Security Directory

M

Město Horní Jelení

hornijeleni.cz

50

The website www.hornijeleni.cz serves as the official online presence of the municipal government of Horní Jelení, a small town in the Czech Republic. It provides comprehensive information about the city, local administration, community services, events, and public notices. The site targets residents and visitors seeking official information and municipal services. The business model is that of a government entity focused on public service and communication. Technically, the website employs standard web technologies including jQuery, Google Analytics, and Google Tag Manager for analytics and tracking. It uses web fonts and a cookie consent mechanism compliant with GDPR. The site is moderately optimized for performance and mobile devices, with good SEO and basic accessibility features. However, no CMS or hosting provider details are evident, and security headers are not visibly implemented. From a security perspective, the site uses HTTPS and includes a cookie consent banner with detailed settings, indicating attention to privacy compliance. However, the absence of security headers and lack of visible incident response or security policy pages suggest room for improvement. The WHOIS data is missing, which reduces trustworthiness from a domain registration perspective, although the site content and contact details strongly indicate legitimacy. Overall, the website is a well-structured, professional municipal portal with good content quality and privacy compliance. The main risks relate to missing WHOIS data and limited visible security controls. Strategic recommendations include enhancing security headers, verifying domain registration, and publishing explicit security policies to improve trust and compliance.

O

Obec Býšť

byst.cz

48

Obec Býšť operates an official municipal website serving the local community in the Czech Republic. The site provides comprehensive information about the municipality, including local government, education, culture, sports, and community services. It targets residents and visitors seeking official information and services. The website is well-structured with clear navigation and uses modern web technologies such as jQuery, Bootstrap, and Swiper.js to enhance user experience. Mobile optimization is good, and the site includes a cookie consent mechanism indicating awareness of privacy compliance requirements. However, the absence of a privacy policy and WHOIS registration data presents compliance and trust concerns. Security posture is moderate with HTTPS usage but lacks visible security headers and vulnerability disclosure policies. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices.

D

deltacity

deltacity.net

71

deltacity is an independent digital service provider based in Germany specializing in the development of sophisticated digital platforms across digital health, commerce, and content management sectors. The company offers comprehensive services including strategic consulting, creative conception, innovative software development, and technical implementation. Their website reflects a professional and consistent brand presence with clear service offerings and active recruitment efforts, indicating a medium-sized enterprise with a solid market position in the technology sector. Technically, the website is built on Drupal 10 CMS, employs Matomo for analytics with user consent management via CookieFirst, and integrates multimedia content through Vimeo. The site is mobile-optimized with good SEO and accessibility features, although some security headers are not explicitly detected. HTTPS is enforced, and privacy policies are comprehensive and GDPR compliant. From a security perspective, the site demonstrates good practices such as encrypted connections and cookie consent but lacks visible incident response contacts or vulnerability disclosure mechanisms. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and branding suggest a legitimate business. This discrepancy warrants further investigation to confirm domain ownership and registration status. Overall, deltacity presents a trustworthy and professional digital agency with a mature digital infrastructure. Strategic recommendations include enhancing security headers, publishing explicit security policies, and resolving WHOIS inconsistencies to strengthen trust and compliance.

G

Greenpeace e. V.

greenpeace.de

70

Greenpeace e. V. is a well-established non-profit environmental organization based in Germany, focused on climate protection, biodiversity, and peace advocacy. The website serves as a comprehensive platform for public education, activism, and fundraising, targeting environmentally conscious individuals and supporters. It maintains a strong market position as a leading environmental NGO with a large audience and consistent branding. Technically, the website is built on Drupal 10, leveraging modern web technologies and third-party tools such as Usercentrics for consent management and Google Tag Manager for analytics. Hosting is provided by Colt Technology Services, indicating a professional infrastructure. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the site uses HTTPS and consent management but lacks visible security headers and explicit security policies or incident response contacts. No vulnerabilities or suspicious content were detected. Privacy compliance is partial due to the absence of a clearly linked privacy policy and terms of service. Overall, Greenpeace.de presents a trustworthy, professional, and content-rich website with minor gaps in privacy and security transparency. Strategic improvements in these areas would enhance compliance and user trust.

E

Econics Institute e.V.

econics.institute

53

Econics Institute e.V. is a small, non-profit thinktank founded in 2025 in Germany, specializing in ecosystem research and practical expertise related to the climate crisis. The organization promotes the concept of 'Ökonik', learning from nature's economic processes to foster sustainable human economic activities. The website is professionally designed using WordPress and Elementor, with good SEO and privacy compliance features including a cookie consent banner. Security posture is solid with HTTPS enforced, though security headers are absent and no explicit security policy is published. WHOIS data is privacy protected but consistent with the organization's founding timeline. Overall, the site presents a trustworthy and credible digital presence for a niche academic and environmental audience.

