Security Directory

P

Porsche

porsche.at

71

Porsche Österreich operates as the official Austrian website for the Porsche brand, providing comprehensive information about Porsche's luxury sports cars, SUVs, and electric vehicles. The site targets automotive enthusiasts and potential buyers in Austria, offering detailed model specifications, online configurators, and customer services. The business is positioned as a premium automotive manufacturer with a strong brand presence and a focus on high-quality user experience. Technically, the website employs modern web technologies including JavaScript, CSS, and HTML5, with integrations such as Google Tag Manager for analytics and OneTrust for cookie consent management. The site is mobile-optimized and accessible, with good SEO practices and consistent branding. Hosting and CMS details are not explicitly disclosed but appear to be custom or proprietary. From a security perspective, the site enforces HTTPS with strong security headers and does not expose sensitive data. Cookie consent mechanisms comply with GDPR requirements. However, there is no explicit security policy or incident response contact information published, and no vulnerability disclosure policy or security.txt file is present. Overall, the security posture is strong but could be improved with more transparency on security governance. The domain WHOIS data aligns well with the Porsche brand and Austrian market, indicating high legitimacy and trustworthiness. No WAF or blocking mechanisms interfere with content access. The website is safe for general audiences, containing no adult or questionable content. Strategic recommendations include publishing a dedicated security policy, providing incident response contacts, and implementing a vulnerability disclosure program to enhance trust and compliance.

J

JANUS Werbeagentur

jnetworks.at

41

JANUS Werbeagentur is a small Austrian creative agency founded in 2002, specializing in a broad spectrum of marketing, branding, graphic design, photography, web development, and event marketing services. The website presents a unique branding approach where one individual, Manuel Mair, is portrayed as fulfilling multiple team roles, emphasizing a personalized and multifaceted service offering. The agency targets businesses seeking comprehensive marketing and digital solutions. Technically, the website is built with standard HTML, CSS, and JavaScript, featuring responsive design and client-side form validation. However, there is no evidence of advanced frameworks, CMS, or analytics tools. Performance and mobile optimization are moderate to good, but accessibility and SEO optimizations are basic. No security headers or HTTPS enforcement details were detected, indicating room for improvement in security posture. Security-wise, the site lacks visible security policies, incident response contacts, and privacy or cookie policies, which are critical for GDPR compliance and user trust. The contact form includes basic client-side validation but lacks visible server-side security measures. No tracking or advertising scripts were found, suggesting minimal user tracking. Overall, the website is professional and trustworthy but would benefit from enhanced security measures, privacy compliance, and transparency to improve user trust and regulatory adherence.

Rollbar is a technology company specializing in real-time error tracking and debugging tools for software development teams. Established in 2004, it offers a SaaS platform that helps developers discover, prioritize, and resolve errors efficiently across multiple programming languages and platforms. The company targets software developers, engineering managers, QA teams, and customer support professionals, positioning itself as a trusted solution in the error monitoring market with AI-assisted workflows and session replay features. Technically, Rollbar's website is built on WordPress and leverages modern web technologies including JavaScript, jQuery, and various analytics and marketing tools such as Mixpanel, Google Analytics, HubSpot, and OneTrust for cookie consent. The site is hosted behind Cloudflare DNS and CDN services, ensuring fast performance and good mobile optimization. SEO and accessibility are well implemented, with comprehensive metadata and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS, uses client-side error monitoring via the Rollbar SDK, and implements GDPR-compliant cookie consent mechanisms. While explicit security headers are not visible in the HTML, the overall posture is strong with no exposed sensitive data or vulnerabilities detected. The domain registration is consistent and long-standing, supporting the company's legitimacy. However, enabling DNSSEC and publishing a security.txt file would further enhance security transparency. Overall, Rollbar's website reflects a mature, professional, and secure online presence aligned with its business goals. The site provides clear business information, trust signals, and complies with privacy regulations, making it a reliable resource for its target audience.

V

Visme

visme.co

73

Visme is a technology company providing a SaaS platform for creating professional presentations, infographics, documents, and other visual content. Positioned as an established player in the visual content creation market, Visme targets businesses, marketers, educators, and freelancers with a comprehensive suite of design tools including AI-powered features. The website demonstrates a high level of digital maturity with modern technologies, responsive design, and good SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are not publicly available. Overall, the site is professional, trustworthy, and well-branded, supporting a medium-sized business model in the technology sector.

A

Avis

avis.com

67

Avis is a globally recognized car rental company providing vehicle rental services through its online platform. The website go.avis.com serves as a subdomain for online booking and customer engagement, offering a variety of vehicles including the premium Avis Signature Series. The site targets general consumers seeking convenient car rental solutions. Technically, the website employs modern frameworks such as React and Next.js, with integrations of analytics and marketing tools like Google Tag Manager and Optimizely. The site demonstrates good design quality and mobile optimization, ensuring a positive user experience. Security posture is moderate; while HTTPS is implied, no explicit security headers or policies are visible in the provided data. Privacy and cookie policies are not clearly found, indicating room for compliance improvement. Overall, the website is professional and trustworthy, consistent with Avis's market position as a leading transportation service provider.

