Security Directory

S

Studio StillSoft

studiostillsoft.com

45

Studio StillSoft is a small creative or digital studio established around 2020, focusing on showcasing selected projects through a minimalistic website design. The business appears to target a general audience interested in creative digital services, positioning itself as a niche player in the creative industry. The website is simple and visually oriented, with limited textual content and no explicit business or contact details visible on the homepage. Technically, the website uses modern JavaScript modules and CSS with a probable Vue.js framework, hosted on Websupport infrastructure. The site is mobile optimized and moderately performant but lacks advanced SEO and accessibility features. No CMS or third-party marketing/analytics tools are detected, indicating a lightweight and straightforward technical setup. From a security perspective, the site lacks critical security headers and privacy compliance mechanisms such as privacy or cookie policies. The domain registration is legitimate and consistent with the business profile, but the absence of security best practices and contact information reduces trustworthiness. No WAF or blocking mechanisms are detected, and the site content is safe for general audiences. Overall, the website scores moderately on content and business credibility but scores low on security and privacy compliance. Strategic improvements in security headers, privacy policies, and contact transparency are recommended to enhance trust and compliance.

F

FederlegnoArredo

apilitalia.it

59

FederlegnoArredo is a well-established Italian industry association focused on the wood and furniture manufacturing sector. The website serves as an informational and advocacy platform for businesses within this industry, providing sector representation and promoting member interests. The site demonstrates a professional design and consistent branding, targeting industry professionals and businesses. Technically, the website leverages modern web technologies including React and Next.js, with a responsive design and cookie consent implemented via Cookiebot, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and some security headers likely present, though explicit security policies and incident response information are absent. Privacy compliance is partial, with a cookie consent mechanism but no clear privacy policy or terms of service found. Overall, the website is trustworthy and professional but would benefit from enhanced transparency and compliance documentation.

T

Tregler Brennstoffe

tregler-brennstoffe.at

51

Tregler Brennstoffe is a small, established business specializing in the buying, processing, and selling of quality firewood in the Czech Republic and Austria since 1991. The website reflects a regional energy sector focus with clear business descriptions and a professional presentation. Technically, the site uses modern JavaScript frameworks such as Vue.js and a Laravel Nova backend, indicating a mature digital infrastructure. The presence of multiple analytics and tracking tools shows an active approach to marketing and user behavior analysis. Security posture is moderate with HTTPS enabled and some best practices observed, but lacks explicit security headers and published privacy policies, which are areas for improvement. Overall, the site is functional, professional, and trustworthy but would benefit from enhanced compliance and security documentation.

S

Spurensuche

spurensuche.de

65

Spurensuche.info is a German-language spiritual and religious website focused on Christian faith, offering a wide range of content including articles, meditations, prayers, videos, and educational materials. The site targets religious individuals, church groups, educators, and youth, providing resources to explore spirituality and faith. It maintains a niche position within the religious content market in Germany, supported by a small but consistent content update schedule and community engagement via social media. Technically, the website is built on WordPress with modern plugins for SEO, GDPR compliance, and analytics. It uses HTTPS with good security practices, including a GDPR cookie consent mechanism and captcha-protected contact forms. The site is mobile-optimized and provides multilingual support via Google Translate. Performance is moderate, with room for improvement in accessibility and security headers. Security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear policies and user consent mechanisms. The WHOIS data is privacy protected, which is justified given the site's nature and GDPR requirements. No suspicious patterns or legitimacy concerns were identified. Overall, Spurensuche.info presents a trustworthy, professional, and well-maintained platform for spiritual content, with recommendations to enhance security headers and accessibility to further improve its posture.

D

Dormitio Abtei

dormitio.net

52

Dormitio Abtei is a German-speaking Benedictine Abbey located in Israel, serving religious, cultural, and academic communities. The website reflects a well-established non-profit religious institution with a focus on pilgrimage, worship services, cultural engagement, and theological studies. The domain has been active since 2005, supporting the institution's long-standing presence. Technically, the website uses modern web technologies including UIkit framework and Matomo analytics, ensuring good performance and mobile optimization. However, the site lacks visible privacy and cookie policies, which is a compliance gap under GDPR. Security posture is moderate with HTTPS enabled and domain registrar protections in place, but missing DNSSEC and security headers reduce the overall security score. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. Overall, the website is professional, trustworthy, and safe for general audiences.

