Security Directory

S

STIFTUNG PS.SPEICHER

ps-speicher.de

57

PS.SPEICHER is a prominent European oldtimer and experience museum located in Einbeck, Germany. It operates across six locations showcasing over 2,500 historical exhibits in a restored historic granary, offering visitors an immersive journey through the history of mobility. The website is built on the Wix platform, leveraging modern web technologies including JavaScript, Google Tag Manager, and structured data for SEO and rich content presentation. The digital infrastructure is moderately optimized for performance and mobile devices, with good design and user experience. Security posture is adequate with HTTPS enabled and some cookie handling scripts, but lacks explicit security headers and formal privacy or incident response policies. The site does not exhibit any blocking or WAF challenges, allowing full content access. Overall, the business credibility is high, but privacy compliance and security best practices could be improved.

N

Niemöller

niemoeller.de

47

Niemöller operates a specialized e-commerce platform focused on providing spare parts for Mercedes Benz classic cars manufactured between 1946 and 1975. The website offers a comprehensive catalog of parts organized by model series, targeting classic car enthusiasts and restorers. The business positions itself as a niche market leader in classic Mercedes Benz spare parts retail, primarily serving customers in Europe with multilingual support and country-specific VAT pricing. Technically, the website employs modern web technologies including Bootstrap, FontAwesome, and integrates multiple analytics tools such as Google Analytics, Matomo, and Hotjar. The site is hosted on a domain managed by DomainControl and uses HTTPS to secure communications. Security posture is adequate with secure forms and no exposed sensitive data, but lacks visible security headers and formal privacy or cookie policies. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. Overall, the website is professional, user-friendly, and trustworthy, but could benefit from enhanced privacy compliance and security best practices.

The website deutsche-museumsstrasse.de serves as a static informational page announcing the dissolution of the Verband der deutschen Museen für Auto, Motor und Technik e.V., a German association that advised oldtimer museums for over 30 years. It directs visitors to the partner site oldtimermuseen.de for comprehensive information about over 350 oldtimer museums in Germany. The site targets oldtimer enthusiasts and museum visitors, providing a simple message and a timed redirect. Technically, the site is basic, using standard HTML, CSS, and JavaScript with Google Fonts integration. There is no CMS or advanced frameworks detected. Security posture is minimal with no security headers or privacy policies present, and no contact information is provided. The site is accessible without WAF or blocking mechanisms. Overall, the site functions as a legacy informational redirect with limited technical sophistication and minimal security or privacy compliance.

L

Liip AG

rokka.io

57

Rokka.io is a technology-focused SaaS platform specializing in digital image processing, storage, and delivery. Operated by Liip AG, a Swiss company, rokka.io offers a developer-centric service with APIs and libraries supporting multiple programming languages. The platform emphasizes ease of use, SEO optimization, and fast global delivery of images. The business model is pay-per-use with a free tier, targeting web developers and digital businesses needing efficient image management solutions. The website is professionally designed, mobile-optimized, and provides clear pricing and testimonials, indicating a mature market position in the niche of image services. Technically, the site leverages modern web technologies and is hosted on AWS infrastructure. It uses HTTPS with good SSL configuration and integrates Piwik PRO analytics with privacy-conscious settings (cookies disabled). The site offers extensive API documentation and client libraries, reflecting a high level of digital maturity. Performance and SEO are well addressed, and the site is accessible and user-friendly. From a security perspective, the site enforces HTTPS and uses domain transfer protection. However, it lacks DNSSEC, security headers, and published security policies or incident response contacts. No privacy or cookie policies are present, which is a compliance gap. The analytics setup respects privacy by disabling cookies. No vulnerabilities or suspicious content were detected, and no WAF or blocking mechanisms interfere with access. Overall, rokka.io presents a trustworthy and professional service with strong business credibility and technical implementation. The main risks relate to privacy compliance and security policy transparency. Strategic improvements in these areas would enhance trust and regulatory adherence.

W

webways AG

employerboard.ch

63

sozjobs.ch is a leading Swiss job portal specializing in social and healthcare professions, operated by webways AG. The platform offers job listings, employer portraits, and recruitment tools tailored to the niche market of social and healthcare employment in Switzerland. The website demonstrates a professional design with consistent branding and clear navigation, targeting both job seekers and employers in the sector. Technically, the site employs modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager, with a custom CMS and good mobile optimization. Security posture is solid with HTTPS enforced and error monitoring via Sentry, though explicit security headers and incident response policies are absent. Privacy compliance is well addressed through comprehensive privacy and cookie policies with user consent mechanisms. Overall, the site is trustworthy, safe, and professionally maintained, with a strong market position in its niche.

B

B. Braun Australia Pty Ltd

bbraun.com.au

68

B. Braun Australia Pty Ltd operates a comprehensive and professionally designed website showcasing its position as a leading medical technology company. The company provides a wide range of medical equipment and healthcare solutions targeting healthcare professionals, patients, and industry partners. The website reflects a global enterprise with a strong brand presence and multiple country-specific sites. Technically, the site is built on Adobe Experience Manager with modern JavaScript libraries and Adobe marketing tools, delivering a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS, CSRF protection, and secure login mechanisms, although explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the domain and website content indicate a legitimate and trustworthy enterprise healthcare business.

