Security Directory

H

Himmlische Herbergen e.V.

himmlische-herbergen.de

50

Himmlische Herbergen e.V. operates a well-established online platform dedicated to Christian group accommodations across Germany and parts of Europe. The website offers a comprehensive search and filter system for various types of guesthouses, hotels, and self-catering accommodations, targeting Christian groups, families, youth groups, and seminar attendees. The organization positions itself as a niche leader in the hospitality sector with a strong non-profit orientation and a focus on community and spiritual hospitality. Technically, the website is built on WordPress 6.8.3 with modern plugins such as Borlabs Cookie for privacy compliance and Instagram Feed integration for social engagement. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, and the site maintains comprehensive privacy and cookie policies aligned with GDPR requirements. The absence of direct contact emails or phone numbers suggests reliance on contact forms and social media channels for communication. Overall, the site reflects a mature digital presence with strong trust indicators and professional content. Strategically, the organization should focus on enhancing security headers, expanding direct contact options, and continuing to maintain compliance and transparency to strengthen user trust and operational resilience.

M

Sign in - Matomo

mws-monitor.de

59

The website mws-monitor.de hosts a Matomo analytics platform login page, providing a free/libre analytics service interface. The platform targets users who manage or access web analytics data, offering key services such as visitor tracking and data reporting. The site is technically based on the Matomo framework, utilizing JavaScript and PHP technologies with AngularJS elements. The infrastructure appears standard for a self-hosted analytics platform, with moderate performance and basic mobile optimization. Security features include HTTPS enforcement and password confirmation, with support for two-factor authentication, though explicit security headers are not detected. Privacy compliance is minimal on this page, with no visible privacy or cookie policies, and no contact or business information is publicly available. The domain WHOIS data is minimal but consistent with hosting provider name servers, showing no immediate red flags. Overall, the site is functional for its purpose but lacks public-facing compliance and business transparency information.

J

JBMC Software

directadmin.com

65

DirectAdmin is a well-established Canadian software company specializing in web hosting control panel solutions. With over 20 years in the market, it offers a lightweight, efficient, and user-friendly control panel designed for server administrators, resellers, and hosting companies. The website presents a professional and consistent brand image, highlighting key features such as automatic SSL, HTTP/2 support, and multi-level user access. The business model centers on software licensing and support services, targeting the web hosting industry globally. Technically, the website employs modern front-end technologies including jQuery, Bootstrap, and Google reCAPTCHA v3 for bot protection. The use of Cloudflare DNS and SSL indicates a secure hosting environment. Performance and mobile optimization are good, though accessibility and SEO could be improved. The site lacks explicit security headers and cookie consent mechanisms, which are areas for enhancement. From a security perspective, the site benefits from HTTPS and reCAPTCHA integration but lacks DNSSEC and visible security headers. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy with consistent registration details and a long operational history. Privacy compliance is basic, with a privacy policy present but no clear GDPR compliance or cookie consent. Overall, the website is professional, trustworthy, and functional with minor gaps in privacy compliance and security best practices. Strategic improvements in these areas would enhance the site's security posture and regulatory adherence.

The website www.informationsportal.de is an official information portal operated by ITSG GmbH, providing comprehensive guidance to employers in Germany about their social security reporting obligations. It serves as a government-related resource offering question-answer catalogs, glossaries, brief profiles, and a document library to assist employers in compliance. The portal targets German employers and is positioned as a niche authoritative source in the social security domain. Technically, the site is built on WordPress with modern plugins such as Yoast SEO Premium and Borlabs Cookie for privacy compliance. It uses Matomo for analytics, ensuring user data is anonymized and GDPR compliant. The site is well-structured, mobile-optimized, and employs HTTPS with appropriate security headers, although some advanced headers could be added for enhanced security. No direct contact emails or phone numbers are published; contact is primarily via a form. No explicit security or incident response policies are published, which could be improved. Overall, the site demonstrates a good security posture, strong privacy compliance, and professional content quality, making it a trustworthy resource for its audience.

The website at kbs-crm.de is currently inaccessible beyond a standard 404 Not Found error page, indicating the absence of any publicly available content or business information. No metadata, structured data, forms, or contact details are present, severely limiting the ability to assess the company's market position, services, or compliance posture. The domain is hosted on Hetzner servers, which is a reputable hosting provider, but no further registrant details are available to confirm legitimacy or business claims. The lack of HTTPS information and security headers further reduces confidence in the site's security posture. From a technical perspective, the site shows no signs of modern web technologies, analytics, or advertising tools. The absence of privacy, cookie, or terms of service policies indicates non-compliance with common data protection regulations such as GDPR. No incident response or security policies are published, and no contact information is available to engage with the business or report security issues. Security-wise, the site does not exhibit any active protections or best practices. The lack of HTTPS and security headers, combined with the absence of content, results in a very low security score. There are no indications of vulnerabilities or malicious content, but the inability to access meaningful content prevents a thorough security assessment. Overall, the website is currently non-functional from a user and security perspective. It is recommended to restore accessible content, implement HTTPS, publish necessary compliance policies, and provide clear contact information to improve trust and security posture.