I

ISOTEC GmbH

isotec.de

64

ISOTEC GmbH operates a professional website focused on building protection services including moisture damage remediation, mold removal, and balcony renovation. The company positions itself as a specialist with over 150 locations, TÜV-Rheinland certification, and a strong emphasis on quality and customer trust. The website is well-structured, professionally designed, and targets homeowners, tenants, and business customers primarily in Germany. Technically, the site is built on TYPO3 CMS and integrates modern analytics and marketing tools such as Google Analytics, Hotjar, and Cookiebot for GDPR-compliant cookie management. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and headers could enhance trust further. WHOIS data is minimal but consistent with the hosting provider, showing no suspicious patterns. Overall, the website demonstrates a mature digital presence with good compliance and user experience.

C

Christian-Schreiber-Haus

christian-schreiber-haus.de

52

Christian-Schreiber-Haus is a small non-profit educational and youth accommodation provider located near Berlin, Germany. The organization offers group housing, educational programs, spiritual services, and workshops primarily targeting school classes, youth groups, and church communities. The website reflects a well-established regional presence with clear contact information and legal compliance. Technically, the site is built on Joomla CMS with Yootheme and UIkit frameworks, providing a modern and accessible user experience. Security posture is solid with HTTPS, CSRF protections, and privacy consent mechanisms, though some HTTP security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

B

Bund der Deutschen Katholischen Jugend Diözesanverband Berlin

bdkj-berlin.de

54

Bund der Deutschen Katholischen Jugend Diözesanverband Berlin (BDKJ Berlin) is a non-profit umbrella organization within the Catholic Church focused on creating spaces for children and youth to develop autonomously and self-organized. The organization coordinates multiple youth associations, offers educational and political programs, and emphasizes prevention and processing of sexualized violence. Their market position is regional, serving the Berlin area with a medium-sized organizational structure. Technically, the website employs modern JavaScript libraries and Bootstrap framework, with a cookie consent mechanism and responsive design, though some advanced SEO and accessibility features could be improved. Security posture is solid with HTTPS and cookie consent but lacks explicit security headers and incident response information. Overall, the website is professional, trustworthy, and compliant with GDPR, serving its target audience effectively.

D

Diözesanarchiv Berlin

dioezesanarchiv-berlin.de

52

The Diözesanarchiv Berlin website serves as the official archival repository for the Archdiocese of Berlin, preserving and providing access to historical and ecclesiastical documents related to the Catholic Church in Berlin, Brandenburg, and Pommern. The site targets researchers, historians, and church officials, offering curated archival content and documentation. The business operates under the Archdiocese of Berlin, positioning itself as a specialized government/non-profit archival institution with a clear mission and trusted affiliation. Technically, the website is built on WordPress using a professional theme and SEO plugins, ensuring good SEO optimization and mobile responsiveness. The hosting is managed via DomainControl nameservers, and the site uses HTTPS with no detected blocking or WAF interference. Performance is moderate, with room for improvement in accessibility and security headers. From a security perspective, the site benefits from HTTPS and absence of exposed sensitive data or vulnerable libraries. However, it lacks important security headers and a cookie consent mechanism, which are critical for GDPR compliance and enhanced security posture. No incident response or vulnerability disclosure information is provided, limiting transparency in security management. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance measures, improved security headers, and clearer contact information to strengthen user trust and regulatory adherence.

