Security Directory

A

Amazon

amazon.com.br

75

Amazon.com.br is the Brazilian localized e-commerce platform of Amazon, a global leader in online retail. The website offers a wide range of products including books, electronics, household items, and digital content, targeting a broad general audience in Brazil. It leverages Amazon's extensive marketplace and subscription services such as Amazon Prime to maintain a strong market position. The site is designed with a professional and consistent brand presence, providing excellent user experience and navigation.

A

Amazon

amazon.nl

77

Amazon.nl is the Dutch localized e-commerce platform of Amazon, a global leader in online retail. The website offers a wide range of products including electronics, books, sports equipment, and personal care items, targeting general consumers in the Netherlands. The platform benefits from Amazon's extensive global infrastructure and brand recognition, providing a comprehensive shopping experience with integrated services such as Prime Video and Kindle. The business model is based on direct retail sales and a marketplace for third-party sellers, positioning Amazon.nl as a dominant player in the Dutch e-commerce market.

J

Jan Melvil Publishing

freelanceway.eu

50

The website freelanceway.eu is a professionally designed platform dedicated to promoting 'The Freelance Way,' a comprehensive business book for freelancers authored by Robert Vlach. The site serves a global audience of freelancers and independent professionals, offering detailed information about the book, purchasing options across multiple countries, and extensive endorsements from recognized experts. The business model revolves around book sales, publishing rights, and freelance business education, with strong partnerships including HarperCollins. Technically, the site is built with standard HTML, CSS, and JavaScript, featuring responsive design and good SEO practices, though it lacks advanced CMS or frameworks. Security posture is moderate, with no visible security headers or privacy policies, indicating room for improvement in compliance and security best practices. Overall, the domain registration aligns well with the business claims, enhancing trustworthiness. The site contains no adult or questionable content and maintains a high level of professionalism and trust.

C

Cision

cision.fr

63

Cision is a prominent media and communications company providing solutions for public relations, media monitoring, digital communication, and media intelligence. The website targets communication professionals and marketers, offering a suite of services to enhance brand reputation and media visibility. The site is well-structured, professionally designed, and optimized for desktop and mobile users, reflecting a mature digital presence. Technically, the site leverages Adobe Experience Manager as its CMS, integrates modern JavaScript libraries, and uses Google Tag Manager and Bing Ads for analytics and marketing. Security posture is moderate with HTTPS usage but lacks visible security headers and explicit privacy or cookie policies in the provided content. WHOIS data is unavailable, which impacts trust and legitimacy assessments. Overall, the site presents a professional and credible business front but would benefit from enhanced transparency and security practices.

L

Livestorm

vincentgarreau.com

54

Vincent Garreau's website serves as a professional portfolio highlighting his role as a front-end developer and co-founder of Livestorm, a webinar software company. The site showcases his work history, projects, and links to his social media profiles, targeting web developers and tech professionals interested in webinar solutions and data visualization. The business model centers on SaaS webinar software with a niche market position in providing smarter webinar experiences. Technically, the website employs standard web technologies including HTML5, CSS, JavaScript, and jQuery, supplemented by the particles.js library for visual effects. It uses asynchronous loading for Google Analytics and Google Tag Manager, indicating a moderate level of digital maturity. Hosting is provided by OVH sas, a reputable provider, though DNSSEC is not enabled. The site is mobile optimized with good SEO practices but lacks advanced accessibility features. From a security perspective, the site uses HTTPS but lacks visible security headers and formal security policies such as privacy, cookie, or incident response disclosures. No forms or sensitive data collection points are present, reducing immediate risk. However, the absence of privacy and cookie policies and lack of GDPR compliance indicators represent compliance gaps. The WHOIS data is consistent and trustworthy, with domain age aligning well with the business timeline. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures to improve compliance and user trust. Strategic improvements in security headers, policy transparency, and vulnerability disclosure would strengthen its security posture and regulatory alignment.

Servantes is a Czech technology company specializing in digital assistants and software solutions for publishing houses. Their offerings include platforms for selling e-books and audiobooks, tools for e-book creation, piracy detection, and process automation. The company targets publishing houses seeking to modernize and digitize their sales and content management processes. The website reflects a professional and focused business with a clear market niche in the Czech Republic. Technically, the site uses modern frontend technologies such as React, integrates Google Analytics and Cookiebot for privacy compliance, and employs Google reCAPTCHA for bot protection. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and policies could enhance protection. Overall, the domain registration data aligns well with the business timeline and location, supporting legitimacy. No critical security or privacy issues were detected. Strategic recommendations include improving security headers, publishing security policies, and enhancing accessibility compliance to further strengthen trust and compliance.

Magazín pluska is a Slovak online magazine offering a variety of articles focused on lifestyle, housing, women's interests, and practical advice. The website operates on a WordPress platform using the Newspaper theme and related plugins, hosted by Svethostingu.cz. The site presents a professional design with good mobile optimization and clear navigation, targeting a general audience interested in regional and lifestyle content. Security posture is moderate with HTTPS enabled but lacking security headers and formal privacy or cookie policies. Contact information is limited primarily to author emails and login forms, with no explicit corporate contact details or security incident response information. Overall, the website is functional and trustworthy for its niche but would benefit from enhanced privacy compliance and security best practices.

