Security Directory

L

Liwlig Conference AS

gyroconference.no

62

Liwlig Conference AS is a Nordic leader in event and conference planning, delivering memorable and impactful experiences across Norway and the broader Nordic region. As part of the Liwlig Group, the company leverages local expertise and a strong network to provide comprehensive event services including budgeting, participant management, hotel booking, transport, and project management. Their website reflects a professional and consistent brand image, targeting corporate clients and event organizers. Technically, the site is built on WordPress with modern frameworks like UIkit and integrates Google Analytics and Ads for marketing and tracking purposes. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data due to privacy protection is common and does not detract significantly from the site's legitimacy. Overall, the website is well-designed, user-friendly, and compliant with GDPR, supporting the company's credible market position.

L

Liwlig Conference AS

liwligconference.no

61

Liwlig Conference AS is a Nordic event management and experience agency specializing in planning and executing national and international conferences and events. As part of the Liwlig Group, it leverages local expertise across Nordic countries to deliver memorable experiences that strengthen relationships, cultures, and brands. The company positions itself as the largest and only experience agency in the Nordics, serving a broad range of clients with services including budget control, participant services, hotel booking, transport, exhibition, and project management. The website reflects a professional and consistent brand image with clear contact information and environmental certification, supporting its market credibility. Technically, the website is built on WordPress with the Yootheme theme and uses modern web technologies such as UIkit, SVG animations, and integrates Google Analytics and Google Ads for marketing and tracking. The site is mobile-optimized and includes cookie consent mechanisms aligned with GDPR requirements. Security posture is good with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. The absence of WHOIS data limits full domain trust analysis, but the website's content quality, certifications, and contact transparency support legitimacy. No signs of malicious activity or adult content were found, and the site is fully accessible without WAF or blocking mechanisms. Overall, Liwlig Conference presents a credible and professional digital presence suitable for its business domain.

D

DOG Deutsche Ophthalmologische Gesellschaft e.V.

dog-kongress.de

58

The DOG 2025 website represents the German Ophthalmological Society's professional congress platform, targeting ophthalmologists and medical researchers. It provides comprehensive information about the upcoming congress, including program highlights, participation details, and scientific sessions. The site is well-branded and consistent with the organization's identity, serving as a key communication channel for the society's events. Technically, the website is built on WordPress with a modern theme and several plugins enhancing user experience, such as cookie consent management, interactive accordions, and visual effects. The site is mobile-optimized and uses HTTPS, ensuring secure access. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site shows good practices like HTTPS enforcement and cookie consent but lacks advanced security headers and vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious content were detected. Privacy compliance is supported by a comprehensive privacy policy and cookie management. Overall, the website is professional, secure, and trustworthy, with minor areas for improvement in security policy transparency and accessibility. It effectively supports the DOG's mission to engage the ophthalmology community through its congress and related activities.

D

Deutsche Gesellschaft für Gastroenterologie, Verdauungs- und Stoffwechselkrankheiten (DGVS) and Deutsche Gesellschaft für Allgemein- und Viszeralchirurgie (DGAV)

viszeralmedizin.com

50

The website www.viszeralmedizin.com represents a professional congress platform for the Viszeralmedizin 2025 event, organized by reputable German medical societies DGVS and DGAV. It serves as a comprehensive resource for medical professionals specializing in gastroenterology and visceral surgery, offering detailed program information, registration, and participation services. The site is well-branded, content-rich, and targets a specialized audience with a focus on education and networking. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance, mobile responsiveness, and SEO optimization. Security posture is solid with HTTPS, cookie consent, and secure login forms, although explicit security headers and incident response information are lacking. The absence of WHOIS data is a notable anomaly that warrants further verification but does not detract from the site's professional appearance and trustworthiness. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility.

U

UPDATE Hämatologie-Onkologie

onko-update.de

56

UPDATE Hämatologie-Onkologie operates a professional event website focused on hematology and oncology congresses scheduled for 2025 in multiple German cities. The site targets medical professionals seeking the latest international research and education in these fields. The business model centers on organizing and facilitating specialized medical congresses with both physical and virtual participation options. The website demonstrates a mature digital presence using WordPress with Elementor and integrates privacy-conscious analytics via Matomo. Cookie consent and GDPR compliance are well implemented, reflecting a strong commitment to privacy and regulatory adherence. Contact information is clearly presented, enhancing trust and accessibility. Security posture is good with HTTPS enforced and no evident vulnerabilities, though some security headers could be improved. Overall, the site is professional, well-branded, and trustworthy within its healthcare niche.

B

BFT GmbH

bft-pumps.com

38

BFT GmbH is an Austrian owner-managed company specializing in manufacturing and supplying high-pressure pumps and accessories for waterjet cutting technology. Positioned as the only independent global supplier in this niche, BFT offers innovative ready-to-use solutions and emphasizes quality, sustainability, and customer service. The website reflects a professional industrial business targeting companies requiring advanced waterjet cutting equipment. Technically, the site is built on WordPress with modern plugins and tracking technologies, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA integration, though lacks some advanced security headers and explicit incident response information. Privacy compliance is partially addressed with a privacy policy but lacks cookie consent mechanisms. The domain WHOIS data is missing, which raises some legitimacy concerns, but the business references and content support authenticity. Overall, the site is trustworthy with room for security and compliance improvements.

