Security Directory

I

IT Exhibition

it-exhibition.com

67

IT Exhibition is an Italian association representing international trade fairs with a focus on promoting and protecting the competitiveness of Italian exhibitions and supporting the internationalization of Italian SMEs. The website is professionally designed using WordPress and Elementor, featuring modern web technologies and good SEO practices. The security posture is adequate with HTTPS enabled, but lacks some security headers and privacy compliance elements. The absence of WHOIS data raises concerns about domain legitimacy, though the website content and contact information suggest a legitimate business. Strategic recommendations include adding privacy and cookie policies, improving security headers, and verifying domain registration status.

P

Politecnico di Milano

polimi.it

68

Politecnico di Milano is Italy's largest scientific-technological university, established in 1863, offering a wide range of academic programs including undergraduate, graduate, and doctoral studies, alongside advanced research activities. The institution targets students, researchers, and academic staff, providing comprehensive campus services and sustainability initiatives. The website reflects a mature digital presence built on TYPO3 CMS with modern frontend technologies such as Bootstrap and Swiper.js, and integrates multiple analytics platforms including Google Analytics, Matomo, and Maze Analytics with privacy-conscious configurations. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms, although explicit privacy and security policies are not found in the analyzed content. WHOIS data confirms domain legitimacy and long-term ownership consistent with the institution's history.

S

Viele Hochschulen. Ein Ziel. Ihr Weiterkommen.

suedwissen.de

57

The website www.suedwissen.de serves as an educational platform focused on providing information about multiple universities and supporting educational advancement, primarily targeting students and prospective university attendees in Germany. The site features a modern technical infrastructure utilizing JavaScript frameworks such as Vue.js, with Cookiebot managing cookie consent and Matomo for analytics, hosted on bunny.net's infrastructure. While the site demonstrates good design quality and user experience with mobile optimization, it lacks explicit privacy policies, terms of service, and contact information, which are critical for compliance and user trust. Security posture is moderate, with no detected security headers or incident response policies, indicating room for improvement in security best practices. Overall, the site is safe for general audiences and does not contain adult or questionable content.

W

WInTO GmbH

gruenderservice-oberhavel.de

47

WInTO GmbH operates the Gründerservice Oberhavel website, providing comprehensive support and consulting services for business founders in the Oberhavel region of Germany. The company focuses on guiding entrepreneurs through orientation, planning, implementation, and consolidation phases of business establishment. The website serves as a regional government-related platform to foster a startup-friendly environment with clear contact points and event information. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, Font Awesome icons, and Swiper.js for UI components. Cookie consent is managed via Cookiebot, ensuring GDPR compliance, and user analytics are handled through Matomo with cookies disabled to enhance privacy. The site is mobile-optimized and presents a professional design with good navigation clarity. From a security perspective, the site uses HTTPS and integrates cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or suspicious elements were detected in the content or WHOIS data. The domain registration information is minimal but consistent with the business claims. Overall, the website is a trustworthy, professional resource for its target audience, with moderate technical sophistication and good privacy compliance. Strategic improvements in security headers, incident response transparency, and SEO could further enhance its posture and user trust.

E

ETHENEA Independent Investors S.A.

ethenea.link

69

ETHENEA Independent Investors S.A. operates as an independent asset management company specializing in multi-asset investment funds, targeting both private and professional investors primarily in Germany. The website presents a professional and well-structured digital presence, showcasing their key fund offerings such as Ethna Funds and HESPER FUND, along with ESG investment principles. The company positions itself as a strong, independent partner in asset management with a focus on capital preservation and growth across various risk profiles. Technically, the website leverages modern JavaScript libraries, cookie consent management tools, and Google Tag Manager for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent mechanisms, although explicit security headers and incident response information are not evident. The absence of WHOIS data reduces domain registration transparency but does not detract significantly from the overall legitimacy given the professional content and compliance indicators. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving contact information visibility to strengthen trust and compliance further.

