Security Directory

Campus Halensis serves as the official news and information portal for Martin-Luther-Universität Halle-Wittenberg, providing timely updates on academic events, research, and campus life primarily targeting students, faculty, and researchers. The website is well-branded and consistent with the university's identity, offering content in German with an English language option. It functions as a communication channel to keep the university community informed and engaged. Technically, the site uses a moderate technology stack including jQuery, Magnific Popup, Slick Carousel, and Piwik/Matomo for analytics, hosted likely on university infrastructure. The site is mobile-optimized with good navigation and content structure, though accessibility features are basic. Performance is moderate, and SEO practices are adequately implemented. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with a clear privacy policy and cookie banner. The WHOIS data aligns well with the university's domain infrastructure, indicating legitimacy and trustworthiness. Overall, the website is a professional, trustworthy academic portal with good content quality and privacy practices. However, improvements could be made in security header implementation, incident response transparency, and accessibility compliance to enhance the security posture and user experience.

P

Paulbergman GmbH

alumnii.de

49

Alumnii, operated by Paulbergman GmbH, is a specialized SaaS platform focused on providing comprehensive alumni network management solutions primarily for educational institutions, companies, foundations, and associations in Germany. The platform offers integrated services including member management, newsletters, payment processing, event management, job boards, and mentoring functionalities. The company positions itself as a niche provider with a strong emphasis on GDPR compliance and German-based hosting. Technically, the website is built using modern web technologies such as Jekyll for static site generation, Bootstrap for responsive design, and integrates analytics via Matomo. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security measures include HTTPS with strong encryption and Google reCAPTCHA to protect forms, although additional security headers and explicit cookie consent mechanisms are absent. From a security perspective, the site demonstrates good practices with encrypted communications and data protection aligned with GDPR. However, the absence of published incident response contacts and vulnerability disclosure policies suggests room for improvement in transparency and readiness. The WHOIS data aligns well with the website's claims, showing consistent domain registration and hosting in Germany without privacy protection, enhancing trustworthiness. Overall, Alumnii presents a professional, trustworthy, and well-structured online presence suitable for its target audience. Strategic enhancements in security policies and privacy mechanisms would further strengthen its compliance and user trust.

H

Hochschule Osnabrück

hs-osnabrueck.de

66

Hochschule Osnabrück is a well-established University of Applied Sciences in Germany providing a broad range of academic programs including Bachelor, Master, dual studies, and continuing education. The institution emphasizes practical learning, internationalization, and research, serving students, academic staff, and partners. The website reflects a professional and comprehensive digital presence with clear navigation, multilingual support, and active social media engagement. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates privacy-conscious analytics (Matomo). Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security policies and incident response information are not published. Overall, the domain registration and hosting align with the university's official infrastructure, indicating high legitimacy and trustworthiness.

T

Turismo Asturias

turismoasturias.es

64

Turismo Asturias operates the official regional tourism portal for Asturias, Spain, providing comprehensive information on natural landscapes, cultural heritage, gastronomy, and travel planning. The website targets tourists and visitors interested in exploring Asturias, offering multi-language support and detailed content to facilitate trip organization. Technically, the site is built on the Liferay CMS platform, leveraging modern JavaScript libraries such as jQuery, AUI, and Senna.js for SPA capabilities, with integrations for Google Analytics and Facebook social features. The site demonstrates good mobile optimization and SEO practices, although accessibility could be improved. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security headers and incident response disclosures. WHOIS data confirms domain legitimacy consistent with an official government tourism entity. Overall, the site is professional, trustworthy, and well-positioned to serve its audience effectively.

W

Werbekomplizen

andreassaulig.com

65

Werbekomplizen is a small, established German media agency specializing in branding, web design, print design, e-commerce, and digital marketing services. With over 16 years of experience, the company targets businesses seeking comprehensive marketing and design solutions. The website is professionally designed, mobile-optimized, and presents a clear portfolio of projects, reinforcing its market position as a trusted regional agency. Technically, the website leverages modern web technologies including Webflow CMS, GSAP for animations, jQuery, and smooth scrolling libraries. Hosting appears stable with dedicated nameservers. Performance and mobile responsiveness are excellent, though accessibility features are basic. SEO is adequately addressed through meta tags and structured content. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and cookie consent mechanisms. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. No suspicious or vulnerable libraries were detected, and no sensitive data exposure was found. Overall, the website is safe, professional, and trustworthy with minor gaps in privacy compliance and security best practices. Strategic improvements in cookie consent, security headers, and incident response documentation would elevate the security posture and regulatory compliance.

P

Candu123 {} Situs Agen Penyedia Permainan Bisa Menghasilkan CUAN KILAT

pestcontroleverything.com

42

The website 'pestcontroleverything.com' hosts content branded as 'Candu123', an online gaming affiliate platform promoting quick earnings through gaming activities. The business model revolves around affiliate marketing and online gaming services, targeting a mature audience interested in gambling. The site claims licensing by PAGCOR but lacks verifiable certification details. Technically, the site uses a modern but basic tech stack including Bootstrap, jQuery, and several UI libraries, hosted behind Cloudflare DNS but without advanced security headers or DNSSEC enabled. Security posture is moderate with HTTPS enabled but missing critical security headers and privacy policies. The domain name is unrelated to the website content, which raises trust concerns. Contact information is minimal, limited to an obfuscated email and a physical address in Paris, France. Overall, the site is functional but lacks comprehensive privacy, security, and compliance features.