B

Bergwaldprojekt e.V.

bergwaldprojekt.de

57

Bergwaldprojekt e.V. is a well-established German non-profit organization dedicated to environmental conservation, specifically focusing on forest, moor, and open land ecosystem protection and restoration. With over 35 years of experience, it mobilizes thousands of volunteers annually for ecological projects and environmental education. The organization also engages corporate partners and donors to support its mission. The website reflects a mature digital presence built on Drupal 11, featuring privacy-conscious analytics and comprehensive cookie consent mechanisms. Contact information and social media channels are clearly presented, enhancing trust and engagement. Security posture is solid with HTTPS and cookie management, though some security headers could be improved. Overall, the site is professional, accessible, and well-optimized for mobile and SEO.

pg-webstudio is a small German web design and development service provider specializing in custom websites using popular CMS platforms such as Wordpress, Drupal, Grav, Contao, and Joomla. The company targets local businesses and individuals in Göttingen and surrounding areas, offering a comprehensive range of services including SEO, responsive design, interactive maps, and ongoing website maintenance. The website showcases a strong portfolio of client projects across various industries, demonstrating technical versatility and design expertise. Technically, the site uses modern web standards and frameworks like Bootstrap 4 and jQuery, hosted on Alfahosting servers. Mobile optimization and user experience are excellent, with clear navigation and professional content. Security posture is moderate with cookie consent implemented and form nonce tokens present, but lacks visible HTTP security headers and explicit security policies. No active analytics tracking or advertising is detected, enhancing privacy compliance. WHOIS data aligns with the website's business focus, indicating legitimacy. Overall, the site is professional, trustworthy, and well-structured.

R

Remote Sensing Solutions

remote-sensing-solutions.de

62

Remote Sensing Solutions is a German company specializing in geospatial intelligence for environmental monitoring, leveraging remote sensing and AI technologies. The company offers a range of services including forest and carbon monitoring, AI platforms for transparency and supply chain verification, consulting, and clean energy assessment. Their market position is strong within Germany with 25 years of experience, targeting environmental organizations, government agencies, and businesses requiring compliance and monitoring solutions. Technically, the website is built on WordPress with modern plugins and integrates Google Analytics and Tag Manager for tracking. The site is mobile optimized and SEO friendly, though some accessibility features could be improved. Security posture is good with HTTPS and reCAPTCHA usage, but lacks explicit security headers and incident response information. Privacy compliance is partial, with a cookie consent mechanism but no visible privacy or terms of service pages. WHOIS data is missing, which raises concerns about domain legitimacy despite professional website content. Overall, the website is functional and professional but would benefit from enhanced transparency and security disclosures.

B

BIOLASE

biolase.com

61

BIOLASE is a recognized global leader in dental laser technology, specializing in manufacturing advanced all-tissue and soft-tissue dental lasers. The company also provides comprehensive education, training, and support services to dental professionals worldwide. Recently integrated into the MegaGen family, BIOLASE aims to enhance its legacy of quality and customer care under new leadership. The website reflects a mature digital presence with rich content, clear navigation, and professional branding targeted at dental practitioners and patients interested in laser dentistry solutions. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies such as jQuery, Google Tag Manager, and Facebook Pixel for marketing and analytics. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security posture is good with HTTPS enabled and secure form handling, but lacks explicit security headers and published security policies. The absence of WHOIS registration data is a notable anomaly, reducing domain trustworthiness slightly. Additionally, the site lacks visible privacy and cookie policies, which are critical for GDPR compliance and user trust. Contact information is comprehensive, including phone numbers, email, physical address, and contact forms, supporting business credibility. Overall, BIOLASE's website demonstrates strong business credibility and technical implementation but should address privacy compliance and WHOIS transparency to enhance trust and security posture.

Ocean News & Technology is a specialized media platform delivering news, insights, and information focused on ocean science, maritime technology, subsea energy, and related sectors. Established in 1999, it serves industry professionals and stakeholders with news articles, magazines, directories, and event information. The website is built on WordPress with Elementor and integrates advertising and tracking technologies such as AdButler, Google Tag Manager, and Facebook Pixel. The technical infrastructure is modern and performs moderately well with good mobile optimization and SEO practices. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and security headers could be improved. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Contact information and incident response details are not explicitly provided, which may impact user trust and compliance. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security transparency.

S

SEATAC

seatacsolutions.ca

58

SEATAC is a specialized Technology Access Centre based in Nova Scotia, Canada, focused on advancing ocean innovation through applied research and development services. It operates as a small entity connected with the Nova Scotia Community College and serves primarily small and medium-sized companies in the ocean technology sector. The website presents a professional image with clear branding and consistent messaging about its mission and services. Technically, the site is built on WordPress using the Divi theme, leveraging common web technologies such as jQuery and MediaElement.js, and integrates Google Fonts and Yoast SEO for enhanced user experience and search optimization. Security posture is adequate with HTTPS enabled and domain transfer protections in place, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is trustworthy and well-positioned within its niche, with room for enhancements in security and privacy practices.