D

Diözesane Arbeitsgemeinschaft der Mitarbeitervertretungen im Erzbistum Berlin

diag-mav-berlin.de

55

DiAG-MAV Berlin is a small non-profit organization serving employee representatives within the Archdiocese of Berlin. The website provides informational resources, legal documents, seminar announcements, and contact details tailored to its niche audience. The organization positions itself as a trusted source for employee representation in church-related contexts. Technically, the website is built on WordPress with common plugins and libraries such as jQuery, Bootstrap, and Revolution Slider, indicating a standard but functional digital infrastructure. The site is mobile-optimized and includes interactive maps for location display. Security-wise, the site uses HTTPS and basic form validation but lacks advanced security headers and visible incident response policies. Privacy compliance is addressed with a cookie consent banner and a privacy policy page in German. Overall, the site is professional and trustworthy but could improve in security best practices and transparency regarding terms of service and incident response.

E

Erzbistum Berlin

schulen-erzbistumberlin.de

58

The website for Schulen des Katholischen Erzbistum Berlin represents a network of Catholic educational institutions in Berlin and Brandenburg, offering primary, secondary, and special education. It serves a broad audience including children, youth, parents, and educational staff, positioning itself as a regional leader in faith-based education. The site provides news, job postings, and educational offerings, reflecting a community-oriented non-profit model under the Archdiocese of Berlin. Technically, the site is built on Joomla CMS with modern web technologies, including GDPR-compliant cookie consent mechanisms and responsive design, ensuring accessibility and privacy compliance. Security posture is solid with HTTPS and cookie management, though lacks explicit security policy and incident response disclosures. Overall, the site is professional, trustworthy, and well-aligned with its educational mission.

R

radio horeb

horeb.org

66

radio horeb is a private Christian radio broadcaster based in Germany, focusing on Catholic-themed religious programming. The website offers live radio and video streams, podcasts, and various spiritual and community-oriented content. It operates on a donation-supported non-profit model targeting German-speaking Christian audiences. The site is built on TYPO3 CMS and employs modern web technologies including jQuery and Flexslider, with integrated analytics tools such as Google Analytics and Matomo. Privacy and cookie policies are clearly presented, and a cookie consent mechanism is implemented, reflecting good compliance with GDPR requirements. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though additional security headers and formal security policies could enhance protection. The absence of WHOIS data limits domain registration trust analysis, but the website's professional presentation and consistent branding support its legitimacy. Overall, the site is well-structured, user-friendly, and trustworthy for its target audience.

D

DOMRADIO.DE

domradio.de

11

DOMRADIO.DE is a well-established German Catholic media outlet providing news, podcasts, live radio, and video content focused on religious and church-related topics. The website demonstrates a mature digital infrastructure using Drupal 10 CMS, integrated with modern analytics and consent management tools, ensuring GDPR compliance. The content is professionally curated, targeting German-speaking Catholic audiences and related communities. Security posture is strong with HTTPS and standard security headers, though explicit security policies and incident response contacts are not published. WHOIS data confirms legitimate domain registration with professional hosting via Akamai. Overall, the site is trustworthy, well-branded, and technically sound.

K

Katholische Akademie in Berlin e.V.

katholische-akademie-berlin.de

10

Katholische Akademie in Berlin e.V. is a well-established non-profit Catholic educational and cultural institution based in Berlin, Germany. It offers a wide range of events, lectures, podcasts, and cultural programs focusing on theology, politics, society, philosophy, and religion. The organization targets a general audience interested in religious and cultural discourse and maintains a strong regional presence with institutional support from recognized partners such as Bonifatiuswerk. The website reflects a professional and consistent brand image with clear navigation and relevant content.

K

Katholisches Netzwerk Kinderschutz im Erzbistum Berlin

katholisches-netzwerk-kinderschutz.de

10

The Katholisches Netzwerk Kinderschutz im Erzbistum Berlin is a non-profit network established in 2011, focused on protecting children and youth from sexual violence, abuse, and neglect within Catholic institutions in Berlin. It operates under the Archdiocese of Berlin, collaborating with various Catholic organizations, schools, and social services. The website serves as an information and networking platform, providing resources, event recaps, and contact points for prevention and intervention. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and implements GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS and consent-based third-party content loading, though formal security policies and incident response contacts are not publicly detailed. Overall, the site is professional, trustworthy, and well-aligned with its mission and audience.