Lenovo's Finnish official website serves as a comprehensive e-commerce platform offering laptops, tablets, smartphones, and data center solutions tailored for the Finnish market. The site reflects Lenovo's global market position as a leading technology provider with a strong focus on both consumer and business segments. The website demonstrates a mature digital infrastructure leveraging modern web technologies, Adobe Experience Platform, and robust analytics tools, ensuring a seamless user experience across devices. Security posture is strong with HTTPS enforcement, bot protection via reCAPTCHA, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with comprehensive privacy and cookie policies aligned with GDPR requirements. However, WHOIS data for the domain is unavailable, likely due to registry privacy or query limitations, but this does not detract from the site's legitimacy given Lenovo's global brand presence. Overall, the site is professional, secure, and trustworthy, supporting Lenovo's business objectives in Finland.

Z

ZARA

zara.com

67

ZARA is a leading global fashion retailer specializing in fast-fashion clothing, footwear, and accessories for men, women, and children. The website reflects a mature e-commerce platform with extensive international reach, supporting multiple languages and currencies. The brand is part of the Inditex group, a major player in the retail industry. The site is professionally designed with excellent content quality and user experience, targeting a broad general audience interested in fashion products. Technically, the website employs modern web technologies including React, JavaScript, and CSS, supported by analytics and marketing tools such as Google Tag Manager, Riskified, and OneTrust for cookie consent. The site is optimized for performance and mobile responsiveness, with good SEO and accessibility features. Security best practices are observed, including HTTPS enforcement, security headers, and obfuscation tools like Jscrambler. From a security perspective, the site demonstrates a strong posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring comprehensive privacy and cookie policies with consent mechanisms aligned with GDPR. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. Overall, the website presents a low-risk profile with high trustworthiness and professionalism. The absence of WHOIS data is noted but likely due to privacy protection common among large brands. Strategic recommendations include enhancing transparency around security policies and incident response to further strengthen user trust and compliance.

V

Volkswagen Group

vwgroup.com

72

Volkswagen Group is a leading global automotive manufacturer focused on shaping the future of mobility through innovation, sustainability, and technology leadership. The website reflects a mature digital presence with comprehensive corporate information, investor relations, media resources, and career opportunities. The technical infrastructure uses modern web technologies and includes privacy-conscious analytics with user consent mechanisms. Security posture is strong with HTTPS and cookie consent but lacks explicit security policy and vulnerability disclosure details. The absence of WHOIS data is unusual but the website's professional presentation and official social media presence strongly support legitimacy. Overall, the site is well-structured, user-friendly, and trustworthy.

Rascals Themes is a small technology business specializing in the development and sale of creative, easy-to-use WordPress themes. Established in 2017 and based in Poland, the company positions itself as a niche provider focusing on usability and outstanding customer support. Their offerings include WordPress themes, support services, and customization options, targeting WordPress users seeking professional and responsive themes. The website is well-designed with a modern React-based frontend, good mobile optimization, and clear navigation, reflecting a moderate level of digital maturity. Hosting is provided via seohost.pl with custom nameservers, and the domain registration is consistent and credible. From a security perspective, the website uses HTTPS and does not expose sensitive data. However, it lacks DNSSEC, security headers, privacy and cookie policies, and a vulnerability disclosure mechanism, indicating room for improvement in compliance and security posture. No analytics or tracking scripts were detected, suggesting minimal user tracking. The absence of direct contact emails or phone numbers limits immediate communication channels, relying solely on a contact form. Overall, the site is safe for general audiences with no adult or questionable content. The overall risk is moderate with no critical vulnerabilities detected, but compliance gaps and security best practices should be addressed to enhance trust and regulatory adherence. Strategic recommendations include implementing privacy and cookie policies with consent mechanisms, enabling DNSSEC, adding security headers, and publishing a vulnerability disclosure policy to improve security culture and user trust.

G

Google LLC

mattacreates.org

75

The analyzed website is a Google Consent Management page designed to handle user privacy preferences and consent related to Google services, specifically for users accessing Google News from Germany. It is part of Google's extensive ecosystem, reflecting their commitment to GDPR compliance and user data protection. The page is professionally designed with excellent user experience and mobile optimization, consistent with Google's branding and technical standards. The technical infrastructure leverages modern web technologies and Google Cloud hosting, ensuring fast performance and robust security. Security posture is strong with HTTPS enforcement, comprehensive security headers, and no detected vulnerabilities. Privacy compliance is well addressed with clear privacy and cookie policies, consent mechanisms, and GDPR adherence. Overall, the domain is legitimate, trustworthy, and part of a globally recognized enterprise with a strong market position in technology and digital advertising.

E

evolver group

evolver.center

64

evolver group is a German IT and software company specializing in SaaS marketplace platforms, notably their evolverMARKET product which integrates AI and offers extensive features for businesses, startups, publishers, and municipalities. The company positions itself as a reliable provider of digitalization solutions with a focus on user-friendly, mobile-optimized, and SEO-friendly portals. Their offerings include hosting in German data centers, customer support, and advanced marketplace functionalities such as Click & Reserve and intelligent ad management. Technically, the website employs modern JavaScript libraries, analytics tools like Matomo and Google Tag Manager, and implements cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and consent-based tracking, though explicit privacy and terms policies are not clearly presented on the analyzed page. Overall, the domain and website content indicate a legitimate, professional business with a strong market presence in the technology sector.

