Security Directory

T

Tour de Suisse

tourdesuisse.ch

58

Tour de Suisse is a prominent Swiss cycling event organizer, offering a range of services including race event management, hospitality, and fan engagement through digital platforms like TdS Explorer and Fanzone. The website reflects a mature digital presence with multilingual support and rich content tailored to cycling enthusiasts and event visitors. Technically, the site is built on WordPress with modern JavaScript frameworks and plugins, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, and consent management for third-party services, though explicit security policies and incident response information are absent. Overall, the site is trustworthy, professional, and compliant with GDPR requirements, supporting a positive user experience and business credibility.

J

Jugendcafé Camäleon

camaleon.li

50

Jugendcafé Camäleon is a small non-profit youth center based in Vaduz, Liechtenstein, providing a community space for youth engagement, projects, and events. The website serves as an informational and promotional platform targeting local youth and community members, offering details about their services, events, and gallery. The organization appears well-established since 2018 with a clear local focus and active social media presence. Technically, the website is built on WordPress with standard plugins such as Yoast SEO and Contact Form 7, ensuring basic SEO and contact functionalities. The site is mobile-optimized and uses modern libraries like Swiper.js and FontAwesome for UI enhancements. Security posture is adequate with HTTPS enforced and Google reCAPTCHA protecting forms, though it lacks advanced security headers and explicit incident response policies. Privacy and cookie policies are present but lack an explicit consent mechanism. Overall, the site is trustworthy, professional, and safe for general audiences.

O

Operettenbühne Vaduz

operette.li

51

Operettenbühne Vaduz is a cultural organization based in Liechtenstein specializing in operetta theatrical productions. The website serves as a digital presence to promote their events, notably celebrating their 85th anniversary in 2025 with the production of 'Der Vogelhändler'. The site targets a general audience interested in cultural and performing arts within the region. Technically, the website is built on WordPress using Elementor and Astra theme, incorporating modern web technologies and a cookie consent mechanism via Cookiebot. The site is mobile optimized and SEO friendly, though some accessibility features are basic. Security posture is solid with HTTPS enforced and ad personalization denied in consent settings, but lacks some security headers and formal security policies. Privacy compliance is partial due to missing privacy and terms of service pages. WHOIS data confirms the domain's legitimacy and consistency with the organization's history and location. Overall, the website is professional and trustworthy but could improve privacy transparency and contact availability.

V

Verein Standortmarketing Vaduz

erlebevaduz.li

62

Erlebe Vaduz is a non-profit association dedicated to promoting the capital city of Liechtenstein, Vaduz, by providing comprehensive information on local events, shopping, gastronomy, culture, and leisure activities. The website serves as a central marketing platform for local businesses and tourists, offering event calendars, member listings, and visitor guides. The target audience includes tourists, local residents, families, and couples seeking to explore Vaduz. The business model focuses on community engagement and local commerce promotion, positioning itself as a key player in Vaduz's tourism and retail sectors. Technically, the website is built on WordPress using a custom theme and integrates modern technologies such as Gravity Forms for data collection, Instagram Feed Pro for social media content, and Google Maps API for location services. The site demonstrates good digital maturity with responsive design, moderate performance, and SEO optimization. Security measures include HTTPS enforcement, strong SSL configuration, and appropriate security headers, although there is room for improvement in cookie consent mechanisms and published security policies. From a security perspective, the site maintains a solid posture with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed through a comprehensive GDPR-compliant privacy policy, but lacks an explicit cookie consent banner. Contact information is clearly provided, enhancing business credibility and user trust. No signs of malicious content or WAF blocking were detected, allowing full content accessibility. Overall, Erlebe Vaduz presents a trustworthy, well-maintained, and user-friendly platform that effectively supports local tourism and commerce. Strategic recommendations include implementing explicit cookie consent, publishing terms of service and security policies, and enhancing accessibility features to further strengthen compliance and user experience.

The Liechtensteinisches Rotes Kreuz website represents the national Red Cross society of Liechtenstein, offering emergency medical services, first aid courses, and parental counseling. It serves residents of Liechtenstein and nearby areas, operating as a non-profit humanitarian organization funded by donations and memberships. The website is well-branded, professionally designed, and provides clear contact information and social media presence, reinforcing its trustworthiness and community engagement. Technically, the site is built on WordPress using the Astra theme and several plugins including Modern Events Calendar Lite and MonsterInsights for analytics. The infrastructure supports good mobile optimization, accessibility, and SEO practices. Performance is moderate, with modern technologies and standard web analytics integration. From a security perspective, the site enforces HTTPS, employs security headers, and includes privacy and cookie policies compliant with GDPR. However, it lacks a dedicated security policy or incident response page and does not publish a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website demonstrates a strong security posture and business credibility appropriate for a national humanitarian organization. Strategic improvements could include publishing explicit security policies and incident response contacts to enhance transparency and trust further.