D

Diözesanrat der Katholiken im Erzbistum Berlin

dioezesanrat-berlin.de

10

The Diözesanrat der Katholiken im Erzbistum Berlin operates as a Catholic diocesan council representing lay members within the Archdiocese of Berlin. The organization focuses on community engagement, pastoral development, and social initiatives, supported by a well-structured website that provides news, event information, and newsletter subscriptions. The website is built on TYPO3 CMS and hosted on a German hosting provider, reflecting a moderate level of technical maturity with room for modernization, particularly in updating JavaScript libraries and enhancing security headers. From a security perspective, the website employs a comprehensive cookie consent mechanism aligned with GDPR requirements, including granular user controls for third-party media content. However, explicit security policies and incident response information are not publicly available, and some technical security best practices such as modern security headers and updated libraries could be improved. The absence of exposed sensitive data and the use of HTTPS (assumed) contribute positively to the security posture. Overall, the website demonstrates a high level of professionalism and trustworthiness appropriate for a religious non-profit organization. The content is safe for general audiences, with no adult or questionable material. The domain registration and hosting details align well with the organization's identity, supporting a high legitimacy score. Strategic recommendations include enhancing security headers, updating legacy scripts, and publishing explicit security and incident response policies to further strengthen trust and compliance.

S

Sankt Hedwigs-Kathedrale / Metropolitankapitel bei Sankt Hedwig

hedwigs-kathedrale.de

10

Sankt Hedwigs-Kathedrale is a prominent religious and cultural institution in Berlin, serving as the central Catholic cathedral for the archdiocese. The website provides comprehensive information about the cathedral's history, services, music programs, events, and community engagement. It targets parishioners, visitors, and cultural tourists, offering schedules, guided tours, and donation opportunities. The institution holds a respected position within the religious community and maintains partnerships with the archdiocese and choir organizations. Technically, the website is built on the TYPO3 CMS platform, leveraging jQuery and privacy-focused Matomo analytics. The site is well-structured, mobile-optimized, and includes a GDPR-compliant cookie consent mechanism. Hosting is managed via reputable providers as indicated by the nameservers. Performance is moderate with good SEO and accessibility basics in place. From a security perspective, the site enforces HTTPS and uses cookie consent to manage user privacy. However, explicit security headers and incident response policies are not evident, representing areas for improvement. No vulnerabilities or suspicious content were detected. The WHOIS data aligns reasonably with the website's institutional identity, supporting legitimacy. Overall, the website demonstrates a solid balance of content quality, technical implementation, and privacy compliance, suitable for its non-profit religious mission. Strategic enhancements in security policies and transparency could further strengthen trust and resilience.

S

SURSCHISTE

surschiste.com

60

SURSCHISTE is a French industrial and commercial operator specializing in the valorization and transformation of by-products from thermal power plants. As a subsidiary of EP Power Minerals (EPPM), it holds a stable market position within the energy sector, focusing on sustainable industrial processes. The website reflects a professional business presence with clear descriptions of its core services and target audience. Technically, the site is built on WordPress using the Divi theme and incorporates SEO best practices via Yoast SEO. Google Analytics is used for visitor tracking, and a cookie consent mechanism is implemented, indicating some privacy awareness. However, the absence of a visible privacy policy and terms of service reduces privacy compliance confidence. Security posture is moderate with HTTPS enabled and domain status locks, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Overall, the website is functional and professional but would benefit from improved privacy and security disclosures to strengthen trust and compliance.

M

MINERALplus STORK GmbH

mineralplusstork.de

49

MINERALplus STORK GmbH operates a modern slag processing plant in Zossen, Germany, specializing in recycling slag and ash from waste to energy plants. The company is jointly managed by STORK Umweltdienste GmbH and MINERALplus GmbH, both part of the EP Power Minerals group. Their services include metal recovery and production of construction materials from slag, serving industrial and construction sectors regionally. The website is professionally designed using TYPO3 CMS, with good mobile optimization and clear navigation. It employs Matomo analytics with a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS and spam-protected emails, though additional security headers and policies could enhance protection. Overall, the site reflects a trustworthy and credible business presence with clear contact information and certification evidence.