TariffPilot GmbH operates a specialized AI-powered cloud platform designed to automate and accelerate the customs tariff classification process for companies engaged in cross-border trade. The platform integrates the official EZT-Online customs tariff database and provides detailed classification suggestions with justifications, significantly reducing manual effort and time. The website is professionally designed, mobile-optimized, and rich in relevant content including customer testimonials, partner logos, and comprehensive FAQs. Technically, the site uses modern frameworks such as Astro, integrates Google Analytics and rapidmail for marketing, and is hosted likely on Google Cloud infrastructure. Security posture is strong with HTTPS and a strict Content-Security-Policy, though some additional security headers and explicit incident response policies are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. However, the WHOIS data is missing or unavailable, which raises concerns about domain registration transparency despite the professional appearance and business legitimacy of the site. Overall, the website presents a credible and trustworthy business front with minor areas for security and compliance improvement.

Z

Zwei P PLAN:PERSONAL gGmbH

weiterbildungsbonus.net

64

Zwei P PLAN:PERSONAL gGmbH is a Hamburg-based non-profit organization specializing in providing educational consulting and financial support for professional development, primarily targeting employees, self-employed individuals, and SMEs within Hamburg. The organization has a strong local presence with over 25,000 success stories and is funded by the European Union and the Free and Hanseatic City of Hamburg. Their key services include advisory support and the administration of the Weiterbildungsbonus PLUS funding program. The website is professionally designed, content-rich, and clearly communicates eligibility criteria, application processes, and contact information.

K

KfW Entwicklungsbank

kfw-entwicklungsbank.de

66

KfW Entwicklungsbank is a German development bank operating under the KfW Bankengruppe, focusing on international development financing and cooperation with governmental and EU institutions. The website reflects a mature, professional organization with a strong emphasis on transparency, sustainability, and global development impact. The digital infrastructure employs modern technologies including responsive design, consent management, and analytics, supporting a good user experience and compliance with privacy regulations. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and incident response contacts are not publicly visible. Overall, the site is trustworthy, well-maintained, and aligned with the organization's public mission.

D

DEG - Deutsche Investitions- und Entwicklungsgesellschaft

deginvest.de

63

DEG - Deutsche Investitions- und Entwicklungsgesellschaft is a large German finance institution specializing in financing, promoting, and advising private companies investing in developing and emerging markets. It operates as a subsidiary of the KfW Bankengruppe, offering tailored financial solutions including loans, equity investments, and advisory services with a strong focus on impact and climate-related projects. The website reflects a professional and well-structured digital presence with comprehensive content targeting German companies, financial institutions, and investors interested in sustainable development and international investments. Technically, the site employs modern JavaScript libraries, analytics tools, and a consent management platform, ensuring good performance, mobile optimization, and privacy compliance. Security posture is strong with HTTPS enforcement and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, DEG demonstrates a credible and trustworthy online presence aligned with its business objectives and regulatory requirements.

K

KfW IPEX-Bank

kfw-ipex-bank.de

63

KfW IPEX-Bank is a specialized financial institution within the KfW Bankengruppe, focusing on international project and export financing primarily for the German and European markets. The bank offers tailored financing solutions including project financing, export credits, and structured trade finance, positioning itself as a key player in supporting sustainable economic growth and infrastructure development. The website reflects a professional and corporate image with clear branding and a focus on sustainability and innovation in financing solutions. Technically, the website employs modern JavaScript libraries, responsive design, and integrates advanced analytics and consent management tools, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website demonstrates high business credibility and trustworthiness, suitable for its target audience of corporate and institutional clients.

T

Trendence Institut GmbH

mein-chancen-check.de

66

Mein Chancen-Check is a career and labor market insight platform operated by Trendence Institut GmbH, a medium-sized German research and consulting company. The website provides users with tools to assess their job market chances, subscribe to newsletters, participate in surveys, and access career-related podcasts. The business targets job seekers and professionals interested in labor market data and career development. Technically, the site uses modern JavaScript frameworks including Turbo and Stimulus, integrates multiple analytics platforms (Matomo, Plausible), and employs a consent management platform to ensure GDPR compliance. The site is hosted with reputable DNS providers and enforces HTTPS, indicating a secure infrastructure. Security posture is good but could be improved by adding explicit security headers and incident response information. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for its audience.

B

Beenario GmbH

bugfender.com

80

Bugfender is a technology company providing a SaaS platform focused on app logging, error monitoring, and bug tracking for application developers. Founded in 2014, it has established a strong market presence with over 34,000 apps trusting its services, including notable brands. The company offers key services such as remote logging, crash reporting, and user feedback collection, targeting software development teams seeking to improve app quality and customer support. Technically, the website is built on WordPress with modern JavaScript libraries and integrates analytics and customer engagement tools like Plausible Analytics and Intercom. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Security-wise, Bugfender enforces HTTPS, employs security headers, and maintains domain registration protections, though enabling DNSSEC and publishing a security.txt file would enhance its posture. Privacy compliance is strong with clear policies and consent mechanisms. Overall, Bugfender demonstrates a high level of professionalism, trustworthiness, and technical maturity, making it a reliable service provider in its niche.

A

Axel Springer SE

spring-media.de

61

Axel Springer SE operates a professional career portal at career.axelspringer.com, targeting job seekers interested in media, journalism, technology, marketing, and sales roles. The company is a leading media and technology enterprise with a strong international presence, particularly in Europe and the USA. The website provides comprehensive career information, job listings, and insights into company culture and benefits, supported by a modern TYPO3 CMS infrastructure and integrated recruitment tools such as SmartRecruiters. The site is well-branded, GDPR compliant, and actively engages users via multiple social media channels. Technically, the site is well-implemented with good mobile optimization and SEO practices, though some security headers could be improved. The absence of WHOIS data for the subdomain is typical and does not detract from the site's legitimacy. Overall, the website reflects a mature digital presence aligned with Axel Springer's corporate identity.