S

SkillsPass

skillspass.com

66

SkillsPass is a digital platform designed to help workers manage and share their training certificates securely and conveniently. It is supported by partnerships with government agencies, regulators, and industry groups, positioning it as a trusted service in the Canadian workforce training sector. The platform replaces traditional paper certificates with a mobile-accessible digital solution, enhancing career mobility and compliance. The website is professionally designed, leveraging WordPress and Elementor technologies, and incorporates SEO best practices to reach its target audience effectively. However, the absence of WHOIS data raises questions about domain registration transparency, although the association with Bluedrop ISM lends credibility. Security posture is generally good with HTTPS and no exposed sensitive data, but improvements are needed in security headers and privacy compliance mechanisms such as cookie consent. Overall, the site presents a trustworthy and functional service with room for enhanced security and compliance documentation.

C

Cyberimpact

cyberimpact.com

59

Cyberimpact is a Canadian-based email marketing platform focused on providing powerful and easy-to-use tools for small and medium businesses (SMBs), non-profits, and various sectors including government, healthcare, and education. The company emphasizes compliance with Canadian regulations such as CASL and Quebec's Law 25, hosting data locally to ensure privacy and better delivery rates. Their business model is SaaS-based, offering subscription plans and professional services to enhance customer engagement and marketing automation. Technically, the website is built on WordPress with a modern tech stack including Google Analytics, Microsoft Clarity, Intercom, and reCAPTCHA for security. The site is well-optimized for SEO, mobile responsive, and uses multiple third-party integrations for marketing and analytics. The presence of bilingual support and localized billing in CAD further strengthens their market position in Canada. From a security perspective, the site uses HTTPS and implements reCAPTCHA to protect forms. Cookie consent is managed via Axeptio, indicating attention to privacy compliance. However, the absence of explicit security headers and a public security policy or incident response contact are areas for improvement. The WHOIS data is missing, which slightly reduces trust but the overall professional presentation and trust signals mitigate this concern. Overall, Cyberimpact presents a mature, trustworthy platform with strong Canadian market focus and compliance. Strategic recommendations include enhancing transparency around security policies, publishing incident response contacts, and improving WHOIS registration visibility to boost trust further.

K

Katholische Marien-Grundschule

marien-grundschule.de

56

Katholische Marien-Grundschule is a small Catholic primary school located in Berlin, Germany, affiliated with the Archdiocese of Berlin. The school provides education primarily for children with specific support needs, emphasizing a holistic and values-based approach. The website serves as an information portal for parents, students, and the community, offering details about school services, events, and contact information. The site is well-structured and professionally maintained, reflecting the institution's commitment to transparency and community engagement. Technically, the website is built on Joomla CMS with modern plugins and demonstrates good mobile responsiveness and SEO practices. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent mechanisms in place, although explicit security policies and incident response contacts are absent. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate educational institution.

L

Landesverband der Kita- und Schulfördervereine Berlin-Brandenburg e.V.

lsfb.de

47

The Landesverband der Kita- und Schulfördervereine Berlin-Brandenburg e.V. operates as a regional non-profit association supporting daycare and school support organizations in the Berlin-Brandenburg area. The website serves as an informational and advocacy platform targeting parents, educators, and affiliated support groups. The organization positions itself as a key regional player in educational support, focusing on community engagement and resource provision. Technically, the website is built on WordPress CMS with modern frameworks such as Bootstrap and Elementor, hosted by Alfahosting. It employs HTTPS for secure communication and integrates Google Analytics for visitor tracking. Accessibility is enhanced by a dedicated accessibility tool, and cookie consent mechanisms are implemented, reflecting a moderate level of digital maturity. From a security perspective, the site benefits from HTTPS and updated software components but lacks explicit privacy policies, terms of service, and incident response contacts. No vulnerability disclosure or security.txt files are present, indicating room for improvement in transparency and compliance. Security headers are partially implemented, and no WAF or blocking mechanisms interfere with accessibility. Overall, the website is professionally designed and functional with good content relevance and user experience. However, to enhance trust and compliance, the organization should publish comprehensive privacy and security policies and provide clear contact channels for security incidents.

The analyzed URL belongs to PayPal, a globally recognized online payment platform facilitating secure financial transactions for consumers and merchants worldwide. The business operates in the finance and technology sectors, providing key services such as online payments, merchant solutions, and peer-to-peer transfers. However, the analyzed page content is blocked behind a CAPTCHA iframe, indicating the presence of a Web Application Firewall or bot mitigation system, which restricts access to full website content and metadata. From a technical perspective, the site uses JavaScript and embeds CAPTCHA content from geo.ddc.paypal.com, suggesting advanced bot protection. Due to the content blocking, detailed analysis of SEO, accessibility, and performance is not possible. Security posture shows HTTPS usage and CAPTCHA implementation but lacks visible security headers or policies on the analyzed page. WHOIS data is unavailable due to registry restrictions, which is common for high-profile domains and does not indicate suspicious activity. Overall, the website demonstrates strong business credibility and brand trust but is currently inaccessible for full content and policy inspection due to security controls. This limits the ability to assess privacy compliance, contact information availability, and detailed security configurations. The risk level is low given the brand and domain legitimacy, but the lack of visible policies and contact details on this page is a gap. Strategic recommendations include improving public visibility of privacy and cookie policies, exposing security headers, and providing clear contact and incident response information to enhance transparency and compliance. Continuous monitoring of security posture and ensuring accessibility for legitimate users while maintaining bot protection is advised.

