosure, or incident response contacts. Privacy compliance is partially implemented with cookie consent mechanisms but lacks a clearly accessible privacy policy page. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website is professional, trustworthy, and serves its business audience well, but could improve transparency and compliance by publishing detailed privacy, terms, and security-related documents.

S

Sharp

sharp.at

66

Sharp is a globally recognized technology manufacturer with a strong presence in Austria and Europe, offering a broad portfolio of business and consumer technology products including multifunction printers, displays, and home electronics. The company targets SMEs, large enterprises, and organizations, positioning itself as a provider of innovative solutions for the future workplace and modern living. The website reflects a mature digital presence with professional design and structured content, supporting both business and consumer audiences. Technically, the site is built on Drupal CMS, employs modern JavaScript libraries, and integrates Google Tag Manager and consent management tools, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though explicit security headers and policies are not evident. Privacy compliance is partial, with cookie consent mechanisms present but no explicit privacy or terms of service pages found in the provided content. Overall, the site demonstrates high business credibility and trustworthiness, supported by consistent WHOIS data and legitimate domain registration.

RainPharma is a small Finnish company specializing in natural health and wellness products, including supplements, skin care, and aromatherapy. The website is built on the Shopify platform and employs modern JavaScript libraries and marketing tools such as Visual Website Optimizer and Cookiebot for consent management. The domain is well-established since 2009, consistent with the company's founding year, and is registered with Cloudflare, indicating stable hosting and DNS management. Security posture is adequate with HTTPS enabled and clientTransferProhibited domain status, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Contact information is not readily found on the analyzed page, which may impact user trust. Overall, the website presents a professional and consistent brand image focused on natural wellness products.

К

Кандидат

cndt.uz

24

The website 'Кандидат' offers an HR automation platform focused on recruitment process optimization, primarily targeting HR professionals and companies in Uzbekistan. It provides features such as vacancy management, resume processing, interview scheduling, and analytics, supported by a Telegram bot for candidates. The business operates on a subscription model with clear pricing tiers and emphasizes ease of use and automation benefits. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Swiper.js, with analytics via Yandex Metrika. The site is mobile-optimized and well-structured, though it lacks explicit privacy and cookie policies. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the domain registration aligns well with the business claims, indicating legitimacy. The site is safe for general audiences with no adult or questionable content.

C

Commsor

commsor.com

50

Commsor is a B2B SaaS company specializing in activating warm introductions and referrals through a company's network to accelerate sales pipelines. The website presents a professional and consistent brand image with clear messaging targeting businesses seeking to improve their sales conversion rates by leveraging existing networks. Technically, the site is built on Webflow CMS and integrates modern analytics and cookie consent tools, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published privacy or terms policies. The absence of WHOIS data raises concerns about domain registration legitimacy, though the website content and design suggest a legitimate business. Overall, the site is functional and trustworthy but would benefit from enhanced transparency and security documentation.

W

WT Wien Ticket GmbH

wien-ticket.at

67

WT Wien Ticket GmbH operates a comprehensive online ticketing platform focused on cultural and entertainment events in Vienna, including concerts, musicals, theater, sports, and exhibitions. The company holds a strong market position as a leading ticket provider in the region, supported by a professional and user-friendly website. The platform targets a broad audience interested in Vienna's vibrant event scene, offering a seamless ticket purchasing experience. Technically, the website employs modern JavaScript libraries such as jQuery and Swiper.js, integrates multiple analytics and advertising tools, and demonstrates good mobile optimization and accessibility features. Security-wise, the site enforces HTTPS, uses session and authentication cookies securely, and implements a robust cookie consent mechanism, although some security headers could be improved. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements, with clear business information consistent with WHOIS data.

F

Fondazione Pirelli

fondazionepirelli.org

66

Fondazione Pirelli is a well-established non-profit cultural foundation based in Italy, dedicated to preserving and promoting the corporate cultural heritage of Pirelli since 2008. The website serves a broad audience including the general public, educational institutions, and researchers by offering archival access, educational programs, exhibitions, and events. The foundation maintains a strong market position within the cultural and educational sectors, leveraging its historical ties to the Pirelli brand. Technically, the site is built on WordPress with modern JavaScript libraries and SEO optimizations, providing a good user experience and mobile responsiveness. Security measures include HTTPS, Google reCAPTCHA on forms, and cookie consent mechanisms, although some security headers could be improved. Privacy compliance is robust with clear policies and GDPR adherence. Overall, the site is professional, trustworthy, and safe for general audiences.