T

TOP financováni

topfinancovani.cz

46

TOP financováni is a Czech-language online magazine focused on finance, business, and investment topics. It serves individuals and professionals seeking advice and information in these areas. The website operates on a WordPress platform using the Newspaper theme, indicating a standard content publishing infrastructure. The site is relatively new, with domain registration dating back to 2020, aligning with its small business scale and niche market position. The content is well-organized into categories such as Investments, Business, Finance, and Guides, targeting a Czech audience interested in financial literacy and entrepreneurship. Technically, the website uses common web technologies including WordPress CMS, jQuery, and standard CSS/JavaScript libraries. Hosting appears to be managed through REG-TELE3 with DNS servers at svethostingu.eu. The site shows moderate performance and good mobile optimization but lacks advanced accessibility features. SEO practices appear adequate with proper meta tags and structured content. From a security perspective, the site uses HTTPS but lacks visible security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. There is no evidence of incident response contacts or vulnerability disclosure mechanisms. No analytics or tracking scripts were detected, suggesting minimal user tracking. Advertising is present but limited to partner or related domains without major ad networks. Overall, the site is legitimate and consistent with its business purpose but would benefit from enhanced security practices, privacy compliance, and clearer contact information to improve trust and regulatory adherence.

R

Randstad Česká republika

randstad.cz

71

Randstad Česká republika operates as a leading HR and staffing services provider in the Czech Republic, offering a broad range of services including temporary staffing, permanent placement, inhouse consulting, and specialized HR solutions. The website reflects a mature digital presence with professional design, clear navigation, and localized content targeting job seekers and employers. The company is part of the global Randstad group, enhancing its market credibility and reach. Technically, the site uses modern web technologies including Drupal CMS, Google Tag Manager, and OneTrust for privacy compliance, indicating a well-maintained infrastructure. Security posture is strong with HTTPS enforcement, security headers, and CAPTCHA protections, though public security policies and vulnerability disclosures are absent. Overall, the site is trustworthy and professionally managed, though WHOIS data is unavailable, which slightly impacts domain trust assessment.

E

Evangelische Landeskirche in Baden

kirchenrecht-baden.shop

56

The website kirchenrecht-baden.shop operates as a specialized e-commerce platform offering customized and preconfigured legal text collections related to the Evangelische Landeskirche in Baden. It targets users needing authoritative church law documents, providing a configurator tool and direct ordering options. The site is positioned in a niche market with a clear business model and consistent branding, supported by a parent or partner entity linked to wbv.de, a known legal publishing house. Technically, the site is built on the Shopware platform using modern web technologies including JavaScript, CSS, and Google reCAPTCHA for form security. The site is mobile optimized with good SEO and accessibility basics, though some advanced security headers are missing. Hosting and domain registration are consistent with the business location in Germany, with HTTPS enforced and domain transfer protections in place. Security posture is moderate with good SSL configuration and use of CAPTCHA, but lacks DNSSEC and explicit security policies or incident response contacts. Privacy compliance is partial, with a privacy policy linked externally but no visible cookie consent mechanism. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site presents a professional and trustworthy front for its niche legal service, with recommendations to enhance security headers, enable DNSSEC, and improve privacy compliance to strengthen user trust and regulatory adherence.

E

Europa-Park GmbH & Co Mack KG

ep-juniorclub.de

59

Europa-Park JUNIOR CLUB is a well-established, family-oriented online club offering free educational and entertainment content targeted at children. The website is professionally designed using TYPO3 CMS and modern front-end frameworks, providing a good user experience with mobile optimization and clear navigation. The business is linked to the reputable Europa-Park GmbH & Co Mack KG, enhancing its market credibility. Technically, the site is hosted on DomainControl nameservers, uses HTTPS, and employs standard web technologies with moderate performance. Security posture is solid with HTTPS enforced, though security headers and explicit incident response policies are absent. Privacy compliance is good with a comprehensive privacy policy, but lacks an explicit cookie consent mechanism. No vulnerabilities or suspicious elements were detected. Overall, the site is safe, trustworthy, and suitable for its target audience of children and families.

Z

ZDF (Zweites Deutsches Fernsehen)

logo.de

52

The website www.logo.de is a children’s news portal operated by ZDF, a major German public broadcaster. It provides news content tailored for children and youth, featuring videos, images, and interactive elements. The site is well-branded, professionally designed, and targets a young audience with educational and safe content. The business model aligns with public media broadcasting, focusing on informative and accessible news for children. Technically, the site uses modern web technologies including Next.js and React, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not published. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy, safe, and professionally maintained, suitable for its target audience.

K

KreBul, o.p.s.

krebul.cz

43

KreBul, o.p.s. is a Czech non-profit organization providing community-oriented social services including a civic advice center, volunteer center, youth information center, and senior support programs. The website serves as an information hub for these services and related community events, targeting local residents, youth, and seniors. The organization appears to be regionally focused with a small operational scale. Technically, the website is built with standard web technologies including HTML5, CSS, JavaScript, and jQuery, and integrates Google Analytics for visitor tracking. The site is accessible over HTTPS, but lacks advanced security headers and formal privacy or cookie policies, indicating room for improvement in compliance and security maturity. Mobile optimization and accessibility are basic but functional. From a security perspective, no critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. The site does not provide contact emails or phone numbers, nor does it disclose privacy or incident response policies, which limits transparency and user trust. Overall, the website is functional and professionally designed but would benefit from enhanced security practices, formal privacy compliance, and verified domain registration information to improve trust and compliance posture.

R

Radio Rockland GmbH & Co. KG

rockland.de

43

Rockland Radio GmbH & Co. KG operates a regional German radio station focused on rock and pop music, serving the Rheinland-Pfalz region and surrounding areas. The website provides rich content including live streams, podcasts, interviews, news, and event information, positioning itself as a key media player in its niche. The business model centers on media broadcasting and advertising, supported by a professional web presence and active social media engagement. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and implements cookie consent mechanisms, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and cookie consent in place, though improvements in security headers and explicit security policies are recommended. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information, supporting a positive risk profile.