O

OEMUS MEDIA AG

welovewhatwedo.org

56

OEMUS MEDIA AG is a well-established German media company specializing in dental publishing, online media, and event management. The website analyzed is a dedicated anniversary campaign site celebrating 30 years of OEMUS, showcasing employee testimonials and company milestones. The company holds a strong market position as a key player in the dental media sector with a medium-sized operation based in Leipzig, Germany. Technically, the site uses modern frontend technologies including jQuery and Owl Carousel, hosted likely on AWS infrastructure. The site is mobile-optimized and professionally designed, providing a good user experience and clear navigation. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the domain registration is transparent and consistent, though the domain age is relatively new compared to the company's long history, indicating a possible new campaign domain. No suspicious or malicious content was found, and the site is safe for general audiences.

O

OEMUS MEDIA AG

jobsuchtdich.de

43

The website jobsuchtdich.de is a German job portal operated by OEMUS MEDIA AG, focusing on providing job listings and recruitment advertising services. The site targets job seekers and employers primarily in Germany, positioning itself as a niche media company within the recruitment sector. The business model revolves around online job advertising and media services. Technically, the site is built on WordPress using Elementor and JetEngine plugins, hosted on servers with kasserver.com nameservers. The site includes cookie consent mechanisms via BorlabsCookie and SEO optimizations through Rank Math. However, there is a lack of visible privacy policy, terms of service, and explicit contact information, which impacts compliance and trust. Security posture is moderate with no detected security headers or incident response information, and SSL configuration details are not provided. Overall, the site is professionally designed, mobile optimized, and content is relevant and safe for general audiences.

C

Centrum výzkumu Řež s.r.o.

cvrez.cz

62

Centrum výzkumu Řež s.r.o. is a Czech research organization specializing in nuclear energy research, development, and innovation. The company operates significant research infrastructure including nuclear reactors and technological loops, serving both domestic and international clients. It holds an important position in the Czech energy research sector and collaborates with multiple partners and projects. The website reflects a professional and well-structured digital presence with clear business information and active communication channels. Technically, the website uses modern JavaScript libraries such as Swiper.js for carousels, Google Tag Manager for analytics, and integrates Google Maps API. The site is mobile-optimized, accessible, and SEO-friendly. Privacy and cookie consent mechanisms are implemented in compliance with GDPR. However, no CMS or hosting provider details are explicitly detected. From a security perspective, the site enforces HTTPS and uses secure forms with validation. It lacks published security policies and incident response contacts, which are recommended for improved transparency and readiness. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data for the domain is a notable concern, reducing trust in domain legitimacy despite the professional website content. Overall, the website is a credible and professional representation of a specialized research entity with good technical and privacy practices. Strategic improvements in security policy publication and domain registration transparency would enhance trust and compliance.

6

6th River

6thriver.cz

61

6th River operates as a science and technology park based in Plzeň, Czech Republic, offering rental spaces, consulting services, and facilities to support innovation and business development. The organization positions itself as a regional hub for scientific and technological advancement, supported by European Union co-financing for multiple projects. The website is professionally designed, bilingual (Czech and English), and targets businesses and organizations seeking development support in the Plzeň region. Technically, the website is built on WordPress with modern frontend technologies such as Swiper.js and LazyLoad.js, and it uses Yoast SEO for optimization. The site is served over HTTPS with a valid SSL certificate, ensuring secure communications. Mobile optimization and SEO practices are good, though accessibility features are basic. No major performance issues were detected. From a security perspective, the site enforces HTTPS but lacks important security headers and visible security or privacy policies, which are compliance gaps. No forms or data collection mechanisms were found on the homepage, reducing immediate risk exposure. The absence of WHOIS data for the domain is a concern, as it reduces trust and transparency regarding domain ownership and legitimacy. Overall, the website is safe, professional, and trustworthy in content and presentation but would benefit from improved privacy compliance and domain registration transparency to enhance its security posture and business credibility.

Č

Česká rada dětí a mládeže

darujemekrouzky.cz

41

Darujemekrouzky.cz is a Czech non-profit project organized by the Česká rada dětí a mládeže that provides financial support to families in difficult financial situations to pay for children's extracurricular activities. The project operates a voucher system targeting children aged 3 to 18 years, including support for Ukrainian refugee families residing in the Czech Republic. Supported by multiple foundations and institutions, the project enjoys strong trust signals including the patronage of the Czech president's wife. Technically, the website is built on WordPress with the Avada theme, uses modern web technologies, and integrates Google Tag Manager for analytics. Security posture is good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms, which are recommended for GDPR compliance. The domain WHOIS data is unavailable, limiting domain trust verification, but the website content and partner references strongly indicate legitimacy.