V

VHE Industrial automation

vhe.nl

61

VHE Industrial automation is a specialized B2B partner focused on co-development and production of high-tech machine control, connectivity, and motion control systems. The company targets Original Equipment Manufacturers in advanced technology sectors, providing integrated hardware and software solutions to accelerate innovation and time-to-market. The website reflects a mature digital presence with professional design, comprehensive content, and strong branding consistency. Technically, the site is built on WordPress with modern tools like Yoast SEO, Google Tag Manager, and Google Consent Mode, ensuring good SEO and privacy compliance. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent, though explicit security policies and headers could be improved. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy business entity.

D

Dogguo.com

dogguo.com

68

Dogguo.com is a small e-commerce business specializing in stylish and unique dog accessories including collars, leashes, dog beds, and lifestyle products. Founded in 2021 and operating primarily in the Netherlands, the company targets dog owners seeking fashionable and expressive pet products. The website is built on the Shopify platform, leveraging modern web technologies such as Alpine.js, Swiper.js, Klaviyo for marketing, and Google Analytics for data insights. The site is well-optimized for mobile and desktop users, with clear navigation and professional design. Security posture is strong with HTTPS enforced, use of hCaptcha for form protection, and cookie consent mechanisms in place. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

G

GPTCA AG

gptcatennis.org

58

The Global Professional Tennis Coach Association (GPTCA) is a Switzerland-based organization founded in 2012, dedicated to educating and supporting professional tennis coaches aiming to work at ATP Tour and women's pro tennis levels. The website serves as a global hub offering membership, educational courses, events, and resources tailored to tennis coaching professionals. It maintains partnerships with recognized entities such as ATP, ITIA, and Golden Set Analytics, enhancing its credibility and market position. Technically, the website employs a modern tech stack including Google Analytics, Google Tag Manager, Alpine.js, Swiper.js, and AOS for animations, hosted likely on home.pl infrastructure. The site is mobile-optimized with good SEO practices and a consistent branding approach. However, some accessibility features are basic, and performance is moderate. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers. There are no privacy or cookie policies published, representing compliance gaps. No incident response or vulnerability disclosure information is provided. The domain WHOIS data is consistent and legitimate, supporting trustworthiness. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security headers, and incident response transparency to improve its security posture and regulatory adherence.

ATP Media is the centralized broadcast production and media rights sales arm of the ATP Tour, specializing in the global distribution and production of men's professional tennis content. The company holds a strong market position as the exclusive provider of broadcast production for ATP Tour events, offering comprehensive services including multi-platform production, worldwide delivery, social media content, and a media portal. The website reflects a mature, professional organization with consistent branding and clear communication of services and partnerships. Technically, the site is built on WordPress with modern plugins and technologies such as Google reCAPTCHA and Google Tag Manager, ensuring good SEO and user experience. Security posture is solid with HTTPS and form protections, though some security headers and policies could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, ATP Media presents a trustworthy and professional digital presence aligned with its business objectives.

M

Manifest

manifest.com

58

Manifest is a marketing and brand performance company focused on accelerating consumer journeys and delivering measurable impact bridging brand and performance. The website is built on WordPress using Elementor and integrates multiple marketing and analytics tools such as Google Analytics, Facebook Pixel, Hotjar, and Crazy Egg. The technical infrastructure is modern and hosted on AWS, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain locks in place, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Business credibility is supported by professional content and a long-established domain. Overall, the website is functional and professional but would benefit from enhanced privacy and security disclosures.

R

Rent.Group

rent.group

48

Rent.Group is a large European company specializing in the rental and facilitation of temporary ownership and circular use of furniture and equipment for events, trade fairs, and offices. They position themselves as a leader in the circular and sharing economy with a strong network of 30 locations and over 6 million items. Their website is professionally designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries and frameworks such as Bootstrap, jQuery, and GSAP, and integrates analytics and tracking tools like Microsoft Clarity and Metricool. Security-wise, the site enforces HTTPS, uses Google reCAPTCHA on forms, and implements cookie consent mechanisms, though it lacks explicit security policies and some security headers. Overall, the site is trustworthy and well-maintained with no signs of blocking or WAF interference.

B

BILLURCOM

billur.com

54

BILLURCOM is a technology service provider based in Uzbekistan specializing in hosting, VPS, dedicated servers, domain registration, and SSL certificates. The company targets businesses and individuals within Uzbekistan, offering a range of IT infrastructure services supported by local data centers. The website is professionally designed, mobile-optimized, and provides clear service descriptions and contact information, positioning BILLURCOM as a reputable player in the local hosting market. Technically, the site uses modern front-end libraries and custom backend solutions, likely including WHMCS for billing and support. Security posture is strong with HTTPS and input validation, though some security headers and policies are missing. The absence of WHOIS data for the domain is a notable concern, suggesting either a recent registration or privacy protection, which impacts trust. Overall, the site is functional and professional but would benefit from enhanced transparency and security disclosures.