S

Südtiroler Weinmuseum

weinmuseum.it

46

The Südtiroler Weinmuseum is a regional cultural institution dedicated to the history and culture of wine in South Tyrol, Italy. It offers museum exhibitions, educational programs, guided tours, and events focused on wine heritage. The museum is positioned as a trusted cultural destination with a strong local presence and a focus on preserving traditional wine varieties and history. Technically, the website employs modern web technologies including JavaScript libraries and cookie compliance tools, ensuring a good user experience and compliance with privacy regulations. Security posture is solid with HTTPS enforcement and security headers, though formal security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and compliant with GDPR and cookie regulations, serving a mature audience interested in wine culture.

S

Südtiroler Landesmuseum für Volkskunde

volkskundemuseum.it

41

The Südtiroler Landesmuseum für Volkskunde is a regional cultural museum located in Dietenheim near Bruneck, Italy, dedicated to showcasing the rural life and folk culture of South Tyrol. The museum offers permanent and special exhibitions, events, workshops, and research services, targeting a broad audience including families, schools, and cultural visitors. The website reflects a well-maintained digital presence with clear business information and visitor resources. Technically, the site employs modern web technologies including JavaScript libraries and cookie consent solutions, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and privacy compliance via Iubenda cookie management, though explicit security policies and incident response contacts are absent. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy institution.

G

GoodData

gooddata.com

72

GoodData is a well-established enterprise technology company founded in 2007, specializing in composable data intelligence and embedded AI platforms. The company offers a broad suite of analytics and AI-driven services targeting businesses and developers seeking to embed intelligent applications and automate workflows. Their market position is strong, supported by industry recognitions such as Gartner Magic Quadrant and high customer satisfaction ratings. The website reflects a mature digital presence with comprehensive resources, customer testimonials, and a clear value proposition focused on accelerating ROI through AI and automation. Technically, the website employs modern web technologies including Bootstrap, jQuery, Lottie animations, and HubSpot for marketing and form management. The site is mobile-optimized, fast-loading, and accessible, with good SEO practices and structured data enhancing search visibility. The use of Google Tag Manager and HubSpot indicates a moderate level of user tracking balanced with privacy compliance. From a security perspective, GoodData demonstrates a strong posture with HTTPS enforcement, recognized certifications (ISO 27001, SOC 2 Type II, HIPAA, GDPR compliance), and secure form handling. However, the absence of explicit security headers and a public vulnerability disclosure page suggests room for improvement in transparency and incident response readiness. The missing WHOIS data is a notable anomaly but does not detract significantly from the overall trustworthiness given the professional site content and business signals. Overall, GoodData presents a low-risk profile with a robust business model and digital maturity. Strategic recommendations include enhancing security header implementation, publishing vulnerability disclosure and incident response contacts, and improving transparency around data retention policies to further strengthen trust and compliance.

Z

Z Sea Line

zsealine.com

63

Z Sea Line is a maritime transportation company specializing in the shipping of crude oil and energy products, operating since 2019 under the Zeren Group Holding Companies. The company positions itself as a reliable partner in global shipping with a focus on sustainable and cost-effective maritime logistics. Their website reflects a professional and business-oriented approach targeting industry professionals and businesses in the energy and transportation sectors. Technically, the website employs a modern frontend stack including jQuery, Bootstrap, and various UI libraries, hosted behind Cloudflare DNS. The site is mobile optimized with good navigation and design quality, though no CMS or advanced backend platform is detected. Performance is moderate with no evident broken elements. However, the site lacks advanced SEO and accessibility features. From a security perspective, the website uses HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers. There are no privacy or cookie policies, nor vulnerability disclosure mechanisms, indicating compliance and security maturity gaps. No analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security hardening, and transparency policies to improve trust and regulatory adherence.

G

Große Kreisstadt Annaberg-Buchholz

annabergerweihnachtsmarkt.de

67

The Annaberger Weihnachtsmarkt website represents the official online presence of the Annaberg-Buchholz Christmas market, a culturally significant and family-friendly event in Germany. The site effectively promotes the event with rich content including program overviews, vendor information, and service offerings. It targets tourists, families, and local visitors, positioning itself as one of Germany's most beautiful Christmas markets with strong municipal backing. Technically, the site uses the Sitepark CMS platform with modern JavaScript libraries and is hosted on rzone.de servers. The website is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. Security posture is solid with HTTPS and no visible vulnerabilities, though it lacks explicit security policies and incident response contacts. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is trustworthy, professional, and well-maintained, supporting the event's reputation and visitor engagement.

C

CoESS

coess.org

49

CoESS is a well-established European confederation representing the private security industry, advocating for quality, compliance, and public-private collaboration. The organization serves as a voice for 23 national associations across 17 EU member states, representing a significant portion of the private security sector. Their website reflects a professional and consistent brand image, targeting industry stakeholders and EU institutions. Technically, the site uses a custom or unknown CMS with common JavaScript libraries and cookie consent tools, hosted by a reputable provider. Security posture is generally good with HTTPS and cookie consent, though improvements are recommended in DNSSEC, security headers, and fixing minor PHP warnings. Privacy compliance is adequate with a privacy policy and cookie banner. Overall, the site is trustworthy and functional with moderate technical sophistication.