P

Pilsen Jaguars

pilsenjaguars.cz

46

Pilsen Jaguars is a small, community-focused cheerleading sports club based in Plzeň, Czech Republic, operating since 2020. The organization offers cheerleading training, camps, competitions, and team recruitment primarily targeting youth and adults interested in cheerleading. The website is professionally designed using WordPress and Elementor, with good mobile optimization and clear navigation. It integrates social media channels and uses Google Analytics for visitor tracking. The hosting provider is REG-WEDOS, consistent with the domain registration data. From a security perspective, the website uses HTTPS and implements a cookie consent banner, indicating basic GDPR compliance. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which could be improved. No forms or sensitive data exposure were detected on the homepage. The WHOIS data is consistent with the business profile, showing no suspicious patterns. Overall, the website presents a trustworthy and professional image suitable for its community sports club purpose. Strategic improvements in security policy transparency and advanced security controls would enhance its security posture and compliance maturity.

T

Taneční Akademie Plzeň

tanecniakademieplzen.cz

50

Taneční Akademie Plzeň is a small local dance academy based in the Czech Republic, focused on providing dance training and activities primarily for children and youth. The website presents the academy's founder and main trainer, Alena Hadravová, and highlights the academy's values such as passion, joy, and communication. The business model revolves around offering dance courses and team activities within the Plzeň region. The website is built on WordPress, hosted by Wedos, and uses common web technologies including jQuery and Google Fonts. The site is moderately optimized for mobile devices and has a professional design with clear navigation.

S

Spider Dance Company Plzeň

spiderdc.cz

43

Spider Dance Company Plzeň is a well-established dance school based in Plzeň, Czech Republic, specializing in modern dance styles such as disco dance and street dance. Operating since 1996, it serves a broad age range of dancers and has a strong presence in national and international dance competitions. The website reflects a professional and community-focused organization with detailed information about classes, teams, events, and achievements. Technically, the site is built on WordPress with Elementor and Yoast SEO, indicating a modern and SEO-friendly infrastructure. Security posture is moderate with HTTPS usage but lacks visible security headers and formal privacy and cookie policies, which are areas for improvement. The absence of WHOIS data reduces domain trust but does not negate the legitimacy suggested by the website content and social media presence. Overall, the site is user-friendly, content-rich, and trustworthy for its target audience.

S

Stormballet – Taneční škola

stormballet.com

43

Stormballet.com is the website of a Czech dance school established in 2004, offering dance education services primarily to a local audience. The website is built on WordPress using the Visual Composer plugin, indicating a moderate level of digital maturity. The site design and content are basic but functional, with no advanced SEO or accessibility features detected. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers. No privacy or cookie policies are present, indicating compliance gaps with GDPR. Contact information and business certifications are not visible, which may affect user trust. Overall, the site represents a small local business with a basic online presence.

Align Technology is a global leader in medical devices specializing in orthodontic and restorative treatments, primarily known for its Invisalign® clear aligner system and iTero™ intraoral scanners. The company targets dental professionals and patients worldwide, positioning itself as an innovator in dental technology with a strong market presence and over 20 million patients treated. The website reflects a mature digital presence with comprehensive content, clear navigation, and consistent branding. Technically, the site employs modern web technologies including Google Tag Manager, TrustArc for consent management, and accessibility tools, ensuring a good user experience across devices. Security posture is solid with HTTPS enforced and privacy policies in place, though some advanced security headers and explicit incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable, limiting domain registration transparency.

+

+Pluswerk AG

pluswerk.digital

11

Pluswerk AG is a leading European full-service digital agency specializing in open-source technologies such as TYPO3, Pimcore, and Shopware. With a team of 160 experts across four countries, they provide comprehensive digital solutions including e-commerce, corporate websites, and online marketing. Their market position is strong, supported by multiple industry awards and partnerships, targeting B2B clients ranging from medium-sized enterprises to public institutions and universities. The company emphasizes innovation, efficiency, and measurable results in digital transformation projects. Technically, the website is built on TYPO3 CMS with integrations of Pimcore and Shopware platforms. The site demonstrates modern web practices including responsive design, accessibility considerations, and SEO optimization. Analytics are handled via privacy-conscious tools like Matomo with DoNotTrack and cookie consent mechanisms, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs cookie consent with granular controls. However, explicit security headers and a public security policy or incident response contacts are absent, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable due to privacy protection, but the website's professionalism and trust signals support its legitimacy. Overall, Pluswerk AG presents a low-risk profile with a robust digital presence and compliance posture. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a vulnerability disclosure program to further strengthen trust and security culture.

R

Revolware

revolware.com

49

Revolware is a Slovakia-based technology company specializing in rational software and AI development services tailored for modern businesses and startups. Founded in 2015, the company offers a broad range of services including web and mobile app development, augmented and virtual reality solutions, design and branding, and consulting focused on business process digitization. Their portfolio showcases diverse projects and multiple awards, positioning them as an innovative and trusted software solutions provider in their market segment. Technically, Revolware employs a modern technology stack including Java, C#, Python, C++, PHP, and JavaScript frameworks such as React-native and Laravel. The website is hosted on DigitalOcean and uses Bootstrap for responsive design. While the site demonstrates good design quality, mobile optimization, and SEO practices, some technical improvements are recommended, such as enabling DNSSEC and implementing security headers. From a security perspective, the website uses HTTPS and anonymizes IP addresses in Google Analytics, but lacks visible security headers and published security or privacy policies. No incident response or vulnerability disclosure information is provided. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. Overall, Revolware presents a professional and credible online presence with strong business credibility and technical maturity. However, to enhance security posture and regulatory compliance, the company should publish comprehensive privacy and cookie policies, implement security headers, enable DNSSEC, and provide incident response contacts. These steps will improve trust and reduce potential risks associated with data protection and security.