S

Stiftung ZQP

pflege-cirs.de

59

Pflege-CIRS is a specialized non-profit platform operated by Stiftung ZQP, focused on providing an anonymous reporting and learning system for critical incidents in professional long-term elderly care. The website serves healthcare professionals and educators by offering anonymized incident reports, expert recommendations, and educational materials to improve care quality and safety. The platform holds a niche position in the German healthcare quality assurance sector, emphasizing constructive learning and risk awareness. Technically, the website is built on WordPress with modern plugins such as Yoast SEO Premium and Borlabs Cookie for consent management. It demonstrates good digital maturity with structured data, responsive design, and SEO optimization. Performance is moderate, with good accessibility and mobile optimization. The site uses HTTPS exclusively, ensuring secure communication. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent. Business credibility is supported by clear contact information, professional content, and trust signals such as social media presence and affiliation with a recognized foundation. Overall, Pflege-CIRS presents a trustworthy, professional, and secure online presence suitable for its healthcare audience, with room for improvement in publishing dedicated security and incident response policies.

D

Dr. Neidlinger Holding GmbH

neidlinger-holding.com

47

Dr. Neidlinger Holding GmbH operates as a holding company specializing in manufacturing and chemical sectors, offering consulting and management services to its subsidiaries such as Wevo-Chemie and Zelu-Chemie. The company emphasizes tradition and innovation, targeting business clients and partners primarily in Germany and internationally through trade shows. The website reflects a medium-sized enterprise with a professional digital presence built on WordPress and Elementor, optimized for desktop and mobile users with good SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and cookie consent mechanisms are recommended. The absence of WHOIS data raises some concerns about domain registration legitimacy, warranting further verification. Overall, the website is trustworthy and professional, supporting the company's business credibility.

H

HOFER GRÜNSTROM

xn--hofer-grnstrom-nsb.at

70

HOFER GRÜNSTROM is an Austrian green electricity provider focused on offering 100% Austrian eco-friendly power with an emphasis on sustainability, transparency, and customer savings. The website positions the company as a medium-sized energy retailer targeting environmentally conscious consumers in Austria. The digital infrastructure employs a modern technology stack including jQuery, React, Adobe DTM, and Piwik PRO analytics, hosted on a secure HTTPS platform with good mobile optimization and accessibility features. The integration of an advanced accessibility tool demonstrates a commitment to inclusive user experience. Security posture is solid with HTTPS and no visible vulnerabilities, though the absence of explicit security policies and contact information for incident response is noted. Privacy compliance is limited due to missing visible privacy and cookie policies. Overall, the website is professional and trustworthy but could improve transparency and compliance documentation.

O

One’

one-event.ch

51

One’ is a non-profit Christian event organizer based in Switzerland, focusing on uniting the Christian community in the French-speaking region through a large annual event. The website provides detailed information about the event scheduled for November 15, 2025, including speakers, program, ticketing, and partner organizations. The technical infrastructure is built on WordPress with Elementor and uses reputable third-party services for ticketing and analytics. Security posture is good with HTTPS and security headers, but lacks published privacy and cookie policies, which impacts compliance. Overall, the site is professional and trustworthy but should improve privacy compliance and incident response transparency.

R

Roland Schmid Group

rsgroup.at

57

The Roland Schmid Group website presents a professional corporate presence focused on digitalization and innovation, led by owner Roland Schmid. The business appears to operate as an investment and holding entity with services including investments, sponsoring, and press relations. The website targets a German-speaking Austrian audience and maintains consistent branding and good content quality. Technically, the site is built on WordPress using the Avada theme and Fusion Builder, incorporating modern web technologies and SEO best practices. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit security policies or incident response contacts are published. Overall, the site is trustworthy and compliant with GDPR cookie requirements but could improve transparency on security and contact details.

A

AMS Technologies AG

amstechnologies.com

45

AMS Technologies AG is a well-established European technology company specializing in optical technologies, thermal management, and electronics solutions. With over 40 years of industry expertise and a broad customer base across high-tech sectors, the company positions itself as a trusted advisor and one-stop-shop for advanced technology solutions. Their website reflects a professional and modern digital presence, leveraging WordPress CMS and contemporary web technologies such as Swiper.js and Google Analytics for user engagement and performance tracking. Security posture is adequate with HTTPS enabled and domain transfer protection, though improvements such as enabling DNSSEC and implementing security headers are recommended. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but lacks a visible cookie consent mechanism. Overall, the website is accessible, content-rich, and trustworthy, supporting AMS Technologies' market position and business credibility.