B

B. Braun Melsungen AG

bbraun.ph

71

B. Braun Philippines operates as a regional presence of the global medical technology company B. Braun Melsungen AG, offering a broad portfolio of medical equipment and healthcare solutions. The website targets healthcare professionals, patients, and partners, positioning itself as a trusted leader in healthcare innovation and patient care. The business model focuses on manufacturing and distributing medical devices and providing healthcare services such as renal care centers. The site reflects an enterprise-level organization with consistent branding and a comprehensive content offering.

N

networkteam GmbH

networkteam.com

67

networkteam GmbH is a well-established German digital agency specializing in custom web and mobile application development, content management systems, e-commerce, and digital transformation services. Founded in 1997, the company has a strong market presence with a diverse client portfolio and a focus on sustainable, future-proof digital solutions. Their website reflects a professional and modern digital maturity with a robust technical infrastructure leveraging React, Next.js, Kubernetes, and other contemporary technologies. Security posture is solid with HTTPS enforcement and security headers, though there is room for improvement in DNS security and explicit security policy disclosures. Privacy compliance is good with comprehensive privacy and cookie policies and consent mechanisms in place. Overall, networkteam GmbH demonstrates high business credibility and trustworthiness.

J

Jürgen Auer

server-daten.de

69

Server-Daten, operated by Jürgen Auer, is a small German technology business specializing in providing relational web database solutions for rent. The company offers services including database setup, encrypted file uploads, and a UserAgent LinkCheck tool. The website is primarily in German and targets businesses or individuals seeking secure web database hosting and related services. The business has been established since 2005, indicating a mature presence in its niche market. Technically, the website uses standard HTML, CSS, and JavaScript with no detected CMS or advanced frameworks. Hosting is provided via INWX nameservers, a reputable German domain registrar and hosting provider. The site performance is moderate with basic mobile optimization and accessibility features. SEO is basic but sufficient for the site's scope. No advanced analytics or tracking technologies are detected, reflecting a privacy-conscious approach. From a security perspective, the site uses HTTPS (implied by domain and standard practice though SSL details are not explicitly provided) and implements a cookie consent banner, indicating GDPR awareness. However, no explicit security headers or incident response policies are found. The WHOIS data is consistent with the business claims, showing no privacy protection and a domain age that aligns with the company's history. No vulnerabilities or suspicious patterns are detected in the content or technical setup. Overall, Server-Daten presents a trustworthy, niche-focused web service with a solid business foundation and basic but adequate technical and security measures. Strategic improvements in security headers, incident response documentation, and enhanced mobile optimization could further strengthen its posture.

D

Chatbot App - Conversation marketing

dfktv2.com

60

The website www.dfktv2.com presents itself as a chatbot application focused on conversation marketing and business automation without coding. The content is minimal but indicates a technology-oriented service aimed at businesses seeking automation solutions. The technical infrastructure is basic, utilizing standard web technologies such as HTML5, CSS3, JavaScript, and external font and CDN services from Bunny Fonts and Bunny CDN. The site appears mobile-optimized with moderate performance but lacks advanced frameworks or CMS identification. Security posture is weak due to the absence of visible security headers, privacy policies, and incident response information. The domain WHOIS data is unavailable, raising concerns about domain legitimacy and trustworthiness. Overall, the site lacks critical compliance and contact information, which impacts its credibility and security standing.

D

DUXIANA

duxiana.al

73

DUXIANA is a premium Albanian retailer specializing in beds and furniture, with a heritage dating back to 1926. The company targets consumers seeking high-quality, innovative, and sustainable sleep solutions, as well as hospitality partners such as hotels. The website reflects a mature digital presence with good design, clear navigation, and multilingual support. Technically, the site uses modern technologies including Google Tag Manager, Azure Application Insights, and a cookie consent management system, hosted likely on Microsoft Azure. Security posture is strong with HTTPS, security headers, and secure cookie practices, though explicit security policies and incident response contacts are not published. Privacy compliance is partial, with cookie consent implemented but no visible privacy policy or terms of service pages. Overall, the site is professional and trustworthy but could improve transparency and compliance documentation.

The analyzed page is an access denied message in Swedish indicating that the user has been denied access to a directory. The content is minimal and primarily provides instructions related to cookie settings and session inactivity. There is no business description, contact information, or policy documents present. The domain is registered with a Swedish registrar since 2000, indicating a long-standing presence, but the page content does not reflect an active business site. The technical infrastructure appears minimal with basic JavaScript and DNS hosting by DNS Made Easy. No security headers or HTTPS status were identified from the data provided. The security posture is weak due to lack of HTTPS and absence of security best practices. Overall, the site is not currently providing meaningful business or compliance information and appears to be a restricted access page rather than a public-facing website.

Juristfirman De juris est AB is a small Swedish legal services firm specializing in business and private law, tech law, and dispute resolution. Founded in 2017, the firm offers expert legal advice on accessibility law, professional web and software development, co-ownership and forced sales, and personal assistance and legal aid. The website is professionally designed with comprehensive content including specialist areas and detailed legal articles referencing recent case law. The firm targets Swedish businesses and private individuals requiring specialized legal services. Technically, the website uses modern HTML5, CSS3, JavaScript, and Font Awesome icons, hosted by One.com, with good mobile responsiveness and SEO optimization. Security posture is moderate with HTTPS implied but lacks explicit security headers and DNSSEC is not enabled. Privacy and cookie policies are missing, representing compliance gaps. Contact information is clearly presented including phone, email, physical address, and LinkedIn profile. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

The website avd-desk.com/login serves as a login portal for a service named 'AvD Desk'. The domain is newly registered in 2023 and uses Cloudflare for DNS hosting. The site employs modern frontend technologies such as Vue.js and integrates Google Maps API, indicating a moderate level of technical maturity. However, the site lacks publicly accessible business information, privacy policies, cookie consent mechanisms, and terms of service, which limits transparency and compliance. Security posture is basic with HTTPS enabled but no DNSSEC or security headers detected. There are no signs of adult or suspicious content, and the site appears safe for general audiences. Overall, the site is functional but lacks comprehensive compliance and security best practices.