L

Landwirtschaftliche Rentenbank

rentenbank.de

64

Landwirtschaftliche Rentenbank operates as the central refinancing institution for the German agricultural and food industry sectors, providing specialized loans and refinancing services. The website reflects a professional and consistent brand presence targeting stakeholders in the German agribusiness sector. The business model focuses on supporting agriculture through financial products and promotional banking services, positioning Rentenbank as a key player in this niche market. Technically, the website employs modern web technologies including JavaScript, CSS, and HTML5, with integrations such as etracker for analytics and Cognigy for chatbot services. Hosting is managed via Ecotel nameservers, indicating a stable infrastructure. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. From a security perspective, the site uses HTTPS and includes scripts to disable cookies for analytics, showing some privacy awareness. However, explicit privacy and cookie policies, security headers, and incident response information are absent, representing areas for improvement. No vulnerabilities or suspicious domains were detected, and no WAF or blocking mechanisms interfere with content access. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and clearer contact and security policy disclosures to improve user trust and regulatory adherence.

T

Threema

threema.id

75

Threema is a Swiss-based company providing highly secure, end-to-end encrypted communication services tailored for individuals, businesses, and government entities. The company emphasizes privacy, GDPR compliance, and zero-knowledge security, positioning itself as a trusted alternative to mainstream messaging platforms. Their product suite includes Threema Work, Broadcast, and Gateway, catering to various secure communication needs. The website reflects a professional and consistent brand image with a focus on security and privacy. Technically, the site uses modern JavaScript frameworks and privacy-respecting analytics (Matomo), with good mobile optimization and SEO practices. Security posture is solid with HTTPS and domain protections, though DNSSEC is not enabled and security headers are not explicitly detected in the provided data. No explicit privacy or cookie policies were found in the provided content, which is a gap in privacy compliance. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

B

Bildungshaus Kloster St. Ulrich

st-ulrich-lvhs.de

47

Bildungshaus Kloster St. Ulrich is a small, non-profit educational institution affiliated with the Erzdiözese Freiburg, focusing on providing learning and experiential spaces primarily for rural communities. Their offerings include seminars, workshops, and spiritual retreats targeting a broad audience including families, youth, and adults interested in personal and societal development. The website reflects a well-structured, content-rich platform with clear navigation and consistent branding, supporting their educational mission. Technically, the website uses standard web technologies such as JavaScript, CSS, and HTML5, with moderate performance and good mobile optimization. However, there is no evidence of a CMS or advanced frameworks, and no hosting provider information is available. SEO practices appear adequate with proper meta tags and descriptive content. Accessibility is basic but could be improved. From a security perspective, the site uses HTTPS (assumed from domain context though not explicitly confirmed), but lacks visible security headers and cookie consent mechanisms, indicating room for improvement in compliance and security posture. No vulnerabilities or exposed sensitive data were detected. The WHOIS data shows privacy-protected name servers, which is reasonable for this type of institution. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy compliance measures.

S

Statistisches Bundesamt (Destatis)

destatis.de

63

The Statistisches Bundesamt (Destatis) is the official German Federal Statistical Office providing comprehensive statistical data, publications, and analyses to the public, government, and researchers. The website serves as a central portal for accessing official statistics across various sectors including economy, society, environment, and government. It maintains a strong market position as the authoritative source of official statistics in Germany. Technically, the website is built on the Government Site Builder CMS, employs Matomo analytics hosted on trusted government infrastructure, and demonstrates good performance and mobile optimization. The site features a clear navigation structure, extensive content, and accessibility features, reflecting a mature digital presence. From a security perspective, the site enforces HTTPS, uses a cookie consent mechanism compliant with GDPR, and avoids exposing sensitive data. While explicit security headers are not visible in the HTML, the overall security posture is strong with recommendations to enhance header implementation and publish a dedicated security policy. Privacy compliance is robust with transparent data collection and retention policies. Overall, the website is highly trustworthy, professionally maintained, and compliant with relevant privacy regulations. It effectively balances user experience, data transparency, and security, making it a reliable resource for official statistical information in Germany.

B

bricks

ckpbrno.cz

40

Centrum kardiovaskulární péče (ckpbrno.cz) is a specialized healthcare provider based in the Czech Republic, focusing on cardiovascular care and related medical services. The website offers comprehensive information about their ambulatory and hospitalization services, including cardiology, arrhythmology, and rehabilitation. Their target audience includes patients requiring cardiovascular care and medical professionals seeking consultation or collaboration. The business operates on a small scale with a clear regional focus and was established in 2019. Technically, the website is built on WordPress using the Bricks theme and several plugins such as Complianz for GDPR compliance and Automatic CSS for styling. The site is well-optimized for SEO with proper metadata, Open Graph tags, and structured data. Mobile optimization and user experience are good, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with an excellent SSL configuration and implements cookie consent mechanisms aligned with GDPR. However, no explicit security headers were detected, and there is no visible security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the HTML content. The domain registration is consistent and legitimate, supporting the trustworthiness of the site. Overall, the website presents a professional and trustworthy digital presence for a healthcare provider. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility compliance to further strengthen the security posture and user trust.