MINT.UP is a German educational initiative managed by GPDM, focused on promoting STEM careers among students in grades 7 and 8 within the Werra-Meißner-Kreis region. The project offers a one-year after-school program featuring hands-on experiments, company visits, and career guidance, supported by government and EU funding. The website is professionally designed using WordPress, with good content quality and clear navigation tailored to its young audience. Technical infrastructure includes modern plugins and GDPR compliance tools, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS and privacy mechanisms, though additional security headers and incident response policies could enhance protection. Overall, the site is trustworthy, safe, and well-aligned with its educational mission.

B

Breitband Main-Kinzig GmbH

breitband-mkk.de

55

Breitband Main-Kinzig GmbH is a government-owned telecommunications infrastructure provider focused on delivering fiber optic broadband (FTTH) across the Main-Kinzig district in Germany. The company operates as a 100% subsidiary of the Main-Kinzig-Kreis and partners with Vodafone to provide end-user internet, TV, and telephony services. Their mission is to enable gigabit-capable internet access to households and businesses, with significant governmental funding and support. The website is professionally designed, content-rich, and well-structured, targeting residents and businesses in the region. Technically, the website runs on WordPress with a modern theme and plugins, including Borlabs Cookie for GDPR-compliant cookie management and Rank Math for SEO. The site is mobile-optimized and performs moderately well. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the domain and website appear legitimate and consistent with a regional government entity. Contact information is clear and includes phone, email, and physical address. No security policy or incident response contacts were found, which could be an area for improvement. The site uses Google Analytics and Google Ads for analytics and marketing, with appropriate cookie consent mechanisms. Strategically, the company is well-positioned as a key regional broadband infrastructure provider with strong governmental backing and a reputable partner in Vodafone. The website supports their mission effectively and complies with privacy regulations, making it a trustworthy digital presence.

M

Mudcon GmbH

mudcon.de

40

Mudcon GmbH is a certified environmental service provider specializing in the professional disposal and recycling of drilling sludge, primarily serving construction and industrial clients in Northern Germany. The company operates under the parent organization Seier Gruppe and emphasizes sustainability, compliance, and efficiency in its service offerings. The website reflects a strong market position with clear communication of certifications and services. Technically, the site is built on WordPress with modern frameworks and plugins, ensuring good SEO, mobile optimization, and user experience. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the digital presence supports a trustworthy and professional business image.

B

BHK Tief- und Rohrbau GmbH & Co. KG

bhk-rohrbau.de

49

BHK Tief- und Rohrbau GmbH & Co. KG is a well-established German company specializing in pipeline construction, civil engineering, and cable laying services. Founded in 1990 and operating under the parent company SEIER Gruppe, BHK serves regional clients with a focus on quality, reliability, and sustainable infrastructure development. The company offers a broad range of services including house connections, vacuum excavation, horizontal drilling, and network planning, positioning itself as a trusted partner in the energy and transportation sectors. Technically, the website is built on WordPress with modern frameworks such as UIkit and enhanced by SEO tools like Yoast. It employs Google Tag Manager and Cookiebot for analytics and privacy compliance, respectively. The site is mobile-optimized, accessible, and demonstrates good performance and SEO practices. Multiple office locations are clearly presented with comprehensive contact information, supporting strong business credibility. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The domain registration data aligns well with the business claims, showing consistency and legitimacy. Overall, the website reflects a professional, trustworthy, and compliant digital presence suitable for its industry and audience. Strategic improvements in security headers and transparency around security policies could further enhance trust and resilience.

D

d.vinci

dvinci.de

49

d.vinci is a German-based technology company specializing in recruiting and onboarding software solutions designed to optimize HR processes. Their offerings include applicant management, onboarding software, career pages, and multiposting services, targeting HR departments and recruiters. The company positions itself as an expert in seamless and efficient HR workflows, supported by a professional and well-structured website with strong SEO and digital presence. Technically, the website is built on WordPress with modern plugins such as Yoast SEO Premium and Borlabs Cookie for privacy compliance. Hosting is provided by SchlundTech, a reputable German hosting provider. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website reflects a mature digital infrastructure and a trustworthy business presence in the HR technology sector.

Shinagawa Refratários do Brasil is a well-established global leader in refractory manufacturing, leveraging Japanese technology to provide high-performance solutions for industrial clients in manufacturing and energy sectors. The website reflects a mature digital presence built on WordPress, featuring modern design, responsive layouts, and compliance with privacy regulations such as GDPR. Security posture is solid with HTTPS and cookie consent mechanisms, though some minor media issues and lack of explicit security policies were noted. Overall, the site projects professionalism and trustworthiness aligned with the company's long history and market position.

S

Samarco

samarco.com

64

Samarco is a Brazilian mining company specializing in the production of iron ore pellets with integrated operations in Minas Gerais and Espírito Santo. The company has an established market presence since its founding in 1977 and targets industrial and energy sectors. The website is professionally designed using WordPress with modern SEO and accessibility features, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and standard marketing/tracking tools implemented, though there is room for improvement in security headers and privacy compliance. The absence of WHOIS registration data raises some concerns about domain legitimacy, but the website content and social media presence support the company's authenticity. Overall, the risk is moderate with recommendations to enhance transparency and security practices.