E

easyfind.ch

easyfind.ch

65

easyfind.ch operates as a Swiss-based lost and found service platform connecting individuals who have lost or found items with over 2,500 participating lost property offices across Europe. The platform supports multiple languages and integrates with services like Swisspass and easyfind.com codes, positioning itself as the largest network in this niche. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. Social media presence and customer ratings indicate a trustworthy and established service. Technically, the site uses modern web technologies and maintains good security practices with HTTPS and no exposed sensitive data. However, it lacks explicit security policies, incident response information, and cookie consent mechanisms, which are areas for improvement. Overall, the site is reliable, accessible, and serves a clear public service function.

T

ThemeFreesia

themefreesia.com

58

ThemeFreesia is a small technology company specializing in the development and distribution of free and premium responsive WordPress themes and plugins. Their market position is focused on providing accessible, stylish, and functional WordPress solutions primarily targeting business owners, designers, and bloggers. The company offers a business model combining free themes with paid 'Plus' plugins to enhance functionality and support. The website demonstrates a good level of digital maturity with a WordPress CMS infrastructure, integration of modern technologies such as Google Analytics, reCAPTCHA, WooCommerce, and SEO optimization via Yoast. Hosting is provided by Bluehost with Cloudflare DNS services, ensuring reliable uptime and performance. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but lacks DNSSEC and explicit security headers. Privacy compliance is basic with a privacy policy and cookie consent banner present, though GDPR compliance is not explicitly indicated. Overall, the website is professional, trustworthy, and safe for general audiences, with room for improvement in security policies and technical hardening.

P

Petr Sycha

petrsycha.cz

46

Petr Sycha operates a professional website focused on WordPress web development and template creation, targeting clients seeking modern, responsive web solutions. The business is positioned as a small, experienced service provider with over two decades of experience, primarily serving the Czech market. The website uses WordPress with the Divi theme and several performance and UI enhancement plugins, hosted by Wedos, a Czech hosting provider. The technical infrastructure is modern and moderately optimized for performance and mobile use. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers and explicit policies are lacking. Privacy compliance is partial with a cookie policy and consent mechanism but no privacy or terms of service pages. Contact information is clearly presented in structured data, enhancing business credibility. Overall, the site is professional, trustworthy, and safe for general audiences.

S

Safe Swiss Cloud

safeswisscloud.com

68

Safe Swiss Cloud is a Swiss-based cloud computing and managed IT services provider specializing in secure, sovereign cloud infrastructure hosted in Swiss data centers. The company offers a range of services including Private AI, managed IT operations, security, and 24/7 support, targeting enterprises in finance, healthcare, software, and manufacturing sectors. Their market position is strengthened by ISO certifications and a commitment to renewable energy usage. Technically, the website is built on WordPress with modern cloud technologies such as VMware, Openstack, and Kubernetes underpinning their services. The site is well-designed, mobile-optimized, and SEO-friendly, though it lacks explicit cookie consent mechanisms and visible contact emails or phone numbers, relying primarily on contact forms. Security posture is strong with HTTPS, domain transfer protection, and certifications, but could be improved with additional security headers and a vulnerability disclosure policy. Overall, the website and business present a trustworthy and professional image with minor areas for compliance and security enhancement.

G

GEF Ingenieur AG

siskmr.com

42

The website sisKMR.com represents GEF Ingenieur AG, a specialized engineering company providing software solutions for static calculations and optimization of district heating pipelines. The company holds a strong market position in Europe with over 30 years of experience and offers software, engineering services, training, and support primarily targeting planners, engineers, and manufacturers in the energy sector. The website is professionally designed, multilingual, and provides clear contact channels including forms, email, phone, and physical address. Technically, the site is built on WordPress with modern plugins and frameworks, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is good with a comprehensive GDPR-aligned privacy policy, though no cookie consent mechanism or terms of service are present. Overall, the site is trustworthy and business credible, with minor improvements recommended in security and privacy transparency.

R

R-S Matco LLC

rsmatco.com

47

R-S Matco LLC is a well-established supplier specializing in boiler tubing products and related services, serving industries such as power generation, industrial boilers, pulp & paper, and petrochemical sectors. The company positions itself as a leader with one of the largest inventories in the industry, offering value-added services including project management, rapid shipping, and custom tube preparation. The website reflects a professional B2B business model targeting industrial procurement professionals and plant managers. Technically, the website is built on WordPress with WPBakery Page Builder and integrates Google Tag Manager for analytics. The site demonstrates good design quality, mobile optimization, and clear navigation, though performance is moderate. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the security posture is moderate with no critical vulnerabilities detected, but improvements are needed in privacy compliance and security best practices. Contact information is clearly presented, enhancing business credibility. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include implementing DNSSEC, adding security headers, publishing privacy and cookie policies with consent mechanisms, and establishing a formal security policy and incident response contacts to strengthen trust and compliance.

S

Sonntag & Partner Partnerschaftsgesellschaft mbB

sonntag-karriere.de

57

Sonntag & Partner Partnerschaftsgesellschaft mbB is a well-established professional services firm in Germany specializing in auditing, tax consulting, legal advice, and economic consulting. The website focuses on career opportunities, emphasizing personal development, team collaboration, and flexible working conditions. The company has a strong regional presence with over 45 years of experience and maintains a consistent brand image across its digital assets. Technically, the website is built on WordPress with modern JavaScript libraries and includes a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site is professional, user-friendly, and trustworthy, targeting job seekers in finance and legal sectors.