H

Heise Medien

heise.de

75

Heise Medien operates heise.de, a leading German IT news and media portal offering comprehensive coverage of technology, science, and related topics. The website serves a broad audience including IT professionals and technology enthusiasts, providing news, forums, online magazines, price comparisons, and software downloads. The business model combines advertising, subscription services, and e-commerce. Technically, the site employs modern web technologies, including a consent management platform, analytics, and personalization tools, ensuring a mature digital infrastructure. Security posture is strong with HTTPS and consent mechanisms, though explicit security headers and vulnerability disclosure policies are absent. Overall, the site is professional, trustworthy, and compliant with GDPR principles, though contact and legal policy information could be more explicit.

The website vg-wort.de is currently a parked domain with no active business content or services. It is primarily used as a landing page to advertise the domain for sale, with minimal textual content and no privacy, cookie, or terms of service policies. The technical infrastructure includes basic HTML and JavaScript with external iframes loading content from third-party domains, which may pose security concerns. There is no evidence of HTTPS enforcement or security headers, and no contact or company information is provided, indicating a low level of digital maturity and professionalism. The site relies on advertising scripts and tracking pixels from unknown ad networks, further reducing trustworthiness. From a security perspective, the site lacks fundamental protections such as HTTPS, security headers, and privacy compliance mechanisms. The presence of external iframe content from suspicious domains increases the risk of malicious content delivery or tracking. The WHOIS data confirms the domain is parked using generic parking name servers, with no registrant information available, which aligns with the observed lack of legitimate business presence. Overall, the website poses a low risk in terms of content safety as it contains no adult or explicit material, but it scores poorly on security posture, privacy compliance, and business credibility. Strategic recommendations include securing the domain with HTTPS, implementing privacy and cookie policies, removing suspicious external content, and providing clear business and contact information to improve trust and compliance.

M

Mobility Ads GmbH

mobility-ads.de

49

Mobility Ads GmbH operates a professional digital advertising platform focused on the automotive sector, targeting car dealers and publishers. The company provides lead generation and traffic monetization services, positioning itself as a specialized player in the German automotive digital marketing space. The website is well-designed, mobile-optimized, and offers clear navigation with strong branding and trust signals including certifications and customer testimonials. Technically, the site uses modern Angular framework technology and enforces HTTPS with SSL encryption, ensuring secure communications. However, explicit security headers and a vulnerability disclosure policy are absent, representing areas for improvement. Privacy compliance is robust with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Overall, the site demonstrates a mature digital presence with a high level of professionalism and trustworthiness.

A

Axel Springer Teaser Ad GmbH

adup-tech.com

72

AdUp Technology is a digital marketing company specializing in native advertising and performance marketing, primarily serving advertisers and publishers in the European travel sector. As part of the Axel Springer group, it leverages strong partnerships and exclusive content access to maintain a competitive market position. The company offers CPC-based advertising solutions with advanced regional targeting and machine learning optimization. Technically, the website is built on TYPO3 CMS, uses modern JavaScript frameworks, and integrates Google Analytics with privacy-conscious configurations. The site is well-designed, mobile-optimized, and provides clear navigation and comprehensive privacy and terms policies. Security posture is solid with HTTPS and consent management, though some security headers and explicit incident response contacts are missing. Overall, the business appears credible and professional, though WHOIS data is unavailable, which slightly reduces trust transparency.

C

car.advisor

caradvisor.at

62

car.advisor is an Austrian online review platform specializing in customer feedback and ratings for car dealerships representing major automotive brands such as Volkswagen, Audi, SEAT, CUPRA, Škoda, Volkswagen Nutzfahrzeuge, and Das WeltAuto. The platform targets both car dealerships and customers seeking trustworthy reviews to inform their purchasing decisions. The website demonstrates a solid market position within the Austrian automotive sector, focusing on transparency and customer satisfaction. Technically, the website is built using modern web technologies including React and Next.js, hosted on Azure CDN, ensuring fast performance and good mobile optimization. The site features structured data for SEO and brand consistency. However, there is room for improvement in accessibility and security headers implementation. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. Nonetheless, it lacks explicit privacy and cookie policies, security headers, and incident response contact information, which are critical for GDPR compliance and user trust. No vulnerability disclosure or security.txt files were found, indicating limited transparency in security practices. Overall, the website is professional and functional with a good business credibility score. Strategic enhancements in privacy compliance, security policies, and contact transparency would significantly improve its security posture and user trust.

H

Herold Business Data GmbH

herold.at

63

Herold Business Data GmbH operates Austria's largest online directory for local business searches and is a leading provider of online marketing services for companies. The website www.herold.at serves as a platform for businesses to be found locally and to access marketing solutions. The company targets Austrian businesses and local enterprises, positioning itself as a market leader in this niche. The website is professionally designed with good content relevance and clear navigation, optimized for mobile devices and SEO. Technically, the site uses modern frameworks such as Qwik, integrates Google Tag Manager and Adsense, and employs a consent management platform to comply with cookie regulations. Security-wise, HTTPS is implied, and consent mechanisms are in place, but explicit security headers and policies are not evident, indicating room for improvement. Overall, the site is trustworthy and well-established, with a consistent WHOIS registration matching the business identity. However, the absence of explicit privacy and terms of service documents and contact details slightly reduce compliance and transparency scores.