C

Classic Car Analytics GmbH

classic-analytics.de

54

Classic Car Analytics GmbH operates a professional online platform specializing in classic car valuations, market analysis, and connecting customers with a large network of over 1,100 appraisal partners across Europe. The company holds a strong market position in Germany as the largest classic car appraisal network, providing services accepted by all classic car insurance companies. Their offerings include online and in-person valuations, auction results, insurance consulting, and expert appraisals. The website is well-designed, mobile-optimized, and provides clear navigation and comprehensive content tailored to classic car enthusiasts, experts, and fans. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Tag Manager for analytics. It employs HTTPS with strong SSL configuration and includes CSRF tokens in forms, indicating attention to security best practices. However, some security headers are missing, and no explicit security or incident response policies are published. Privacy compliance is well addressed with a clear privacy policy, cookie consent modal, and GDPR indicators. The security posture is solid with no detected vulnerabilities or WAF blocking. WHOIS data confirms domain legitimacy and consistency with the business history. Overall, the site presents a trustworthy and professional digital presence with moderate to high technical maturity. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and adding a vulnerability disclosure policy to further improve trust and compliance.

L

Lebenshilfe Gießen e.V.

schlepperspendenaktion.de

46

The Schlepperspendenaktion website represents a non-profit fundraising campaign operated by Lebenshilfe Gießen e.V., a German social aid organization. The campaign incentivizes donations by offering historic tractors as prizes, targeting classic tractor enthusiasts and donors interested in charitable causes. The website is professionally designed with clear navigation, consistent branding, and relevant content that supports its mission. It maintains a good level of trust through notarized prize draws and transparent contact information. Technically, the site is built on TYPO3 CMS, leveraging modern JavaScript libraries and a cookie consent mechanism via Usercentrics. The infrastructure is hosted with a reputable DNS provider and uses HTTPS with good SSL configuration. Mobile optimization and SEO practices are well implemented, though accessibility could be improved. No major technical debts or vulnerabilities are evident. From a security perspective, the site enforces HTTPS and uses cookie consent, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a clear privacy policy and cookie consent mechanism. Business credibility is strong due to transparent contact details and trust signals. Overall, the website presents a low-risk profile with solid business credibility and technical implementation. Strategic improvements in security headers and incident response transparency would enhance its security posture and trustworthiness.

O

Ogier

ogier.com

77

Ogier is an international legal and professional services firm specializing in offshore law, corporate, fiduciary, and consulting services. The website positions the company as a top-tier provider with a global reach including Asia, the Caribbean, Europe, and the Middle East. The digital presence reflects a professional and modern approach, utilizing contemporary JavaScript technologies and tracking tools such as Google Tag Manager and LinkedIn Insight Tag. However, the absence of explicit privacy and cookie policies, as well as the lack of WHOIS data, slightly detracts from the overall trustworthiness. Security measures such as HTTPS and cache control headers are in place, but additional security headers and incident response information are missing. Overall, the website is well-designed and functional, serving its target audience effectively.

C

Coolstuff

coolstuff.se

66

Coolstuff is a well-established Swedish e-commerce retailer specializing in unique and personalized gifts and gadgets. The website targets consumers primarily in Sweden and other Nordic countries, offering a wide range of products including personalized apparel, advent calendars, and gift boxes. The company operates multiple country-specific domains, indicating a broad regional presence. Technically, the website is built using modern frameworks such as SvelteKit, ensuring fast performance and excellent mobile optimization. The use of Google Tag Manager indicates active marketing and analytics efforts. Security posture is generally good with HTTPS enabled and cookie consent implemented, but the absence of security headers and explicit privacy and terms pages suggests room for improvement. WHOIS data for the www subdomain is not available, but this is likely due to querying the subdomain rather than the root domain. Overall, the site presents a professional and trustworthy front with moderate risk due to minor compliance and security gaps.

WebsiteDemos.net is a technology-focused website providing a comprehensive archive of website templates and demos, primarily targeting web designers, developers, and businesses seeking ready-made website designs. The site leverages WordPress with the Astra theme and several advanced Gutenberg plugins, indicating a modern and flexible technical infrastructure. The presence of Google Analytics, Google Tag Manager, and Facebook Pixel shows an emphasis on user behavior tracking and marketing analytics. Security posture is adequate with HTTPS enabled and domain registration protections in place, but lacks advanced DNS security features like DNSSEC and visible security headers. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. Overall, the site is professionally designed with good SEO and mobile optimization but would benefit from enhanced privacy and security disclosures.