T

TB-Planungsgesellschaft

tb-planung.de

41

TB-Planungsgesellschaft is a recently founded (April 2024) German company specializing in technical planning and consulting services for energy infrastructure, particularly modern heat and cooling networks. The company targets municipal and private projects with a focus on sustainability and efficiency. Their website is professionally designed using WordPress and Elementor, providing clear service descriptions and partner references, notably to HPW-Fernwaerme. The technical infrastructure is modern but lacks advanced security headers and cookie consent mechanisms. No direct contact emails or phone numbers are publicly listed, relying on a contact form for communication. Overall, the security posture is basic with room for improvement in compliance and incident response transparency. The domain registration is consistent with the company's new establishment, though WHOIS data is minimal. The website content is safe and suitable for general audiences.

U

UpdraftCentral

updraftcentral.com

68

TeamUpdraft operates UpdraftCentral, a specialized WordPress site management platform that enables users to manage multiple WordPress sites from a single dashboard. The company targets WordPress administrators and developers seeking streamlined updates, backups, and optimization tools. The website presents a professional and consistent brand image with clear product offerings and subscription pricing models, positioning itself as a niche player in the WordPress management ecosystem. Technically, the site is built on WordPress with WooCommerce integration, leveraging modern JavaScript libraries and Google Tag Manager for analytics. The domain is well-registered and stable, with Cloudflare DNS services enhancing reliability. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security features like DNSSEC and explicit security headers. Privacy compliance is limited due to absence of visible privacy and cookie policies, and no GDPR-specific mechanisms are evident. Overall, the site is functional, professional, and trustworthy but would benefit from enhanced privacy disclosures and security best practices.

A

All In One Security

aiosecurity.com

62

All In One Security is a small business specializing in comprehensive commercial and residential security solutions, including ADT authorized installations. The company positions itself as a trusted provider offering surveillance cameras, access control, monitored fire systems, and audio/video integration. The website is built on WordPress using Elementor and Astra theme, reflecting a moderate level of digital maturity with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and anti-spam protections, but lacks advanced security headers and formal policies such as privacy and cookie policies. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

U

UpdraftPlus

updraftplus.com

31

TeamUpdraft operates the UpdraftPlus website, offering the world's leading WordPress backup, restore, and migration plugin. The company targets WordPress site owners and developers, providing a SaaS model with tiered pricing plans. The business is positioned as a market leader with a strong reputation, supported by a high aggregate user rating and widespread adoption. Technically, the website is built on WordPress with WooCommerce integration, leveraging modern JavaScript libraries and marketing tools such as Google Tag Manager and Nelio A/B Testing. The infrastructure is supported by Cloudflare DNS and NameCheap registration, indicating a stable hosting environment. Security posture is good with HTTPS enabled and domain transfer protections, though improvements are possible by enabling DNSSEC and publishing explicit security policies. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

Make: Community is an established media and community platform dedicated to makers, creatives, and innovators since 2005. It nurtures a global cultural movement celebrating creativity and innovation. The website leverages WordPress with BuddyPress to provide social and community features, supported by modern technologies such as Elementor and various analytics and marketing tools. The platform targets a broad maker audience and positions itself as a key player in the maker media space. Technically, the site is well-structured with good mobile optimization and SEO practices, though performance is moderate. Security posture is solid with HTTPS and authentication via Auth0, but lacks visible security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies and extensive tracking without clear consent mechanisms. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security transparency.

M

MakerBot

makerbot.com

67

MakerBot is a prominent provider of 3D printing solutions focused primarily on the education sector. Their website showcases a comprehensive ecosystem including 3D printers, software, certification programs, and extensive educational resources such as lesson plans and community support. The company targets educators, schools, and educational institutions worldwide, positioning itself as a leader in classroom 3D printing with over 10,000 schools served. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site is built on WordPress with modern JavaScript libraries and marketing integrations such as Google Tag Manager and Marketo forms, supporting interactive features like quizzes and resource downloads. Security posture is good with HTTPS enforced and secure form handling, though the absence of explicit security headers and privacy policies suggests room for improvement. The WHOIS data is notably missing, which reduces domain trustworthiness and should be investigated further. Overall, the site is safe, professional, and well-positioned in its niche, but could enhance transparency and compliance documentation.

E

Engagiert in Flensburg - Ehrenämter und Freiwilligenbörse

engagiert-in-flensburg.de

44

The website engagiert-in-flensburg.de serves as a local platform dedicated to promoting volunteering and community engagement opportunities in Flensburg, Germany. It targets volunteers and organizations interested in Ehrenämter and Freiwilligenbörse activities. The platform operates likely as a non-profit or community service entity, focusing on connecting individuals with local volunteer opportunities. Technically, the site is built on WordPress using Elementor and integrates modern plugins such as Rank Math PRO for SEO and Google reCAPTCHA v3 for form security. Hosting is provided by agenturserver, a German hosting provider, which aligns with the website's regional focus. Security posture is moderate, with basic protections like reCAPTCHA but lacking advanced security headers and published policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site presents a good user experience with clear navigation and mobile optimization but requires improvements in transparency and security documentation to enhance trust and compliance.