A

AMS Technologies AG

ams.de

45

AMS Technologies AG is a well-established European technology company specializing in optical technologies, thermal management, and electronics solutions. With over 40 years of industry expertise and a broad customer base across high-tech sectors, the company positions itself as a trusted advisor and one-stop-shop for custom solutions and expert consulting. Their website reflects a professional and consistent brand image targeting high-tech companies and research institutions. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics for user tracking. The site is mobile-optimized and offers a multi-step contact form for detailed customer inquiries. Security-wise, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers. Privacy compliance is partially addressed with a privacy policy and terms of service available on the shop subdomain, though no cookie consent mechanism is evident. Overall, the website demonstrates a solid business credibility and technical foundation with room for security and privacy improvements.

W

Westfälischer Turnerbund e.V.

nrw-landesturnfest.de

45

The website www.nrw-landesturnfest.de serves as the official online presence for the 5th NRW Landesturnfest 2026, a major gymnastics and sports event organized by the Westfälischer Turnerbund e.V. The site provides comprehensive event information, registration details, volunteer opportunities, and program highlights targeting sports enthusiasts and participants in the NRW region of Germany. The business model focuses on event organization and community engagement within the sports sector, positioning itself as a key regional event organizer. Technically, the website is built on the TYPO3 CMS platform, leveraging modern frontend technologies such as Alpine.js and Swiper.js for interactive elements. The site is mobile-optimized, well-structured, and employs a reputable cookie consent manager (CCM19) to ensure compliance with privacy regulations. Hosting appears to be managed via German-based nameservers, supporting regional data sovereignty. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with a clear privacy policy and cookie consent, though terms of service and vulnerability disclosure mechanisms are absent. Overall, the website demonstrates a good level of professionalism, technical maturity, and compliance suitable for its purpose. Recommendations include enhancing security headers, publishing security and incident response policies, and adding terms of service to improve trust and compliance further.

H

Hyundai Import Gesellschaft m.b.H.

hyundai.at

67

Hyundai Import Gesellschaft m.b.H. operates as the official importer and distributor of Hyundai vehicles in Austria, offering a broad range of automotive products including electric vehicles, hybrids, and traditional combustion engine models. The company targets individual consumers, business clients, and entrepreneurs, providing services such as vehicle sales, leasing, test drives, and after-sales support through a network of partners. The website reflects a strong market position with comprehensive product information and customer engagement features such as newsletter subscriptions and social media integration. Technically, the website is built on a modern stack including jQuery, Piwik PRO analytics, and Umbraco CMS, with media assets hosted on Azure CDN. The site demonstrates good performance, mobile optimization, and accessibility. SEO practices are well implemented with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS, uses security best practices in form handling, and avoids exposing sensitive data. However, it lacks a visible cookie consent mechanism and explicit security or incident response policies. Privacy compliance is supported by a comprehensive privacy policy with GDPR consent in the newsletter form. Overall, the website is professional, trustworthy, and secure with minor gaps in privacy consent and security transparency. Strategic improvements in cookie consent and security disclosures would enhance compliance and user trust.

Ö

Österreichischer Fußball-Bund

fussballoesterreich.at

58

The Österreichischer Fußball-Bund (Austrian Football Association) operates a comprehensive and authoritative website providing extensive data, news, and information about Austrian football leagues and competitions. The site serves a broad audience including football fans, clubs, players, and officials, positioning itself as the leading national football federation platform in Austria. The website features rich content, official branding, and strong partner relationships, reflecting its market leadership and credibility. Technically, the website employs a modern and robust technology stack including jQuery, Moment.js, JSViews, and various UI libraries, supported by a custom CMS framework. It demonstrates good performance, mobile optimization, and accessibility, ensuring a positive user experience. The site is well-structured with clear navigation and SEO best practices. From a security perspective, the site enforces HTTPS, implements key security headers, and maintains privacy compliance with GDPR through clear privacy and cookie policies and consent mechanisms. No critical vulnerabilities or security issues were detected. However, the site could enhance its security posture by publishing a dedicated security policy and incident response contacts. Overall, the website is a trustworthy, professional, and secure platform that effectively supports the Austrian Football Association's mission and services.