Casa de Metal Espaço Cultural is a Brazilian non-profit cultural institution focused on metallurgy, materials, and industrial heritage. It offers a variety of cultural and educational activities including exhibitions, workshops, theater, and cinema, targeting the general public interested in culture and history. The website is well-structured, professionally designed, and provides rich content about its collections and programming. Technically, it is built on WordPress with modern plugins and accessibility features, hosted by a reputable Brazilian provider. Security posture is adequate with HTTPS enabled but lacks some security headers and explicit privacy and cookie policies, indicating room for improvement in compliance and security best practices. Overall, the site is trustworthy and serves its cultural mission effectively.

D

Deutsches Diabetes-Zentrum (DDZ)

ddz.de

46

The Deutsches Diabetes-Zentrum (DDZ) is a well-established interdisciplinary research institution affiliated with the Leibniz Association and Heinrich-Heine-University Düsseldorf, focusing on diabetes research that integrates molecular, clinical, and epidemiological approaches. The website serves as a comprehensive platform for disseminating research findings, clinical study participation, and public health information targeted at patients, researchers, and the general public. It maintains a strong market position as a reputable non-profit healthcare research center in Germany. Technically, the website is built on a modern WordPress CMS with a robust tech stack including Yoast SEO, WPBakery Page Builder, Matomo analytics, and Vue.js components. The site is hosted likely via GoDaddy infrastructure and demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. Performance is moderate with a professional design and clear navigation. From a security perspective, the site enforces HTTPS and uses privacy-conscious analytics with cookies disabled. However, it lacks visible security headers and a formal vulnerability disclosure or incident response policy. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is generally good with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a minor gap. Overall, the DDZ website is a professional, trustworthy, and content-rich platform supporting its mission in diabetes research and public engagement. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance its security posture and compliance further.

G

Gyro Conference As

eurocorr2025.org

59

EuroCorr 2025 is a specialized international conference focused on corrosion science and engineering, organized by Gyro Conference As in Norway. The event targets researchers, industry professionals, and academics interested in sustainable corrosion solutions. The website serves as an informational and promotional platform for the conference, providing details on the program, speakers, and partners. The business model centers on event organization and sponsorship facilitation. The company is relatively new, founded in 2024, aligning with the domain registration date. Technically, the website is built on WordPress with a modern theme and UIkit framework, ensuring good mobile responsiveness and user experience. Google Analytics is used for visitor tracking, and a cookie consent mechanism is implemented, indicating basic privacy compliance. Hosting appears to be managed via one.com, with no DNSSEC enabled and limited security headers detected. From a security perspective, the site uses HTTPS and has domain transfer protection enabled, but lacks advanced DNS security and explicit security policies. No forms or sensitive data collection points were detected in the analyzed content, reducing immediate risk exposure. The WHOIS data is consistent with the website's business claims, supporting legitimacy. Overall, the site demonstrates a good security posture for its purpose but could improve with enhanced DNS security and security headers. The overall risk is low given the nature of the site and its limited attack surface. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing clear security and incident response policies to enhance trust and compliance.

W

WEBDISCOUNT GmbH & Co. KG

webdiscount.net

46

WEBDISCOUNT GmbH & Co. KG is a German-based Internet Service Provider established in 1996, offering a broad range of telecommunications services including DSL, fiber optic connections, VoIP, MPLS, VPN, and security solutions such as firewalls and DDoS protection. The company operates a robust network infrastructure with approximately 30 POPs across more than 15 countries, serving business customers primarily in Europe, the USA, and Asia. Their market position is that of a reliable medium-sized ISP with long-standing industry experience and strategic partnerships with major hardware vendors.

E

Eetwinkel

eetwinkel.nl

40

Eetwinkel is a Dutch food retail and concept provider focused on delivering quality and trend-responsive food services across multiple locations. The website presents a professional and consistent brand image, targeting entrepreneurs and general consumers interested in food retail. Technically, the site is built on WordPress with modern plugins and SEO optimizations, offering good mobile responsiveness and moderate performance. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks explicit security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

G

Gipfelstürmer Marketing Agentur

gipfelstuermer-agentur.de

49

Gipfelstürmer Marketing Agentur is a small, professional marketing agency based in Paderborn, Germany, specializing in digital marketing services including SEO, social media marketing, and content creation. The company positions itself as a trusted partner to help businesses elevate their market presence. The website is built on a modern WordPress platform using Elementor and several plugins to enhance SEO, user experience, and marketing capabilities. The technical infrastructure is solid with HTTPS enabled and performance optimizations via WP Rocket. Security posture is adequate with no critical vulnerabilities detected, though the absence of security headers and published security policies suggests room for improvement. Privacy compliance is partially addressed through a cookie consent mechanism, but lacks a visible privacy policy and terms of service. Overall, the site is safe, professional, and trustworthy, targeting general business audiences without any adult or questionable content.