A

Astra

wpastra.com

72

Astra is a well-established WordPress theme provider founded in 2016, offering a fast, lightweight, and customizable theme widely used by WordPress users globally. The website demonstrates a mature digital presence with extensive use of modern web technologies including WordPress CMS, Google Tag Manager, Facebook Pixel, and Microsoft Clarity for analytics and marketing. The domain is registered with Cloudflare and shows a long-term registration, indicating business stability. However, the website lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security practices are moderate with no DNSSEC enabled and no explicit security headers detected in the HTML content. Overall, Astra presents a professional and trustworthy business with room for improvement in privacy and security transparency.

O

OWIBA AG

iba.ch

69

OWIBA AG operates the website iba.ch, the largest B2B office supplies distributor in Switzerland, offering over 13,000 products with next-day delivery and professional consulting services. The company targets business customers with a comprehensive e-commerce platform featuring a broad product catalog and loyalty programs. Technically, the website employs modern JavaScript libraries, Google Tag Manager, and Dynamic Yield for personalization and analytics, with good mobile optimization and SEO practices. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though a dedicated security policy and incident response information are absent. Privacy compliance is robust with clear cookie consent and GDPR-aligned privacy policies. Overall, the site demonstrates high professionalism, trustworthiness, and market credibility.

W

webways AG

spitexjobs.ch

69

spitexjobs.ch is a specialized online job portal dedicated to the Spitex healthcare sector in Switzerland, connecting job seekers with Spitex organizations. The platform offers comprehensive job listings, employer profiles, and advanced search and filtering capabilities tailored to healthcare roles such as ambulatory care and specialized nursing. The website is professionally designed, mobile-optimized, and provides a seamless user experience with clear navigation and relevant content for its target audience. Technically, the site employs modern JavaScript frameworks, integrates analytics via Matomo and Google Tag Manager, and uses Sentry for error monitoring, reflecting a mature digital infrastructure. Security is robust with HTTPS enforced, appropriate security headers, and privacy compliance including GDPR-aligned privacy and cookie policies with user consent mechanisms. No critical vulnerabilities or suspicious content were detected, and WHOIS data confirms the domain's legitimacy and consistency with the business profile. Overall, the site demonstrates a strong security posture, good privacy practices, and a credible business presence in the Swiss healthcare job market.

I

IONOS SE

website-editor.net

69

IONOS SE is a large, established German technology company specializing in internet infrastructure services including domain registration, web hosting, cloud solutions, email and office services, and e-commerce platforms. The company targets both business and individual customers, offering a broad portfolio of digital services. The website demonstrates a high level of professionalism with excellent design, clear navigation, and mobile optimization, reflecting a mature digital presence. Technically, the website is built using modern frameworks such as Next.js and React, with a well-structured tech stack and fast performance. The use of multiple internal and external scripts for analytics and A/B testing indicates a data-driven approach to user experience optimization. However, some security best practices such as explicit security headers and vulnerability disclosure mechanisms are not evident. From a security perspective, the site uses HTTPS with excellent SSL configuration, but lacks visible security headers and does not provide explicit incident response or vulnerability disclosure information. Privacy compliance is limited on the analyzed page, with no clear privacy or cookie policies detected, which could be improved to enhance user trust and regulatory compliance. Overall, the website is trustworthy and professionally managed, with a strong business credibility and technical foundation. Strategic improvements in privacy transparency and security header implementation would further strengthen its security posture and compliance standing.

E

Energie Wasser Bern (ewb)

ausbau-fernwaerme.be

45

Energie Wasser Bern (ewb) operates a municipal district heating network in Bern, focusing on expanding sustainable and climate-friendly heat supply using waste heat, wood, and environmental heat sources. The website presents detailed information about the phased expansion of the Fernwärme network in various city districts, targeting residents and businesses interested in sustainable energy solutions. Technically, the site is built on Cmsbox CMS, uses SVG for interactive maps, and integrates Google reCAPTCHA and Matomo analytics for security and user tracking. Security posture is generally good with HTTPS enforced and bot protection, but lacks explicit security headers and incident response contacts. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. WHOIS data is restricted by the registry, limiting domain transparency, but the website content and branding strongly indicate legitimacy as a municipal energy provider. Overall, the site is professional, informative, and well-structured, supporting ewb's role as a key regional energy supplier.

P

PubNub Inc.

pubnub.com

79

PubNub Inc. operates a leading real-time developer platform that enables businesses and developers to build, manage, and optimize interactive applications at scale. The company offers a comprehensive suite of real-time APIs and services, including messaging, presence, chat, analytics, and push notifications, serving a broad range of industries and use cases. With a market position as a top provider in the real-time communication space, PubNub targets enterprises and developers requiring scalable, low-latency infrastructure. Technically, the website leverages modern web technologies such as Next.js and React, supported by a robust CMS (Builder.io) and integrates industry-standard tools for cookie consent and analytics. The platform demonstrates excellent performance, mobile optimization, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, PubNub maintains a strong posture with HTTPS enforcement, multiple security headers, and compliance with major frameworks including SOC2, HIPAA, GDPR, CCPA, and ISO 27001. The presence of a bug bounty program and comprehensive privacy and cookie policies further reinforce their commitment to security and privacy. No critical vulnerabilities or suspicious patterns were detected. Overall, PubNub presents a low-risk profile with a professional, trustworthy online presence. Recommendations include publishing explicit incident response contacts and adopting a security.txt file to enhance vulnerability disclosure transparency.