F

fit4internet

fit4internet.at

10

fit4internet is an Austrian non-profit association dedicated to raising digital competences across Austria. The organization provides a comprehensive digital competence framework (DigComp AT), self-assessment tools, certification and accreditation services, and a course catalog to support lifelong learning in digital skills. The website reflects a professional and consistent brand with a clear focus on education and digital literacy. It targets a broad audience including the general public, education providers, and portal users interested in digital competence development. The business model revolves around standardization, evaluation, and certification of digital skills, positioning fit4internet as a key player in Austria's digital education landscape. Technically, the website employs a modern JavaScript stack including jQuery, Bootstrap, and various UI and analytics libraries such as Matomo and Pinpoll. The site uses a custom CMS and shows good mobile optimization and SEO practices. Performance is moderate with room for improvement in accessibility compliance. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, no explicit security policy or incident response information is publicly available. Overall, the website is trustworthy, professionally maintained, and aligned with its educational mission. The WHOIS data confirms legitimacy and consistency with the website's Austrian association identity. There are no signs of malicious activity or content safety concerns. Strategic recommendations include publishing a dedicated security policy, adding incident response contacts, and enhancing accessibility standards to improve inclusivity and compliance.

M

MOL-Új Európa Alapítvány

molujeuropaalapitvany.hu

44

MOL-Új Európa Alapítvány is a Hungarian non-profit foundation established in 2022, focusing on supporting Central European contemporary art, cultural, social, sports, and sustainability programs. The foundation operates primarily through grant programs and partnerships, targeting a broad audience interested in cultural and social development. The website reflects a consistent brand identity and provides relevant information about its activities and supported initiatives. Technically, the site is built on Joomla CMS with Bootstrap framework, offering a responsive and moderately performant user experience. Security posture is adequate with HTTPS and CSRF protections, though lacking some security headers and explicit incident response policies. Privacy compliance is partially met with available privacy and cookie policies but missing explicit consent mechanisms. Overall, the site is professional, trustworthy, and well-positioned within its sector.

D

Deutscher Musikrat - BuJazzO

jugendjazzt.eu

49

Jugend jazzt is a well-established German cultural event focused on promoting young jazz musicians through biennial competitions, workshops, and concerts. The website serves as an information hub for participants, audiences, and partners, supported by the Deutscher Musikrat and governmental entities. The site is professionally designed using TYPO3 CMS, with a moderate technical infrastructure including Matomo analytics for privacy-conscious tracking. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in security headers and explicit incident response contacts are recommended. Overall, the domain and website present a trustworthy and legitimate presence aligned with their cultural mission.

D

Deutscher Musikrat gGmbH

deutscher-chorwettbewerb.de

47

The Deutscher Chorwettbewerb website represents a well-established non-profit cultural organization dedicated to organizing national amateur choir competitions in Germany. The site provides comprehensive information about events, workshops, and participation, targeting amateur choirs and music enthusiasts. The organization behind the site is Deutscher Musikrat gGmbH, a recognized entity in the German cultural sector. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

D

Deutscher Musikrat gGmbH

deutscher-orchesterwettbewerb.de

47

The Deutscher Orchesterwettbewerb website represents a well-established non-profit cultural event organized by Deutscher Musikrat gGmbH, focusing on amateur orchestras in Germany. The site provides comprehensive information about the competition, workshops, and related activities, targeting musicians and music enthusiasts. It maintains a professional presence with clear navigation, German language content, and social media integration. Technically, the website is built on TYPO3 CMS, hosted by SchlundTech, and uses modern frontend libraries and Matomo for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are absent. Overall, the site is trustworthy, compliant with GDPR, and serves its cultural mission effectively.

The Deutscher Musikwettbewerb website represents a well-established German non-profit organization dedicated to promoting professional classical music talent through competitions and concert support. The organization, founded in 1975 under the Deutscher Musikrat, targets young professional musicians aged 18 to 30, offering them opportunities such as concert bookings, career advice, and CD productions. The website is professionally designed using TYPO3 CMS and modern JavaScript libraries, providing a rich user experience with clear navigation and relevant content. Privacy and cookie policies are implemented with a compliant opt-in mechanism, reflecting good data protection practices. Technically, the site is hosted on Schlundtech nameservers and uses HTTPS with no visible security vulnerabilities. Analytics are handled via Matomo, respecting user consent. However, the site lacks a publicly available security policy and incident response contacts, which could be improved to enhance trust and transparency. The WHOIS data aligns well with the website's branding and hosting, indicating legitimacy and consistency. Overall, the website scores well on content quality, technical implementation, privacy compliance, and business credibility, making it a trustworthy and professional platform for its target audience. Strategic improvements in security policy transparency and incident response readiness are recommended to further strengthen its security posture and user trust.