D

Drei Quellen-Mediengruppe GmbH

rundblick-niedersachsen.de

48

Rundblick Niedersachsen is a well-established regional political journal serving the German state of Niedersachsen. It offers a broad range of political news, background articles, dossiers, and podcasts, targeting residents and politically engaged audiences in the region. The business operates on a subscription model with free and premium content, supported by newsletters and digital media formats. The parent company is Drei Quellen-Mediengruppe GmbH, which manages the publication and its digital infrastructure. Technically, the website is built on a modern React and Next.js stack, ensuring fast performance, mobile responsiveness, and good accessibility. The use of third-party services like Podigee for podcasts and Eye-Able for accessibility enhancements reflects a mature digital infrastructure. SEO and metadata are well implemented, supporting discoverability. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, aligning with GDPR requirements. However, explicit security policies and incident response contacts are not published, representing an area for improvement. No vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website presents a professional, trustworthy, and user-friendly platform with strong content quality and compliance posture. Strategic recommendations include publishing detailed security and incident response policies, implementing a vulnerability disclosure program, and enhancing transparency around data protection officer contacts.

D

Drei Quellen Mediengruppe GmbH

drei-quellen-mediengruppe.de

43

Drei Quellen Mediengruppe GmbH operates as a regional media and communications company based in Germany, focusing on political journalism, creative agency services, and event management. Their flagship publication, the Politikjournal Rundblick, provides insider political news and analysis for Lower Saxony. The company also offers consulting, production, post-production, marketing, and event planning services, targeting political professionals, businesses, and event clients in the region. The website reflects a small-sized business with consistent branding and professional content. Technically, the website is built on the Pimcore CMS platform and hosted by OVH, utilizing modern web technologies such as JavaScript, CSS, and FontAwesome icons. The site is mobile-optimized with good navigation and content relevance, though accessibility features are basic. Performance is moderate, and SEO optimization is basic but present. No advanced frameworks or analytics tools were detected. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent mechanisms, indicating room for improvement in GDPR compliance and security best practices. No vulnerabilities or exposed sensitive data were found, but the absence of a security policy, incident response contacts, and vulnerability disclosure reduces the overall security maturity. WHOIS data is minimal but consistent with the hosting provider, with no suspicious patterns detected. Overall, the website is professional and trustworthy with moderate security posture and privacy compliance. Strategic improvements in security headers, cookie consent, and policy disclosures would enhance compliance and trustworthiness.

R

RADIO 21 GmbH & Co. KG

radio21.de

41

RADIO 21 GmbH & Co. KG operates a professional German radio station focused on rock and pop music, serving regions including Niedersachsen, Nordrhein-Westfalen, Hamburg, and Schleswig-Holstein. The website provides comprehensive content including live streaming, podcasts, news, events, and interviews, targeting German-speaking music enthusiasts. The company maintains a solid market position as a regional broadcaster with a clear business model centered on media broadcasting and advertising services. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and implements GDPR-compliant cookie consent mechanisms. The website is well-structured, mobile-optimized, and professionally designed, enhancing user experience and trust. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. WHOIS data is minimal but consistent with the business identity, supporting legitimacy. Overall, RADIO 21 presents a trustworthy and professional digital presence with moderate to high security and compliance maturity.

W

Weishaupt Verlag

weishaupt.com

9

Weishaupt Verlag is a small Austrian publishing company specializing in non-fiction books, particularly in travel, regional history, culture, and technical subjects. Established in 1980, it operates an e-commerce platform selling its publications directly to customers. The website is professionally designed with clear navigation and product listings, targeting readers interested in specialized literature. Technically, the site uses legacy JavaScript libraries such as jQuery 1.6.3 and Fancybox 1.3.1, indicating some technical debt and opportunities for modernization. Security posture is basic with HTTPS enabled and cookie consent implemented, but lacks modern security headers and vulnerability disclosure mechanisms. WHOIS data is unavailable, limiting domain trust verification, but the website content and contact information appear legitimate and consistent with a small publishing business. Overall, the site scores moderately well in content quality, technical implementation, security, privacy compliance, and business credibility.

GERICS (Climate Service Center Germany) operates as a specialized climate service organization providing scientific research, climate impact assessments, and knowledge transfer services primarily focused on climate change adaptation and mitigation. The website presents a professional and content-rich platform targeting researchers, policymakers, and public sector stakeholders interested in climate services. The technical infrastructure is based on the Imperia CMS with interactive maps and climate-related product catalogs, though mobile optimization and accessibility are basic. Security posture is moderate with HTTPS likely enabled but lacking security headers and formal privacy or incident response policies. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced security and privacy compliance measures.

P

Pixelgrade

pixelgrade.com

59

Pixelgrade is a specialized company focused on delivering premium WordPress themes tailored for creative professionals such as designers, photographers, and agencies. Established in 2010, the company has positioned itself as a niche leader in the creative WordPress theme market, offering high-quality, customizable themes with dedicated customer support. Their website reflects a strong brand identity and professional design, targeting a global audience of creatives seeking elegant and functional website solutions. Technically, Pixelgrade's website is built on WordPress with Elementor as a key framework, leveraging modern web technologies including HTML5, CSS3, and JavaScript. The site is hosted with Cloudflare providing DNS and CDN services, ensuring fast load times and good performance. Mobile optimization and accessibility are well addressed, contributing to an excellent user experience. SEO best practices are implemented with proper meta tags and structured data. From a security perspective, the website enforces HTTPS with strong SSL configuration and includes essential security headers. The domain registration is transparent and consistent with the business profile, with no privacy protection masking ownership. While no explicit security policy or incident response information is published, the site follows good security hygiene. No vulnerabilities or suspicious activities were detected. Overall, Pixelgrade presents a low-risk profile with a mature digital presence, strong business credibility, and good privacy compliance. Strategic recommendations include enabling DNSSEC, publishing a dedicated security policy, and adding a security.txt file to enhance transparency and vulnerability management.