J

jakub cigler architekti, a.s.

unlimitedjca.com

59

unlimited Jakub Cigler Architekti is a pro-bono and experimental architectural practice operating as a department within the established Czech architectural studio jakub cigler architekti, a.s. The practice focuses on sustainable, regenerative, and socially conscious architecture, with projects primarily in Burkina Faso, Ethiopia, Mauritania, and the Czech Republic. Their work emphasizes low-tech methods and locally sourced materials, targeting architects, designers, and socio-cultural collaborators. The website is hosted on WordPress.com and leverages Jetpack plugins for functionality and social features. Contact information is clearly provided, supporting business credibility. However, the site lacks formal privacy and cookie policies, which impacts compliance.

R

Royal Terberg Group B.V.

terberggroup.com

10

Royal Terberg Group B.V. is a well-established family-owned business specializing in the development, production, and modification of special transport vehicles and environmental loading systems. With a history spanning over 155 years, the company serves logistics and waste collection markets, offering a broad range of products and services including maintenance, spare parts, repair, rental, and telematics. The website reflects a professional and consistent brand image, targeting business clients in transportation and environmental sectors. Technically, the site employs modern web technologies such as Bootstrap, Vue.js, and Matomo analytics, and is built on the Episerver CMS platform. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and cookie consent mechanisms, but lacks explicit security headers and incident response contact information, which are areas for improvement. The absence of WHOIS registration data reduces trust slightly, though the overall digital presence and business information support legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and monitoring domain registration status.

T

Terberg Kinglifter

terbergkinglifter.com

10

Terberg Kinglifter is a specialized Dutch manufacturer of truck-mounted forklifts, offering a range of models including compact, universal, electric, and high-power variants. The company serves a broad industrial audience, including logistics, beverage distribution, agriculture, and governmental sectors. Supported by a global distributor network and company-owned locations in the Netherlands and Germany, Terberg Kinglifter maintains a strong market presence within Europe and beyond. The website reflects a mature digital infrastructure with modern analytics and marketing tools, good mobile optimization, and clear navigation. Security posture is solid with HTTPS enforcement and privacy compliance, though some security headers and explicit incident response policies could be improved. WHOIS data is unavailable due to EURid privacy policies, which is typical for .eu domains, but the website's branding and contact information support legitimacy. Overall, the site is professional, trustworthy, and business-focused.

T

Terberg Techniek

terbergtechniek.nl

10

Terberg Techniek is a specialized vehicle modification company operating under the Royal Terberg Group umbrella, focusing on bespoke heavy-duty vehicle adaptations including chassis modifications, mining vehicles, and truck-mounted cranes. The company targets industrial clients requiring custom vehicle solutions, positioning itself as a niche leader with a medium-sized operational footprint primarily in the Netherlands but serving global markets. The website reflects a professional and consistent brand image with comprehensive service descriptions and recent project highlights. Technically, the site employs a modern technology stack including Matomo analytics, Google Tag Manager, Azure Application Insights, and Vue.js, hosted on a CMS platform identified as Episerver (Optimizely). The site is mobile optimized and performs moderately well with good SEO and accessibility basics. Security posture is strong with HTTPS enforced, privacy-compliant cookie consent, and anonymized analytics tracking, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website is trustworthy and professionally maintained, supporting the company's business credibility and digital presence.

T

Terberg Special Vehicles

terbergspecialvehicles.com

76

Terberg Special Vehicles is a specialized manufacturer of industrial and terminal vehicles, including terminal tractors, RoRo tractors, and electric vehicles, serving global markets such as ports, distribution centers, and industry. The company operates under the Royal Terberg Group umbrella and offers comprehensive services including maintenance, telematics, and training. The website demonstrates a mature digital presence with modern technologies like Vue.js, Bootstrap, and integrated analytics tools such as Matomo and Azure Application Insights. Security posture is generally good with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. The absence of WHOIS registration data is a concern but the professional content and consistent branding mitigate trust issues. Overall, the site is well-designed, user-friendly, and compliant with GDPR requirements.

G

Gábor Szilvia

aszodiuzletek.hu

48

Aszodiuzletek.hu is a Hungarian e-commerce price comparison and product recommendation platform launched in 2023. It aggregates product offers from multiple partner webshops, providing users with a centralized place to find competitive prices and product information. The website targets general consumers interested in shopping across various categories including electronics, fashion, home goods, and adult products. The platform emphasizes ease of use, quick price comparison, and access to special offers. Technically, the site uses modern frontend technologies including Bootstrap, jQuery, and Google reCAPTCHA v3 for bot protection. The site is mobile optimized and features a structured navigation system with extensive product categories and partner listings. Security posture is moderate with HTTPS enforced and reCAPTCHA implemented, but lacks explicit security headers and published security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. The domain registration is recent and consistent with the business profile, indicating legitimacy. Overall, the site presents a professional and functional e-commerce aggregator with room for improvement in security and privacy compliance.