O

Open Roberta Initiative

open-roberta.org

61

Open Roberta is an educational initiative under the Fraunhofer IAIS umbrella, focusing on teaching programming and robotics in a playful manner. The website serves as a portal for learners, educators, and makers interested in programming education. Technically, the site is built on WordPress with the Divi theme, leveraging common JavaScript libraries for UI enhancements. The site is well designed, mobile optimized, and provides clear navigation, although it lacks visible contact and privacy-related pages. Security posture is good with HTTPS enforced, but could be improved by adding security headers and formal policies. Overall, the site appears legitimate and professional, but would benefit from enhanced privacy compliance and security transparency.

A

Asturias Paraíso Natural Film Commission

filmcommissionasturias.com

60

Asturias Paraíso Natural Film Commission is a regional entity dedicated to facilitating audiovisual production in Asturias, Spain. The website offers comprehensive information on filming locations, permits, professional directories, subsidies, and industry news, targeting audiovisual professionals, property owners, and producers. The site is well-branded and consistent with its official regional government affiliation, although WHOIS data is missing, raising questions about domain registration legitimacy. Technically, the site uses Liferay CMS with modern JavaScript libraries and frameworks, providing a responsive and user-friendly experience. Security posture is strong with HTTPS and security headers, but lacks published security policies and incident response contacts. Privacy compliance is good with cookie consent and GDPR-aligned policies. Overall, the site is professional and trustworthy but would benefit from clarifying domain registration and enhancing security transparency.

P

Prysmian

prysmiangroup.com

78

Prysmian is a global leader in the cable manufacturing industry, specializing in energy solutions and telecommunications cables and systems. The company positions itself as a world leader, targeting industrial and commercial clients requiring advanced cable and energy infrastructure. The website reflects a mature enterprise with a comprehensive digital presence, leveraging Drupal 10 CMS and multiple modern web technologies to deliver a professional and accessible user experience. The site includes robust privacy and cookie consent mechanisms, indicating a strong commitment to GDPR compliance and user data protection. However, the absence of WHOIS registration data raises questions about domain registration transparency, although the corporate branding and content strongly support legitimacy. Security posture is generally good with HTTPS and consent management, but lacks visible HTTP security headers and explicit security policies. Overall, the website is professional, secure, and compliant, with room for improvement in domain registration transparency and security header implementation.

N

Nostalgie

playnostalgie.be

64

Nostalgie is a well-established Belgian radio station brand specializing in classic hits and nostalgic music content for the Dutch-speaking audience. The website serves as a digital platform for streaming, podcasts, competitions, and advertising, positioning itself as a key player in the regional media landscape under the ownership of DPG Media. The site demonstrates a mature digital infrastructure leveraging modern web technologies such as React and Gatsby, ensuring fast performance and excellent mobile responsiveness. Security posture is strong with HTTPS enforcement and appropriate security headers, although no explicit incident response or vulnerability disclosure policies are publicly visible. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms in place. Overall, the website reflects a professional and trustworthy media brand with a solid market presence in Belgium.

B

Bluesound Deutschland

bluesound-deutschland.de

64

Bluesound Deutschland operates as a specialized distributor and information portal for high-resolution wireless multiroom audio products in the German market. The company offers a range of streaming speakers, stereo components, and home cinema solutions, leveraging the BluOS platform for seamless music streaming. Positioned as a niche player, Bluesound Deutschland targets audiophiles and tech-savvy consumers seeking premium audio experiences. The website reflects a mature digital presence with localized content, product catalogs, and a network of authorized dealers. Technically, the site is built on WordPress with modern plugins and scripts, ensuring good SEO and user experience. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA integration, though some security headers and explicit policies could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, supporting the company's credibility in the technology sector.

W

Watterott electronic

watterott.com

65

Watterott electronic operates an e-commerce platform specializing in open-source hardware, electronic kits, development boards, and photovoltaic components. The website targets electronics hobbyists, developers, and renewable energy enthusiasts primarily in Germany. The business model focuses on retail sales through a well-structured online catalog with clear product categories and multilingual support. The company appears to be a small-sized entity with a niche market position in technology and retail sectors. Technically, the website employs modern web technologies including jQuery, Bootstrap, and Slick Carousel, with a CMS likely based on JTL Shop. The site is mobile-optimized and uses HTTPS, ensuring secure communication. However, some security best practices such as security headers and explicit privacy and cookie policies are missing or not detected in the provided content. From a security perspective, the site demonstrates basic security hygiene with HTTPS and CSRF tokens on login forms but lacks visible security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data for the subdomain is unavailable, which is expected for subdomains, but no registrant information is present to cross-verify legitimacy. Overall, the website is professional and trustworthy with moderate security posture and good technical implementation. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and compliance.

B

Bee Queen Consulting Srl

agevolab.it

49

Agevolab, operated by Bee Queen Consulting Srl, is a specialized consulting firm established in 2009, focusing on financial facilitation and local development in Italy. The company offers personalized consulting services to public entities, businesses across various sectors, and non-profit organizations. Their key services include financial incentives consulting, tourism management, and marketing and communication. The website reflects a professional and consistent brand image with a clear target audience and business model. Technically, the site is built on WordPress with modern libraries and frameworks, ensuring good performance and mobile optimization. Security measures such as HTTPS, Google reCAPTCHA, and a comprehensive cookie consent mechanism are implemented, though some security headers could be improved. Privacy compliance is strong, leveraging Iubenda for privacy and cookie policies. Overall, the website demonstrates a mature digital presence with a high trustworthiness level.