V

Volkswagen AG

onebusinessid.com

64

ONE Business ID is a corporate identity and access management portal associated with Volkswagen AG and its various automotive brands such as Audi, Seat, Cupra, and Skoda. The platform provides secure login and organizational registration services primarily targeting business users and partners within the Volkswagen ecosystem. The website is professionally designed with consistent branding and supports multiple languages, indicating a broad international user base. The business model focuses on providing secure authentication and identity verification services to enterprise clients, reinforcing Volkswagen AG's digital infrastructure. Technically, the website employs modern web technologies including JavaScript and CSS, and appears to be built on the Keycloak identity management framework, as suggested by URL patterns and form structures. The site is mobile optimized and offers a good user experience with clear navigation and password visibility toggling features. However, there is no explicit evidence of advanced analytics or advertising technologies, which aligns with its corporate and security-focused nature. From a security perspective, the site uses HTTPS and implements OAuth2/OpenID Connect flows with nonce and code challenge parameters, indicating a strong authentication mechanism. Nonetheless, no security headers were detected in the provided data, and there is no visible cookie consent mechanism or explicit incident response information, which are areas for improvement. The absence of WHOIS data for the domain reduces transparency but is likely due to privacy protection measures common in corporate environments. Overall, the website presents a secure and professional interface for Volkswagen AG's business identity services. The main risks relate to missing security headers, lack of cookie consent, and incomplete WHOIS transparency. Addressing these would enhance trust and compliance. The site is safe for general audiences and does not contain any adult or questionable content.

A

Android

android.com

67

Android.com is the official website for the Android operating system and ecosystem, owned by Google LLC. The site provides comprehensive information about Android devices, including the latest Google Pixel smartphones, AI integrations such as Gemini, and connected device features. The website targets consumers and enterprise users interested in Android technology and Google services. It serves as a platform for product promotion, information dissemination, and directing users to purchase channels. Technically, the site employs modern web technologies including HTML5, CSS3, JavaScript, Google Tag Manager, and Google Analytics, hosted on Google's infrastructure, ensuring fast performance and mobile optimization. Security posture is strong with HTTPS enforced and standard security headers implied, though explicit security policies and incident response contacts are not visible. Privacy compliance is partially addressed with a cookie consent banner linking to Google's cookie policy, but no dedicated privacy or terms of service pages were found in the provided content. WHOIS data for the domain is unavailable or redacted, which is common for major brands like Google, and does not detract from the site's legitimacy. Overall, the website is professional, trustworthy, and well-optimized, with minor gaps in explicit privacy and security disclosures.

G

Google LLC

youtube.de

79

YouTube, owned by Google LLC, is the world's leading online video sharing and streaming platform, offering a vast array of user-generated and professional content. It serves a global audience with a business model primarily based on advertising revenue complemented by premium subscription services. The platform is highly recognized for its extensive content library and user engagement features. Technically, YouTube employs a modern web technology stack including Polymer framework, web components, and extensive use of Google APIs. The site is optimized for performance, accessibility, and mobile responsiveness, hosted on Google Cloud infrastructure ensuring scalability and reliability. From a security perspective, YouTube enforces HTTPS, employs strong security headers, and integrates advanced bot protection mechanisms. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant, reflecting a mature approach to data protection and user privacy. Overall, YouTube demonstrates a high level of digital maturity, security posture, and business credibility. The domain is well-established and consistent with the company's history. No critical vulnerabilities or compliance gaps were detected in the accessible content. Strategic recommendations include maintaining continuous security audits and enhancing incident response transparency.

K

KfW Bankengruppe

kfw.de

56

KfW Bankengruppe is a prominent German promotional bank dedicated to supporting sustainable development and innovation both domestically and internationally. The website reflects a mature digital presence with comprehensive information on funding programs for private individuals, companies, and public institutions. It also highlights KfW's subsidiaries and international financing activities, positioning it as a key player in the finance and government sectors. The site is well-branded, professionally designed, and optimized for accessibility and mobile use. Technically, the website employs modern JavaScript frameworks, responsive design, and integrates advanced analytics and consent management tools, indicating a high level of digital maturity. Security posture is strong with HTTPS enforced and secure form handling, though explicit security policies and vulnerability disclosures are absent. Privacy compliance is robust, with clear privacy and cookie policies and a consent mechanism in place. Overall, the security posture is solid with no evident vulnerabilities or suspicious content. The domain registration aligns with the organization's identity, reinforcing trustworthiness. The site serves as a reliable resource for stakeholders seeking financial support and information about KfW's services and initiatives.

I

IONITY

ionity.eu

73

IONITY operates a leading high-power electric vehicle charging network across 24 European countries, offering fast, reliable, and sustainable charging solutions. Their business model includes subscription plans and pay-per-use options accessible via an app, targeting EV drivers seeking convenient long-distance travel solutions. The website demonstrates a mature digital presence with multi-language support and clear pricing information. Technically, the site is built on Webflow with modern JavaScript libraries and includes a consent management platform ensuring GDPR compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and incident response information are absent. Overall, the site reflects a professional and trustworthy brand with room for enhanced transparency in security policies and contact details.