D+C - Development + Cooperation is a well-established online magazine focusing on global development issues such as poverty reduction, gender equality, governance, and sustainability. The website serves a global audience of development professionals, policymakers, and interested public by providing high-quality articles, interviews, and digital monthly editions. The business operates as a non-profit media entity with a clear mission to inform and engage on development topics. Technically, the site is built on Drupal 10, uses modern web technologies, and integrates a consent management platform to ensure GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security-wise, the website enforces HTTPS and uses Google Tag Manager and Usercentrics for analytics and consent management, respectively. However, some security headers are not explicitly detected, and there is no visible security policy or vulnerability disclosure mechanism. Overall, the domain registration details align well with the website's professional and German-based media presence, indicating high legitimacy and trustworthiness.

D

DAAD (Deutscher Akademischer Austauschdienst)

alumniportal-deutschland.org

69

Alumniportal Deutschland is a digital networking platform primarily serving alumni, universities, and organizations to facilitate international exchange, events, and career development. It is affiliated with the DAAD, a reputable German academic exchange service, which strengthens its market position and trustworthiness. The platform offers a variety of services including community engagement, job boards, and learning resources, targeting international alumni and academic professionals. Technically, the website uses modern frontend frameworks such as Vue.js and Nuxt.js, delivering a responsive and accessible user experience with good SEO practices. Security-wise, the site enforces HTTPS, implements cookie consent mechanisms, and follows best practices in form handling and data privacy, although explicit security policies and incident response information are not publicly detailed. Overall, the website presents a professional, trustworthy, and well-maintained digital presence with a strong focus on privacy compliance and user engagement.

I

ifa – Institut für Auslandsbeziehungen

ifa.de

56

ifa – Institut für Auslandsbeziehungen is a German non-profit cultural institution dedicated to promoting international cultural exchange, arts, research, and civil society engagement. The organization offers programs such as the CrossCulture fellowships, art exhibitions, research publications, and digital cultural projects, positioning itself as a key player in international cultural relations. The website reflects a professional and consistent brand image, targeting professionals and stakeholders in the cultural and research sectors.

G

Germany Trade & Invest (GTAI)

germanyworks.com

60

Germany Means Business is a government-backed platform operated by Germany Trade & Invest (GTAI) to facilitate international business expansion into Germany. The website provides comprehensive market intelligence, investment consulting, and expert guidance to global companies seeking to register and grow their business in Germany. The platform positions itself as a reliable gateway to Europe's largest economy, leveraging official federal support and a strong industry network. Technically, the site is built on modern frameworks such as Astro, uses a headless CMS (Storyblok), and integrates privacy-compliant consent management and analytics tools. Security posture is strong with HTTPS, domain locking, and cookie consent mechanisms, though DNSSEC is not enabled. The domain is newly registered but consistent with the recent launch of the platform. Overall, the website demonstrates high professionalism, excellent content quality, and trustworthy government affiliation, making it a credible resource for business investors.

F

Facts about Germany

tatsachen-ueber-deutschland.de

64

The website 'Facts about Germany' serves as an official multilingual information portal providing comprehensive facts about Germany's politics, economy, culture, and society. It targets a broad international audience including researchers, policy makers, and the general public. The site is government-backed and positions itself as a trusted source of factual information about Germany. Technically, it is built on Drupal 10 CMS, employs modern JavaScript modules, and integrates a Usercentrics Consent Management Platform to ensure GDPR compliance. Google Tag Manager is used for analytics with default consent set to denied, reflecting a privacy-conscious approach. Security-wise, the site enforces HTTPS and uses consent mechanisms but lacks visible security headers and explicit incident response or vulnerability disclosure pages. Overall, the site is professionally designed, mobile-optimized, and accessible, with high content quality and trustworthiness. Recommendations include adding security headers, publishing a security.txt file, and providing clearer incident response contacts to enhance security posture and compliance.

R

REMEX GmbH

meb-wissen.de

50

MEB Wissen is an educational platform operated under the REMEX GmbH group, focused on providing training and resources related to the German Ersatzbaustoffverordnung (EBV) regulation. The platform offers on-demand courses, live webinars, group seminars, and digital/print work aids targeting professionals in construction and environmental sectors. The business model centers on paid and free educational content to support sustainable building material usage. Technically, the website is built on WordPress with WooCommerce and Masterstudy LMS, leveraging modern web technologies such as Vue.js and Bootstrap. The site is hosted on INWX nameservers and shows good SEO and mobile optimization practices. Security posture is solid with HTTPS and no exposed sensitive data, though some improvements are recommended such as adding security headers and cookie consent mechanisms. Overall, the site is professional, trustworthy, and compliant with GDPR, though explicit cookie consent is missing. The WHOIS data aligns with the business claims, showing no suspicious patterns. The site integrates social media channels and partner domains related to REMEX GmbH, enhancing credibility.