S

Schloss Wolfsthurn – Südtiroler Landesmuseum für Jagd und Fischerei

wolfsthurn.it

48

Schloss Wolfsthurn operates as a regional cultural museum in South Tyrol, Italy, focusing on the history of hunting and fishing. The museum is housed in a historic baroque castle and offers exhibitions, educational programs, and events targeting tourists, families, and educational groups. The website reflects a professional and consistent brand image with clear contact details and social media presence. Technically, the site uses modern web technologies including JavaScript libraries and cookie consent management, ensuring GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is trustworthy, well-maintained, and serves its audience effectively.

T

TRENDnet, Inc.

trendnet.com

75

TRENDnet, Inc. is a medium-sized technology company specializing in networking and surveillance hardware solutions for home and office environments. Their product portfolio includes wireless routers, network switches, IP cameras, and cloud-managed network services under the TRENDnet Hive brand. The company maintains a professional and comprehensive website with clear navigation, detailed product categories, and support resources. Their market position is that of a reliable and affordable networking solutions provider with a strong focus on quality and customer support. Technically, the website employs modern web technologies including jQuery, Bootstrap, and advanced UI components like Revolution Slider and Slick Carousel. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism aligned with GDPR requirements. Analytics usage is minimal and privacy-conscious. From a security perspective, the site uses HTTPS and enforces cookie consent but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is unavailable or privacy protected, which slightly reduces domain trustworthiness but does not outweigh the professional presentation and business legitimacy evident on the site. Overall, TRENDnet's website demonstrates a strong digital maturity level with good content quality, technical implementation, and privacy compliance. Security posture is solid but could be improved with additional headers and transparency. The domain's WHOIS opacity is a minor concern. Strategic recommendations include enhancing security headers, publishing a security policy, and providing clearer security contact information to further strengthen trust and compliance.

C

candu123

whereisthebeastmaster.com

51

The website 'whereisthebeastmaster.com' operates as an e-commerce platform primarily focused on selling online gaming and gambling-related products under the brand 'Candu123'. It targets a mature audience interested in gaming and gambling, offering affiliate marketing and live chat support. The site is localized with Indonesian language content but claims a physical location in Paris, France. The business model revolves around online sales and affiliate links, with a modest market presence and a small-scale operation impression. Technically, the site employs a modern but basic technology stack including jQuery, Bootstrap, Font Awesome, and several UI libraries. It shows moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. The site does not appear to use a known CMS and lacks clear hosting provider information. The design and user experience are functional but basic. From a security perspective, the site uses HTTPS but lacks critical security headers and published security policies. There is no visible privacy or cookie policy, and no incident response or vulnerability disclosure information is provided. The WHOIS data is privacy protected, reducing transparency and trust. The site uses multiple external domains for assets and affiliate links, some of which appear suspicious or unrelated, which may pose risks. Overall, the website presents moderate risks due to limited transparency, lack of security best practices, and gambling-related content which is regulated and sensitive. Strategic improvements in security posture, privacy compliance, and business transparency are recommended to enhance trust and compliance.

A

Agence MiNT

agence-mint.ch

57

Agence MiNT is a Swiss-based full-service communication agency specializing in connecting client messages to their target audiences through effective and relevant communication strategies. Their offerings include strategy, identity, web development, digital communication, content creation, SEO, and social media training. The agency maintains a strong local presence in Fribourg with a medium-sized team and a portfolio of diverse client projects. Technically, the website is built on Drupal 10, leveraging modern web technologies and analytics tools such as Google Tag Manager and Google Analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although formal security policies and incident response contacts are not published. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website demonstrates high professionalism, trustworthiness, and business credibility, suitable for its target market.

A

Alliance for Audited Media

auditedmedia.com

68

Alliance for Audited Media (AAM) is a well-established organization founded in 2012 that provides independent media audits, certifications, and data solutions to foster transparency and trust between media buyers and sellers. Positioned as a leader in the media assurance industry, AAM offers a range of services including media audits, industry certifications aligned with standards such as TAG, MRC, and IAB, and comprehensive data intelligence tools. Their clientele includes major industry players, as evidenced by partner logos such as Amazon, Google, and Publicis. The website reflects a professional and trustworthy brand with clear navigation, extensive content, and strong trust signals including testimonials and certifications.

F

Fribourg International Film Festival

fiff.ch

53

Fribourg International Film Festival (FIFF) is a well-established non-profit cultural organization based in Switzerland, dedicated to promoting intercultural understanding through cinema. The festival emphasizes films that provoke reflection and discussion, targeting film enthusiasts, cultural communities, and educational institutions. The website reflects a mature digital presence with multilingual support, rich content, and clear navigation tailored to its audience. The business model relies on ticket sales, partnerships, and sponsorships, positioning FIFF as a significant player in the international film festival circuit. Technically, the site is built on Drupal 10 with modern web technologies and integrates analytics and marketing tools such as Google Analytics, Facebook Pixel, and Google Tag Manager. Security measures include HTTPS enforcement, secure forms with reCAPTCHA, and standard security headers, although formal security policies and incident response plans are not publicly documented. Privacy compliance is partially addressed with a comprehensive data protection policy but lacks a visible cookie consent mechanism. Overall, the website is professional, trustworthy, and safe for general audiences.