L

Lange Nacht der Wissenschaften (LNDW)

langenachtderwissenschaften.de

49

Lange Nacht der Wissenschaften (LNDW) is a well-established science event organizer based in Berlin, Germany, with a 25-year history. The website serves as an information hub for the event, targeting science enthusiasts, visitors, media, and partners. It provides event details, news, partner information, and newsletter subscription services. The organization appears to be a medium-sized entity operating in the education and non-profit sectors, with a strong local presence and community engagement. Technically, the website is built on TYPO3 CMS with modern front-end technologies such as Bootstrap and Swiper.js, ensuring good mobile responsiveness and accessibility. The site uses Matomo analytics configured for privacy by disabling cookies, and it implements a cookie consent banner compliant with GDPR requirements. Performance is moderate, with no major technical issues detected. From a security perspective, the site enforces HTTPS and employs privacy-conscious analytics. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data aligns well with the website content, confirming legitimacy and consistent domain age. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with room for improvement in security policy transparency and security header implementation.

K

Klaus Tschira Stiftung gGmbH

klaus-tschira-stiftung.de

63

The Klaus Tschira Stiftung gGmbH is a well-established German non-profit foundation founded in 1995, focusing on promoting natural sciences, mathematics, and computer science through education, research, and science communication. The foundation targets a broad audience including children, students, educators, and researchers, offering both operational projects and funding opportunities. Their market position is strong within the German MINT education and research sector, supported by a professional and content-rich website. Technically, the site is built on WordPress with modern front-end technologies and uses Matomo analytics with GDPR-compliant consent mechanisms. Hosting is provided by INWX, a reputable German registrar and hosting provider. Security posture is good with HTTPS enforced and privacy-respecting analytics, though security headers are not explicitly detected and no incident response or vulnerability disclosure policies are published. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable digital presence for the foundation.

M

Museum am Dom / Diözese St. Pölten

museumamdom.at

61

Museum am Dom is a small, non-profit cultural institution affiliated with the Diocese of St. Pölten in Austria. It offers a variety of exhibitions focusing on Christian art and history, including annual and seasonal events. The website is built on the siteswift CMS platform and uses modern JavaScript libraries to provide a good user experience with mobile optimization and interactive galleries. Security-wise, the site implements cookie consent management and CSRF protection but lacks visible security headers and explicit privacy or terms of service pages. WHOIS data is unavailable, likely due to privacy protection, but the website's content and official affiliations support its legitimacy. Overall, the site is professional, trustworthy, and serves its target audience effectively.

G

GGG Wegweiser

ggg-wegweiser.ch

46

GGG Wegweiser is a non-profit organization based in Basel, Switzerland, providing comprehensive social advice and support services to residents of all ages and backgrounds. The website serves as an information hub offering guidance on social issues, assistance with document writing, and referrals to specialized services. It is affiliated with GGG Basel and partners with the social offers database sozialesbasel.ch to extend its reach. The organization emphasizes accessibility and personal support, offering free services to the community. Technically, the website is built on WordPress using Elementor and Yoast SEO plugins, ensuring a modern and SEO-optimized platform. It employs Google reCAPTCHA v3 for bot protection and uses standard web technologies such as jQuery and Swiper.js for interactive elements. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site uses HTTPS with good SSL configuration and includes reCAPTCHA for form protection. However, explicit security headers are not evident in the HTML content, and there is no visible security policy or incident response contact information. Privacy compliance is partially addressed with a privacy policy and terms of service, but no cookie consent mechanism was detected. Overall, the website presents a trustworthy and professional front for a local social service organization, with minor gaps in security and privacy compliance that could be improved to enhance user trust and regulatory adherence.