C

consulting4drive GmbH

consulting4drive.com

55

consulting4drive GmbH is a specialized consulting firm focused on the automotive industry's transformation and future mobility. They provide expert consulting services in technology and production strategy, process optimization, and organizational design, bridging the gap between corporate strategy and industrial implementation. Their market position is that of a niche player with deep industry expertise, targeting automotive companies undergoing transformation projects. The website is professionally designed, multilingual (German and English), and demonstrates compliance with GDPR through a comprehensive privacy policy and cookie consent mechanisms. Technically, the website is built on WordPress 6.8.2 using popular plugins such as Yoast SEO and WPBakery Page Builder. It employs modern web fonts and optimization plugins like Autoptimize. The site is mobile-optimized with good accessibility and SEO practices. HTTPS is enforced, but explicit security headers are not detected, indicating room for improvement in security hardening. Security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the absence of a published security policy or incident response contact reduces transparency. The WHOIS data is missing, which raises concerns about domain registration legitimacy and age, though the professional website content mitigates some risk. Overall, the site presents a trustworthy and professional consulting business with good privacy compliance but would benefit from enhanced security headers and clearer domain registration transparency.

A

Ahorn Camp GmbH & Co. KG

ahorn-camp.de

51

Ahorn Camp GmbH & Co. KG is a medium-sized family business based in Germany specializing in the retail and marketing of motorhomes and campervans. With over 30 years of market presence, the company offers a range of high-quality and comfortable recreational vehicles, targeting consumers interested in travel and outdoor lifestyles. The website serves as a digital storefront and information hub, showcasing models, prices, and dealer locations. Technically, the site is built on WordPress with WooCommerce and Elementor, leveraging modern plugins for SEO, performance, and user engagement. The infrastructure is hosted on rzone.de, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS and cookie consent management via Borlabs Cookie, but lacks published security policies or incident response information. Privacy compliance is partial, with no explicit privacy or terms of service pages detected. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

H

Diabetes Herbsttagung 2025

herbsttagung-ddg.de

49

The website herbsttagung-ddg.de serves as the official platform for the Diabetes Herbsttagung 2025, an event likely organized by the Deutsche Diabetes Gesellschaft (DDG) targeting healthcare professionals and researchers interested in diabetes. The site provides event-related information and is built on a WordPress CMS with modern design elements and responsive features. The technical infrastructure includes standard WordPress plugins and Cookiebot for cookie consent management, ensuring compliance with basic privacy requirements. Security posture is adequate with HTTPS enforced and denial of ad personalization by default, though the absence of explicit privacy policies and contact information limits full compliance and trust. Overall, the site is functional and professionally presented but would benefit from enhanced transparency and security documentation.

F

FEV.io

fev.io

68

FEV.io is a digital engineering company specializing in delivering software-defined systems primarily for the automotive and mobility sectors. As a subsidiary of the established FEV Group GmbH based in Germany, it offers a broad range of engineering solutions including systems engineering, software and E/E platforms, cloud and data solutions, and cybersecurity. The company positions itself as a leader in innovation with a focus on safety, security, and customer-centric development. The website reflects a professional and modern digital presence with comprehensive content and clear business messaging. Technically, the site is built on WordPress with a modern theme and plugins, incorporating structured data and SEO best practices. Security posture is good with HTTPS enforced and domain protections in place, though DNSSEC is not enabled and no explicit security policy or incident response information is published. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the site demonstrates a mature digital infrastructure and strong business credibility.

Festival tata is a Croatian non-profit organization and festival dedicated to celebrating and promoting caring fatherhood and active paternal involvement in child upbringing. Founded in 2018, it is supported by the Swedish Embassy in Zagreb and local organizations such as Status M and Roditelji u akciji – Roda. The festival organizes digital campaigns, photo exhibitions, workshops, and advocacy efforts focused on paternity leave and family well-being. The website is professionally designed using WordPress and hosted on DreamHost, featuring a modern tech stack including jQuery, Bootstrap, and Jetpack plugins. Social media integration and analytics are implemented via Facebook SDK and Jetpack Stats respectively. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and formal policies are lacking. Privacy compliance is partial with a cookie consent mechanism but no privacy policy or terms of service pages. Contact information is minimal, limited to an email address. Overall, the website is trustworthy, content-rich, and serves its target audience effectively, but could improve compliance and security transparency.

M

Müller und Partner Sachverständige

sv-maschinensicherheit.de

45

Müller und Partner Sachverständige is a specialized consultancy firm based in Germany, focusing on machinery safety, CE marking, and robotics compliance. The company offers expert services including risk assessments, safety dialogs, workshops, and official expert reports, targeting manufacturers, integrators, and operators in the automation and robotics sectors. Their team holds recognized certifications such as ISO/IEC 17024 and CMSE®, positioning them as trusted experts in their field. The website reflects a professional and well-structured digital presence, supporting their market position as a reliable partner for safety and compliance in manufacturing and automation. Technically, the website is built on WordPress with modern plugins like Yoast SEO and Oxygen Builder, ensuring good SEO and responsive design. The site uses Google Tag Manager and Bing UET for analytics and marketing, combined with a GDPR-compliant cookie consent mechanism. Hosting is provided via rzone.de, and the site employs HTTPS with strong SSL configuration. While security headers are not explicitly detected, the site uses email obfuscation and controlled script loading to enhance security. From a security perspective, the site demonstrates good practices but lacks a published security policy or incident response contact details. No vulnerabilities or suspicious domains were detected. Privacy compliance is strong with clear policies and consent mechanisms. The business credibility is reinforced by certifications, partner logos, and active social media channels. Overall, the website is trustworthy, professionally maintained, and compliant with relevant privacy regulations. Strategic improvements could include adding explicit security policies and enhancing security headers to further strengthen the security posture.