C

C.H. Beck

beck-elibrary.de

57

Beck eLibrary is a digital platform operated by the reputable German publishing house C.H. Beck, providing specialized access to legal and economic textbooks and professional literature. The platform targets professionals, academics, and students in law and economics, offering a subscription-based service with a well-structured and professionally designed website. The technical infrastructure includes modern web technologies, cookie consent management via Cookiebot, and analytics through Google Analytics 4 with GDPR-compliant consent mode. The security posture is strong, with HTTPS enforced, appropriate security headers, and no visible vulnerabilities or exposed sensitive data. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. Privacy compliance is well addressed with clear cookie categories and consent mechanisms, aligning with GDPR requirements. Overall, the website demonstrates a mature digital presence with good performance, accessibility, and SEO optimization. The domain WHOIS data is consistent with the business profile, hosted on Deutsche Telekom infrastructure, and shows no signs of suspicious activity. Strategic recommendations include publishing detailed security policies, adding vulnerability disclosure information, and providing clear contact channels for security incidents to enhance trust and compliance further.

I

id Verlag

ibr-online.de

65

ibr-online is a specialized German legal information portal operated by id Verlag, focusing on construction, architects, and real estate law. It provides comprehensive legal databases, case law, commentaries, seminars, and practical tools tailored for legal professionals and industry experts. The website demonstrates a consistent and professional brand presence with a clear target audience in the legal and construction sectors. Technically, the site uses a basic but functional tech stack including jQuery and custom scripts, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS usage and secure form handling, but lacks explicit security headers and published security policies. Privacy compliance is partially met with a comprehensive privacy policy and terms of service, though no cookie consent mechanism is evident. Overall, the site is trustworthy and well-positioned in its niche market.

MWV Seminare is a German-based educational company specializing in seminars related to insurance and economic law. With a history of approximately 38 years, it serves professionals such as insurance company employees, brokers, social insurance carriers, and legal practitioners. The company positions itself as a leading independent provider of continuing education in its sector, offering around 100 seminars annually with about 5,000 participants. The website content reflects a professional and focused business model with clear target audiences and well-defined seminar offerings. Technically, the website uses standard web technologies including HTML, CSS, and jQuery 3.6.1. It is hosted on servers associated with 1&1 IONOS, a reputable hosting provider. The site demonstrates basic mobile optimization and accessibility but lacks advanced SEO and modern frameworks or CMS indications. Performance is moderate, and the navigation structure is clear but basic. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are important for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided. The site uses HTTPS (assumed) but does not demonstrate advanced security best practices. No tracking or advertising scripts are detected, indicating minimal user tracking. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, improved security headers, and more transparent contact information to increase trust and compliance posture.

A

AWA AUSSENWIRTSCHAFTS-AKADEMIE GmbH

awa-seminare.com

56

AWA AUSSENWIRTSCHAFTS-AKADEMIE GmbH is a specialized education provider focused on customs and foreign trade law, offering seminars, webinars, inhouse trainings, distance learning, and master courses primarily in Germany and neighboring countries. The company is affiliated with the reputable C.H.Beck publishing group and holds recognized certifications such as TÜV Nord and ISO 29993, positioning it as a leading specialist in its niche market. The website is professionally designed, content-rich, and well-structured, targeting professionals and companies involved in international trade compliance and management. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates GDPR-compliant consent management and analytics tools. Security posture is good with HTTPS enforced and consent mechanisms in place, though some security headers and explicit policies could be improved. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency but does not detract significantly from the overall trustworthiness given the strong business indicators. Overall, the site presents a credible, professional, and secure platform for its educational services.

BeckAkademie Seminare operates a professional German-language website offering legal education and training seminars, including live webinars and e-learnings, targeting legal professionals such as lawyers, tax advisors, and executives. The company positions itself as a reputable provider with over 700 annual events across 20 legal fields, emphasizing high-quality content and expert speakers. Technically, the website employs modern JavaScript libraries, Google Tag Manager, Microsoft Application Insights, and a GDPR-compliant Usercentrics consent management platform, hosted likely by Deutsche Telekom. The site is mobile-optimized and well-structured, providing a good user experience. Security-wise, HTTPS is enforced, but the absence of explicit security headers and a published security policy or vulnerability disclosure reduces the security posture slightly. Privacy compliance is partially addressed through cookie consent but lacks visible privacy and terms of service pages. Overall, the website is professional, trustworthy, and safe for general audiences.

beck-shop.de is a specialized German online bookstore focusing on Fachbücher (professional and academic books) primarily in the legal, tax, and economic sectors. The website offers a comprehensive catalog of professional literature with features such as pre-ordering, free shipping within Germany, and invoice payment options. The site targets professionals, students, and institutions in Germany, positioning itself as a niche specialist retailer with partnerships with major publishers like C.H.BECK. Technically, the website employs modern JavaScript libraries, Usercentrics for cookie consent management, Google Tag Manager, and Microsoft Application Insights for telemetry. The site is likely built on the Umbraco CMS and hosted on infrastructure associated with Deutsche Telekom, ensuring reliable performance and security. Security posture is solid with HTTPS enforced and privacy consent mechanisms in place, but lacks explicit security headers and published security policies. Privacy compliance is partial, with cookie consent but no visible privacy policy or terms of service links. Overall, the website is professional, trustworthy, and well-structured, though improvements in transparency and security documentation are recommended.

beck-online.de is a leading German legal database platform providing comprehensive access to current laws, commentaries, and court rulings tailored for lawyers and legal professionals. The website demonstrates a professional and consistent brand presence with a well-structured navigation system that categorizes legal content extensively. The technical infrastructure leverages modern web technologies including Usercentrics for consent management and Google Tag Manager for analytics, hosted on Microsoft Azure DNS, indicating enterprise-grade hosting and reliability. Security posture is solid with HTTPS enforced and consent-based tracking, though explicit privacy and security policies are not directly found in the analyzed content. Overall, the site is accessible without WAF or blocking mechanisms, and no suspicious or adult content is present.