M

Ministerium der Deutschsprachigen Gemeinschaft

mdg.be

61

The website www.mdg.be serves as the official online portal for the Ministerium der Deutschsprachigen Gemeinschaft, the government ministry responsible for the German-speaking Community in Belgium. It provides digital services primarily for government personnel, civil servants, and school staff, including access to payslips, time records, SAP system access, and remote support. The site is clearly targeted at internal government users and operates as a government service platform. Technically, the website is built with basic HTML, CSS, and JavaScript, with minimal external dependencies and no detected CMS or advanced frameworks. The site demonstrates moderate performance and basic mobile optimization but lacks advanced accessibility and SEO features. Security-wise, the site uses HTTPS for its subdomains and provides a cookie removal script, but no explicit security headers or privacy policies are present, which limits its security posture. The WHOIS data is restricted by DNS Belgium policy, preventing extraction of registrar or registrant details, but the domain's use and content strongly indicate legitimacy as a government entity. Overall, the site is functional and trustworthy for its intended audience but would benefit from enhanced security headers, privacy compliance documentation, and improved technical modernization.

J

Jana Chmelařová

jacha.cz

40

The website www.jacha.cz represents a small Czech design studio operated by Jana Chmelařová, offering graphic design, painting, drawing, and corporate material services. The site is structured with clear navigation and presents a portfolio of current projects, targeting a general audience interested in creative and promotional materials. The business model is service-oriented, focusing on bespoke design solutions for local clients. The market position appears to be that of a small, independent creative studio with a localized presence. Technically, the website uses basic HTML, CSS, and JavaScript technologies, including Google Analytics for visitor tracking. The site lacks modern CMS or frameworks and shows basic mobile optimization and accessibility features. Performance is moderate, with no advanced technical infrastructure detected. The absence of HTTPS and security headers indicates a need for improved security practices. From a security perspective, the site does not implement key security headers or HTTPS, which exposes visitors to potential risks. No privacy or cookie policies are present, and no contact information for security or incident response is provided. The WHOIS data is unavailable, which raises concerns about domain legitimacy and trustworthiness. However, the website content is professional and consistent with a small design business. Overall, the website presents moderate risk due to missing security and privacy controls and lack of domain registration transparency. Strategic recommendations include implementing HTTPS, adding privacy and cookie policies, improving contact information visibility, and enhancing security headers to protect users and improve trust.

T

Tailora

tailora.fr

51

Tailora is a specialized company founded in 2015, offering immersive experience solutions primarily for real estate, industrial, and consulting professionals. The company has a solid market position with over 400 projects and targets B2B clients in France and Switzerland. Their website reflects a professional and consistent brand image with a focus on immersive technology solutions. Technically, the site uses modern web technologies, is hosted by OVH, and is mobile optimized with good SEO practices. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy but could improve compliance and security transparency.

Cafe24 Corp. operates an e-commerce platform primarily targeting store owners, administrators, and suppliers. The website analyzed is a login portal facilitating access for different user roles within the platform. The company is established since 2017 and operates in the e-commerce sector, with a large organizational size and a focus on providing platform services for online store management. The website's technical infrastructure includes standard web technologies such as JavaScript, CSS, and integration with Google Analytics and Google Tag Manager for tracking and marketing purposes. Hosting and domain registration are managed by Gabia, Inc., a reputable registrar. From a security perspective, the website uses HTTPS as implied by URLs, and the domain status includes clientTransferProhibited, which protects against unauthorized domain transfers. However, no explicit security headers such as Content-Security-Policy or HSTS were detected in the provided data, and DNSSEC is not enabled, representing areas for improvement. Privacy and cookie policies are not present on this login page, which may impact compliance with GDPR and other privacy regulations. No contact information or incident response details are visible, limiting transparency and user trust. Overall, the website presents a basic but functional login interface with moderate technical implementation and business credibility. The absence of privacy and security policy disclosures and limited contact information reduce the privacy compliance score and security posture. There is no indication of adult or explicit content, making the site safe for general audiences. The domain registration data supports legitimacy and consistency with the business claims. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers and DNSSEC, and providing clear contact and incident response information to improve trust and compliance.

H

Hyundai OCI Co., Ltd.

hd-hyundaioci.co.kr

52

Hyundai OCI Co., Ltd. operates as a leading manufacturer in the energy sector, specializing in the production of carbon black and BTX chemical products. The company positions itself as a technologically advanced and competitive player in the carbon black industry, targeting business customers and investors. The website reflects a professional corporate presence with clear branding and comprehensive business information, supported by a family of related companies under the HD Hyundai Group umbrella. Technically, the website employs standard web technologies including HTML5, CSS, JavaScript, and jQuery, hosted likely by Gabia, a reputable Korean hosting provider. While the site is accessible and well-structured, mobile optimization and accessibility are basic, and no CMS or advanced frameworks are detected. Security posture is moderate with HTTPS implied but lacking visible security headers or published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration is transparent and consistent with the business identity, enhancing trustworthiness.

H

HD현대케미칼

hd-hyundaichemical.co.kr

52

HD현대케미칼 is a South Korean petrochemical company specializing in the production and supply of various energy and chemical products such as LPG, naphtha, aviation fuel, diesel, and aromatic hydrocarbons. The company is part of the larger HD Hyundai conglomerate, with multiple related subsidiaries and partner companies linked through family site connections. The website presents a professional corporate image with clear business information and product descriptions targeted at industrial clients, investors, and potential employees. Technically, the site uses a traditional web stack with jQuery and RequireJS, hosted via Gabia, and employs HTTPS for secure communications. However, there is room for improvement in modern security practices, including the implementation of security headers and privacy compliance mechanisms. The WHOIS data is transparent and consistent with the company's identity, supporting the legitimacy of the domain and business. Overall, the website is well-structured and trustworthy but could enhance its privacy and security posture to align with best practices.