H

Die Haushaltsjob-Börse der Minijob-Zentrale - Startseite

haushaltsjob-boerse.de

56

The website Haushaltsjob-Boerse.de serves as a specialized job listing platform connecting household helpers and employers in Germany, operating under the auspices of the Minijob-Zentrale. It offers free job postings for household help, targeting a niche market within the German employment sector. The platform's market position is that of a focused, medium-sized service provider facilitating private household employment opportunities. Technically, the site leverages modern web technologies including the Ionic framework and Angular, with analytics powered by Matomo and consent management via Usercentrics, indicating a moderate level of digital maturity and compliance with cookie regulations. Security-wise, the site employs HTTPS and basic privacy controls but lacks published privacy policies, terms of service, and explicit security or incident response documentation, which are areas for improvement. Overall, the site is functional, professionally designed, and trustworthy within its niche, but could enhance its compliance and security posture to better align with best practices.

E

Elementare Vielfalt

periodensystem.de

47

The website www.periodensystem.de is a specialized educational platform offering a free interactive periodic table of elements aimed at students and professionals in chemistry-related fields. It is positioned as a niche resource within the German education sector, providing accessible and app-free learning tools. The site is powered by TYPO3 CMS and leverages modern JavaScript libraries to enhance user experience. Hosting is provided by SchlundTech, a reputable German hosting provider, ensuring reliable infrastructure. The site demonstrates good technical maturity with responsive design and SEO optimization. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent managed via Usercentrics, although some security headers are missing and no explicit security policies or incident response contacts are provided. Overall, the site is trustworthy, safe, and professionally maintained, with room for improvement in transparency and security documentation.

E

EKS Beton

eks-beton.de

54

EKS Beton is a well-established German company specializing in the production and delivery of high-quality concrete products. With over four decades of experience, it operates multiple strategically located concrete plants in the Frankfurt region and offers a mobile concrete plant service to meet diverse construction needs. The company emphasizes quality, reliability, sustainability, and customer convenience, including a dedicated ordering app. Technically, the website is built on WordPress with modern plugins and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site reflects a professional and trustworthy business with clear contact information and partner affiliations.

deponata GmbH & Co. KG is a German company specializing in environmental services, particularly the disposal and processing of mineral construction and production waste, soil material brokerage, and electronic waste tracking. The company is qualified for public procurement and actively engages in environmental sponsorships, positioning itself as a reliable and certified disposal specialist within the energy and environmental sector. The website content is professional, well-structured, and targeted primarily at public sector clients and environmental stakeholders. Technically, the website employs a moderate technology stack including jQuery, Google Fonts, and Google Analytics with IP anonymization, hosted likely by Prointernet. The site is served over HTTPS with basic mobile optimization and accessibility features. Consent management is implemented via a third-party platform, supporting GDPR compliance. SEO practices are good with proper meta tags and structured navigation. From a security perspective, the site benefits from HTTPS and privacy-conscious analytics but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of a vulnerability disclosure policy or security.txt file is noted as an area for improvement. Overall, the website is trustworthy, professional, and compliant with privacy regulations, with a moderate security posture. Strategic recommendations include enhancing security headers, publishing security policies, and improving mobile optimization to further strengthen the digital maturity and trustworthiness of the company’s online presence.

D

Drausy GmbH

drausy.de

56

Drausy GmbH operates as a specialized provider of biological water treatment and odor control solutions, focusing on sustainable and environmentally friendly technologies for water, wastewater, and soil treatment. The company targets municipal water management, environmental technology sectors, and related industries, positioning itself as a niche player with recognized expertise and practical applications demonstrated through expert testimonials and awards. The website reflects a professional and consistent brand image with detailed product information and a user-friendly contact mechanism. Technically, the website employs modern web technologies including Vue.js, Bootstrap, Google Analytics, and reCAPTCHA, ensuring a responsive and interactive user experience. The presence of a cookie consent manager (Klaro) and multi-language support indicates a mature digital infrastructure with attention to privacy compliance. Performance is moderate with good mobile optimization and basic accessibility features. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms to mitigate spam. However, it lacks explicit security headers and a published security policy or incident response contact, which are recommended for enhanced security posture. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, Drausy GmbH's website presents a trustworthy and professional front with solid business credibility and compliance with GDPR. The domain registration data is partially consistent with the business claims, supporting legitimacy. Strategic improvements in security policies and technical headers would further strengthen the site's security and trustworthiness.

C

Christof Brand GmbH

christof-brand.de

54

Christof Brand GmbH is a medium-sized German company specializing in construction services including demolition, earthworks, machine rental, and recycling. The company positions itself as a reliable partner with a modern machinery fleet equipped with GPS and laser technology, targeting both private and commercial clients in the construction sector. Their website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site is built on Joomla CMS with Bootstrap and uses Matomo analytics, indicating a moderate level of digital maturity and privacy awareness. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and explicit incident response policies. Overall, the website is accessible, well-structured, and trustworthy, though improvements in security policies and WHOIS transparency could enhance credibility further.