F

Felix Höltken GmbH

felixhoeltken.de

47

Felix Höltken GmbH is a medium-sized German company specializing in Baustoffrecycling and Baustoffgroßhandel, operating since 1990 and part of the EPH-Konzern. The company provides high-quality recycled construction materials primarily for the construction and infrastructure sectors, positioning itself as a sustainable alternative to natural stone resources. The website reflects a professional and consistent brand image, targeting business clients in the construction industry. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and implements a cookie consent mechanism via Klaro, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers could be improved. Overall, the website is well-structured, accessible, and compliant with GDPR requirements, with clear contact information and no blocking mechanisms detected.

E

Euroment

euroment.com

44

Euroment is a well-established supplier of certified pulverized coal fly ash and limestone powders primarily serving the Benelux region. The company emphasizes sustainability and innovation, particularly in reducing CO2 emissions in cement-bound systems. Their website is professionally designed using TYPO3 CMS, featuring good mobile optimization, clear navigation, and comprehensive content about their products and services. The technical infrastructure includes modern technologies such as Matomo for analytics and Klaro for cookie consent management, reflecting a mature digital presence. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although security headers could be improved. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which slightly impacts overall trust. Contact information is primarily via a contact page without explicit emails or phone numbers visible on the site. Overall, Euroment presents a credible and professional business front with minor areas for improvement in transparency and security best practices.

E

EP Energo Mineral Sp. z o.o. and EP Energo Mineral Deutschland GmbH

epenergomineral.pl

52

EP Energo Mineral operates as a specialized supplier and service provider in the energy and construction sectors, focusing on the management and supply of power plant by-products such as fly ash, slag mixtures, and microspheres. The company is supported by experienced shareholders and offers laboratory testing and logistics services to ensure product quality and reliable delivery. The website is professionally designed, multilingual, and provides comprehensive business and product information targeting industrial clients in Poland and Germany. Technically, the site uses TYPO3 CMS with Matomo analytics and a consent management platform, reflecting a modern digital infrastructure. Security posture is generally good with HTTPS and cookie consent implemented, though the absence of security headers and WHOIS data transparency are notable gaps. Overall, the site presents a trustworthy business presence but would benefit from enhanced security disclosures and domain registration clarity.

M

MINERALplus GmbH

mineralplus.de

46

MINERALplus GmbH is a German company specializing in industrial waste disposal and the production of construction and mine packing materials from waste. Founded in 2000 through a merger, it operates as a subsidiary of EP Power Minerals GmbH under the EPH Group umbrella. The company serves industrial and construction sectors with certified waste treatment, recycling, and landfill services. The website is built on TYPO3 CMS, uses Matomo for analytics, and Klaro for cookie consent management, reflecting a modern and privacy-conscious technical infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the website is professional, well-structured, and trustworthy, with no signs of malicious content or blocking mechanisms.

E

EP Power Grit

eppowergrit.com

53

EP Power Grit is a specialized manufacturer and global supplier of high-quality abrasives and industrial minerals based on aluminum, iron, and calcium silicates, natural minerals, glass, and other raw materials. The company operates production facilities in Germany, Belgium, the Netherlands, and Finland, with local customer service in several European countries. Their product portfolio includes disposable abrasives, reusable abrasives, special abrasives, and industrial minerals, complemented by flexible packaging and logistics services. The website is professionally designed, multi-lingual, and provides detailed product and service information, targeting industrial and construction sectors worldwide. Technically, the site is built on TYPO3 CMS, uses Matomo for analytics with a cookie consent mechanism, and employs modern web technologies ensuring good performance and mobile optimization. Security posture is solid with HTTPS and privacy compliance, though some security headers and explicit policies could be improved. The WHOIS data is unavailable, which raises some concerns about domain legitimacy, but the professional content and business presence suggest a legitimate operation. Overall, the website presents a trustworthy and mature digital presence for EP Power Grit.