D

Deutscher Robotik Verband e.V.

robotikverband.de

51

The Deutscher Robotik Verband e.V. is a German non-profit association dedicated to advancing robotics through education, networking, and advocacy. The website serves as a hub for members and interested parties to access information about robotics trends, events, and training programs such as the 'Roboterführerschein'. The association positions itself as a key player in connecting academia, industry, and government stakeholders in the robotics sector. Technically, the website is built on a modern WordPress platform using Elementor and WooCommerce plugins, with good SEO and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the site is professional and trustworthy, though it would benefit from enhanced privacy and security disclosures.

T

Transaction-Network

transaction-network.com

59

Transaction-Network operates a digital service ecosystem targeted at industrial producers, aiming to reduce downtime and improve supply reliability. The company positions itself as a neutral platform for manufacturers, offering structured and ready-to-use digital services. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and integrates multiple analytics and marketing tools such as Google Analytics, HubSpot, and Cookiebot for privacy compliance. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are absent. The WHOIS data is missing or inaccessible, which raises some concerns about domain legitimacy, but the active and professional website mitigates this risk. Overall, the site scores well on content quality and privacy compliance but could improve business credibility and transparency.

M

Müller und Partner Sachverständige

mp-sachverstaendige.de

45

Müller und Partner Sachverständige is a specialized consultancy firm based in Germany, focusing on machinery safety, CE marking, and robotics compliance. Their team holds recognized certifications such as ISO/IEC 17024 and CMSE®, positioning them as trusted experts in the manufacturing and automation sectors. The company targets manufacturers, integrators, and operators requiring expert guidance to meet legal and safety standards. Their service offerings include risk assessments, safety dialogs, workshops, and expert reports, catering primarily to SMEs and OEMs in automation and robotics. Technically, the website is built on a modern WordPress platform with Oxygen builder and integrates SEO and analytics tools effectively. Security posture is strong with HTTPS, email obfuscation, and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, well-branded, and trustworthy, with comprehensive contact information and partner affiliations.

W

Welt der Wunder Sendebetrieb GmbH

weltderwunder.de

48

Welt der Wunder Sendebetrieb GmbH operates a German-language media website focused on delivering educational and scientific content to a broad audience. The platform offers news, stories, and live TV streaming centered on research and knowledge dissemination. It holds a solid market position as a reputable media brand in Germany, leveraging multiple social media channels and a professional web presence. Technically, the website is built on WordPress 6.8.2 with modern plugins such as Yoast SEO and Elementor, hosted on AWS infrastructure. It employs standard web technologies including jQuery, Bootstrap, and Google Analytics for performance and user engagement tracking. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and uses consent management tools compliant with GDPR. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected, but security headers could be improved to enhance protection. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It is suitable for general audiences with safe content. Strategic improvements in security transparency and accessibility would further strengthen its posture.

V

VeChain

vechain.org

55

VeChain is a well-established blockchain platform focused on delivering sustainable, scalable, and secure blockchain solutions primarily targeting enterprises and the Web3 community. The company emphasizes its VeChainThor blockchain, which is EVM-compatible and designed for sustainability and performance. The website reflects a mature digital presence with professional design, clear navigation, and relevant content aimed at developers, enterprises, and blockchain enthusiasts. Technically, the site is built on WordPress with Elementor and uses modern libraries and analytics tools such as Matomo and Freshworks. Hosting appears to be on AWS infrastructure, ensuring reliable performance. Security posture is adequate with HTTPS enabled and domain-level protections like clientDeleteProhibited status; however, there is room for improvement by enabling DNSSEC and adding security headers. Privacy compliance is limited as no explicit privacy or cookie policies were found, which is a notable gap given GDPR and other regulations. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

The website stja.de represents the Stadtjugendausschuss e.V. Karlsruhe, a local non-profit organization focused on youth engagement in Karlsruhe, Germany. The site is built on WordPress and uses standard web technologies such as jQuery. The content is primarily in German and targets the local youth community. The website's technical infrastructure is moderate, hosted by saasweb.gmbh, and shows basic mobile optimization and SEO practices. However, the site lacks comprehensive privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is limited with no visible security headers or incident response information, indicating room for improvement in security best practices. Overall, the site is functional but basic, reflecting a small non-profit's digital presence.

Z

ZeltNews

zelt-news.de

56

ZeltNews is a specialized German-language online portal focused on the tent rental and event tent industry. It provides industry news, trends, supplier information, technical advice, and tips for event organizers. The website targets professionals and businesses involved in event planning and tent rental services, positioning itself as a niche information resource within this sector. The business model appears to be content-driven, likely monetized through advertising or partnerships, though no explicit commercial details are provided. Technically, the website is built on WordPress using the Divi theme and several plugins including Yoast SEO for search engine optimization, Borlabs Cookie for cookie consent management, and Google reCAPTCHA for bot protection. The site demonstrates good mobile optimization and basic accessibility features. Performance is moderate, with modern technologies and a structured layout enhancing user experience. From a security perspective, the site uses HTTPS and includes bot protection and cookie consent mechanisms, indicating awareness of basic security and privacy requirements. However, it lacks visible security headers, a published privacy policy, incident response contacts, and vulnerability disclosure information, which are important for comprehensive security posture and regulatory compliance. No critical vulnerabilities or suspicious content were detected. Overall, the website is professionally designed and functional, serving its niche audience effectively. To improve trust and compliance, it should publish privacy and security policies, enhance security headers, and provide clear contact information. These steps will strengthen its security posture and business credibility.