C

CAL GmbH & Co. KG

cal-darmstadt.de

60

CAL GmbH & Co. KG is a German-based chemical analysis service provider established in 1984. The company specializes in precise chemical analyses for soil, water, dietary supplements, and cosmetics, targeting businesses requiring quality assurance in these sectors. Their website is professionally designed using the Contao CMS platform and modern JavaScript libraries, providing a good user experience with clear navigation and relevant content in German. The technical infrastructure is moderate in performance with good mobile optimization but lacks advanced security headers and cookie consent mechanisms. Security posture is basic with HTTPS enabled but missing several best practices such as security policies and incident response contacts. WHOIS data confirms the domain's legitimacy and consistency with the business history. Overall, the website is trustworthy and functional but could improve in privacy compliance and security transparency.

U

Unternehmensgruppe Glöckle

gloeckle-bau.de

63

Unternehmensgruppe Glöckle is a well-established German construction and real estate company founded in 1908, offering comprehensive services from project development to turnkey construction and sales. The company targets both residential and commercial clients, positioning itself as a full-service provider in the construction sector with a strong regional presence. The website reflects a professional and consistent brand image, with good content quality and clear navigation tailored to its audience. Technically, the site is built on WordPress with modern plugins for SEO, forms, and GDPR compliance, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. Overall, the site is trustworthy and business credible, though improvements in privacy policy visibility and security disclosures are recommended.

B

Bauindustrieverband Hessen-Thüringen e.V.

bauindustrie-mitte.de

46

Bauindustrieverband Hessen-Thüringen e.V. is a regional industry association representing the construction sector in the German states of Hessen and Thüringen. The organization acts as a political advocate and service provider for construction companies, offering employer association services, economic representation, sustainability initiatives, and educational events. The website reflects a professional and consistent brand presence, targeting industry stakeholders and members. Technically, the site is built on TYPO3 CMS with standard web technologies and demonstrates moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks advanced security headers and incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and functional but could improve in security and privacy transparency.

A

Amodes GmbH

amodes.de

50

Amodes GmbH is a specialized small business based in Germany focusing on advanced mobile desludging and ecological water body services. Their offerings include mobile sludge dewatering, ecological water services, equipment rental, and other related environmental solutions. The company targets municipalities and environmental service providers seeking efficient and eco-friendly sludge treatment solutions. The website is professionally designed using WordPress with the Enfold theme and integrates SEO and cookie consent plugins, reflecting a moderate to high level of digital maturity. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are absent. Overall, the site is trustworthy and business-appropriate with clear contact details and customer references.

3

360 Services GmbH

360materials.de

53

360 Services GmbH operates the website 360° Materials, providing comprehensive full-service solutions for construction projects including material supply, waste disposal, and recycling. The company targets construction professionals and project managers, offering regional to international services with a focus on sustainability and efficiency. The website is professionally designed, mobile-optimized, and provides clear navigation and contact options. Technically, the site uses modern Webflow CMS, Cloudflare services including Turnstile captcha for form security, and delivers fast performance with good SEO and accessibility features. Security posture is strong with HTTPS and captcha protections, though lacks explicit security policy and incident response information. Privacy compliance is robust with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is trustworthy and well-positioned in its market niche.

CDM Smith is a large, employee-owned professional engineering and construction firm specializing in environmental, infrastructure, energy, and transportation sectors. The company emphasizes delivering smart solutions and legendary service to clients globally. Their website reflects a mature digital presence with comprehensive service descriptions, employee testimonials, and a strong focus on sustainability and innovation. Technically, the site uses modern web technologies including jQuery, Moment.js, Google reCAPTCHA, and Adobe Experience Platform integrations, with Sitecore CMS underpinning content management. Security posture is strong with HTTPS enforced, secure forms, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. The absence of WHOIS data is a minor concern but does not detract significantly from the site's legitimacy given the professional presentation and consistent branding. Overall, the website is well-designed, accessible, and trustworthy, supporting CDM Smith's market position as a reputable engineering services provider.

E

ELB Learning

elearningbrothers.com

75

ELB Learning is a US-based medium-sized company specializing in corporate eLearning solutions, including custom course development, gamification consulting, AI-powered training, and learning management systems. The company targets businesses seeking to enhance employee training and leadership development through modern, scalable learning technologies. Their market position is solid, supported by a broad portfolio of services and products, including award-winning LMS platforms and immersive VR training solutions. Technically, the website is built on Webflow with integrated HubSpot marketing and analytics tools, demonstrating a mature digital infrastructure with good performance and mobile optimization. Security posture is strong with HTTPS, SOC 2 Type II compliance, and comprehensive privacy and cookie policies, although the absence of WHOIS registration data slightly reduces trust. Overall, ELB Learning presents a professional, trustworthy online presence with robust business and technical foundations.