G

GEDLICH Racing

gt3-all-stars.com

44

Winter Series by GEDLICH Racing is a specialized motorsport event organizer focusing on winter racing series across Europe, primarily in Portugal and Spain. The company offers multiple racing series including GT Winter Series, GT4 Winter Series, Prototype Winter Series, PTWS Sports Prototypes, Formula Winter Series, and the 6h of Portimão endurance race. Their target audience includes professional and amateur racing drivers, motorsport teams, and fans. The business is relatively new, founded in 2023, and positions itself as a niche leader in European winter motorsport racing. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and Swiper.js for UI components. SEO is enhanced using the Yoast SEO plugin, and the site is hosted by IONOS SE. Performance is moderate with good mobile optimization and basic accessibility features. The website is well-structured with comprehensive content and clear navigation. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protection enabled. However, it lacks DNSSEC and explicit security headers, which are recommended for enhanced security. No cookie consent mechanism was detected, which may affect GDPR compliance. No incident response or security policy information is published. Overall, the website is professional, trustworthy, and well-aligned with the business goals. Strategic improvements include implementing DNSSEC, adding security headers, and introducing a cookie consent mechanism to improve privacy compliance and security posture.

G

GEDLICH Racing

formula-winter-series.com

45

GEDLICH Racing operates the Formula Winter Series, a winter motorsport racing series focused on junior single seater drivers competing in Tatuus F4 cars. The series is positioned as a premier winter racing event in Southern Europe, targeting aspiring young drivers and motorsport enthusiasts. The website provides comprehensive event calendars, registration information, media coverage, and partner details, reflecting a professional and growing motorsport brand. Technically, the website is built on WordPress using a modern theme and includes popular libraries such as jQuery and Swiper.js. Hosting is provided by IONOS SE, a reputable provider. The site is mobile optimized and SEO friendly, with structured data and Open Graph tags enhancing search engine visibility and social media sharing. From a security perspective, the site uses HTTPS and has domain transfer protections in place. However, it lacks DNSSEC and some security headers, and does not provide explicit security policies or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is trustworthy and professional with a solid business foundation. Strategic improvements in security hardening and privacy compliance would enhance its posture and user trust.

G

GEDLICH Racing

prototype-winter-series.com

44

GEDLICH Racing operates the Prototype Winter Series, a specialized motorsport championship focused on LMP3 prototype race cars competing on premier Southern European tracks during the winter months. The series is officially approved by the ACO, positioning it as a reputable and recognized event in the motorsport community. The website reflects a professional and well-branded presence, targeting racing teams, drivers, and enthusiasts with detailed event calendars, registration options, and media coverage. Technically, the site is built on WordPress with modern JavaScript libraries and SEO optimizations, delivering a good user experience across devices. Security posture is adequate with HTTPS and domain transfer protections, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is partially addressed with a privacy policy but lacks cookie consent mechanisms. Overall, the site demonstrates a strong business credibility and digital maturity suitable for its niche audience.

G

GEDLICH Racing

gt4-winter-series.com

44

GEDLICH Racing operates the GT4 Winter Series, a specialized motorsport racing series held in Southern Europe during winter months. The website presents a professional and well-structured platform for event information, registration, media, and partner engagement. The business targets motorsport teams, drivers, and enthusiasts, positioning itself as a premier winter racing series with SRO licensing and strong industry partnerships. Technically, the site is built on WordPress with modern libraries like jQuery and Swiper.js, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not implement cookie consent mechanisms, indicating room for compliance improvements. Overall, the domain registration is transparent and consistent with the business timeline, supporting legitimacy. Strategic recommendations include enhancing security headers, enabling DNSSEC, and implementing privacy compliance features to strengthen trust and regulatory adherence.

G

GEDLICH Racing

gt-winter-series.com

45

GEDLICH Racing operates the GT Winter Series, a premier motorsport racing series held in Southern Europe, focusing on GT cars competing across multiple events annually. The website presents a professional and comprehensive platform for event information, registration, media, and partner engagement. The business targets motorsport teams, drivers, and enthusiasts, positioning itself as a key player in European winter racing events with strong partnerships and a clear class structure. Technically, the site is built on WordPress with modern libraries like jQuery and Swiper.js, offering good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain transfer protections, but lacks DNSSEC and advanced security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, supporting a medium-sized business in the transportation sector.

G

GEDLICH Racing

summer-series.org

44

GEDLICH Racing operates the Summer Series 2026, a new GT racing series in Europe targeting professional and amateur racers with GT3, GT4, TCR, and single-make cars. The website is well-structured, content-rich, and professionally designed, reflecting a focused business model on motorsport event organization. The technical infrastructure is based on WordPress with modern JavaScript libraries and SEO optimizations, hosted by IONOS SE. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers, and no visible cookie consent or privacy compliance mechanisms. The domain registration is recent but consistent with the business launch timeline, indicating legitimacy. Overall, the site presents a credible and professional front for the racing series with room for improvement in security and privacy compliance.