The website barrierefrei.bayern hosts a viewer's choice contest within a Telegram community, aiming to engage users and generate leads through social activation. The platform is designed with a modern, mobile-responsive interface and leverages SVG and JavaScript for interactive voting features. However, the site lacks critical compliance elements such as privacy and cookie policies, and no contact information is provided, which limits trust and transparency. The domain is expired, posing a risk to availability and credibility. Security posture is moderate with no advanced protections or headers detected. Overall, the site serves a niche community engagement purpose but requires improvements in compliance, security, and business transparency to enhance trust and operational stability.

A

Autocenter Ing. Mühlbacher GmbH

automuehlbacher.at

38

Autocenter Ing. Mühlbacher GmbH is a small regional automotive dealership and service provider located in Kirchbichl, Tirol, Austria. The company offers new and used cars from brands such as Citroën, Seat, Daihatsu, and SsangYong, alongside services including repairs, maintenance, vehicle registration, tuning, paint and bodywork, financing, insurance, and leasing. Their market position is focused on serving the local community with a comprehensive automotive offering. The website content is primarily in German and targets general consumers interested in automotive sales and services. Technically, the website uses basic HTML, CSS, and JavaScript with older versions of jQuery and integrates Facebook SDK and Google Analytics for social media and analytics purposes. The site appears to be custom-built without a known CMS and shows moderate performance with limited mobile optimization and basic SEO and accessibility features. From a security perspective, the site uses HTTPS (assumed from URL), but lacks modern security headers and uses an outdated JavaScript library, which poses potential vulnerabilities. There is no visible cookie consent mechanism or explicit GDPR compliance indicators on the homepage, although a privacy policy and terms of service page exist. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and provides essential business information but would benefit from technical modernization, improved security practices, and enhanced privacy compliance to reduce risk and improve user trust.

A

Autohaus Schöllhuber GmbH

a-schoellhuber.at

54

Autohaus Schöllhuber GmbH is a well-established automotive dealership located in Kremsmünster, Austria, specializing in the sale of new and used vehicles primarily from VW, Audi, and Skoda brands. The company also offers comprehensive automotive services including repairs, maintenance, tire sales, and financing options. The website reflects a local business with a strong community presence and a history dating back to 1967. Technically, the site is built on a modern JavaScript stack with integration of third-party services such as Google Analytics and Mapbox for enhanced user experience. Security posture is solid with HTTPS and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. Overall, the website is professional, user-friendly, and compliant with GDPR requirements, supporting the business's credibility and trustworthiness.

A

AUTO_BLASER

autoblaser.at

66

AUTO_BLASER is a regional automotive dealership based in Lustenau, Austria, specializing in Volkswagen, Volkswagen Nutzfahrzeuge, and Audi vehicles. The company offers a comprehensive range of services including new and used car sales, financing, insurance, and vehicle accessories. The website reflects a professional and consistent brand presence with a strong focus on customer service, as evidenced by the high aggregate rating and structured contact information. Technically, the site is built on the Plone CMS platform and leverages modern frontend technologies such as FontAwesome, Swiper.js, and Select2, alongside Google Tag Manager and OneTrust for analytics and cookie consent management. The website is mobile-optimized and provides a good user experience with clear navigation and relevant content.

SAP is a leading global enterprise software provider specializing in human capital management solutions through its SAP SuccessFactors and SAP Fieldglass products. The website demonstrates a mature digital presence with comprehensive content, multimedia, and customer success stories targeting enterprise clients. Technically, the site leverages modern frameworks such as SAP UI5, React, and Adobe Experience Manager, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS, security headers, and privacy compliance, although explicit security policies and incident response details are not publicly disclosed. Overall, the site reflects a trustworthy and professional brand with a high level of digital maturity.

B

Bentley Motors

bentleymedia.com

62

Bentley Motors operates the Bentley Newsroom website as an official media outlet to publish the latest stories, news, and multimedia content related to the Bentley brand. The site targets a general audience interested in luxury automotive news and brand updates. The business model focuses on brand communication and media dissemination to support Bentley's market position as a premium automotive manufacturer. The website demonstrates a high level of professionalism, consistent branding, and rich content including news articles, images, and video content (Bentley TV). Technically, the website employs modern JavaScript frameworks and libraries, including Video.js for media playback, Usercentrics for cookie consent management, and Google Tag Manager alongside New Relic for analytics and performance monitoring. The site is mobile-optimized, fast-loading, and accessible with proper SEO metadata and structured data (JSON-LD) to enhance search engine visibility. From a security perspective, the site enforces HTTPS and includes basic security headers, secure form implementations with CSRF tokens, and no visible vulnerabilities or exposed sensitive data. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms represents an area for improvement. The missing WHOIS registration data is a notable anomaly that may indicate privacy protection or domain registration issues, which should be verified for full trust assurance. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic recommendations include enhancing security headers, publishing privacy and security policies, and clarifying domain registration details to improve transparency and trustworthiness.