A

axilaris GmbH

axilaris.de

68

axilaris GmbH is a German IT service provider specializing in premium, tailored IT infrastructure, software development, and IT security services primarily targeting medium-sized enterprises (Mittelstand) in Germany. The company emphasizes secure, scalable, and user-friendly IT solutions, supported by a regional data center in Chemnitz certified under ISO 27001. Their website reflects a professional and consistent brand image, showcasing key services, customer testimonials, and active recruitment, indicating a stable market presence. Technically, the site uses modern web technologies including Contao CMS, Matomo analytics, and Google Tag Manager, with good mobile optimization and SEO practices. Security posture is strong with ISO certification and HTTPS usage, though explicit security headers and vulnerability disclosure mechanisms are absent. Privacy compliance is limited due to missing explicit privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

G

GREEN IT Das Systemhaus GmbH

greenit.systems

72

GREEN IT Das Systemhaus GmbH is a small German IT system house specializing in sustainable IT solutions, based in Dortmund. The company positions itself as a provider that combines ecological and economic aspects to address current and future IT challenges. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site is built on WordPress with Elementor and integrates advanced cookie consent management, multiple analytics, and marketing tools, indicating a modern and compliant infrastructure. Security posture is strong with HTTPS, Wordfence protection, and consent-based data collection, though some security headers could be improved. WHOIS data is unavailable, but the website's professional appearance and consistent branding support legitimacy. Overall, the site demonstrates a solid business and technical foundation with good privacy and security practices.

P

Pastoral am Puls. e.V.

pastoral-am-puls.de

56

Pastoral am Puls. e.V. is a small non-profit organization based in Germany focused on pastoral care, spiritual guidance, and church development. The website serves as an informational and community platform offering educational content, newsletters, and resources for religious communities and pastoral workers. The organization positions itself as a niche player within the religious non-profit sector, emphasizing spiritual process leadership and cultural change within church contexts. Technically, the website is built on WordPress with modern plugins for SEO, analytics, and security, hosted via DomainControl.com. The site is well-structured, mobile-optimized, and includes GDPR-compliant privacy and cookie policies with user consent mechanisms. Security posture is solid with HTTPS enforced and captcha protection on contact forms, though it lacks explicit security policy documentation and security headers. Overall, the site is professional, trustworthy, and safe for general audiences.

B

Bistum Mainz

bistummainz.de

62

Bistum Mainz is a large non-profit Catholic diocese based in Germany, providing a wide range of religious, social, educational, and community services. The website serves as a comprehensive portal for parishioners and the general public, offering news, event information, pastoral resources, and social initiatives. It targets members of the Catholic community and residents within the diocese's region. Technically, the site is built on the Alkacon Mercury CMS platform, with a modern tech stack including responsive design, accessibility features, and privacy-conscious analytics via Matomo. The site is well-structured, professionally designed, and optimized for mobile and accessibility standards. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies are not visibly present. WHOIS data and domain registration details align well with the organization's identity, supporting legitimacy and trustworthiness. Overall, the site demonstrates a mature digital presence suitable for a large religious non-profit organization.

kath.de is a well-established independent Catholic news portal based in Germany, operating since 1995. It provides news, commentary, and links related to Catholicism, targeting German-speaking audiences interested in religious and spiritual content. The site is supported by donations and partners with several Catholic organizations, reinforcing its position as a trusted media source within its niche. Technically, the website is built on Ruby on Rails with modern web technologies, including Turbolinks and Google Analytics integration. It demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Security-wise, the site enforces HTTPS, uses CSRF tokens, and includes some security headers, but lacks visible cookie consent mechanisms and explicit security policies. Overall, the domain registration data aligns well with the website's content and business model, indicating high legitimacy and trustworthiness.

E

ExpiredDomains.com

espresso.church

71

ExpiredDomains.com operates as a specialized online platform providing comprehensive listings and insights for expired and expiring domain names. It serves domain investors, SEOs, and marketers by aggregating domain data across numerous TLDs and linking users to trusted registrars like GoDaddy for domain acquisition. The platform is well-positioned in the domain marketplace sector, trusted by thousands of users, and offers a user-friendly interface with detailed domain profiles and filtering capabilities. Technically, the website employs modern web standards with responsive design and moderate performance, supported by Cloudflare DNS and secure HTTPS connections. Security posture is solid with domain status protections and no evident vulnerabilities, though DNSSEC is not enabled and additional security headers could enhance protection. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. However, direct contact information such as emails or phone numbers is absent, relying solely on contact forms. Overall, the website is professional, trustworthy, and safe for general audiences, with no adult or explicit content detected.

R

rigma Musikverlag

rigma-shop.de

50

rigma Musikverlag operates an e-commerce platform specializing in Christian music, songbooks, sheet music, and educational materials targeted at families, schools, kindergartens, and church communities primarily in Germany. The website is built on a modern WordPress and WooCommerce stack, leveraging various plugins for enhanced functionality including GDPR-compliant cookie management and product search capabilities. The site demonstrates good content quality, clear navigation, and mobile optimization, supporting a positive user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not published. Overall, the domain and hosting appear legitimate with no blocking or WAF interference detected, and the site maintains compliance with GDPR regulations. The business maintains a niche market position with a consistent brand presence and trustworthy user engagement features.