S

Statista

statista.com

78

Statista operates as a leading statistics portal providing extensive market data, consumer survey results, and industry studies aggregated from over 22,500 sources. The platform targets business professionals, researchers, marketers, and academics seeking reliable and comprehensive statistical information. Its business model centers on subscription and data licensing services, positioning it as a key player in the media and business intelligence sector. The website's content quality and branding are excellent, reflecting a mature and professional digital presence.

O

Ookla, LLC

ookla.com

73

Ookla, LLC is a leading technology company specializing in network intelligence and connectivity insights. The company operates globally with a strong market position, offering a suite of products and services including Speedtest, Downdetector, Ekahau, and RootMetrics. Their business model focuses on providing data-driven solutions to consumers, operators, businesses, governments, and non-profits to optimize network performance and enhance digital experiences. The website reflects a mature digital presence with excellent content quality and consistent branding. Technically, the website leverages modern web technologies such as Eleventy for static site generation, integrates multiple analytics and marketing tools including HubSpot and LinkedIn Insight, and employs best practices for performance and mobile optimization. The site is well-structured with comprehensive metadata and SEO optimizations. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and a public security policy or vulnerability disclosure page. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, which reduces transparency but is likely due to query limitations rather than malicious intent. Overall, Ookla's website demonstrates a high level of professionalism, security, and compliance, supporting its reputation as a trusted provider of network intelligence solutions.

A

Algolia

algolia.com

77

Algolia is a leading enterprise technology company specializing in AI-powered search and discovery infrastructure. Their platform enables enterprises and developers to deliver fast, relevant, and personalized search experiences. The company is positioned strongly in the technology sector with a comprehensive suite of AI search, recommendations, personalization, and analytics services. Their website reflects a mature digital presence with professional design, clear navigation, and extensive use of modern analytics and marketing tools. Privacy and cookie policies are comprehensive and GDPR compliant, demonstrating a commitment to user data protection. However, the absence of WHOIS registration details reduces transparency, though the overall brand presence and external links support legitimacy. Security posture is strong with HTTPS, security headers, and secure consent mechanisms, but the lack of a public security policy or vulnerability disclosure page suggests room for improvement.

E

Environmental Systems Research Institute, Inc.

esri.com

82

Esri is a leading enterprise GIS software provider specializing in mapping and spatial analytics technology for business and government sectors. Their website demonstrates a mature digital presence with comprehensive content, professional design, and strong branding consistency. The company offers a broad range of GIS products and developer tools, positioning itself as a market leader in geospatial technology. Technically, the site leverages modern frameworks such as Adobe Experience Manager and Calcite Components, integrating advanced marketing and analytics tools including Adobe Analytics, Marketo, and Pardot. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and vulnerability disclosures are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a high level of professionalism and trustworthiness, though the lack of WHOIS transparency slightly impacts domain trust assessment.

The website organica.com is currently a parked domain managed by GoDaddy.com, LLC, with no active business content or services presented. The page primarily serves as a placeholder to offer the domain for sale or acquisition. The business model is domain parking and resale, targeting domain investors or buyers. The site includes minimal branding and a Trustpilot widget as a trust signal but lacks substantive content or contact information. Technically, the site uses basic JavaScript, CSS, and third-party widgets such as Trustpilot and Google Adsense. It is hosted by GoDaddy and uses their parking infrastructure. The site shows basic mobile optimization and moderate performance but lacks advanced SEO or accessibility features. No CMS or complex frameworks are detected. From a security perspective, the site does not present HTTPS details in the provided content, lacks security headers, and DNSSEC is not enabled on the domain. No security policies, incident response contacts, or certifications are visible. The site does not collect user data or have forms, reducing attack surface but also limiting trust signals. Privacy and cookie policies are present but basic. Overall, the site poses low risk but also low business credibility due to lack of active content and contact information. Recommendations include enabling DNSSEC, improving security headers and HTTPS configuration, and providing clearer privacy and security policies to enhance trust and compliance.

M

Meta

facebook.se

77

The website is the Swedish localized login portal for Facebook, a leading social networking platform owned by Meta Platforms, Inc. It serves as a gateway for users in Sweden to access Facebook's services, including social networking, messaging, and video content. The site reflects Meta's strong market position as a global technology leader with a comprehensive suite of social media products. The business model centers on user engagement and advertising revenue, targeting a broad general audience. The website's content is professionally presented, with consistent branding and clear navigation tailored for Swedish users. From a technical perspective, the site employs modern web technologies such as React and BigPipe for efficient content delivery and dynamic user experience. The infrastructure is hosted on Meta's own robust platform, ensuring high performance and availability. The site is optimized for mobile devices and accessibility, with good SEO practices and fast loading times. Security posture is strong, with HTTPS enforced, secure login forms, and implied security headers. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including GDPR adherence. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly visible on this page. Overall, the website is trustworthy, professionally maintained, and aligned with industry best practices. The domain is a subdomain of facebook.com, a well-established and legitimate domain owned by Meta. No WAF or blocking mechanisms interfere with content access, allowing full analysis. Strategic recommendations include enhancing public visibility of security policies and incident response contacts to further strengthen user trust and compliance transparency.

D

domainname.de

fuelish.de

58

The website is a professional domain brokerage landing page offering the domain fuelish.de for sale. It emphasizes secure payment processing, escrow transaction handling, and fast domain transfer services. The platform targets individuals and businesses seeking premium domains, positioning itself as a trusted intermediary with verified and premium domain badges. Technically, the site uses modern web technologies including Bootstrap and Google reCAPTCHA to ensure usability and security. The security posture is solid with HTTPS and spam protection, though some security headers are not explicitly detected. Privacy compliance is supported by clear links to privacy and terms policies, though no cookie consent mechanism is present. Overall, the site is trustworthy and professionally maintained, with a moderate to good technical and security maturity.