G

GGG Benevol

ggg-benevol.ch

54

GGG Benevol is a well-established non-profit competence center for volunteer work based in Basel, Switzerland, operating since 1992. The organization facilitates volunteer engagement by connecting volunteers with social projects and organizations in need. Their website clearly targets volunteers and organizations in Basel, offering services such as volunteer job listings, project information, and consultation. The site is professionally designed with consistent branding and provides multiple contact channels including email, phone, and social media. Technically, the website is built on Drupal CMS with modern JavaScript libraries and includes a newsletter subscription powered by Mailfino. The site is mobile-optimized and SEO-friendly, with good performance and accessibility features. Security-wise, HTTPS is enforced and no sensitive data is exposed. However, there is no published security policy or incident response information, and no cookie consent mechanism despite the absence of cookies, reflecting a privacy-conscious approach. Overall, the domain registration details align well with the website content and business claims, indicating high legitimacy and trustworthiness.

K

Kesselhaus Josephsohn

kesselhaus-josephsohn.ch

50

Kesselhaus Josephsohn is a small cultural institution based in Switzerland that operates as a museum, gallery, and exhibition space dedicated to the works of Hans Josephsohn. The website serves as a digital presence showcasing their exhibitions, artworks, and related events, targeting art enthusiasts and the general public interested in cultural activities. The business model revolves around art exhibition and gallery services, with a niche market position in the cultural sector. Technically, the website employs modern JavaScript frameworks such as Vue.js and uses lazy loading techniques for images to optimize performance. It integrates Matomo analytics for user tracking, indicating a moderate level of digital maturity with some privacy considerations. However, the site lacks comprehensive SEO and accessibility features and shows only basic mobile optimization. From a security perspective, the website is accessible without WAF or blocking mechanisms, but it lacks important security headers and does not display privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response channels are provided, limiting transparency and trust. The SSL configuration could not be verified from the provided data, which is a potential risk. Overall, the website is functional and professionally designed but requires improvements in security posture, privacy compliance, and contact transparency to enhance trustworthiness and regulatory adherence. Strategic recommendations include implementing security headers, publishing privacy and cookie policies, and providing clear contact information for users and security incidents.

S

STUDIO RR

studio-rr.info

46

STUDIO RR is a small creative studio specializing in various artistic disciplines including choreography, photography, installation art, publications, video, and research. The website is professionally designed using WordPress and supports multiple languages (German, English, French), targeting an audience interested in arts and culture. The technical infrastructure includes modern web technologies such as jQuery and Swiper.js, with a custom WebGL slideshow enhancing the user experience. The site is mobile optimized and presents a consistent brand image with custom fonts and styling. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit incident response contacts. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Overall, the website is trustworthy and suitable for its niche audience, though improvements in security and privacy transparency are recommended.

C

Cartoonmuseum Basel

cartoonmuseum.ch

62

The Cartoonmuseum Basel is a specialized cultural institution in Switzerland dedicated exclusively to the art of narrative drawing, including cartoons, comics, and graphic novels. It holds a unique market position as the only Swiss museum focused on this art form, offering exhibitions, educational programs, events, and a shop. The website reflects a professional and well-structured digital presence, targeting art enthusiasts, educational institutions, and the general public interested in narrative art. The museum operates as a non-profit entity with a clear focus on cultural education and community engagement. Technically, the website is built on modern frameworks such as Nuxt.js and Vue.js, with Craft CMS likely used as the content management system. It demonstrates good performance, mobile optimization, and accessibility. The site uses Google Analytics for visitor tracking and Campaign Monitor for newsletter management. Security best practices are observed, including HTTPS enforcement and secure form handling, although there is room for improvement in cookie consent mechanisms and explicit security policy disclosures. From a security standpoint, the site has a solid posture with appropriate security headers and no visible vulnerabilities or exposed sensitive data. The WHOIS data confirms the legitimacy of the domain registration, matching the museum's identity and location in Switzerland. No WAF or blocking mechanisms interfere with content accessibility, allowing full analysis. Privacy compliance is adequate with a comprehensive privacy policy, though cookie consent could be enhanced. Overall, the Cartoonmuseum Basel website is a trustworthy, professional, and well-maintained digital asset supporting the museum's mission. Strategic recommendations include implementing explicit cookie consent, publishing a security and incident response policy, and considering a vulnerability disclosure statement to further enhance trust and compliance.