E

EB-SIM

eb-sim.de

59

EB-SIM is a German asset management company specializing in ethical and sustainable investments, with a strong focus on multi-asset strategies and renewable energy projects. The company positions itself as a leading player in the sustainable finance sector, leveraging its affiliation with the Evangelische Bank to underpin its Christian values and sustainability mission. The website is professionally designed, content-rich, and targets private investors, institutional investors, and financial advisors primarily in Germany and neighboring countries. Technically, the site is built on WordPress with modern plugins and frameworks, including Yoast SEO and Borlabs Cookie for privacy compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements in security headers and incident response disclosures are recommended. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate online presence.

F

frankfurt let‘s talk

frankfurtletstalk.de

53

frankfurt let‘s talk is a specialized event organizer focusing on ESG (Environmental, Social, Governance) challenges and solutions within the real estate and construction industries. The website promotes the second ESG conference scheduled for September 2, 2025, in Frankfurt am Main, targeting professionals, decision-makers, and innovators in the sector. The business model revolves around knowledge sharing, networking, and fostering collaboration to address climate and sustainability challenges. The site is well-branded, professionally designed, and provides comprehensive event details, speaker profiles, and program schedules. Technically, the website is built on WordPress using the Divi theme, optimized with Autoptimize and managed cookie consent via Complianz, indicating a mature digital infrastructure. The site is mobile-optimized, SEO-friendly, and uses modern libraries such as jQuery 3.7.1. Hosting appears to be with rzone.de, a known hosting provider. Performance is moderate with good accessibility and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are not evident. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is strong with clear GDPR-aligned privacy and cookie policies. WHOIS data shows a relatively new domain consistent with the business timeline, with no privacy protection but limited registrant details. Overall, the website presents a trustworthy, professional, and compliant platform for ESG-focused real estate events, with recommendations to enhance security headers and publish incident response information to further strengthen trust and security posture.

P

pantamedia communication

pantanet.de

53

Pantamedia communication is a German-based full-service agency specializing in public relations, advertising, and marketing with over 30 years of experience. The company focuses on serving clients in political and business sectors, offering services such as print design, logo design, text design, and web design. The website is professionally designed using WordPress with the Enfold theme and includes a comprehensive cookie consent mechanism via Cookiebot, reflecting good privacy compliance. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy, despite the professional and consistent business presentation. The technical infrastructure is modern and adequate, though security headers and explicit security policies are not evident. Overall, the site demonstrates a good security posture and privacy compliance but would benefit from enhanced transparency regarding domain registration and security policies.

D

Doculivery

doculivery.com

9

Doculivery is a document management software provider offering secure, efficient, and cost-effective solutions tailored for businesses seeking to digitize and streamline their document workflows. The company positions itself as an experienced player with over 30 years in the industry, serving a range of clients including large corporations. Their product suite includes document management, payroll, tax, HR, accounting, billing, and business optimization services. The website is built on WordPress with the Avada theme and integrates HubSpot marketing and analytics tools, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enabled and role-based access controls mentioned, but lacks visible security headers and formal security policies. The absence of WHOIS registration data raises some legitimacy concerns, though the professional website content and client logos support a credible business presence. Privacy and cookie policies are not detected, which is a compliance gap. Overall, the site is well-designed, mobile-optimized, and provides clear contact information, but would benefit from enhanced transparency on privacy, security, and domain registration details.

U

unaone imc services Markus Hagge

unaone.net

60

unaone imc services Markus Hagge is a small German technology service provider specializing in personalized web hosting, domain registration, cloud solutions, and managed services such as Nextcloud, Jitsi, and BigBlueButton. The company emphasizes data privacy by hosting exclusively in German data centers, appealing to privacy-conscious customers. The website is professionally designed using WordPress with modern plugins and offers a good user experience with clear navigation and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit security policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, but the overall business presentation and social media presence support credibility. Strategic improvements in security transparency and WHOIS registration clarity are recommended.

M

mCloud doo

sdgs4all.rs

49

The website 'Održivi razvoj za sve' is a Serbian platform dedicated to facilitating public dialogue and information sharing on the Sustainable Development Goals (Agenda 2030) within Serbia. It operates as a non-profit initiative, supported by multiple partner organizations, and targets policymakers, NGOs, and the general public interested in sustainable development. The platform offers resources such as news, newsletters, e-learning modules, and document repositories to support its mission. Technically, the site is built on WordPress 6.8.2, utilizing modern web technologies including jQuery, OwlCarousel, FontAwesome, and Slider Revolution. It employs Matomo analytics for user tracking, indicating a privacy-conscious approach. The website is mobile-optimized with good SEO practices and moderate performance. However, there is room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks DNSSEC and some recommended security headers. There is no publicly available security policy or incident response information, and no vulnerability disclosure mechanism is present. Cookie consent is implemented, but no explicit privacy policy page was found, which is a compliance gap. Overall, the website presents a professional and trustworthy front for its niche non-profit mission. Strategic recommendations include enhancing security headers, enabling DNSSEC, publishing privacy and security policies, and improving accessibility features to strengthen compliance and user trust.