K

Korso Kino Bar Bier

korso.ch

52

Korso Kino Bar Bier is a small hospitality and cultural venue based in Switzerland, offering cinema screenings, events, and food and beverage services such as bar and pizza. The website is professionally designed using WordPress with the Divi theme and includes multilingual support for French and German. The business targets a general audience interested in cultural and entertainment activities in the Fribourg region. Technically, the site uses modern web technologies and SEO best practices but lacks some security headers and explicit privacy and cookie policies. Security posture is good with HTTPS enforced and no visible vulnerabilities, but privacy compliance is weak due to missing policies and consent mechanisms. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

Cinéma Palace – Bévilard is a small local cinema in Switzerland offering film screenings and cultural events, including special programming for its 30th anniversary. The website provides detailed film schedules and promotes cultural activities, targeting general audiences interested in cinema and culture. The technical infrastructure uses common web technologies such as jQuery, Foundation CSS, and Google Analytics, indicating a moderate level of digital maturity. However, visible PHP warnings and lack of security headers suggest areas for improvement in security and error handling. Privacy and cookie policies are absent, which may impact compliance with GDPR and user trust. Overall, the site is functional and professional but would benefit from enhanced security and privacy measures.

The website www.annaberg-buchholz.de serves as the official municipal portal for the Große Kreisstadt Annaberg-Buchholz in Saxony, Germany. It provides local news, event information, tourism details, and citizen services, positioning itself as a key information hub for residents and visitors. The site is professionally designed with consistent branding and good content quality, targeting a general audience interested in municipal affairs and local culture. Technically, the website is built on the Information Enterprise Server platform by Sitepark GmbH, utilizing modern JavaScript libraries such as jQuery and Slick Carousel for interactive elements. It is hosted on infrastructure likely provided by Deutsche Telekom AG, with HTTPS enabled ensuring secure communications. The site demonstrates good mobile optimization and accessibility features, though performance is moderate. From a security perspective, the site benefits from HTTPS and lacks visible vulnerabilities or exposed sensitive data. However, it lacks explicit security headers and does not provide clear privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is available, indicating room for improvement in security transparency. Overall, the website is trustworthy and credible as a government portal but would benefit from enhanced privacy compliance and security policy disclosures to strengthen user trust and regulatory adherence.

G

Gerflor

gerflor.com

65

Gerflor is a large international manufacturing company specializing in flooring, wall, and finishing solutions with a strong global presence supported by multiple country-specific websites. The company targets architects, designers, contractors, and end customers with a B2B and B2C business model. The website is built on Drupal 10 and integrates modern web technologies including Google Tag Manager and Usercentrics for privacy compliance. The site is well-designed, mobile-optimized, and provides comprehensive privacy and cookie policies. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and registration transparency. Security posture is good with HTTPS enforced and secure forms, but lacks explicit security headers and published security policies. Overall, the website is professional and trustworthy but would benefit from improved domain registration transparency and enhanced security disclosures.

U

Union Labor Srl

unionlabor.it

10

Union Labor Srl operates as a content production and publishing company affiliated with the FISASCAT CISL trade union in Italy. It focuses on producing magazines, videos, and communications for union members in the tertiary, tourism, and services sectors. The website positions itself as an important media outlet for union-related news and services, targeting union workers and the general public interested in labor issues. Technically, the site is built on modern web technologies including Next.js and React, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers and explicit security policies are absent. Privacy and cookie policies are present and GDPR compliant. Overall, the site is professional, trustworthy, and well-maintained, with clear contact information and social media presence. No critical security or content safety issues were detected.

F

Fisascat CISL

progettoterziario.it

10

Progetto Terziario is a professional online periodical and information portal managed by FISASCAT CISL, a major Italian trade union federation representing workers in the tertiary, tourism, and services sectors. The website serves as a key communication channel providing news, contract updates, and sector insights to its members and the broader labor community. It is supported by Union Labor Srl, which publishes the periodical. The site targets workers in Italy's service industries, offering resources such as downloadable collective labor contracts, news articles, and a mobile app for enhanced accessibility. Technically, the website is built on modern web technologies including Next.js (React framework), Bootstrap, and FontAwesome, ensuring a responsive and user-friendly experience. It integrates Google Analytics and Tag Manager for traffic analysis and Cookiebot for GDPR-compliant cookie consent management. The site is well-optimized for SEO and mobile devices, with a moderate performance profile. From a security perspective, the site employs HTTPS with DNSSEC enabled for domain security, and uses cookie consent mechanisms to comply with privacy regulations. However, it lacks explicit security policies or incident response contacts publicly available, and could improve by adding advanced security headers and a vulnerability disclosure policy. Overall, Progetto Terziario presents a trustworthy and professional digital presence aligned with its organizational mission. It effectively balances content quality, technical implementation, and privacy compliance, making it a reliable resource for its target audience.