S.P.A is a small artisanal wine producer and retailer located in Basel, Switzerland, offering handcrafted wines through an online shop and local presence. The business emphasizes honest and artisanal wine production with a community focus. The website uses modern web technologies including Craft CMS, Snipcart for e-commerce, and Google Tag Manager for analytics. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is moderate with HTTPS enforced and an age verification gate for alcohol sales, but lacks security headers and explicit privacy or cookie policies. No contact emails or phone numbers are explicitly provided, which may impact user trust and compliance. Overall, the website is legitimate and trustworthy but could improve privacy compliance and security practices.

G

GGG Basel

ggg-basel.ch

58

GGG Basel is a well-established non-profit organization based in Basel, Switzerland, with a history dating back to 1777. It operates as a key social, cultural, and educational institution supporting numerous organizations and projects in the region. The website reflects a mature digital presence built on TYPO3 CMS with modern frontend technologies and a focus on accessibility and user experience. While the site is professionally designed and content-rich, it lacks some privacy compliance features such as a cookie consent mechanism and explicit GDPR compliance statements. Security posture is moderate with HTTPS usage and no visible vulnerabilities, but missing security headers and incident response policies suggest room for improvement. Overall, the domain registration and website content align well, indicating a trustworthy and credible organization.

F

Feel Good Festival

feelgood-festival.at

49

Feel Good Festival is a well-established wellness and fitness event based in Vienna, Austria, focusing on yoga, fitness, workshops, and community engagement. Since its inception in 2017, it has attracted over 10,000 participants, positioning itself as a notable regional event in the wellness sector. The website reflects a professional and consistent brand image, targeting fitness and wellness enthusiasts with a clear business model centered on event organization and ticket sales. Technically, the site is built on WordPress with Elementor and integrates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The presence of a cookie consent mechanism demonstrates attention to privacy compliance, although explicit privacy and terms of service pages were not detected in the main content. Security posture is good with HTTPS enforced and no obvious vulnerabilities, but could be improved by adding standard security headers. WHOIS data is unavailable, likely due to privacy protection, which is common for event businesses but reduces transparency. Overall, the site is trustworthy and professionally maintained with moderate technical sophistication.

L

Literaturhaus Zürich

literaturhaus.ch

54

Literaturhaus Zürich is a well-established non-profit cultural institution based in Zürich, Switzerland, founded in 1834. It offers a variety of literary and cultural services including readings, book premieres, panel discussions, and library services. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to a general audience interested in literature and culture. The organization maintains active social media channels and provides clear contact information, enhancing its accessibility and community engagement. Technically, the site is built on WordPress with modern plugins such as Elementor and WooCommerce, ensuring a robust and flexible platform. Performance is moderate with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced, security headers present, and cookie consent mechanisms implemented, although no explicit security policy or incident response information is published. Overall, the website is trustworthy, compliant with GDPR, and professionally managed, supporting the organization's cultural mission effectively.

(

(HI)STORY FESTIVAL

hi-story.ch

50

The (HI)STORY FESTIVAL website represents a small-scale cultural event based in Bern, Switzerland, focusing on European memory and artistic/scientific collaboration. The site is built on WordPress with modern technologies such as jQuery and Swiper.js, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit privacy compliance mechanisms. Contact is primarily via a web form, with no direct email or phone contacts published. Overall, the site is trustworthy and professionally presented but could improve in privacy and security transparency.