S

sensum · Graphikbüro

sensum.de

52

sensum · Graphikbüro is a small German-based graphic and web design service provider offering print design, web development, and educational seminars. The company targets nonprofit and other clients seeking creative design solutions and training. Their market position is niche with a focus on quality and client collaboration. The website is built on WordPress using the Divi theme, enhanced with SEO and privacy plugins, reflecting a moderate to good level of digital maturity. The technical infrastructure is modern and mobile-optimized, with good SEO practices and basic accessibility features. Security posture is solid with HTTPS and privacy compliance, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

The website originalshrine.org serves as an informational platform dedicated to the Original Shrine of the international Schoenstatt Movement, focusing on religious and cultural content. It provides visitors with historical information, event details, a live webcam feed, and media resources such as sermons. The site targets a broad audience interested in religious and cultural heritage, operating primarily as a non-commercial informational resource. The domain is well-established since 2012, registered with a reputable registrar, and shows consistency between WHOIS data and website content. Technically, the website employs basic web technologies including HTML, CSS, JavaScript with jQuery and Superfish for navigation menus, and Google Web Fonts. The hosting provider is Vautron Rechenzentrum AG. While the site uses HTTPS, it lacks advanced security headers and uses an outdated JavaScript library version, which could pose security risks. Mobile optimization and accessibility are basic, and SEO practices are minimal but functional. From a security perspective, the site benefits from HTTPS but misses DNSSEC and security headers, and no cookie consent mechanism is present. No forms or user data collection points were detected, reducing exposure to input-based vulnerabilities. The WHOIS data indicates a legitimate and stable domain registration with no privacy protection, aligning with the website's purpose. No signs of malware, phishing, or adult content were found, indicating a safe browsing experience. Overall, the website is moderately secure and credible but would benefit from updates to its technical stack, enhanced security practices, and improved privacy compliance. Strategic improvements in these areas would strengthen trust and user experience.

S

Schoenstatt

schoenstatt.com

60

Schoenstatt.com is the official website of the International Schoenstatt Movement, a Catholic non-profit organization founded in 1914 and active internationally across five continents. The website serves as a central platform for community engagement, spiritual education, and dissemination of news and resources related to the movement. It targets members and followers of the movement, providing multilingual content and multimedia resources to support its mission. Technically, the website is built on WordPress with Elementor and Yoast SEO Premium, hosted by IONOS SE. It uses modern web technologies including HTTPS, Google Tag Manager, and reCAPTCHA for security and analytics. The site demonstrates good mobile optimization and SEO practices, although performance is moderate and accessibility is basic. From a security perspective, the site enforces HTTPS and uses domain locking to prevent unauthorized changes. However, DNSSEC is not enabled, and some recommended security headers are missing. Privacy compliance is weak due to the absence of explicit privacy and cookie policies and consent mechanisms. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the website is professional, trustworthy, and content-rich, supporting the organization's mission effectively. Strategic improvements in privacy compliance, DNS security, and security headers would enhance its security posture and regulatory adherence.

W

Webite, s.r.o.

webite.cz

47

Webite, s.r.o. is a small web design studio based in Brno, Czech Republic, specializing in comprehensive web services including UX design, SEO optimization, and web and mobile application development. The company positions itself as a professional and client-focused service provider with a portfolio of notable clients and positive testimonials. The website is well-structured, professionally designed, and targets businesses seeking quality web solutions. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and Google services, with good mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and Google reCAPTCHA protecting contact forms, though the absence of certain security headers suggests room for improvement. Privacy compliance is strong, featuring a detailed privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the website reflects a trustworthy and credible business with a good balance of technical and business maturity.

Š

Šetina, Komendová & Partners s.r.o., Law Office

akskp.cz

65

Šetina, Komendová & Partners s.r.o. is a small law office based in Brno, Czech Republic, specializing in IT law, subsidies, and business corporation legal services. The firm emphasizes client-focused, innovative legal solutions and has international experience. Their website reflects a professional and trustworthy presence with clear contact information and a privacy-aware approach. Technically, the site is built on the Webnode CMS platform, uses Amazon Cloudfront CDN, and integrates common analytics and marketing tools such as Google Analytics and Hotjar. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing. WHOIS data is unavailable, likely due to privacy protection, which is common for small professional firms. Overall, the site is well-designed, accessible, and compliant with basic privacy regulations.

S

SYNER, s.r.o.

syner.cz

50

SYNER, s.r.o. is a prominent Czech construction and engineering company with nearly 35 years of market presence, ranking among the top 10 in the Czech Republic. The company specializes in a broad range of construction projects including administrative, residential, industrial, and infrastructure developments, with a strong focus on sustainability and innovative technologies such as BIM. Their business model integrates multiple divisions and resources to deliver tailored, high-quality solutions to investors and clients. Technically, the website employs modern JavaScript libraries and analytics tools, indicating a moderate to advanced digital maturity. Security posture is solid with HTTPS and CSRF protections, though improvements in security headers and incident response disclosures are recommended. Overall, the website is professional, trustworthy, and compliant with GDPR, though cookie consent mechanisms could be enhanced.