A

Avikus Co. Ltd

avikus.ai

55

Avikus Co. Ltd is a Korean-based company specializing in maritime autonomous navigation solutions, targeting both commercial shipping and recreational boating markets. Their offerings include AI-powered systems to improve fuel efficiency, safety, and fleet management for commercial vessels, as well as navigational and docking aids for recreational boats. The company is positioned as an innovator in the maritime technology sector with strategic ties to HD Hyundai, enhancing its market credibility. Technically, the website is built on the HubSpot CMS platform, leveraging modern web technologies and integrated with Google Analytics 4 and Google Tag Manager for marketing and analytics. The site demonstrates good mobile optimization and user experience, though some SEO and accessibility features could be improved. Hosting is via Amazon AWS, ensuring reliable infrastructure. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. However, it lacks DNSSEC, security headers, and published privacy or cookie policies, indicating areas for compliance and security enhancement. No incident response or vulnerability disclosure information is provided, which could be a risk factor. Overall, Avikus presents a professional and trustworthy online presence aligned with its business objectives. Strategic improvements in privacy compliance, security headers, and transparency around data protection would strengthen its security posture and regulatory adherence.

Okresní hospodářská komora (OHK) Opava is a regional chamber of commerce serving the Opava district in the Czech Republic. It operates as a voluntary, apolitical association supporting local businesses, entrepreneurs, and educational institutions. The organization focuses on improving business conditions, facilitating education and internships, and providing various services including certification and networking events. The website reflects a small-sized, government-affiliated non-profit entity with a recent founding date in 2023. Technically, the site is built on WordPress and hosted by REG-WEDOS, featuring basic design and moderate performance with good mobile optimization. Security posture is basic with HTTPS enabled but lacking security headers and published policies. Privacy compliance is minimal with no visible privacy or cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional but would benefit from enhanced security and compliance features.

P

Paměť žen

pametzen.cz

59

Paměť žen is an educational and cultural web platform dedicated to presenting Czechoslovak history through the everyday stories of women during the socialist era. The website targets educators, students, researchers, and the general public interested in women's perspectives on history. It offers thematic content, historical narratives, educational resources, and an interactive timeline to facilitate learning and engagement. The platform is professionally designed with consistent branding and a clear focus on education and cultural preservation.

The website rovneprilezitosti.cz operates as a nonprofit legal advisory portal managed by Gender Studies, o.p.s., focusing on legal issues related to gender and age discrimination, family-work balance, and parental leave in the Czech Republic. It serves primarily women and men facing discrimination or seeking advice on parental leave and flexible work arrangements. The site is supported by Czech government grants and EHP funds, reinforcing its nonprofit and public service nature. The content is primarily in Czech and includes a contact form for legal inquiries, answered by qualified legal professionals within 10 days. The site also provides an archive of answered questions and legal guidance.

V

VT Centrum

vtcentrumbrod.cz

55

VT Centrum is a modern driving school based in Český Brod, Czech Republic, offering professional driving courses primarily for category B licenses. The business targets individuals seeking to obtain their driver's license with a focus on quality instruction and modern training equipment. The website reflects a local service provider with a clear and professional presentation, catering to a regional audience. Technically, the site is built on the Webnode CMS platform and hosted via AWS Cloudfront, employing standard web technologies such as JavaScript and CSS. The site is mobile-optimized and performs moderately well, with good SEO practices and clear navigation. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and a published privacy policy, which impacts GDPR compliance. The absence of WHOIS data reduces transparency and trustworthiness, though the website content suggests a legitimate business. Overall, the site scores moderately well in content quality, technical implementation, and business credibility, but improvements in privacy and security policies are recommended.

N

NA CESTÁCH BEZPEČNĚ z.s.

nacestachbezpecne.cz

59

NA CESTÁCH BEZPEČNĚ z.s. is a registered non-profit association founded in 2021 focused on road safety education and prevention across all road user groups, including children and the growing community of caravan enthusiasts. The organization positions itself as a specialized entity within the Czech transportation safety sector, delivering educational content, public awareness campaigns, and interactive activities such as quizzes and lectures at events like Caravaning Brno. The website reflects this mission with relevant content and a clear target audience of road users of all ages. Technically, the website is built on the Webnode CMS platform and leverages Amazon Cloudfront CDN for content delivery. It employs modern web technologies including JavaScript and CSS, and is optimized for mobile devices with good SEO practices. The site includes a cookie consent mechanism and uses Google Tag Manager for analytics, indicating a moderate level of digital maturity. However, some accessibility features and security headers are lacking, which could be improved. From a security perspective, the site enforces HTTPS and provides a cookie consent banner, but lacks visible security headers and explicit privacy or terms of service pages. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy and trustworthiness, although the website content and structure appear professional and transparent. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a moderate risk profile with room for improvement in compliance and security best practices. Strategic recommendations include publishing comprehensive privacy and terms policies, implementing security headers, and resolving the domain registration transparency issue to enhance trust and credibility.

S

Sächsische Landesmedienanstalt (SLM)

slm-online.de

47

The Sächsische Landesmedienanstalt (SLM) operates as the official regulatory authority for private broadcasting and new media in the German state of Saxony. The website serves as a comprehensive information portal for media professionals, broadcasters, journalists, and the general public interested in media regulation, licensing, funding, and media competence initiatives. The organization provides key services including licensing of private radio and TV broadcasters, media funding programs, educational projects, and public transparency. The site is well-structured, professionally designed, and accessible, reflecting its government affiliation and target audience.