W

Wildwechsel

wildwechsel.de

63

Wildwechsel is a regional German media platform specializing in event listings and cultural information for areas including Kassel, Paderborn, Marburg, Nordhessen, and OWL. The website offers comprehensive event data such as concerts, parties, theater, and local activities, targeting a general audience interested in regional happenings. Technically, the site is built on WordPress and integrates various modern web technologies including Google Fonts, FontAwesome, and multiple analytics and advertising scripts. Hosting is provided via GoDaddy, and the site uses HTTPS with a good SSL configuration. Security measures include anti-spam and bot detection services, but explicit security headers are lacking, and no formal privacy or cookie policies are detected, indicating room for compliance improvement. Overall, the site presents a professional and trustworthy front with moderate technical performance and good content quality.

B

Breath:Sun:Bone:Blood

breathsunboneblood.com

46

Breath:Sun:Bone:Blood is a small independent music label based in Berlin, specializing in niche genres such as dark ambient, experimental, modern composition, black metal, and folk music. The website serves as a platform to showcase their releases, artists, and news, targeting music enthusiasts interested in these genres. The business model revolves around music distribution and artist promotion, with a presence on Bandcamp for direct music sales and streaming. Technically, the website is built on WordPress using the Enfold theme and several common plugins including LayerSlider and MediaElement.js. The site is moderately performant, mobile-optimized, and SEO-friendly with proper meta tags and structured data. Hosting and domain registration are consistent with the business location in Germany, using RegistryGate GmbH as the registrar. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks DNSSEC and explicit security headers, which are recommended to enhance security posture. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies are present and written in German, reflecting compliance with EU regulations. Overall, the website is professional, trustworthy, and safe for general audiences. The main areas for improvement include adding explicit contact information, security policies, and enhancing DNS and HTTP security configurations to strengthen trust and resilience against attacks.

B

BBZ Schleswig

bbzsl.de

46

BBZ Schleswig is a regional vocational training and continuing education institution based in Schleswig and Kappeln, Germany. The website serves as an informational portal for educational offerings targeting students and professionals seeking vocational qualifications. The technical infrastructure is built on WordPress using the Divi theme, incorporating common analytics tools such as Google Analytics and Facebook Pixel. While the site demonstrates good design quality and user experience, it lacks explicit privacy and cookie policies, as well as visible contact information, which impacts its privacy compliance and business credibility scores. Security posture is moderate with no detected security headers or vulnerability disclosures, indicating room for improvement in security best practices. Overall, the website is safe for general audiences and functions well as an educational resource.

C

CSC – Tieteen tietotekniikan keskus Oy

eduuni.fi

52

Eduuni is a Finnish service platform provided by CSC – Tieteen tietotekniikan keskus Oy, focused on enabling secure and flexible collaboration across educational and research organizations. The platform offers a suite of cloud-based services including Microsoft 365/Azure environments, SharePoint workspaces, Atlassian Confluence wiki, Jira project management, and identity management through Eduuni-ID. The website reflects a professional and consistent brand presence targeting educational institutions and their stakeholders in Finland. Technically, the website is built on WordPress hosted on WordPress.com infrastructure, leveraging modern web technologies and integrations with Microsoft and Atlassian products. The site demonstrates good performance, mobile optimization, and basic accessibility features. Analytics are implemented via Jetpack Stats with minimal user tracking. From a security perspective, the site enforces HTTPS with excellent SSL configuration but lacks some advanced security headers and explicit incident response contacts. Privacy policies and terms of service are available on linked wiki pages, though no cookie consent mechanism is present on the main site. The domain registration is transparent and consistent with the business entity, indicating high legitimacy. Overall, Eduuni presents a trustworthy and well-maintained digital presence with room for improvement in privacy compliance and security header implementation.

F

Find Shooting Ranges Near You | Where To Shoot

wheretoshoot.org

57

Where To Shoot is a specialized online platform dedicated to helping firearm enthusiasts locate shooting ranges across various locations. The website offers a comprehensive searchable map with advanced filtering options for indoor and outdoor ranges, shooting disciplines, and available services. It also provides additional resources such as video galleries and the ability for users to list or edit shooting ranges. The platform targets shooting sports participants and hunters, positioning itself as a niche directory service within the recreational shooting industry. Technically, the website is built on WordPress and leverages modern web technologies including Google Maps API for geolocation services, jQuery for interactivity, and several plugins for SEO, advertising, and cookie compliance. The site is mobile-optimized and employs HTTPS to secure user interactions. Analytics and marketing tools such as Google Analytics, Pardot, and Google Tag Manager are integrated, indicating a moderate level of digital maturity. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of a clear privacy policy and direct contact information slightly reduces the overall privacy compliance and business credibility scores. Overall, Where To Shoot presents as a legitimate, professionally maintained directory service with good content quality and user experience. Strategic improvements in privacy policy visibility, security header implementation, and contact transparency would enhance trust and compliance, supporting long-term growth and user confidence.