R

REMEX GmbH

ressourcenwende-jetzt.de

59

REMEX GmbH operates the website Ressourcenwende JETZT, focusing on promoting resource efficiency and recycling in the German construction and industrial sectors. The site serves as an advocacy platform for regulatory reform and sustainable resource management, targeting policymakers, industry stakeholders, and environmental advocates. It is part of the REMONDIS group, a large player in waste management and recycling. Technically, the website is built on TYPO3 CMS, uses jQuery, and integrates FriendlyCaptcha for form security. The site is hosted on Brandshelter infrastructure and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and spam protection on forms, though security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy, but cookie consent mechanisms are lacking. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

R

REMEX Solutions

remex-solutions.de

43

REMEX Solutions is a company operating in the energy sector, providing specialized solutions likely related to energy or resource management. The website is built on WordPress with SEO optimization via the Yoast plugin, indicating a moderate level of digital maturity. The technical infrastructure includes modern fonts and responsive design elements, hosted via INWX, a German hosting provider. Security posture is moderate with no explicit security headers or policies detected, and no visible vulnerabilities in the provided content. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional but lacks critical compliance and security disclosures.

S

sensis+wiegon

autonomerwertstoffhof.de

50

sensis+wiegon operates as an innovative leader in the digital transformation of waste management, specifically focusing on autonomous and digital recycling centers for municipalities and companies in Germany and Austria. Their flagship offering, the autonomous Wertstoffhof, leverages advanced automation, digital user guidance, and data-driven optimization to improve recycling efficiency, reduce operational costs, and enhance user experience. The company positions itself as a forward-thinking partner for sustainable waste management solutions, supported by multiple awards and positive customer testimonials. Technically, the website is built on a modern stack including Django CMS, Bootstrap, and uses Matomo and LinkedIn for analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS, CSRF protection, and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

B

Büro Maisengasse GmbH

maisengasse.at

49

Büro Maisengasse GmbH is a small technology-focused company based in Landeck, Tirol, Austria, specializing in branding, digitalization, and web application development. The company offers end-to-end services including concept development, design, and implementation, targeting businesses seeking tailored digital solutions. Their market position is strong regionally, supported by multiple innovation awards. Technically, the website employs modern JavaScript libraries and analytics tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS, CSRF protection, and cookie consent mechanisms, though some HTTP security headers are missing and no explicit security policy is published. Overall, the site is professional, trustworthy, and GDPR compliant, with clear contact information and transparent cookie management.

N

NeoPixel s.r.o.

neopixel.sk

10

NeoPixel s.r.o. is a Slovak-based technology service provider specializing in comprehensive web solutions and SEO optimization. Established in 2015, the company positions itself as a leader in web design and SEO services within its regional market. Their website emphasizes delivering high-quality web presence and search engine visibility for clients, targeting businesses and individuals seeking to improve their online footprint. The business model focuses on service delivery including SEO, web design, and e-commerce solutions. Technically, the website is built on WordPress using the Elementor page builder, supported by modern analytics tools such as Google Analytics and Microsoft Clarity, and employs Cloudflare for DNS and hosting services. The site is mobile-optimized with good navigation and professional design, reflecting a mature digital presence.

K

Karl Kahane Foundation

karlkahanefoundation.org

45

The Karl Kahane Foundation is a Swiss-based charitable organization established in 1991, focusing on social inclusion, accessibility, and migration-related projects primarily in Europe, Turkey, the Middle East, and North Africa. The foundation operates as a non-political, non-religious entity supporting vulnerable communities through funding and partnerships with reputable NGOs. The website reflects a professional and consistent brand presence, with clear information about its founder, board members, and partners. Technically, the site is built on WordPress with standard SEO and analytics tools, offering good mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable or malformed, likely due to privacy protection, which is common for non-profits but slightly reduces trust. Overall, the site is trustworthy and well-positioned within its niche, though improvements in privacy compliance and security best practices are recommended.

S

Starbucks Coffee Company

starbucks.com

70

Starbucks Coffee Company operates a globally recognized retail coffeehouse brand, offering a wide range of coffee beverages, food items, and loyalty rewards. The website reflects a mature digital presence with comprehensive content, including product promotions, rewards program details, and corporate information. The site is well-structured, mobile-optimized, and uses modern web technologies such as React and Next.js, supported by analytics and marketing tools like New Relic, Google Tag Manager, and Optimizely. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data is unusual but does not detract from the overall legitimacy given the brand's stature. Strategic recommendations include publishing security policies, vulnerability disclosure mechanisms, and enhancing transparency in domain registration.

T

TPA Slovakia

tpa-group.sk

71

TPA Slovakia is a professional services firm specializing in audit, accounting, tax, payroll, IT security, and digitalization services targeted at business clients in Slovakia. The website presents a consistent and professional brand image aligned with the TPA Group network. The technical infrastructure is based on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable platform. The site includes cookie consent mechanisms via Cookiebot, demonstrating awareness of privacy compliance requirements. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and policies are not published. Overall, the website is trustworthy and well-positioned in its market segment, but could improve transparency by publishing privacy and security policies.