G

GEDLICH Racing

winter-series.com

45

Winter Series by GEDLICH Racing is a specialized motorsport event organizer focusing on winter racing series across Europe, primarily in Portugal and Spain. The company offers multiple racing series including GT Winter Series, GT4 Winter Series, Prototype Winter Series, and Formula Winter Series, targeting professional and amateur racing drivers as well as motorsport enthusiasts. The business is relatively new, founded in 2023, and positions itself as a niche leader in winter motorsport racing events. The website is professionally designed, content-rich, and provides comprehensive information about events, registration, media, and logistics.

The website www.kinderblick.org operates as an adult-themed Chinese manga reading platform, focusing on BL and erotic comics. It offers free online access to a large collection of manga with features such as search, rankings, and updates. The platform targets mature audiences interested in adult manga content, leveraging common web technologies like jQuery, Swiper.js, and CryptoJS for functionality and user experience. However, the site lacks critical compliance elements such as privacy and cookie policies, contact information, and security best practices. The WHOIS data is unavailable or malformed, which raises concerns about the legitimacy and transparency of the domain ownership. Overall, the site provides niche content but falls short in security posture and regulatory compliance.

G

GEDLICH Racing GmbH

gedlich-racing.com

54

GEDLICH Racing GmbH is a specialized motorsport event organizer based in Germany, offering a range of services including trackdays, race tests, Nordschleifentraining, coaching, and business events. The company targets motorsport enthusiasts from beginners to professionals and operates both in Germany and Southern Europe. The website demonstrates a mature digital presence with a professional design, clear navigation, and comprehensive content. Technically, the site is built on WordPress with modern libraries and plugins, hosted by IONOS SE, and employs privacy-conscious analytics tools like Matomo alongside Google Analytics and Meta Pixel. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some HTTP security headers could be improved. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

Fischer Power Solutions Germany operates as a specialized provider of power and energy storage solutions, targeting industrial and commercial clients primarily in Germany. The company offers battery systems and energy management technologies, positioning itself as a niche player in the energy sector. The website reflects a professional digital presence with a focus on clear communication of services and compliance with privacy regulations. Technically, the site uses modern web technologies including Cookiebot for consent management and web fonts for branding consistency. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit incident response policies. The absence of WHOIS data introduces some uncertainty regarding domain legitimacy, but the overall professional presentation and compliance indicators suggest a legitimate business. Strategic recommendations include enhancing security headers, publishing security policies, and improving transparency around domain registration to strengthen trust.

M

Mapp

mapp.com

51

Mapp is a well-established marketing cloud technology company founded in 2003, offering AI-powered digital analytics, marketing automation, and multi-channel campaign management solutions. The company targets businesses seeking to leverage customer data for personalized marketing across email, SMS, apps, and websites. With over 3500 brands trusting their platform and a recent acquisition of Dressipi, Mapp positions itself strongly in the retail and e-commerce sectors with a focus on AI-driven personalization. Technically, the website is built on WordPress hosted on AWS infrastructure, utilizing modern JavaScript libraries such as Swiper.js and Slick Carousel for UI components, and integrates multiple analytics and tracking tools including Google Tag Manager, Hotjar, and proprietary Mapp Intelligence. The site is well optimized for SEO, mobile responsiveness, and accessibility, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS, employs domain registration protections, and uses a consent management platform (Usercentrics) to comply with privacy regulations. However, DNSSEC is not enabled, and explicit security headers are not detected, indicating room for improvement. No critical vulnerabilities or exposed sensitive data were found. Overall, Mapp demonstrates a strong business credibility and technical maturity with good privacy compliance. The website content is professional and safe for general audiences. Strategic recommendations include enabling DNSSEC, publishing a dedicated security policy, and enhancing security headers to further strengthen the security posture.

V

Venuro AG

venuro.com

65

Venuro AG is a Swiss company specializing in the manufacture of frameless sliding windows, combining precision engineering with advanced materials such as carbon fiber and fiberglass. Established in 1973, the company positions itself as a premium provider of architectural sliding masterpieces, targeting architects and discerning clients seeking innovative and aesthetically refined building solutions. The website reflects a high level of professionalism with rich multimedia content, clear branding, and a focus on craftsmanship and innovation. Technically, the website is built on the Webflow platform, leveraging modern JavaScript libraries such as GSAP for animations and Swiper for sliders. It employs a cookie consent mechanism compliant with GDPR, integrates Google Analytics for visitor tracking, and is hosted on a reliable CDN infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a smooth user experience. From a security perspective, the site uses HTTPS and implements cookie consent with opt-in features. However, it lacks visible security headers and published security or incident response policies. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, although the website content and branding strongly indicate a legitimate business. Overall, the security posture is good but could be improved with additional headers and formal policies. The overall risk assessment is moderate to low, with recommendations to enhance domain registration transparency, implement security headers, and publish incident response information to strengthen trust and compliance.