M

Mosaic Room

mosaicroom.ch

49

Mosaic Room is a small Swiss-based cultural and creative space focused on fostering cultural exchanges and promoting the sharing of ideas and knowledge. The website reflects a niche community-oriented business model with key services including exhibitions, programs, and news related to cultural activities. The site is built on WordPress with common plugins such as Yoast SEO and WPML for multilingual support, indicating a moderate level of digital maturity. The technical infrastructure is adequate with modern JavaScript libraries and responsive design, though performance is moderate and accessibility is basic. Security posture is acceptable with HTTPS enabled and no visible vulnerabilities, but lacks security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no consent mechanism. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

U

URMET S.p.A.

urmet.com

67

URMET S.p.A. is a well-established Italian company specializing in professional video door phone and intrusion alarm systems, serving both residential and industrial sectors. The company targets professionals and private home users, offering a range of security and communication products. Their market position is that of a leading manufacturer with a strong emphasis on innovation and quality. The website reflects a mature digital presence with clear segmentation for different user groups and comprehensive support resources. Technically, the site is built on ASP.NET with DNN CMS, leveraging modern front-end libraries such as jQuery and Bootstrap, ensuring good performance and mobile optimization. Security-wise, the site enforces HTTPS and provides detailed cookie consent mechanisms, reflecting compliance with GDPR and privacy best practices. However, explicit security headers and incident response information are not publicly available, representing an area for improvement. Overall, the domain WHOIS data is not publicly available, likely due to privacy protection, but the website's professional presentation and trust signals support its legitimacy.

F

FONDO FAST

fondofast.it

54

FONDO FAST operates as a healthcare assistance fund specifically targeting employees within the tourism sector in Italy. Established in 2006, it provides integrative health plans, contribution management, and reimbursement services. The organization positions itself as a niche non-profit entity serving a defined audience of tourism sector workers. The website reflects this focus with content primarily in Italian and some multilingual support. Technically, the site is built on ASP.NET WebForms with modern JavaScript libraries for UI enhancements, offering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks advanced security headers and explicit incident response policies. Privacy compliance is supported by a clear privacy policy and cookie management mechanisms. Overall, the site is professional, trustworthy, and consistent with the organization's business model and sector.

I

IS.NA.R.T. scpa - Istituto Nazionale Ricerche Turistiche

isnart.it

62

ISNART is a nationally recognized Italian research institute specializing in tourism economy analysis and enterprise growth support. It operates primarily as a government-affiliated non-profit entity, providing comprehensive data, studies, and initiatives to support tourism stakeholders and regional development. The website reflects a mature digital presence with a strong focus on data-driven insights and public sector transparency. Technically, the site is built on WordPress with modern performance and privacy tools, including WP Rocket and Iubenda for cookie and privacy management. Security posture is solid with HTTPS enforcement and some security headers, though minor improvements in CSP and header coverage are recommended. Overall, the site is trustworthy, professional, and compliant with GDPR regulations, offering clear contact channels and active social media engagement.

U

Unipol Assicurazioni

unipol.it

71

Unipol Assicurazioni is a leading Italian insurance company specializing in multi-branch insurance products, particularly in the non-life insurance sector. The website presents a professional and modern digital presence, leveraging Next.js and React frameworks, and integrates Dynatrace for real user monitoring to optimize performance and user experience. The site targets Italian customers seeking insurance services and provides online quote capabilities. Security-wise, the website enforces HTTPS and uses secure cookie attributes, but lacks explicit security policies, vulnerability disclosures, and comprehensive privacy and cookie policies, which are important for compliance and user trust. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

B

Bundesministerium für Klimaschutz, Umwelt, Energie, Mobilität, Innovation und Technologie

klimaaktiv-gebaut.at

60

The klimaaktiv Gebäudedatenbank website is a government-backed platform operated by the Austrian Federal Ministry for Climate Protection, Environment, Energy, Mobility, Innovation and Technology. It serves as a comprehensive database and showcase for sustainable building projects in Austria, focusing on klimaaktiv certified buildings and award-winning architecture. The platform targets professionals and stakeholders in sustainable construction and renovation, providing valuable information and examples to promote energy-efficient and environmentally friendly building practices. Technically, the website employs modern web technologies including Bootstrap for responsive design, jQuery, and Slick Carousel for interactive elements. It uses Matomo Analytics configured to disable cookies, reflecting a privacy-conscious approach. The site is mobile-optimized, accessible, and SEO-friendly, with clear navigation and consistent branding. However, some security best practices such as security headers and explicit cookie consent mechanisms are missing. From a security perspective, the site benefits from HTTPS with excellent SSL configuration and no visible vulnerabilities or exposed sensitive data. The lack of security headers and absence of a published security policy or incident response contact are areas for improvement. The WHOIS data confirms the domain is legitimately registered to the Austrian government ministry, reinforcing trust and legitimacy. Overall, the website is professional, trustworthy, and well-suited for its purpose. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, publishing a security policy, and establishing a vulnerability disclosure process to enhance security posture and compliance.

B

Bundesministerium für Wirtschaft und Klimaschutz

gruendungswoche.de

66

The website www.gruendungswoche.de is a German government-backed platform managed by the Bundesministerium für Wirtschaft und Klimaschutz, focused on promoting entrepreneurship and self-employment through nationwide events and workshops. It serves a broad audience including prospective founders, students, craftsmen, and social entrepreneurs. The platform operates as a non-profit initiative with a strong partner network including government bodies and competence centers. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and frameworks, offering good mobile optimization and accessibility. Security posture is moderate with HTTPS usage and secure login forms, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the site is professional, trustworthy, and well-positioned in its niche, though improvements in security and privacy transparency are recommended.