The Deutscher Oldtimer Club operates a membership platform focused on classic and vintage car enthusiasts in Germany, offering exclusive partner discounts and services. The website presents a professional and consistent brand image with good content quality and clear navigation. Technically, it uses LivingLogic CMS with standard web technologies and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, though security headers are missing and could be improved. The absence of WHOIS data limits domain trust verification but the site content and partner ecosystem support legitimacy. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism.

A

Allgemeiner Deutscher Automobil-Club e.V.

adac.de

71

The Allgemeiner Deutscher Automobil-Club (ADAC) is a well-established German automobile club providing a wide range of services including membership benefits, insurance products, travel planning, vehicle leasing, and roadside assistance. The website serves as a comprehensive portal for these services, targeting automobile owners, travelers, and insurance customers primarily in Germany. ADAC holds a strong market position as a leading mobility service provider with a large membership base and multiple subsidiaries supporting its operations. Technically, the website employs modern web technologies such as React and Webpack, with a focus on performance, accessibility, and mobile optimization. The use of Kameleoon indicates active engagement in personalization and A/B testing to enhance user experience. Hosting appears to be managed by a reputable provider, and the site uses HTTPS with strong security headers, reflecting a mature digital infrastructure. From a security perspective, ADAC demonstrates good practices including HTTPS enforcement, security headers, and secure form implementations. However, there is no explicit public vulnerability disclosure policy or incident response contact, which could be improved to enhance transparency and readiness. Privacy compliance is strong with comprehensive privacy and cookie policies aligned with GDPR requirements. Overall, the website is professional, trustworthy, and secure, supporting ADAC's business credibility and user trust. Strategic recommendations include publishing a vulnerability disclosure policy, enhancing incident response transparency, and continuous security audits of third-party scripts to maintain and improve security posture.

Oldtimer Youngtimer App is a German-based niche website dedicated to classic and vintage vehicles, providing a comprehensive database of museums, workshops, dealers, and events related to Oldtimer and Youngtimer vehicles. The site operates on a free model supported by partner advertising and sponsorships, targeting enthusiasts and the general public interested in classic automobiles. The website is built on WordPress CMS with a moderate technical infrastructure including common plugins and Google Analytics for tracking. The content is well-structured, primarily in German, and regularly updated with blog articles and news. Security posture is basic with HTTPS enabled and reCAPTCHA implemented, but lacks advanced security headers and cookie consent mechanisms. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration legitimacy despite the active and professional website presence. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and serves its niche well but would benefit from improved security and privacy compliance measures.

TÜV SÜD is a globally recognized enterprise specializing in testing, certification, auditing, and consulting services primarily for industries such as energy, manufacturing, transport, and real estate. The company positions itself as a trusted partner ensuring quality, safety, and sustainability for its clients. The website reflects this with professional design, comprehensive content, and clear navigation targeting business customers and industry professionals. Technically, the website employs a modern infrastructure including Sitecore CMS, Google Tag Manager, Adobe Tag Manager, and OneTrust for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital presence. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS, implements key security headers, and manages user consent effectively. No critical vulnerabilities or exposed sensitive data were detected. However, explicit incident response and vulnerability disclosure policies are not publicly available, which could be improved to enhance transparency and security posture. Overall, the website presents a low-risk profile with strong business credibility and compliance with privacy regulations. The absence of WHOIS data limits domain registration trust analysis but does not detract from the evident legitimacy and professionalism of the site.

G

GTÜ Gesellschaft für Technische Überwachung mbH

gtue.de

50

GTÜ Gesellschaft für Technische Überwachung mbH is a leading German organization specializing in official vehicle inspections, technical services, damage assessment, and certification. It holds a strong market position as the largest officially recognized supervisory organization for freelance automotive experts in Germany. The website is professionally designed, content-rich, and targets both private and business customers with a broad portfolio of services including vehicle inspections, technical services, building inspections, and certification. The company operates several subsidiaries and maintains a robust digital presence with social media and partner portals. Technically, the website uses modern technologies including Google Tag Manager and Usercentrics for consent management, hosted on AWS infrastructure, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and privacy compliance mechanisms in place, although some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a mature and trustworthy online presence.

TAK Akademie Deutsches Kraftfahrzeuggewerbe is a German company specializing in providing seminars, eLearning, and software solutions tailored for the automotive trade sector. The company offers a range of educational services including inhouse training, certification courses, and software tools to support automotive professionals. Their market position is supported by ISO 9001 certification and partnerships with recognized automotive trade organizations such as ZDK. The website is professionally designed with consistent branding and clear navigation, targeting automotive industry professionals in Germany. Technically, the website is built on a mature ASP.NET Web Forms platform with JavaScript and CSS for interactivity and styling. The site is mobile optimized and SEO friendly, though it lacks modern security headers and cookie consent mechanisms. Hosting details are limited but the domain uses German domain discount name servers. No analytics or tracking scripts were detected in the provided content, indicating a privacy-conscious approach or limited tracking. From a security perspective, the site uses HTTPS (assumed from URL), but no explicit security headers were found in the provided data. Forms use hidden validation tokens, which is a positive security practice. However, the absence of a cookie consent banner and incident response contact details are gaps in compliance and security transparency. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website presents a trustworthy and professional image with a solid business model focused on automotive education and software. Security posture is moderate with room for improvement in headers and compliance. The risk level is low, but implementing recommended security and privacy enhancements would strengthen trust and regulatory adherence.