T

TC Buckenmaier

tc-buckenmaier.de

51

TC Buckenmaier is a leading fashion retail company based in the Hohenlohe/Franken region of Germany, offering a wide range of fashion products and services including women's, men's, children's fashion, wedding attire, and corporate fashion. The company emphasizes quality, style, and personalized service, positioning itself as a regional market leader with a strong brand presence. The website reflects this with professional design, clear navigation, and comprehensive content tailored to its target audience. Technically, the site is built on WordPress with WooCommerce for e-commerce capabilities, enhanced by popular plugins for SEO, marketing, and performance optimization. The infrastructure supports modern web standards, mobile responsiveness, and accessibility. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong, with a detailed privacy policy and cookie management aligned with GDPR requirements. Overall, the site is trustworthy and professionally managed, with no signs of blocking or malicious activity.

Bergwelt Valtin is a small retail business based in Germany specializing in ski equipment fitting and customization services. Their offerings include ski boot widening, custom footbed fitting using advanced technologies, and specialized ski boot fitting systems. The website is built on WordPress and uses common plugins such as Contact Form 7 and WP-JQuery-Lightbox, indicating a standard small business digital infrastructure. The site is accessible, uses HTTPS with valid SSL, but lacks advanced security headers and privacy compliance mechanisms such as cookie consent banners. No explicit contact emails or phone numbers are provided on the main pages, which may impact user trust and communication. Overall, the website presents a professional and relevant experience for its target audience but could improve in privacy and security practices.

R

Regensburger Universitätsstiftungen

regensburger-universitaetsstiftung.de

45

The Regensburger Universitätsstiftungen website represents a non-profit foundation platform dedicated to supporting the University of Regensburg through funding and promotion of research, teaching, and international exchange. The foundation acts as a central hub for private and corporate donors aiming to enhance the university's profile and academic excellence. The website content is well-structured, professionally designed, and primarily targeted at university faculty and potential funders. Technically, the site is built on WordPress with the Foundation CSS framework and modern JavaScript libraries, ensuring good mobile responsiveness and user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and incident response disclosures. Privacy compliance is adequate with a clear privacy policy but lacks a cookie consent mechanism. Overall, the site is trustworthy, professional, and serves its educational and funding facilitation purpose effectively.

K

KLIMAK, s.r.o.

klimak.sk

40

KLIMAK, s.r.o. is a well-established Slovak company specializing in technical building services including HVAC, air conditioning, and energy management solutions. With a history dating back to 1993 and a domain registered since 2003, the company holds a strong market position supported by ISO certifications and a broad portfolio of services targeting both commercial and residential clients. Their website reflects a mature digital presence with multilingual support, comprehensive service descriptions, and active engagement through social media and news updates. Technically, the site is built on WordPress with modern performance optimizations and GDPR-compliant cookie management. Security posture is solid with HTTPS enforcement and security plugins, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site demonstrates high professionalism and trustworthiness suitable for its industry and audience.

M

M&M Lifeline

mum-lifeline.de

64

M&M Lifeline is a specialized provider of certified seminars and training programs primarily targeting healthcare professionals and nursing staff in Germany. Established in 2003, the company offers a variety of in-house, online, and presence seminars focusing on emergency response, first aid, and nursing-related topics. Their market position is supported by over 20 years of experience and certification by recognized bodies such as the MDK. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their audience. Technically, the website is built on WordPress using modern plugins and frameworks such as Avia Framework and WPForms. It employs HTTPS with excellent SSL configuration and includes GDPR-compliant cookie consent mechanisms. Performance is moderate with good mobile optimization and basic accessibility features. Analytics are implemented via Jetpack Statistics, with moderate user tracking and good privacy compliance. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and a dedicated security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the company's history and no privacy protection, enhancing trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic improvements could focus on enhancing security headers, publishing a security policy, and improving accessibility to further strengthen the security and user experience.

S

Sønderborg Kommune

sonderborg.dk

67

Sønderborg Kommune operates an official municipal website providing comprehensive information on culture, jobs, newcomer services, youth programs, and business opportunities within the Sonderborg region of Denmark. The website serves as a key digital portal for residents and visitors, positioning itself as a trusted source of local government information and community engagement. The business model is focused on public service and community support, with a medium-sized organizational footprint consistent with municipal operations. Technically, the website is built on WordPress using the Divi theme, integrating modern web technologies such as jQuery, Matomo analytics for privacy-conscious tracking, and Cookiebot for cookie consent management. The site demonstrates good SEO practices and mobile optimization, though accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks advanced security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The domain registration is consistent and longstanding, reinforcing trustworthiness. Overall, the website presents a professional and credible digital presence for the municipality, with recommendations to enhance security posture by enabling DNSSEC, adding security headers, and publishing security and vulnerability disclosure policies to further strengthen trust and compliance.

H

HR-ON

hr-on.com

61

HR-ON is a Denmark-based technology company specializing in providing a modern recruitment and HR system tailored for contemporary HR teams. Their platform offers services including recruitment, staffing, onboarding, core HR functions, and employee engagement, positioning them as a competitive SaaS provider in the HR technology market. The website demonstrates a professional design with consistent branding and good SEO practices, targeting modern HR professionals and organizations seeking efficient HR solutions. Technically, the site is built on WordPress with a robust tech stack including multiple analytics and marketing tools, indicating a mature digital infrastructure. Security-wise, the site employs HTTPS and reCAPTCHA but lacks some advanced security headers and formal security policies, suggesting room for improvement in compliance and incident response readiness. Overall, the website is trustworthy and functional, with recommendations to enhance privacy transparency and security posture.