A

Auto-moto savez Republike Srpske

ams-rs.com

49

Auto-moto savez Republike Srpske is a well-established non-profit organization providing roadside assistance, traffic updates, and membership services primarily in Republika Srpska, Bosnia and Herzegovina, and Europe. The website reflects a mature digital presence with a WordPress-based infrastructure, interactive maps, and live border crossing information. The organization targets local residents and travelers, offering key services such as emergency assistance and safety campaigns. The domain is long-standing and consistent with the organization's identity, enhancing trustworthiness. Technically, the site uses modern web technologies and plugins but lacks advanced security headers and DNSSEC, which could improve its security posture. Privacy compliance is weak due to missing privacy and cookie policies, which is a notable gap for GDPR and regional regulations. Overall, the website is professional and functional with room for security and compliance improvements.

The website 'Hadž i umra BiH – Ured za hadž i umru' serves as the official governmental portal for organizing and providing information about Hadž and Umra pilgrimages for citizens of Bosnia and Herzegovina. It offers news, guidelines, and organizational details relevant to pilgrims, positioning itself as the authoritative source in this religious sector within the country. The site targets the Bosnian Muslim community and operates under a governmental/non-profit business model, emphasizing service and information dissemination. Technically, the website is built on WordPress 6.8.2, utilizing common plugins such as WPBakery Page Builder, Everest Forms, Contact Form 7, and Google reCAPTCHA v3 for form security. The design is modern and mobile-optimized, with good SEO practices and basic accessibility features. Performance is moderate, with room for improvement in hosting and optimization. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options, which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is weak, with no visible privacy or cookie policies, which is a notable gap given GDPR requirements. Overall, the website is trustworthy and professional, with a high business credibility score but moderate security and privacy compliance scores. Strategic improvements in privacy policy publication, security header implementation, and accessibility would enhance its security posture and compliance standing.

I

Internacionalni teatarski festival MESS

mess.ba

59

The Internacionalni teatarski festival MESS website serves as the official online presence for a well-established cultural and theatrical festival in Bosnia and Herzegovina. It provides comprehensive information about upcoming events, exhibitions, and festival news, targeting theater enthusiasts and the cultural community. The website leverages a modern WordPress infrastructure with popular plugins such as Elementor and Slider Revolution, ensuring a visually appealing and moderately performant user experience. However, it lacks critical compliance elements such as privacy and cookie policies, which are essential for GDPR adherence and user trust. Security posture is adequate with HTTPS enforced but could be improved by adding security headers and incident response information. Overall, the site is credible and professional but would benefit from enhanced privacy and security practices.

G

Garden of Dreams

gardenofdreams.ba

48

Garden of Dreams is a cultural event organizer focused on the electronic music festival held in Sarajevo, Bosnia and Herzegovina. The website promotes the 2025 festival and includes a talent development program called Dreamers Talent Camp, aimed at supporting emerging DJs and producers from the region. The business model revolves around event management, sponsorship partnerships, and community engagement through online voting and mentorship programs. The website is built on WordPress with modern frontend technologies and integrates multilingual support and social media channels to reach a broad audience. Technically, the site is well-structured with good mobile optimization and SEO practices, though performance is moderate. Security posture is adequate with HTTPS and secure form handling, but lacks some advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

The website www.mpoo.org represents the Zavod za obrazovanje odraslih, an official government institute under the Ministry of Education and Culture of Republika Srpska, Bosnia and Herzegovina. It serves as an informational portal focused on adult education, traffic education, licensing, and related public announcements. The site targets adult learners and professionals seeking education and licensing services within the region. The content is primarily in Serbian and includes resources such as test preparation, schedules, and official notices. Technically, the website is built on WordPress 6.8.2 with a variety of plugins enhancing SEO, accessibility, anti-spam, and content management. The site is mobile-optimized and includes accessibility tools, cookie consent mechanisms, and structured data for SEO. Performance is moderate, with room for improvement in security headers and advanced optimization. From a security perspective, the site uses HTTPS and anti-spam protections but lacks visible security headers like CSP or HSTS. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a cookie consent modal present but no explicit privacy policy or terms of service pages found. Overall, the website is trustworthy and professional, reflecting its government affiliation. However, improvements in security headers, privacy documentation, and WHOIS transparency would enhance its security posture and compliance standing.

B

Bildungscampus Karlsruhe

bildungscampus-weststadt.de

56

Bildungscampus Karlsruhe is a cooperative educational and cultural initiative comprising three institutions: Badisches KONServatorium, Volkshochschule Karlsruhe, and Internationales Begegnungszentrum. The website serves as a platform to promote learning, cultural activities, and community events in Karlsruhe, targeting local residents interested in music, language, culture, and social engagement. The business model is non-profit and community-focused, emphasizing inclusivity and diversity. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Real Cookie Banner Pro, ensuring good SEO and privacy compliance. Hosting is provided by PixelX, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, with no detected vulnerabilities or suspicious content.