H

Handwerkskammer Dresden

ausbilderakademie-handwerk.de

51

The website www.ausbilderakademie-handwerk.de is operated by the Handwerkskammer Dresden, a regional chamber of crafts in Dresden, Germany. It serves as an educational and informational platform targeting trainers, apprentices, and handcraft businesses. The site offers resources such as Ausbilderforen (trainer forums), an Ausbilder-App for knowledge enhancement, and various continuing education programs. The business model is non-profit and government-affiliated, focusing on supporting vocational training in the crafts sector. The website is professionally designed with consistent branding and clear navigation, targeting a German-speaking audience with multilingual options.

N

njumii - Das Bildungszentrum des Handwerks

njumii.de

53

njumii.de is the official website of njumii - Das Bildungszentrum des Handwerks, an educational center affiliated with the Handwerkskammer Dresden, Germany. The organization offers a broad range of vocational training, master craftsman courses, continuing education, and company training primarily targeting skilled trades professionals. The website is well-structured, professionally designed, and uses TYPO3 CMS with modern frontend technologies to deliver a responsive and accessible user experience. While the site demonstrates strong business credibility and good technical implementation, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is moderate with HTTPS usage but no visible security headers or incident response information. Overall, the site is trustworthy and serves its educational purpose effectively but could improve privacy compliance and security transparency.

C

Candu123

croissance-verte.net

52

The website 'Candu123' operates as an online gaming agent platform primarily targeting users interested in gambling and gaming services. It offers products and services related to online gaming with claims of official PAGCOR licensing, positioning itself as a niche player in the online gaming e-commerce sector. The business appears small and relatively new, founded in 2019, with a physical address claimed in Paris, France. The website content is accessible and moderately structured but lacks comprehensive privacy and security policies, which impacts its trustworthiness. Technically, the site uses a modern but basic technology stack including Bootstrap, jQuery, and several popular JavaScript libraries for UI and interactivity. Hosting is supported by Cloudflare DNS, and HTTPS is enabled, but security headers and advanced security practices are missing. The site shows moderate performance and mobile optimization but has SEO and accessibility only at a basic level. From a security perspective, the site has some strengths such as HTTPS and Cloudflare DNS but lacks critical security headers and explicit data protection compliance. The absence of privacy and cookie policies, as well as incident response contacts, indicates compliance gaps. The use of multiple external and shortened URLs, some unrelated to the main domain, raises concerns about transparency and potential phishing risks. Overall, the website presents moderate risk with questionable content safety due to its gambling-related services and lack of robust privacy and security measures. Strategic improvements in security posture, privacy compliance, and clearer business information are recommended to enhance trust and reduce risk.

B

Banca Popolare Etica S.c.p.a.

fiarebancaetica.coop

72

Fiare Banca Etica is a cooperative and independent bank operating primarily in Spain and Italy, focused on ethical finance principles. It offers a range of financial products including current accounts, loans, credit, deposits, and ethical investment funds, targeting individuals, companies, and organizations interested in socially responsible banking. The bank emphasizes transparency, cooperative governance, and positive social impact. Technically, the website is built on WordPress with modern plugins and libraries, including Yoast SEO for optimization, Matomo for privacy-friendly analytics, and Iubenda for cookie consent management. The site is mobile-optimized, accessible, and well-structured, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but could improve by enabling DNSSEC and adding explicit security headers. No critical vulnerabilities or exposed sensitive data were detected. Overall, the domain registration details align well with the business identity, supporting legitimacy and trustworthiness.

B

Banca Etica

bancaetica.it

11

Banca Etica is an Italian cooperative bank specializing in ethical finance, focusing on transparency and social/environmental impact. It serves individuals, families, businesses, and organizations with banking products such as current accounts, loans, ethical investments, and advisory services. The bank holds a niche leadership position in Italy and Spain, emphasizing cooperative governance and sustainability. Technically, the website is built on WordPress with modern libraries and tools, including Matomo for analytics and Iubenda for cookie compliance. The site is well-optimized for SEO, accessibility, and mobile use. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are not publicly detailed. WHOIS data confirms legitimacy with consistent registrant information and domain age matching the business history. Overall, the website is professional, trustworthy, and compliant with GDPR and cookie regulations.

H

Handwerkskammer Dresden

hwk-dresden.de

53

Handwerkskammer Dresden is a regional chamber of crafts serving the Dresden area, providing a broad range of services including vocational training, continuing education, business consulting, legal advice, and political representation for the handcraft sector. The organization targets handcraft businesses, apprentices, trainers, and educational institutions within its jurisdiction. The website is professionally designed, content-rich, and well-structured, supporting multiple languages and offering extensive resources and event information. Technically, the site is built on TYPO3 CMS with modern libraries such as jQuery and Bootstrap, hosted likely by Deutsche Telekom, ensuring reliable infrastructure and moderate performance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and cookie consent mechanisms could be improved. Overall, the site demonstrates high business credibility and trustworthiness with clear contact information and active social media presence.