H

HR-ON

hr-skyen.dk

62

HR-ON is a Denmark-based technology company specializing in providing a modern recruitment and HR system tailored for contemporary HR teams. Founded in 2015, the company offers a SaaS platform that integrates recruitment, staffing, onboarding, core HR functions, and employee wellbeing services. The website reflects a professional and consistent brand image, targeting HR professionals and organizations seeking efficient HR management solutions. The company maintains an active digital presence with multiple social media channels and employs various marketing and analytics tools to optimize user engagement and business growth. Technically, the website is built on WordPress and leverages a comprehensive tech stack including Yoast SEO, Google Tag Manager, Google Analytics, Facebook Pixel, Hotjar, and other marketing automation tools. Hosting is provided via one.com, with domain registration dating back to 2015, consistent with the company's founding year. The site demonstrates good SEO practices, mobile optimization, and moderate performance, although accessibility features are basic. From a security perspective, the site uses HTTPS and incorporates reCAPTCHA for form protection. However, DNSSEC is not enabled, and explicit security headers are not detected in the provided data. There is no visible privacy policy or terms of service in the analyzed content, which represents a compliance gap. No vulnerability disclosures or incident response contacts are published. The WHOIS data shows a stable and legitimate domain registration without privacy protection, enhancing trustworthiness. Overall, HR-ON presents a credible and professional online presence with a solid technical foundation and active marketing efforts. To enhance security and compliance posture, the company should consider publishing comprehensive privacy and terms policies, enabling DNSSEC, and adding security headers. These improvements will strengthen user trust and regulatory compliance.

K

Kulturstiftung des Kreises Schleswig Flensburg

kultur-schleswig-flensburg.de

51

The Kulturstiftung des Kreises Schleswig Flensburg operates as a regional cultural foundation focused on supporting and promoting cultural activities within the Schleswig-Flensburg district in Germany. The website serves as an informational platform providing details on cultural events, funding opportunities, and community engagement. The organization positions itself as a non-profit entity with a clear public service mission, targeting residents and cultural participants in the region. Technically, the website is built on the WordPress CMS platform, utilizing common plugins such as LayerSlider, WPBakery Page Builder, Events Manager, and Real Cookie Banner Pro for cookie consent management. Hosting is provided by linevast.de, as indicated by the domain's nameservers. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and solid SEO practices. From a security perspective, the website enforces HTTPS and implements a GDPR-compliant cookie consent mechanism. However, explicit security headers like Content-Security-Policy or X-Frame-Options are not detected, suggesting room for enhancement. No vulnerabilities or exposed sensitive data were found in the analysis. Privacy compliance is strong, with a comprehensive privacy policy and cookie management in place. Overall, the website presents a trustworthy and professional digital presence for a regional cultural foundation. It effectively balances user experience, privacy compliance, and technical implementation. Strategic improvements in security headers and expanded contact information could further strengthen its security posture and user trust.

V

VOCAST

vocast.com

65

VOCAST operates as a brand sharing platform targeting businesses passionate about their brand identity. The website presents a professional and consistent brand image, leveraging WordPress with the Divi theme and performance optimizations via WP Rocket. The technical infrastructure includes modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Leadfeeder, with DNS managed through Cloudflare, indicating a mature digital presence. Security posture is adequate with HTTPS enforced and cookie consent managed by Cookiebot, though some security headers are missing and no explicit security or incident response policies are visible. Overall, the site is trustworthy and well-structured but could improve transparency by adding contact details and terms of service.

K

Kreismusikschule Nordfriesland

kreismusikschule-nordfriesland.de

40

The Kreismusikschule Nordfriesland website serves as the online presence for a regional music school in Germany, providing music education and related services. The site is built on WordPress using the Divi theme, indicating a moderate level of digital maturity with caching and font optimizations. The content is primarily in German and targets local residents interested in music education. While the website is functional and professionally designed, it lacks critical privacy and security documentation such as privacy and cookie policies, which are essential for GDPR compliance. No contact information or social media links were found in the provided content, limiting direct communication channels. The site uses HTTPS with a good SSL configuration but lacks security headers, which could be improved to enhance security posture.

R

Raritäten der Klaviermusik

piano-festival-husum.com

44

The website represents the 'Raritäten der Klaviermusik' piano festival, a niche cultural event held annually in Husum, Germany, since 1987. It focuses on rare piano music outside the standard repertoire, offering concerts, exhibitions, and live CD productions. The site is bilingual and professionally designed, targeting classical music enthusiasts and cultural tourists. Technically, it is built on WordPress with the Divi theme and uses common web technologies such as jQuery and Google Fonts. The hosting and domain registration are consistent with the festival's German cultural identity. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is basic with a privacy and cookie policy present but no explicit consent mechanism. Contact information is clearly provided, enhancing business credibility.