B

Bielefeld barrierefrei erleben!

bielefeld-barrierefrei.de

37

Bielefeld barrierefrei erleben! is a specialized non-profit website dedicated to providing comprehensive information about barrier-free and accessible locations in Bielefeld, Germany. The site targets individuals with mobility, visual, or hearing impairments, as well as the general public interested in accessibility. It offers detailed listings of buildings, rooms, and venues with accessibility features, supporting inclusive participation in cultural, educational, and recreational activities. The website is built on WordPress, leveraging common plugins and modern frontend libraries like Swiper.js, and is hosted on kasserver.com. It demonstrates good technical maturity with mobile optimization, accessibility features, and SEO best practices. Security posture is solid with HTTPS enabled and no obvious vulnerabilities, though security headers are not explicitly detected. However, the site lacks published privacy and cookie policies, which impacts GDPR compliance and privacy posture. Contact information is not explicitly found, limiting direct communication channels. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and clearer contact details.

S

StoP – Stadtteile ohne Partnergewalt e.V.

stop-partnergewalt.org

62

StoP – Stadtteile ohne Partnergewalt e.V. is a German non-profit organization dedicated to preventing partner violence through community-based initiatives at the neighborhood level. The website serves as an informational and engagement platform, highlighting local chapters across multiple German cities and Austria, and providing resources and educational content. The organization targets community members, victims, and supporters of violence prevention, positioning itself as a grassroots social project with a clear mission and active local presence. Technically, the website is built on WordPress using the Elementor page builder, with common web technologies such as jQuery and Swiper.js for interactive elements. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. Hosting and domain registration are consistent with the organization's profile, with no privacy protection on WHOIS data, indicating transparency. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks advanced security headers and explicit public security policies. Cookie consent is implemented via a WordPress plugin, supporting GDPR compliance to some extent. No incident response or vulnerability disclosure information is publicly available, representing an area for improvement. Overall, the website is trustworthy and professional, with good content quality and clear navigation. However, the absence of a privacy policy and security headers slightly reduces compliance and security posture scores. The site is safe for general audiences, with no adult or explicit content detected.

K

Kommunales Integrationszentrum Bielefeld

ki-bielefeld.de

40

Kommunales Integrationszentrum Bielefeld is a government-affiliated integration center serving the city of Bielefeld, Germany. It provides a broad range of services including integration support, educational counseling, anti-discrimination initiatives, and community event organization. The website reflects a strong local government presence with official branding and funding from regional ministries. The target audience includes migrants, refugees, local families, and educational institutions. The business model is public service oriented, funded by government bodies, and focused on social inclusion and integration. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and jQuery, enhanced by accessibility features and mobile optimization. It uses custom analytics and complies with GDPR through cookie consent mechanisms. Hosting is provided by a German hosting provider consistent with the domain's nameservers. Performance is moderate with good SEO and structured data implementation. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, some security headers are not explicitly detected and there is no public security policy or incident response information. Privacy compliance is strong with clear privacy and cookie policies. Business credibility is high due to official contact information, government logos, and consistent branding. Overall, the website is trustworthy, professional, and well-maintained, serving its public service mission effectively. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve trust and security posture.

I

InnovateNow Bielefeld

innovatenow-bielefeld.de

43

InnovateNow Bielefeld is a local government-backed innovation program focused on developing and implementing digital solutions to enhance the inner city and old town of Bielefeld. The program engages a broad audience including citizens, students, tech enthusiasts, and companies to collaboratively improve urban life quality through digital transformation. The website is built on WordPress using Elementor and integrates modern tracking and marketing tools such as Google Analytics and Meta Pixel, although it lacks a cookie consent mechanism. Security posture is adequate with HTTPS enforced but could be improved by adding security headers and incident response policies. Contact information is limited to an email address for the project manager, with no phone or physical address explicitly provided. Overall, the website is professional, content-rich, and trustworthy, serving as an effective platform for the InnovateNow initiative.

I

indigitall

indigitall.com

76

indigitall is a mature, well-established AI-powered customer engagement platform founded in 2006, offering a comprehensive suite of omnichannel marketing and communication tools including AI agents, chatbots, push notifications, and more. The company targets businesses across multiple sectors such as retail, finance, healthcare, and telecommunications, positioning itself as a leader in unified customer engagement solutions with a strong market presence and notable clients. The website is built on WordPress with modern SEO and performance optimizations, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS and reCAPTCHA, though improvements like DNSSEC and security headers are recommended. Privacy compliance is limited due to missing explicit policies and consent mechanisms. Overall, the site is professional, trustworthy, and business-focused, with no signs of malicious or adult content.