A

ARCHEKTA, s.r.o.

archekta.com

47

Archekta is a small Slovak architecture studio founded in 1991, specializing in architectural design and construction consulting with a focus on balancing art and architecture. The company has a strong regional presence with award-winning projects and a professional team. The website showcases their portfolio and team but lacks privacy and cookie policies, which are important for compliance. Technically, the site uses modern frameworks like Nuxt.js and Tailwind CSS, hosted on Websupport.cz, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled but lacks DNSSEC and security headers. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy but could improve compliance and security practices.

B

BikeFair | Marketplace For Bikes | Buy or Sell Your Bike

bikefair.org

62

BikeFair.org operates as an online marketplace specializing in the buying and selling of new and second-hand bicycles. The platform targets local bike enthusiasts and buyers, offering a searchable inventory of over 5,400 bikes with filters based on location and bike attributes. The business appears to be a small-sized entity founded in 2019, focusing on the transportation sector with a niche in cycling commerce. Technically, the website leverages modern web technologies including Nuxt.js, Cloudflare DNS, and CDN hosting via DigitalOcean Spaces, complemented by popular analytics and advertising tools such as Google Analytics, Microsoft Clarity, Facebook Pixel, and Bing Ads. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Security posture is adequate with HTTPS enforced and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms, which also impacts user trust and regulatory adherence. Overall, the website is functional and professional but would benefit from improved transparency and security practices.

S

Saba Rock

sabarock.com

56

Saba Rock is a hospitality-focused website likely representing a resort or tourism service provider. The domain is well-established since 1998, indicating a mature business presence. The website employs modern frontend technologies such as Vue.js and Tailwind CSS, with integrated marketing and analytics tools including Google Tag Manager and Facebook Pixel. However, the site lacks visible privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is moderate with no detected security headers or vulnerability disclosures, and no signs of WAF or content blocking were found. Overall, the site presents a professional but basic digital presence with room for improvement in privacy and security compliance.

T

Tregler Paliva

tregler-paliva.cz

49

Tregler Paliva is a small, established business specializing in the purchase, processing, and sale of quality firewood primarily serving the Czech Republic and Austria. Founded in 1991, the company has a strong regional presence and targets both consumer and business customers seeking firewood products. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site uses modern JavaScript frameworks, Laravel Nova for administration, and integrates multiple analytics and tracking tools including Matomo, Google Tag Manager, Facebook Pixel, and Smartlook. The hosting and domain registration are consistent with the business location and claims, enhancing trustworthiness. Security posture is adequate with HTTPS enabled and secure admin routes, but lacks some security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies despite cookie consent mechanisms. Overall, the site is functional and trustworthy but would benefit from improved privacy transparency and security best practices.

C

CardPro - Specializovaný e-shop na Pokémon TCG

cardpro.cz

56

CardPro.cz is a specialized e-commerce platform focused on selling Pokémon Trading Card Game (TCG) products, including booster packs, elite trainer boxes, special sets, gift tins, accessories, and individual cards. The website targets collectors, players, and gift buyers within the Czech Republic, positioning itself as a niche retailer with a professional and modern online presence. Founded in 2023, the business leverages modern web technologies such as Nuxt.js and Vue.js, hosted with Cloudflare and DigitalOcean services, ensuring fast performance and excellent mobile optimization. The site integrates multiple analytics and marketing tools including Google Tag Manager, Microsoft Clarity, and Facebook Pixel, indicating a moderate level of user tracking and marketing sophistication. Security posture is good with HTTPS enforced and Cloudflare protection, but lacks explicit privacy, cookie, and terms of service policies, which are critical for GDPR compliance and user trust. Contact information is not explicitly found in the provided content, which may impact customer confidence. Overall, the website is well-designed and functional but requires improvements in privacy compliance and transparency to enhance trust and legal adherence.

C

CandyKeys

candykeys.com

59

CandyKeys is an established small e-commerce retailer specializing in mechanical keyboards, keycaps, switches, and related components, primarily serving customers in Germany and the EU with worldwide shipping since 2016. The website demonstrates a modern technical infrastructure using Nuxt.js, Tailwind CSS, Font Awesome, and integrates Google Analytics and Tag Manager for marketing and analytics purposes. DNS is managed via Cloudflare, and the domain is registered with IONOS SE, indicating a stable and legitimate online presence. Security posture is generally good with HTTPS enabled and domain transfer protection, but lacks published privacy, cookie, and security policies, which are critical for GDPR compliance and user trust. No contact information or incident response details are found, limiting transparency. Overall, the site is professional and functional but would benefit from enhanced privacy compliance and security disclosures.

M

Moje NEO

mojeneo.cz

48

Moje NEO is a Czech financial group offering a unique license product called the NEO licence, which provides users with a variety of financial benefits including cashback, insurance claim assistance, real estate services, business mentoring, commissions, financial products, and education. The company positions itself as a modern financial partner with 30 years of experience, targeting individuals and entrepreneurs seeking financial freedom and personalized financial solutions. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, hosted on DigitalOcean, and uses standard tracking tools like Google Tag Manager and Facebook Pixel. The site is well-designed, mobile-optimized, and SEO-friendly, but lacks explicit privacy and terms of service pages, which are important for compliance. Security posture is good with HTTPS and security headers implemented, but incident response and security policies are not publicly disclosed. Overall, the website is professional and trustworthy but could improve transparency and compliance documentation.