M

Messe Friedrichshafen GmbH

klassikwelt-bodensee.de

62

KLASSIKWELT BODENSEE is a well-established classic mobility trade fair hosted by Messe Friedrichshafen GmbH in Germany. The website serves as an information portal for the event scheduled for June 12-14, 2026, targeting classic vehicle enthusiasts, exhibitors, and visitors. The business operates in the transportation sector, focusing on classic vehicles on land, water, and air, with a medium-sized organizational scale. The website demonstrates a professional design with consistent branding and good content quality, providing detailed event highlights and partner information. Technically, the site uses modern web technologies including Usercentrics for consent management and Google Tag Manager for analytics, with a responsive design optimized for mobile devices. Security posture is good with HTTPS enforced and basic security headers, though explicit security policies and vulnerability disclosures are absent. Privacy compliance is partially addressed via cookie consent but lacks a visible privacy policy or terms of service. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

The website www.virtualregatta.com is currently inaccessible due to a Cloudflare security challenge page employing Turnstile captcha verification. This prevents access to any meaningful content, metadata, or business information. The WHOIS lookup failed to return any registration data, indicating the domain may be unregistered, privacy-protected, or the WHOIS data is otherwise unavailable. Consequently, no business details, contact information, or compliance policies are accessible. The technical infrastructure includes Cloudflare's security services, but no further technology stack or CMS details can be discerned. The security posture cannot be fully evaluated due to the lack of accessible content and absence of security headers or policies. Overall, the site presents a low trust profile due to the lack of transparency and blocked content.

V

Vendée Globe

vendeeglobe.org

63

The Vendée Globe official website serves as a comprehensive digital platform for the globally recognized solo round-the-world sailing race. It offers detailed race information, skipper profiles, rankings, news updates, and promotes ocean preservation initiatives. The site targets sailing enthusiasts, media, and the general public with a professional and engaging user experience. Technically, the website is built on a modern stack including Drupal CMS, Alpine.js, and Swiper.js, with strong mobile optimization and accessibility features. Security posture is robust with HTTPS, security headers, and cookie consent mechanisms, though explicit privacy and terms of service pages are missing. WHOIS data is unavailable, which slightly impacts domain trust but the overall branding and external references strongly support legitimacy.

S

Selma.se

selma.se

50

Selma.se is a Swedish technology company specializing in AI-driven digital accessibility solutions designed to help businesses comply with the EU's accessibility directives effective from June 2025. Their offerings include automated website adaptation for users with disabilities, monthly accessibility scanning, and legal compliance consulting in partnership with recognized legal experts. The company targets medium to large enterprises in sectors affected by accessibility laws, providing a SaaS model with subscription-based pricing. Technically, the website is built on Webflow with integrations of multiple marketing and analytics tools including HubSpot, Google Analytics, Facebook Pixel, and LinkedIn Insight. Security posture is strong with HTTPS, Content Security Policy, and Cloudflare Turnstile captcha implemented, although explicit security policies and incident response information are not published. The absence of WHOIS data for the www.selma.se subdomain suggests it is an alias or subdomain of selma.se, which should be verified for full legitimacy. Overall, Selma.se presents a professional, trustworthy, and technically mature digital presence with good compliance and marketing practices.

O

Oracle Corporation

apiary.io

66

Apiary.io is a mature, enterprise-grade API design and documentation platform owned by Oracle Corporation. It serves developers and companies aiming to accelerate and control their API lifecycle through design, prototyping, documentation, and testing tools. The platform is well-positioned in the technology market with a strong backing from Oracle and trusted by major global brands. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site leverages modern JavaScript frameworks, CDN hosting via Akamai, and is optimized for performance and mobile use. Security posture is strong with HTTPS enforcement and domain registration protections, though explicit security policies and vulnerability disclosures are absent. Privacy compliance is well addressed with clear privacy and cookie policies and consent management integration. Overall, the site is trustworthy and professionally maintained, with minor recommendations to enhance security transparency and DNS security.

N

Nordea Bank Abp, filial i Sverige

nordea.se

66

Nordea Bank Abp, filial i Sverige, operates a comprehensive banking website serving private individuals and businesses in Sweden. The site offers a wide range of financial services including loans, savings, investments, pensions, insurance, and digital banking solutions. The website is professionally designed with clear navigation and extensive content tailored to its target audience. Nordea holds a strong market position as a leading Nordic financial institution with a large enterprise footprint. Technically, the website employs modern web technologies, including asynchronous JavaScript loading, SVG logos, and tag management via Tealium and Adobe Target, indicating a mature digital infrastructure. Security posture is robust with HTTPS enforcement, security headers, and no detected vulnerabilities. Privacy compliance is well addressed with comprehensive privacy and cookie policies, including consent mechanisms and GDPR adherence. Overall, the website reflects a high level of professionalism, trustworthiness, and technical maturity, although WHOIS data for the subdomain www.nordea.se is missing, likely due to querying the subdomain instead of the root domain. This does not detract from the legitimacy of the site given the strong brand and security indicators.