Y

YouthWatch

youthwatch.sk

42

YouthWatch is a Slovak non-profit organization dedicated to enhancing the quality of youth work and youth policy through trend monitoring, innovation, and development programs. Their services include educational workshops, lectures, and consulting aimed at youth workers, educators, and policymakers. The website is professionally designed using WordPress and Elementor, with a focus on accessibility and mobile optimization. The technical infrastructure is modern and hosted on Websupport with DNSSEC and HTTPS enabled, ensuring a secure browsing experience. However, the site lacks explicit privacy and cookie policies, incident response contacts, and security headers, which are areas for improvement. Overall, the domain registration and website content are consistent and legitimate, reflecting a stable and trustworthy organization.

C

Centrum environmentálních technik a technologií (CETT)

cett.eu

42

CETT (Centrum environmentálních technik a technologií) operates as a specialized hospitality and educational center located in the Czech Republic, offering conference facilities, accommodation, and environmental education programs. The business targets corporate clients, institutions, schools, and individual guests, emphasizing quality service and environmental awareness. The website reflects a professional and consistent brand image with clear service offerings and positive trust indicators such as certifications and guest ratings. Technically, the site employs modern frontend technologies including Bootstrap and Google Analytics, providing a responsive and user-friendly experience. However, some areas such as explicit cookie consent and security policies could be improved. Security posture is moderate with HTTPS usage but lacks visible security headers and incident response information. Overall, the site is trustworthy and well-positioned in its niche but would benefit from enhanced privacy and security transparency.

F

Filip Kňažek

filipknazek.eu

36

Filip Kňažek operates a personal coaching and facilitation business focused on nature-based self-development and emotional well-being. The website presents a professional and consistent brand image with clear service offerings including workshops, coaching walks, and group facilitation. The technical infrastructure is based on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable platform. Security posture is adequate with HTTPS enabled, but lacks some security headers and formal privacy/cookie policies. The absence of WHOIS data is due to privacy protection, which is typical for small personal businesses. Overall, the site is trustworthy and well-positioned for its niche audience.

K

Klidem - institut pro ekoterapii, z.ú.

klidem.com

49

Klidem - institut pro ekoterapii, z.ú. is a Czech non-profit organization focused on promoting mental health through ecotherapy. They provide therapy, coaching, educational courses, workshops, and custom services to individuals, groups, and professionals. The organization actively collaborates with other ecotherapy-related entities in the Czech Republic and internationally. Their website presents a professional image with consistent branding and clear descriptions of their services and team. Technically, the site is built on WordPress using modern themes and plugins, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies and absence of explicit contact information. Overall, the site is trustworthy and serves its niche well but would benefit from enhanced compliance and security practices.

I

IPčko.sk

ipcko.sk

42

IPčko.sk is a well-established Slovak non-profit organization providing anonymous, free, and 24/7 crisis psychological support through multiple channels including phone, chat, email, and personal visits. The website reflects a mature digital presence with a clear focus on accessibility and user support. The organization has a strong market position in Slovakia as a trusted crisis helpline service. Technically, the site is built on WordPress with modern plugins and frameworks, hosted on a reputable provider with DNSSEC and HTTPS enabled, ensuring good security and performance. Security posture is strong with best practices observed, though some improvements in privacy compliance and explicit security policies are recommended. Overall, the site is professional, trustworthy, and user-friendly, serving a critical social function.

N

NaZemi

nazemi.cz

45

NaZemi is a well-established Czech non-profit organization founded in 2005, focusing on sustainability, transformative education, and community engagement. Their website reflects a mature digital presence with clear navigation, multilingual support, and a professional design. They offer educational programs, facilitation services, community spaces, and an e-commerce platform for publications. Technically, the site is built on WordPress with WooCommerce and uses modern frameworks like Bootstrap, supported by privacy-conscious analytics such as Matomo and Google Tag Manager with consent management. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. Contact information and privacy policies are clearly presented, supporting trust and compliance. Overall, the site is credible, secure, and user-friendly, serving a niche audience interested in sustainability and education.