M

Metall Impex GmbH

metall-impex.com

46

Metall Impex GmbH is an established German company specializing in international trading of metals, non-ferrous metals, and raw materials. Founded in 1982 and based in Munich, the company focuses on supplying steel products and raw materials globally, supporting customers with marketing, logistics, and product financing solutions. The website reflects a professional B2B trading business with a clear market position in the manufacturing sector. Technically, the website is built on WordPress using well-known plugins and themes, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though improvements such as enabling DNSSEC and adding security headers are recommended. Overall, the website is trustworthy and compliant with GDPR, though it lacks explicit security policies and incident response contacts.

G

Gasthof Neuwirt

gasthof-neuwirt.org

50

Gasthof Neuwirt is a traditional family-run hospitality business located in Garching, Germany, with a history dating back to 1904. The company operates a restaurant, beer garden, event hall, and guest rooms, targeting local residents and visitors seeking authentic Bavarian dining and lodging experiences. The website reflects a well-established local inn with consistent branding and a clear presentation of services. Technically, the site is built on WordPress using the Enfold theme and includes common plugins such as Yoast SEO and MonsterInsights for analytics. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and implements GDPR-compliant cookie consent mechanisms but lacks advanced security headers and DNSSEC. No incident response or vulnerability disclosure information is provided, which could be improved. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business.

E

Emarsys

emarsys.com

68

Emarsys is a well-established enterprise marketing software provider specializing in AI-powered personalized omnichannel customer engagement solutions. The company operates under the SAP umbrella, reflecting a strong market position and extensive industry experience since 2000. Their website demonstrates a mature digital infrastructure with comprehensive content, professional design, and clear navigation aimed at marketers and businesses seeking advanced marketing automation and personalization services. The technical stack leverages WordPress CMS with modern marketing and analytics tools such as Marketo, Google Tag Manager, and Facebook Pixel, ensuring robust data collection and user engagement tracking. Security posture is solid with HTTPS enforced and no critical vulnerabilities detected, though some security headers could be improved. Privacy compliance is evident with accessible privacy and cookie policies and GDPR considerations. Overall, the website and domain registration data indicate a trustworthy and credible business presence.

M

Macworld

macworld.com

63

Macworld is a well-established media brand specializing in news, reviews, and tips related to Apple's product ecosystem. It serves a broad audience of Apple users and technology enthusiasts, providing comprehensive content including articles, podcasts, and deals. The website is owned by Foundry, a parent organization, and maintains consistent branding and high content quality. Technically, the site is built on WordPress with a modern tech stack including advanced advertising and consent management tools. It is optimized for SEO, mobile-friendly, and uses HTTPS with strong security headers. Privacy compliance is robust with clear privacy and cookie policies and active consent mechanisms. However, explicit Terms of Service and security policy pages are not found, and no direct contact information is publicly listed. The WHOIS data is privacy protected, which is justified for a media brand. Overall, the site demonstrates a mature digital presence with good security posture and compliance, suitable for its business model and audience.

D

DCF Verlag GmbH

unternehmerjournal.de

44

UnternehmerJournal is a German online media platform dedicated to the Mittelstand business sector, providing news, interviews, and expert advice tailored for business executives and entrepreneurs. The platform is operated by DCF Verlag GmbH and positions itself as a niche media outlet for the digital German Mittelstand, emphasizing quality content and business insights. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Tag Manager, and Iubenda for cookie compliance, ensuring a good level of digital maturity and user experience. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit security policies and incident response contacts, which could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR, serving its target audience effectively.

D

docleads

docleads.de

51

docleads.de is a German marketing agency specializing in healthcare practice marketing, focusing on acquiring more desired patients for medical practices. The website is built on WordPress, utilizing popular plugins such as Yoast SEO and WP Rocket, indicating a moderate level of technical maturity. The site is HTTPS secured and presents professional design and content tailored to its niche audience. However, the absence of explicit privacy and cookie policies, as well as security headers, suggests room for improvement in compliance and security posture. Overall, the website is functional and trustworthy but would benefit from enhanced privacy and security measures.

The website www.wsb-agency.com represents a communication agency formerly known as WSB, now rebranded as mêtis to celebrate its 20th anniversary. The agency focuses on providing communication and marketing services to businesses that view communication as a catalyst for change. The site serves primarily as an announcement landing page directing visitors to the new brand website and LinkedIn profile. Technically, the site is built on WordPress using common libraries such as jQuery, Tailwind CSS, and FontAwesome. However, it suffers from visible WordPress debug notices indicating suboptimal configuration and early loading of translation files. Security posture is basic with no visible security headers or advanced protections, and no privacy or cookie policies are present, which impacts compliance. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy and registration consistency. Overall, the site is functional but minimal, with moderate technical maturity and basic content quality.