B

Breathless Films s.r.o.

breathlessfilms.cz

56

Breathless Films is a small independent film production company based in Prague, Czech Republic, founded in 2018 by producer Matěj Paclík. The company specializes in producing and co-producing fiction and documentary films, with a focus on emerging directors. Their portfolio includes award-winning short films and documentaries that have premiered at prestigious festivals such as Karlovy Vary IFF and Ji.hlava IDFF. The website reflects a professional and consistent brand image, targeting film industry professionals and cinephiles. Technically, the site is built on modern frameworks like Nuxt.js and styled with Tailwind CSS, hosted with Cloudflare DNS, and optimized for mobile devices with moderate performance. However, it lacks some security headers and privacy compliance documents, which are areas for improvement. The security posture is generally good with HTTPS enabled and no exposed sensitive data, but could benefit from enhanced headers and policies. Overall, the site is trustworthy and professional, with clear contact information and a strong business credibility score.

D

Dolce e Luce Lighting Design Studio

dolceeluce.com

50

Dolce e Luce Lighting Design Studio is a small, internationally recognized independent lighting design and consultancy firm based in Rome, Italy, founded in 2018. The company offers a broad range of lighting design services including architectural, landscape, urban lighting, light art installations, and lighting controls. Their market position is strengthened by academic involvement and membership in professional lighting associations. Technically, the website is built on modern frameworks such as Nuxt.js and Tailwind CSS, with good mobile optimization and performance. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy, but improvements in privacy and security policies are recommended.

F

Fidurock

fidurock.com

61

Fidurock is a Czech real estate investment group specializing in residential and commercial property investments. The company positions itself as a trustworthy and transparent investment partner focusing on long-term growth and sustainability. The website reflects a professional and modern digital presence, utilizing contemporary web technologies such as Nuxt.js and Tailwind CSS, and integrates analytics tools like Google Analytics and Google Tag Manager for performance and user behavior tracking. Security posture is adequate with HTTPS enabled and domain transfer protections in place, but lacks explicit security policies, incident response contacts, and advanced security headers. Privacy compliance is partially addressed through a cookie consent mechanism, but no dedicated privacy policy or terms of service pages were found. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

L

Livimi

livimi.com

66

Livimi is a Czech Republic-based real estate rental platform offering modern apartments in prime urban locations with a focus on digitalized rental processes. The company is part of the Fidurock investment group, leveraging over a decade of experience in property management. Their business model emphasizes direct rentals without commission, digital contract signing, and online housing management, targeting individuals seeking convenient and transparent urban living solutions. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, hosted on DigitalOcean infrastructure, and optimized for performance and mobile responsiveness. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is strong with clear GDPR and cookie policies. Overall, the website presents a professional, trustworthy, and user-friendly experience with moderate tracking for analytics and marketing purposes.

F

Fidurock

nearliving.cz

44

NEAR living is a modern residential real estate development project located in the rapidly evolving Prague district of Palmovka. The project offers a range of apartments from 1+kk to 3+kk, combining urban lifestyle with tranquility and high-quality architectural design. The website is professionally designed using modern technologies such as Nuxt.js and Vue.js, with strong mobile optimization and good SEO practices. The security posture is solid with HTTPS and secure forms, though explicit security headers and a published security policy are missing. Privacy compliance is well addressed with a GDPR-compliant privacy policy and cookie consent mechanism. The WHOIS data shows inconsistencies with a future domain creation date, which slightly impacts trust but does not undermine the overall legitimacy of the business. Strategic recommendations include improving security headers, publishing a security policy, and verifying WHOIS data accuracy.

The website konferenz-verpackungsrecycling.de represents a professional conference focused on packaging recycling and circular economy topics, held under the patronage of the German Federal Ministry for Environment. It targets industry professionals, policymakers, and stakeholders in the recycling and environmental sectors. The business model centers on event organization and knowledge exchange through keynotes and networking. The site demonstrates a consistent and professional brand image with clear contact points and a well-structured program. Technically, the site is built on WordPress using the Elementor page builder, incorporating common JavaScript libraries such as jQuery and SmartMenus. The site is mobile-optimized and performs moderately well, though some improvements in accessibility and security headers could enhance its technical maturity. The SSL configuration is excellent, ensuring secure communications. From a security perspective, the site enforces HTTPS and includes secure form handling with explicit user consent for data processing. However, it lacks security headers and published security or incident response policies, which are recommended for improved security posture. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a clear privacy policy and GDPR-aligned consent in forms, but no cookie consent mechanism is present. Overall, the website is trustworthy and professionally managed, with a strong focus on its niche audience. Strategic improvements in security headers, cookie consent, and incident response transparency would further strengthen its security and compliance stance.