V

VHS-Einstufungstest

vhseinstufungstest.de

36

VHS-Einstufungstest.de is a German-language educational website focused on providing information about Volkshochschule (VHS) courses and language placement tests. The site offers a variety of articles covering language courses such as German, Italian, French, Spanish, English, and others, as well as practical courses like bicycle repair. The business model centers on content provision for learners seeking VHS course information, positioning itself as a niche educational resource in Germany. Technically, the website is built on WordPress using the GeneratePress theme and Rank Math SEO plugin, hosted on servers associated with kasserver.com. The site demonstrates good SEO practices, mobile optimization, and moderate performance. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though it lacks security headers and cookie consent mechanisms. Privacy compliance is partial, with a privacy policy present but no cookie policy or terms of service. No direct contact information or incident response details are provided. Overall, the site is professional and trustworthy but could improve in privacy compliance and security best practices.

B

Bosna Bank International

bbi.ba

59

Bosna Bank International (BBI) is a banking institution based in Sarajevo, Bosnia and Herzegovina, providing a full range of banking services to both individual and corporate clients. The website reflects a professional banking brand with consistent branding and a clear focus on financial services. The target audience includes physical and legal persons seeking banking solutions in the region. The business model is centered on traditional banking services, positioning BBI as a significant player in the Bosnian financial sector. Technically, the website is built on WordPress with Elementor and uses modern web technologies including asynchronous script loading and SEO optimization via Rank Math. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Structured data is implemented correctly, enhancing search engine understanding of the organization. From a security perspective, the site uses HTTPS with good SSL configuration and employs some security plugins like stop-user-enumeration. However, there is a lack of visible security headers and no published security or incident response policies. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms. No forms or contact details were found in the provided content, limiting user engagement and support transparency. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance, security best practices, and clearer contact and policy disclosures to improve user trust and regulatory adherence.

I

Initiative Pro Recyclingpapier

papieratlas.de

38

The website papieratlas.de is operated by the Initiative Pro Recyclingpapier (IPR), a German non-profit initiative focused on promoting the use of recycling paper with the Blue Angel certification across cities, counties, and universities in Germany. The site hosts annual competitions, publishes reports (Papieratlas), and provides educational content to encourage sustainable paper procurement. Supported by key government bodies and associations, it holds a strong position in the environmental and governmental sector in Germany. Technically, the website is built on WordPress with modern versions of jQuery and uses privacy-conscious Matomo analytics. The site is hosted on professional servers (kasserver.com) and employs HTTPS with good SSL configuration. The design is professional, mobile-optimized, and content-rich, with clear navigation and consistent branding. From a security perspective, the site uses HTTPS and has implemented cookie consent mechanisms. However, it lacks explicit security headers and a public security or incident response policy. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with a clear privacy policy and cookie banner. Contact information is transparent and professional. Overall, the website presents a low risk profile with strong legitimacy and trustworthiness. It effectively serves its target audience with relevant content and maintains a good security posture, though improvements in security headers and vulnerability disclosure could enhance its security maturity.

E

El-Kalem

elkalem.ba

47

El-Kalem is a well-established publishing center affiliated with the Islamic Community in Bosnia and Herzegovina, specializing in Islamic literature and cultural heritage. The website serves as an e-commerce platform offering a variety of books, magazines, and educational materials targeting the Bosnian Muslim community and interested readers. The business has a clear market position as a niche regional publisher with over four decades of presence. Technically, the site is built on WordPress with WooCommerce, using modern themes and performance optimizations, providing a good user experience with mobile responsiveness and SEO best practices. Security posture is adequate with HTTPS and secure payment integrations, though it lacks explicit security policies and cookie consent mechanisms. Overall, the site is professional, trustworthy, and compliant with basic privacy regulations, though improvements in privacy compliance and security transparency are recommended.

I

Institut za islamsku tradiciju Bošnjaka | www.iitb.ba

iitb.ba

47

Institut za islamsku tradiciju Bošnjaka (IITB) is a small, specialized scientific research institute affiliated with the Islamic Community in Bosnia and Herzegovina. The institute focuses on research and preservation of the Islamic tradition of Bosniaks, offering publications, conferences, and educational events primarily targeting the Bosnian-speaking academic and religious community. The website is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, indicating a moderate level of digital maturity and good SEO practices. The site is mobile optimized and provides clear navigation and contact information, including email and phone contacts, as well as social media presence on Facebook, Twitter, and YouTube. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, but lacks explicit security headers and incident response information. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but could improve compliance and security transparency.

C

Centar za dijalog - Vesatijja

cdv.ba

47

Centar za dijalog - Vesatijja is a Bosnian non-profit organization dedicated to promoting dialogue culture among Muslims and between different religious and worldview communities. The organization focuses on scientific research, educational projects, and media publications including articles, videos, and PDF releases. Their target audience primarily consists of Bosnian-speaking Muslims and individuals interested in interreligious dialogue and Islamic cultural topics. The website reflects a niche position in the non-profit sector with a clear mission and consistent branding. Technically, the website is built on WordPress 6.8.2 with common plugins such as Contact Form 7 and uses modern web technologies including jQuery and Font Awesome. The site is mobile optimized with good SEO practices and moderate performance. However, it lacks some advanced security headers and privacy compliance features such as cookie consent and privacy policy pages. From a security perspective, the site enforces HTTPS and uses secure contact forms, but it does not implement security headers like Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of privacy and cookie policies indicates compliance gaps with GDPR and related regulations. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening. The WHOIS data is consistent with the website's claims, supporting legitimacy. Strategic improvements in privacy policy publication, cookie consent, and security headers would strengthen the site's security posture and user trust.