U

Uplynk, Inc.

uplynk.com

64

Uplynk, Inc. operates a sophisticated video streaming platform offering end-to-end and modular streaming solutions tailored for broadcasters, media companies, sports leagues, and content owners. The company leverages cloud infrastructure, primarily AWS, to provide scalable, reliable, and high-quality streaming services including live events, linear channels, video on-demand, monetization, and syndication. Their API-first approach and compatibility with existing video and ad tech stacks position them as a flexible and modern streaming partner. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service descriptions. Technically, the site uses modern web technologies including Video.js, Limelight Player, and HubSpot analytics, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though explicit security policies and vulnerability disclosures are absent. The absence of WHOIS data is a notable gap but does not significantly detract from the overall legitimacy given the strong branding and contact information. Strategic recommendations include enhancing transparency around security policies and improving WHOIS registration visibility.

W

Wonderlink

wonderl.ink

58

Wonderlink is a German-based technology company offering a GDPR-compliant Link-in-Bio platform designed for influencers, artists, entrepreneurs, and content creators. The platform enables users to consolidate multiple online channels and legal pages into a single mobile-optimized landing page. With over 75,000 customers and strong trust signals such as IT-Recht Kanzlei certification and media endorsements, Wonderlink holds a strong market position in the privacy-focused social media tools segment. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, and Lottie animations, delivering a fast, responsive, and accessible user experience. Hosting is on German servers, reinforcing data privacy commitments. The absence of tracking, cookies, and advertising technologies further enhances user privacy and compliance with GDPR. Security posture is solid with HTTPS enforced and privacy best practices observed, though explicit security headers and incident response contacts are not publicly disclosed. The WHOIS data is minimal but consistent with the hosting setup, indicating legitimacy though lacking detailed registrant information. Overall, Wonderlink presents a professional, secure, and privacy-respecting service with excellent content quality and user experience. Strategic improvements in security header implementation and transparency around incident response could further strengthen trust and compliance.

P

Pipedream

pipedream.com

68

Pipedream is a technology platform specializing in API, AI, and database integration to enable rapid application development with both code and no-code options. The company targets developers and businesses seeking to automate workflows and connect disparate services efficiently. The website demonstrates a modern technical infrastructure leveraging JavaScript, Segment Analytics, Google Tag Manager, and Framer CMS, hosted on AWS infrastructure. While the site is professionally designed and mobile-optimized, it lacks explicit privacy, cookie, and terms of service policies in the analyzed content, which impacts privacy compliance scores. Security posture is generally good with HTTPS and domain registration protections but could be improved by enabling DNSSEC and adding security headers. The domain is mature and registered with a reputable registrar, supporting the legitimacy of the business. Overall, the site is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

T

TVR Moldova

tvrmoldova.md

45

TVR Moldova is a regional media broadcaster affiliated with the Romanian Television network, providing news, cultural programming, and live TV content primarily targeting the Moldovan and Romanian-speaking audience. The website demonstrates a solid market position as a trusted news source with consistent branding and a comprehensive content offering including news categories, TV shows, and live streaming. Technically, the site leverages modern web technologies, including Cloudflare CDN, Google Tag Manager, and social media integrations, ensuring moderate to good performance and mobile optimization. Security posture is strong with HTTPS enforcement and security headers, though there is room for improvement in privacy compliance and incident response transparency. Overall, the domain registration and technical setup align well with the business profile, indicating a legitimate and stable online presence.

T

Televiziunea Română

cerbuldeaur.ro

42

Cerbul de Aur is a Romanian media website dedicated to the internationally recognized music festival of the same name, organized by the Romanian Television (Televiziunea Română). The site provides rich content including festival history, recent articles, interviews, photo galleries, and video content, targeting music enthusiasts and cultural audiences primarily in Romania. The website is built on WordPress with modern plugins and technologies, offering a good user experience and mobile optimization. Security measures include HTTPS and Google reCAPTCHA, though some improvements are recommended such as enabling DNSSEC and adding security headers. Privacy compliance is lacking as no privacy or cookie policies were found. Overall, the site is trustworthy, professionally maintained, and serves as an official media channel for the festival.

The domain transparencia.org is currently a parked domain with no active website content. The site displays a domain-for-sale banner and loads an iframe pointing to a third-party domain, indicating no operational business presence. The website lacks any privacy, cookie, or terms of service policies, and no contact information or business details are provided. Technically, the site uses basic JavaScript and external scripts related to advertising and tracking but lacks HTTPS and security headers, resulting in a poor security posture. The WHOIS data shows the domain was registered in 2001 with Dynadot Inc and is consistent with a parked domain status, but no registrant organization information is available to verify legitimacy. Overall, the site is not trustworthy or professional in its current state and appears to be held for resale or future use.

P

Porsche Finance Slovakia s.r.o.

porschefinance.sk

62

Porsche Finance Slovakia s.r.o. operates a professional website offering branded financial services including vehicle financing, leasing, and insurance targeted at both private and corporate clients in Slovakia. The company positions itself as a premium financial service provider aligned with the Porsche brand, offering tailored financial products and fleet management solutions. The website demonstrates a moderate level of digital maturity with modern JavaScript usage, Google Tag Manager integration, and cookie consent mechanisms. However, explicit privacy and security policies are not published on the site, which is a gap in compliance and transparency. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but could be improved by publishing incident response and security policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.