N

NLM – Portal Medienkompetenz Niedersachsen

medienkompetenz-niedersachsen.de

49

The website www.medienkompetenz-niedersachsen.de serves as an official educational portal focused on media literacy and competence in the German state of Niedersachsen. It aggregates and networks various regional media education offerings and institutions, targeting a broad audience including educators, parents, and learners. The site is built on TYPO3 CMS and hosted by VisionConnect GmbH, reflecting a modern and stable technical infrastructure. The content is well-structured, professionally presented, and optimized for mobile devices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security headers and published security policies or incident response contacts, which could be improved to enhance trust and compliance. No vulnerabilities or suspicious patterns were detected, and the WHOIS data is consistent and transparent, supporting the site's legitimacy. Overall, the website demonstrates a solid digital presence with good content quality and privacy compliance. Strategic improvements in security policy transparency and technical security headers would further strengthen its posture. The absence of terms of service and vulnerability disclosure policies suggests areas for future enhancement to meet best practices comprehensively.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend (BMBFSFJ)

bmbfsfj.de

11

The Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend (BMBFSFJ) is a German federal government ministry focused on education, family, seniors, women, and youth policies. The website serves as an official information portal providing policy updates, publications, and public service tools targeted at a broad audience including families, seniors, and youth. It holds a strong market position as a government entity and offers comprehensive content with consistent branding and high trust indicators. Technically, the website employs a modern tech stack including Matomo for privacy-conscious analytics, custom JavaScript and CSS, and a proprietary or custom CMS. The site is hosted with DNS managed by the German Research Network, indicating a secure and reliable infrastructure. Performance and mobile optimization are good, with strong accessibility and SEO practices. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. While some advanced security headers are missing, no vulnerabilities or exposed sensitive data were detected. Privacy compliance is robust, with clear policies and data retention rules. Contact information is available, enhancing business credibility. Overall, the website is professional, secure, and trustworthy, with no signs of blocking or WAF interference. It is safe for general audiences and aligns well with government standards. Strategic recommendations include enhancing security headers and publishing a vulnerability disclosure policy to further strengthen security posture.

F

Startseite | Find das Bild

find-das-bild.de

42

Find-das-bild.de is a German child-friendly image search engine designed to provide children with free and safe photos for use. The website is powered by TYPO3 CMS and targets an educational niche audience, focusing on providing accessible visual content for children. The platform maintains a clean and professional design with good navigation and mobile optimization, supporting a positive user experience. Technically, the site uses modern web standards but lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance. Security posture is moderate with HTTPS enabled but could be improved by adding security policies and incident response contacts. Overall, the site is safe, trustworthy, and well-positioned within its niche but would benefit from enhanced privacy and security features.

D

Demetec GmbH

demetec.net

31

Demetec GmbH is a well-established software development company based in Eupen, Belgium, with a subsidiary in Lisbon, Portugal. With over 22 years of experience, the company specializes in web-based software solutions focusing on digitalization and customer-oriented internet applications for medium-sized enterprises. Their key services include application development, web and app development, project consulting, and digital transformation. The company targets medium-sized businesses primarily in Belgium and Portugal, leveraging a skilled international team. The website reflects a professional and consistent brand image with detailed job offerings and clear contact information, supporting their market position as a reliable technology service provider. Technically, the website uses a modern Microsoft .NET technology stack with popular frontend frameworks and libraries such as Angular, React, Vue, and jQuery. The site is mobile-optimized and offers a good user experience, though some SEO and accessibility improvements are possible. Security-wise, the domain is protected with clientTransferProhibited status, but lacks DNSSEC and security headers, and does not publish explicit security or incident response policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and professional but could enhance security and privacy practices to align with best standards.

C

Catch.do Inc.

avco.at

51

Catch.do Inc. operates a specialized online platform for domain auctions, focusing on expiring and premium domains such as avco.at. The company targets domain investors and businesses seeking valuable domain names, providing a marketplace with bidding and backordering services. The website demonstrates a professional and consistent brand presence with clear legal terms and auction rules, supporting trustworthiness in the domain auction niche. Technically, the site leverages modern frontend technologies including Vue.js, delivering a responsive and user-friendly experience. Security posture is strong with HTTPS enforced and secure form handling, though improvements are recommended in security headers and cookie consent mechanisms. Overall, the domain registration history and WHOIS data align with the business model, indicating legitimacy and maturity. Strategic recommendations include enhancing privacy compliance, publishing security policies, and improving accessibility to further strengthen trust and security.

T

Team Zones.sk

cambio-euro.it

9

Cambio-Euro.it is a small Italian finance-focused website providing daily updated currency exchange rates sourced from the European Central Bank, along with historical data and currency conversion tools. The site targets a broad audience including travelers, financial professionals, and currency traders, offering useful and relevant financial information. Technically, the website uses modern web technologies including Google Fonts, Google Analytics, Google Tag Manager, Adsense, and Facebook SDK for social integration and advertising. The site is mobile optimized with good navigation and content quality. Security-wise, the site uses HTTPS but lacks DNSSEC and some recommended security headers, representing moderate security maturity. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy or terms of service pages. Overall, the domain is well aged and legitimate, with consistent WHOIS data and no blocking or WAF detected.

T

Team Zones.sk

plzplz.de

47

plzPLZ.de is a specialized online service providing postal code lookup for Germany updated for the year 2025. The website offers search functionality by city, street, or postal code, targeting general users needing quick postal code information. The business appears to be a small-scale information service operated by Team Zones.sk, with sister sites for other countries' postal codes. Technically, the site uses standard web technologies including jQuery, Google Fonts, Google Tag Manager, and Adsense for monetization. The site is hosted on websupport.sk nameservers and employs HTTPS with a consent management platform to comply with GDPR cookie regulations. Security posture is moderate with no critical vulnerabilities detected but lacks explicit security headers and published privacy or terms of service pages. Advertising is extensive with multiple third-party ad networks and tracking vendors integrated. Overall, the website is functional, well-structured, and provides a useful niche service with moderate trustworthiness and compliance.