P

PDCS, o.z.

pdcs.sk

41

PDCS is a Slovak non-governmental organization specializing in conflict resolution, civic participation, and social dialogue. The organization offers educational courses, facilitation, consulting, and project support primarily targeting individuals, groups, and organizations interested in societal development and democratic processes. The website reflects a professional and consistent brand image with clear communication of services and contact information. Technically, the site uses modern web technologies including Vue.js and Bootstrap, and integrates privacy-respecting analytics via Plausible. Security posture is strong with HTTPS and security headers implemented, though there is room for improvement in privacy compliance with the absence of a cookie consent mechanism and a dedicated privacy policy page. Overall, PDCS demonstrates a credible and trustworthy online presence aligned with its non-profit mission.

N

NaZemi

generacesymbiocen.cz

47

Generace Symbiocén is a Czech non-profit educational program targeting young people aged 17-23, focusing on societal and environmental transformation, particularly addressing the climate crisis. The program is operated by NaZemi, a well-established organization in global education and social change. The website is built on WordPress using Elementor and integrates various plugins including Everest Forms and Instagram Feed. It uses Matomo for analytics and embeds YouTube videos for content delivery. The site is professionally designed with good navigation and mobile optimization, providing relevant and engaging content for its target audience. However, it lacks explicit privacy and cookie policies, consent mechanisms, and security headers, which are important for compliance and security posture. WHOIS data confirms the domain is recently registered in 2022, consistent with the program's founding, and is hosted on Czech servers. Overall, the site is trustworthy and credible but could improve in privacy compliance and security best practices.

The website at search.worldcat.org currently presents minimal accessible content, consisting solely of an empty JSON object within the HTML body. The WHOIS data for the domain is malformed and lacks critical registration details such as registrar, creation date, expiry date, and registrant information. This severely limits the ability to assess the legitimacy and business profile of the domain. Technically, the site lacks metadata, structured data, forms, contact information, and security headers, indicating a low level of digital maturity and security posture. The absence of privacy and cookie policies further highlights compliance gaps. Overall, the site appears to be either blocked by a web application firewall or is serving minimal content, resulting in a low trust and security score.

K

KulturKirche2025 – Die Kirchen in der Kulturhauptstadtregion Chemnitz 2025

kulturkirche2025.de

45

KulturKirche2025 is a cultural initiative centered on churches in the Chemnitz region, aligned with the European Capital of Culture 2025 program. The website serves as a platform to promote cultural exhibitions, spiritual events, and community projects, targeting visitors, pilgrims, and local cultural participants. The business model is non-profit and community-focused, emphasizing cultural heritage and spiritual engagement. Technically, the site is built on WordPress with modern plugins such as Advanced Custom Fields Pro and WPML for multilingual support. The infrastructure is hosted on rzone.de nameservers, indicating a professional hosting environment. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks explicit security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is accessible, well-structured, and provides relevant cultural content but would benefit from enhanced privacy and security documentation.

X

XIMA MEDIA GmbH

xima.de

67

XIMA MEDIA GmbH is a specialized digital agency focused on delivering digital solutions and services to public sector institutions in Germany. Their offerings include TYPO3 and Drupal website development, OpenText solutions, UX/UI design, agile project management, and compliance with BITV standards. They also promote their proprietary low-code platform, formcycle, which facilitates digital form and process management. The company demonstrates a strong market position with reputable clients and a professional online presence. Technically, the website is built on TYPO3 CMS with modern web technologies, optimized for performance, mobile responsiveness, and SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though formal security policies and incident response contacts are not publicly disclosed. Overall, the website reflects a mature, trustworthy business with good digital maturity and compliance practices.