W

Wagner-Bazin WB

wagner-bazin-wb.com

42

Wagner-Bazin WB is a professional cycling team based in France, providing news, team information, race calendars, and merchandise through their official website. The site targets cycling enthusiasts and supporters, offering a well-structured and visually consistent platform. Technically, the website is built on WordPress with WooCommerce and Elementor, integrating modern marketing and analytics tools such as Google Tag Manager and Brevo. The site is mobile-optimized and SEO-friendly, with a moderate performance profile. Security-wise, HTTPS is enforced and cookie consent is managed via Axeptio, but there is a lack of visible security headers and no explicit privacy policy or terms of service pages, which are areas for improvement. The absence of WHOIS data raises concerns about domain registration legitimacy, although the website content and social media presence suggest a legitimate operation. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

A

André Bazin - Charcuterie et Salaison

andre-bazin.fr

51

André Bazin is a medium-sized French company specializing in charcuterie and salting products, with a history dating back to 1954. The company operates multiple brands and serves mass retailers, food service professionals, and ready-meal manufacturers. Their website is professionally designed using WordPress and Elementor, featuring multilingual support and comprehensive business information. Technically, the site uses modern plugins and SEO tools, hosted by OVH, with good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and secure forms, though there is room for improvement in explicit security policies and incident response information. Overall, the website is trustworthy, compliant with GDPR, and provides clear contact channels.

T

Turistička zajednica Zagrebačke županije

tzzz.hr

44

Visit Zagreb County is the official tourism portal for the Zagreb County region in Croatia, managed by the Turistička zajednica Zagrebačke županije. The website serves as a comprehensive guide for tourists, offering information on cultural events, gastronomy, active holidays, health tourism, and sustainable tourism initiatives. It targets visitors interested in exploring the natural beauty and cultural heritage of the Zagreb County area. The business operates as a regional tourism authority, promoting local attractions and events to enhance tourism in the region. Technically, the website is built on WordPress using the Elementor page builder, with jQuery and several plugins for spam protection and accessibility. The hosting provider is Plus Hosting Grupa d.o.o., a Croatian hosting company. The site is moderately performant, mobile-optimized, and includes basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured content. From a security perspective, the site uses HTTPS and includes spam protection and an accessibility widget. However, it lacks important security headers and a cookie consent mechanism, which are recommended for compliance with EU regulations. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy policy present but no cookie banner or detailed security policies. Overall, the website is trustworthy and professionally maintained, with a clear focus on tourism promotion. Strategic improvements in security headers, privacy compliance, and contact information visibility would enhance its security posture and user trust.

K

KLISAB

klisab.com

45

KLISAB is a Croatian fashion brand specializing in modern clothing and accessories for men and women, founded in 2020 by designers Tomislav Kliškinić and Marko Šabarić. The company operates an e-commerce platform built on WordPress and WooCommerce, targeting fashion-conscious consumers primarily in Croatia. The website presents a professional and consistent brand image with clear navigation and good mobile optimization. Technical infrastructure leverages popular WordPress plugins and themes, including GDPR-compliant cookie consent mechanisms and analytics integrations such as Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enabled and domain registration transparency, though improvements in DNSSEC and security headers are recommended. Overall, the site is trustworthy and compliant with privacy regulations, supporting a positive user experience.

I

Ipša – Maslinova ulja

ipsa-maslinovaulja.com

45

The website appears to be a Croatian language site focused on olive oil products, likely representing a small business in the energy/agriculture sector. The domain is well established since 2009, indicating a stable presence. The technical infrastructure is based on WordPress with common plugins and libraries, showing a moderate level of digital maturity. However, the site lacks critical privacy and cookie policies, contact information, and security best practices such as security headers and DNSSEC. No advanced analytics or tracking mechanisms were detected, suggesting minimal user tracking. The security posture is basic with room for improvement in SSL enforcement and header implementation. Overall, the site is functional but lacks comprehensive compliance and security features, which could impact user trust and regulatory adherence.

Z

ZKM

zekaem.hr

10

Zagrebačko kazalište mladih (ZKM) is a well-established cultural institution in Croatia focused on theatrical performances and educational programs. The website serves as a portal for event schedules, ticket sales, and news updates, targeting the general public interested in theater and culture. The organization maintains an active digital presence with social media integration and multilingual support via Google Translate. The domain age and WHOIS data confirm legitimacy and consistency with the business profile. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder, Ultimate VC Addons, and GDPR compliance tools like Complianz. The site demonstrates good SEO practices, mobile optimization, and moderate performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website reflects a professional and trustworthy cultural institution with good privacy compliance and user experience. However, it lacks explicit security policies and incident response contacts, which could enhance trust and preparedness. The site uses Google Analytics and Facebook Pixel for analytics and marketing, with appropriate consent mechanisms. Strategic recommendations include enhancing security headers, publishing a security policy, and conducting regular security audits to maintain and improve the security posture.

A

Abalone d.o.o.

abalone.hr

10

Abalone d.o.o. operates the Abalone Hotel & Apartments located on the Crikvenica Riviera in Croatia, providing hospitality services including hotel rooms and apartments. The business targets tourists and travelers seeking accommodation in this coastal region. The website is professionally designed using WordPress with modern plugins and themes, hosted on HostGator, and includes multilingual support. It demonstrates a moderate level of digital maturity with SEO and mobile optimization in place. Security posture is adequate with HTTPS and cookie consent mechanisms implemented, though security headers and incident response policies are absent. Overall, the site is trustworthy and compliant with GDPR cookie requirements but could improve in security transparency and contact information visibility.