C

CTL Cargo Trans Logistik AG

ctl-partner.net

57

CTL Cargo Trans Logistik AG operates a logistics and cargo transport business primarily serving clients in Germany. Their online platform provides account login functionality for customers to manage shipments and related logistics services. The company is established with a domain registered since 2009, consistent with their business history. The website content is primarily in German with some English support, targeting business customers in the transportation sector. The business model focuses on B2B logistics services with a regional market presence.

V

VGP

vgpparks.eu

74

VGP is a European real estate company specializing in the ownership, management, and development of logistics and commercial properties across Europe. The website presents a professional image with a clear focus on their extensive portfolio of over 100 parks in prime locations. The business targets companies seeking high-quality logistics real estate solutions. Technically, the site is built on WordPress, utilizing modern SEO and performance optimization plugins such as Yoast SEO and WP Rocket. The presence of Google Tag Manager indicates moderate analytics and tracking capabilities. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism, but lacks explicit security headers and detailed privacy or incident response policies. The WHOIS data is privacy protected, which is common for corporate domains, but limits direct verification of registrant details. Overall, the site is professional and trustworthy but could improve transparency on privacy and security policies.

B

Bundesanstalt für Gewässerkunde (BfG)

bafg.de

61

The Bundesanstalt für Gewässerkunde (BfG) is a German federal government scientific institute specializing in hydrology, water body usage, water quality, ecology, and water protection. The website serves as an authoritative platform providing comprehensive information about the institute's organizational structure, research activities, advisory roles, and public information services. It targets government agencies, researchers, environmental professionals, and the interested public. The site is built on the Government Site Builder CMS, reflecting official government standards and practices. The content is well-structured, professionally presented, and accessible, with clear navigation and mobile optimization. Technically, the website employs standard web technologies including HTML5, CSS, and JavaScript, with no detected use of third-party advertising or tracking services. The site enforces HTTPS and includes a cookie consent mechanism, demonstrating good privacy compliance aligned with GDPR. However, explicit security policies and incident response contacts are not found, which could be improved to enhance transparency and security posture. From a security perspective, the site shows a solid baseline with HTTPS and no visible vulnerabilities or exposed sensitive data. The WHOIS data and DNS configuration align with German government infrastructure, supporting the legitimacy and trustworthiness of the domain. No WAF or blocking mechanisms interfere with content access, allowing full analysis. Overall, the website presents a trustworthy, professional, and comprehensive digital presence for a federal scientific institution. Strategic recommendations include publishing explicit security policies, incident response contacts, and vulnerability disclosure information to further strengthen security and compliance transparency.

W

Wasserstraßen- und Schifffahrtsverwaltung des Bundes

elwis.de

59

The website elwis.de is an official German federal government portal operated by the Wasserstraßen- und Schifffahrtsverwaltung des Bundes (Federal Waterways and Shipping Administration). It provides comprehensive electronic waterway information services (ELWIS) including navigation data, shipping notifications, water level forecasts, regulatory information, and online application portals for permits and certifications related to inland and sea shipping. The site targets maritime professionals, shipping companies, government agencies, and the general public interested in waterway information. The business model is a government service focused on regulatory compliance and information dissemination, positioning it as a key official source in Germany's waterway management sector. Technically, the site is built on the Government Site Builder CMS platform, using standard web technologies such as HTML5, CSS, and JavaScript. It demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The site uses HTTPS with strong SSL configuration but lacks explicit security headers in the HTML response. Forms are secured via HTTPS, and no sensitive data is exposed in the content. Privacy and legal policies are present and comprehensive, indicating GDPR compliance, but no cookie consent mechanism was detected. From a security perspective, the site shows a solid posture with HTTPS enforcement and no visible vulnerabilities or exposed sensitive information. However, improvements could be made by implementing security headers, publishing a vulnerability disclosure policy or security.txt, and providing explicit incident response contact details. No WAF or blocking mechanisms were detected, and the domain WHOIS data aligns with official German government infrastructure, supporting high legitimacy and trustworthiness. Overall, elwis.de is a professional, trustworthy government portal with excellent content quality and good technical implementation. Strategic recommendations include enhancing security headers, adding cookie consent mechanisms, and improving transparency around incident response to further strengthen security and compliance.

S

Skatteforvaltningen

skat.dk

76

Skat.dk is the official website of the Danish tax authority, providing comprehensive tax-related information and digital services to Danish citizens. The site is well-established, with a domain age dating back to 1998, reflecting its long-standing role as a government service portal. It offers key services such as tax filing, property valuation, and user account management, targeting the general Danish population. The website demonstrates a high level of professionalism, with excellent content quality, clear navigation, and consistent branding. Technically, the site is built using modern web technologies including React and Next.js, ensuring good performance and mobile optimization. The presence of a detailed cookie consent mechanism and privacy policy indicates strong digital maturity and compliance with GDPR requirements. Analytics and monitoring tools like Dynatrace and New Relic are used for performance and security monitoring. From a security perspective, the site enforces HTTPS and employs session cookies for secure user sessions. While explicit security headers are not fully confirmed, the overall SSL configuration is excellent. The lack of DNSSEC is a minor security gap. No critical vulnerabilities or exposed sensitive data were detected. However, the site does not publish a security.txt file or explicit incident response contacts, which could enhance transparency. Overall, skat.dk presents a trustworthy, secure, and user-friendly government portal with strong privacy compliance. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing security header implementation to further strengthen its security posture.