A

adribo

adribo.de

56

adribo is a German-based company specializing in modern conflict management services including mediation, coaching, dialog management, and organizational development. The company operates multiple offices across Germany, serving a diverse clientele from public, private, and economic sectors. Their website reflects a professional and consistent brand image with detailed team profiles and project examples, positioning them as an established player in the conflict resolution market. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder and Slider Revolution, hosted on Strato servers. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is adequate with HTTPS enabled, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with a comprehensive privacy and cookie policy including consent mechanisms, aligning with GDPR requirements. However, no explicit security policy or incident response information is published. Contact information is thorough, with multiple verified emails, phone numbers, and physical addresses. Overall, adribo's digital presence is professional and trustworthy, with room for improvement in security headers and transparency around security policies. The risk profile is low, making it a credible and reliable business website.

C

ClimatePartner GmbH

climatepartner.com

76

ClimatePartner GmbH is a medium-sized German company specializing in climate action services, including carbon accounting, reduction, and climate projects. Positioned as a trusted partner for companies aiming to achieve net zero emissions, ClimatePartner offers B2B services focused on sustainability and environmental impact reduction. The website reflects a professional and consistent brand image, targeting corporate clients interested in decarbonization and compliance with climate-related regulations. Technically, the site is built on Drupal 10, integrating modern marketing and analytics tools such as Google Tag Manager and Cookiebot, ensuring a good digital maturity level with mobile optimization and accessibility considered. Security posture is strong with HTTPS enforced and security headers present, though the absence of a public security policy and incident response contact suggests room for improvement. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, aligning with GDPR requirements. Overall, the website and business presence indicate a legitimate and professional organization with moderate risk due to lack of WHOIS transparency.

D

Die Zulassungssoftware der Zukunft

zulex.de

44

ZULEX is a specialized cloud-based software provider focused on digitizing vehicle registration processes in Germany. Positioned as the only independent Zulassungssoftwareanbieter and a member of the Kraftfahrtbundesamt's i-Kfz project, ZULEX offers comprehensive services including new registrations, deregistrations, re-registrations, and address changes. Their platform is accessible 24/7 via browser without installation, targeting Zulassungsbetriebe, car dealerships, fleet operators, and large customers. The website demonstrates a professional and consistent brand presence with strong trust signals such as certifications and customer testimonials. Technically, the website is built on WordPress with Elementor and Yoast SEO, integrating modern tools like HubSpot forms and GDPR-compliant cookie management. The hosting is managed via kasserver.com, and the site uses HTTPS with good SSL configuration. Performance is moderate with good mobile optimization and accessibility features. Analytics and tracking are implemented via Fathom and SalesViewer, with transparent cookie consent mechanisms. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, indicating a legitimate and consistent domain registration. Overall, ZULEX presents a secure, professional, and compliant digital presence suitable for its business domain. Strategic improvements include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

E

EVS/ESC Galaxy

evsgalaxy.net

46

EVS/ESC Galaxy is a niche educational platform dedicated to providing resources, brochures, and international training courses for EVS and ESC coordinators. The website serves a specialized audience involved in European voluntary service coordination, offering curated content and tools to support their activities. The business operates primarily in the education and non-profit sectors, with a small organizational size and a founding date consistent with the domain registration in 2017. The site is hosted by WEDOS Internet, a Czech hosting provider, aligning with the regional focus of the content. Technically, the website is built on WordPress with a modern theme and plugins, including jQuery and Page Builder Framework. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. The absence of advanced security headers and DNSSEC indicates room for improvement in security hardening. No analytics or tracking scripts were detected, suggesting minimal user tracking. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No contact or incident response information is provided, limiting transparency and user trust. The domain WHOIS data is consistent and legitimate, with no privacy protection or suspicious patterns. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security best practices, and clearer contact information to improve trust and regulatory adherence.

M

MarkerCS

markercs.cz

45

MarkerCS is a small non-profit organization focused on providing non-formal education training primarily for youth workers and teachers in Slovakia and the Czech Republic. Their website offers detailed information about their training programs, educational principles, and testimonials from past participants, positioning them as a niche educational provider supported by the Erasmus+ program. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, hosted by a Czech registrar and hosting provider. The site is moderately performant, mobile-optimized, and SEO-friendly but lacks some advanced accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but the absence of security headers and formal privacy and cookie policies indicates room for improvement. Overall, the website is professional and trustworthy but could enhance compliance and security transparency.