B

bvse-Entsorgergemeinschaft e.V.

bvse-entsorgergemeinschaft.de

54

The bvse-Entsorgergemeinschaft e.V. is a well-established German association representing certified waste disposal and recycling companies. It offers certification services, consulting, and training to its members, emphasizing quality, ecology, and customer proximity. The website is professionally designed using Joomla CMS and modern web technologies, providing good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Contact information is clearly presented, supporting business credibility. No signs of tracking or intrusive analytics enhance privacy compliance. Overall, the site reflects a trustworthy and professional organization within the recycling sector.

K

Koordinierungsstelle für Hospiz- u. Palliativversorgung in Deutschland

koordinierung-hospiz-palliativ.de

48

The website www.koordinierung-hospiz-palliativ.de serves as the official coordination center for hospice and palliative care services in Germany. It provides informational resources, including multilingual explanatory videos, targeting patients, relatives, healthcare institutions, and care providers. The site positions itself as a national non-profit entity focused on improving access and awareness of hospice and palliative care. Technically, the site is built on the Contao CMS platform, utilizing jQuery and jQuery UI for interactive elements. The infrastructure supports HTTPS with good SSL configuration, but lacks advanced security headers and cookie consent mechanisms. The content is well-structured, professionally presented, and accessible, though mobile optimization and accessibility could be improved. Security posture is solid with no visible vulnerabilities or exposed sensitive data, but the absence of a security policy and incident response contacts is noted. Overall, the site is trustworthy and credible, with clear contact information and consistent branding.

1

123map GmbH & Co. KG

123map.de

8

123map GmbH & Co. KG is a specialized company providing services, consulting, and software development in the field of geographic information systems (GIS) for over 20 years. Their offerings include online maps, geocoding, vector maps for graphic programs, and related software solutions targeting businesses and professionals requiring geospatial data and tools. The company operates primarily in Germany and maintains a small business profile with a focused niche market position. Technically, the website is built with standard HTML5, CSS3, and JavaScript, hosted under a reputable registrar (Key-Systems GmbH). The site is accessible, uses HTTPS, but lacks advanced security headers and DNSSEC, indicating moderate digital maturity. The website design and content are basic but consistent with the business focus, with limited mobile optimization and SEO features. From a security perspective, the site employs HTTPS and domain transfer protection but does not implement DNSSEC or security headers, which are recommended for enhanced protection. No forms or contact details are present on the main page, and no privacy cookie consent mechanism is implemented, which may impact GDPR compliance. No signs of tracking or advertising technologies were found, suggesting minimal user data collection. Overall, the website presents a moderate risk profile with no critical security issues detected. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance trust and protection. The domain's long registration history and consistency with business claims support legitimacy and credibility.

G

Gemeinsamer Bundesausschuss

g-ba.de

58

The Gemeinsamer Bundesausschuss (G-BA) is a central German government institution responsible for regulating healthcare services and ensuring quality in the healthcare system. The website serves as the official portal for disseminating information about the G-BA's work, including guidelines, decisions, public meetings, and innovations in healthcare. It targets healthcare professionals, policymakers, patients, and the general public interested in healthcare regulation in Germany. The site is well-branded, professionally designed, and provides comprehensive content relevant to its mission. Technically, the website employs modern web technologies including Matomo for privacy-conscious analytics, deferred JavaScript loading, and SVG graphics for branding. The site is mobile-optimized and accessible, with good SEO practices evident in meta tags and structured navigation. Hosting appears stable and professional, with no signs of blocking or WAF interference. From a security perspective, the site uses HTTPS with strong SSL configuration and respects user privacy by disabling cookies in analytics and honoring Do Not Track signals. However, it lacks explicit security headers and does not publicly disclose security policies or incident response procedures. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong regarding the privacy policy, but cookie consent mechanisms are absent. Overall, the G-BA website is a trustworthy, authoritative source with high content quality and professional presentation. It demonstrates a solid security posture with room for improvement in transparency and security header implementation. The domain registration data aligns well with the website's purpose, reinforcing legitimacy. Strategic recommendations include enhancing security headers, adding cookie consent, and publishing security and vulnerability disclosure policies.

M

Martinushaus Aschaffenburg

martinushaus.de

52

Martinushaus Aschaffenburg is a non-profit community and educational center located in the heart of Aschaffenburg, Germany. It operates under the Diocese of Würzburg and offers a variety of services including community meeting spaces, educational programs, and event venue rentals. The website reflects a well-established regional institution with a clear mission to provide open doors and hearts to visitors. The business model focuses on community engagement and educational offerings supported by the church diocese. Technically, the website is built on Joomla CMS with a Yootheme template and leverages modern frameworks such as UIkit and jQuery. It integrates Matomo analytics for user tracking and Usercentrics for GDPR-compliant cookie consent management. The site is mobile-optimized, accessible, and performs moderately well. Hosting appears to be via GoDaddy, indicated by the domain's nameservers. From a security perspective, the site enforces HTTPS and includes CSRF tokens in scripts, indicating good security hygiene. However, it lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with clear privacy and cookie policies. Overall, the website is professional, trustworthy, and well-aligned with its non-profit mission. Recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen security posture and trust.