R

Rathscheck Schiefer

rathscheck.de

48

Rathscheck Schiefer is a well-established German manufacturer specializing in premium quality slate products for roofing, facades, and decorative purposes. Founded in 1793 and now part of Wilh. Werhahn KG, the company holds a leading market position in the slate manufacturing sector. Their website offers comprehensive product information, digital tools such as configurators and project finders, and extensive company background, targeting architects, construction professionals, and discerning homeowners. The site is professionally designed, multilingual, and optimized for SEO and mobile devices. Technically, the website is built on WordPress with Elementor and Yoast SEO, incorporating modern JavaScript libraries like Vue.js and Swiper.js. It employs hCaptcha for form security and CookieFirst for consent management, alongside eTracker analytics. The site demonstrates good performance, accessibility, and security practices, including HTTPS and form protection, though some security headers could be improved. Security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. However, no explicit security policy or incident response contacts are published. WHOIS data is minimal but consistent with the business claims, supporting legitimacy. Overall, the website reflects a mature digital presence with strong business credibility and security awareness, suitable for its industry and audience.

K

KS-ORIGINAL GMBH

ks-original.de

56

KS-ORIGINAL GMBH operates as a consortium of 21 medium-sized Kalksandstein (sand-lime brick) manufacturers in Germany, focusing on sustainable and durable architectural materials. The website serves as an information portal for products, services, and industry news, targeting architects, builders, and regional partners. The company maintains a professional online presence with a well-structured Drupal 10 CMS-based website, featuring modern design and mobile optimization. Technical infrastructure includes Bootstrap and Matomo analytics, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit privacy or cookie policies. No incident response or vulnerability disclosure information is publicly available, which could be improved to enhance trust and compliance. Overall, the site is trustworthy, professional, and aligned with its business sector, but could benefit from enhanced privacy and security transparency.

G

Graphisoft

graphisoft.com

68

Graphisoft is a leading technology company specializing in BIM software solutions for architecture, engineering, and construction professionals. Their website showcases a comprehensive portfolio of products such as Archicad, BIMcloud, BIMx, and AI Assistant, targeting AEC experts globally. The company emphasizes collaboration, innovation, and education through training and certification programs. The site is well-branded, professionally designed, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the website is built on WordPress with modern JavaScript libraries including jQuery and Swiper.js, integrated with Google Tag Manager and Cookiebot for analytics and privacy compliance. The site employs HTTPS with strong security headers and uses reCAPTCHA to protect forms, indicating a solid security posture. However, explicit security policies and incident response information are not published, which could be improved. The WHOIS data is unavailable or privacy protected, which reduces transparency but the website content and branding strongly support legitimacy. No blocking or WAF challenges were detected, allowing full content access and analysis. Overall, the site demonstrates a high level of professionalism, security, and compliance with privacy regulations. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure mechanisms, and providing direct security contact information to enhance trust and compliance.

I

Interfit

interfit-group.com

65

Interfit is a world-leading specialty tire and wheel service provider focusing on Material Handling, Agriculture, and Construction sectors. The company offers a wide range of products and services designed to help machine specialists maximize revenue by maintaining control over their tire business. The website is professionally designed, multi-lingual, and optimized for SEO and mobile devices, reflecting a mature digital presence. The technical infrastructure is based on WordPress with Elementor and includes modern tools such as Google Tag Manager and reCAPTCHA to enhance security and analytics. Security posture is good with HTTPS enforced and a comprehensive cookie consent mechanism, although the absence of security headers and incident response information suggests room for improvement. The WHOIS data is missing, indicating either a very recent domain registration or privacy protection, which slightly impacts trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, suitable for its business audience.

S

Stiftung ZQP

zqp.de

59

Stiftung ZQP is an independent, non-profit foundation established in 2009 by the PKV-Verband, dedicated to improving quality and prevention in care within Germany. The organization provides research, educational materials, online portals, and consultation databases targeting professional caregivers, family caregivers, researchers, and healthcare policymakers. Their market position is well-established in the German healthcare sector with a focus on long-term care quality and prevention. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, WooCommerce, Borlabs Cookie for consent management, and security plugins like Shield Security. The site is well-optimized for SEO, accessibility, and mobile responsiveness, hosted on professional infrastructure with domain control via GoDaddy name servers. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and use of Google reCAPTCHA on forms. While some security headers could be improved, no critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust with clear GDPR-aligned policies and cookie management. Overall, the website presents a professional, trustworthy, and secure digital presence for a healthcare non-profit. It effectively serves its target audience with comprehensive content and services, supported by a solid technical and security foundation.