S

Storyspot

storyspot.se

55

Storyspot is a Swedish media platform focused on audio storytelling about places, positioning itself as the largest such platform in Sweden. The website is built on the Wix platform, leveraging modern JavaScript polyfills and performance optimizations to deliver a good user experience. The technical infrastructure is moderate in performance and mobile optimization, with basic SEO and accessibility features. Security posture shows some best practices in client-side scripting but lacks comprehensive HTTP security headers and formal privacy or cookie policies. The absence of WHOIS data for the www subdomain limits domain trust analysis, though the main domain may be registered separately. Overall, the site is accessible and safe, targeting a general audience with no adult content. Strategic improvements in privacy compliance, security headers, and contact transparency are recommended.

P

Startsidan - Presentjakt.se

presentjakt.se

52

Presentjakt.se is a Swedish gift recommendation website that provides curated gift ideas across various categories such as fun gadgets, experiences, summer gifts, and personalized presents. The platform primarily operates as an affiliate marketing site, linking users to partner retailers like coolstuff.se. The site targets Swedish consumers seeking gift inspiration and aims to offer a user-friendly browsing experience with categorized suggestions. Technically, the website is built using modern web technologies including React and Next.js, ensuring a responsive and interactive user interface. However, the site currently lacks visible privacy, cookie, or terms of service policies, which are important for compliance and user trust. Security headers and SSL configuration details are not evident from the provided data, indicating potential areas for improvement in security posture. The WHOIS data for the domain is unavailable or the domain is not registered as queried, which raises some concerns about domain legitimacy from a registration standpoint. Overall, the website presents a professional and clean interface with good content quality but requires enhancements in privacy compliance, security practices, and transparency to improve trust and regulatory adherence.

C

CookieTractor

cookietractor.eu

71

CookieTractor is a specialized European technology company offering a user-friendly, legally compliant cookie consent solution designed to meet GDPR and ePrivacy Directive requirements. The company emphasizes accessibility, supporting WCAG 2.2 AAA standards and the European Accessibility Act, targeting website owners who require robust cookie management with clear user consent mechanisms. Their business model is subscription-based with tiered pricing according to website size, serving a niche market with notable clients such as Volvo and UNICEF, enhancing their market credibility. Technically, the website employs modern web technologies including ASP.NET Core, jQuery, and integrates analytics tools like Google Analytics and Matomo. Hosting and CDN services are provided via Cloudflare, ensuring fast performance and global reach. The site is mobile-optimized and highly accessible, with a strong focus on user experience and compliance. However, explicit security headers are not detected, which could be improved to enhance security posture. From a security perspective, the site enforces HTTPS, uses anti-forgery tokens in forms, and implements cookie consent mechanisms that prevent non-essential cookies before user approval. Despite these strengths, the absence of a published security policy or vulnerability disclosure reduces transparency. The WHOIS data is missing or inaccessible, which raises concerns about domain registration legitimacy, though the website content and references suggest a legitimate business. Overall, CookieTractor presents a professional, trustworthy, and technically sound service with strong compliance and accessibility features. The main risk lies in the lack of visible domain registration data and some security header omissions. Strategic recommendations include publishing security policies, adding security headers, and verifying domain registration details to strengthen trust and compliance.

V

Vattenfall

nuon.com

74

Vattenfall is a major European energy company with a dedicated newsroom website providing news and press releases primarily for the Dutch market. The website demonstrates a professional digital presence with good design quality, mobile optimization, and compliance with GDPR and cookie consent regulations. The technical infrastructure includes modern JavaScript and CSS assets, integration with consent management platforms, and analytics tools such as Google Analytics and Piwik Pro. Security posture is solid with HTTPS enforced and consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. The absence of WHOIS data suggests privacy protection, which is justified for a large enterprise. Overall, the website is trustworthy and well-maintained, serving its corporate communication purpose effectively.

P

PlayStation FI

playstation.com

76

PlayStation FI is the official Finnish website for Sony Interactive Entertainment's PlayStation brand, offering comprehensive information and e-commerce capabilities for PlayStation consoles, games, accessories, and subscription services. The site targets gamers and PlayStation users in Finland, providing localized content and seamless access to the broader PlayStation ecosystem. The website demonstrates a mature digital infrastructure with modern web technologies, strong SEO, and mobile optimization, reflecting a high level of digital maturity. Security posture is robust with HTTPS, security headers, and privacy compliance, though explicit security policies and incident response contacts are not publicly detailed. Overall, the site presents a trustworthy and professional digital presence aligned with a global gaming leader.

M

MFFM SRLS

quickyweb.it

59

Quickyweb is a small Italian web agency specializing in custom digital solutions including professional website development, bespoke management software, AI-powered video and chatbot consultancy, SEO optimization, and eLearning platforms. The company positions itself as a technology innovator for SMEs and professionals seeking to enhance their online presence and digital workflows. The website is well-structured, professionally designed, and mobile-optimized, reflecting a solid digital maturity. The technical stack includes modern front-end frameworks and libraries such as Bootstrap, AOS, Swiper.js, and jQuery, supporting a responsive and interactive user experience. Security practices are acknowledged with references to GDPR and ISO 27001 compliance, and the contact form enforces privacy consent, though technical security headers and vulnerability disclosure mechanisms are absent. Overall, the site is accessible without WAF or blocking, indicating good operational stability. The domain registration data aligns with the business claims, supporting legitimacy and trustworthiness.