Imagofilm is an independent film production company based in Lugano, Switzerland, with a history dating back to the 1980s. The company focuses on producing cinematic works including documentaries and cultural exhibitions, targeting a general audience interested in regional and artistic film content. Their market position is niche, serving the Swiss and Italian-speaking cultural sectors with a small-sized operation. The website reflects this with professional design, clear navigation, and relevant content highlighting recent films, news, and exhibitions. Technically, the website employs a custom PHP-based platform with common front-end libraries such as jQuery, Bootstrap, and Swiper.js. While the site is mobile-optimized and performs moderately well, it uses outdated JavaScript libraries that pose security risks. SEO and accessibility are basic but functional. No major CMS or hosting provider details are evident. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent mechanisms, which impacts GDPR compliance and overall security posture. The absence of incident response contacts and security policies further limits its security maturity. No critical vulnerabilities or exposed sensitive data were detected, but updating libraries and implementing security best practices is recommended. Overall, the website is trustworthy and professional but would benefit from enhanced security measures and privacy compliance improvements to reduce risk and increase user trust.

A

AME International

ame.eu

53

AME International is an Austrian healthcare company specializing in turnkey tertiary care hospitals, medical equipment packages, and digital healthcare solutions. The company positions itself as a provider of comprehensive healthcare infrastructure projects on a global scale, targeting healthcare providers and government agencies. The website reflects a professional and modern digital presence built on WordPress, featuring multimedia content and clear navigation. The technical infrastructure is well-implemented with modern libraries and performance optimizations. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the website demonstrates a mature digital footprint with strong compliance to GDPR and privacy standards, supporting the company's credibility in the healthcare sector.

L

Loxone Lighthouse

loxone-lighthouse.com

52

Loxone Lighthouse is a specialized participation company focused on corporate succession, offering responsible and sustainable business handover services primarily targeting entrepreneurs and business owners in Germany. The website presents a professional and consistent brand image, emphasizing trust and long-term development of acquired companies. Technically, the site is built on WordPress with modern plugins and tracking tools, providing a good user experience with mobile optimization and GDPR-compliant cookie management. Security posture is adequate with HTTPS and consent mechanisms, though lacking some advanced security headers and explicit incident response information. The absence of WHOIS registration data for the domain raises concerns about domain legitimacy, warranting further verification. Overall, the site is functional, trustworthy, and business-oriented but could improve transparency and security practices.

M

MAKAvA

makava.bio

57

MAKAvA is an Austrian small business specializing in organic, vegan, and fair trade iced tea products made from caffeinated Mate tea. The company emphasizes sustainability, regional sourcing, and climate neutrality, positioning itself as a niche player in the organic beverage retail market. The website is professionally designed with good content quality, clear navigation, and mobile optimization, targeting health-conscious consumers in Austria and German-speaking regions. Technically, the site runs on WordPress with modern plugins for SEO and GDPR compliance, and uses tracking pixels from Facebook, TikTok, and Google Analytics for marketing and analytics purposes. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers and published security policies could enhance trust. WHOIS data is privacy protected but consistent with a legitimate small business profile. Overall, the site is safe, trustworthy, and compliant with GDPR, with no critical security issues detected.

D

Diözese Sankt Pölten

dsp.at

66

The website www.dsp.at represents the official online presence of the Diocese of St. Pölten, a well-established Austrian Roman Catholic diocese founded in 1784. It serves as a comprehensive portal for religious services, community engagement, cultural events, and educational resources targeted primarily at parishioners and the broader Catholic community in Austria. The site features a modern design with clear navigation, mobile optimization, and a structured content hierarchy that supports user engagement and information dissemination. Technically, the site is built on the siteswift CMS platform and leverages popular JavaScript libraries such as jQuery and Swiper.js, ensuring a responsive and interactive user experience. Privacy and cookie consent mechanisms are robustly implemented, reflecting compliance with GDPR requirements. Security posture is strong with HTTPS enforced, CSRF protections, and security headers present, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates high business credibility and trustworthiness, supported by consistent WHOIS data and legitimate domain registration.

K

Katholische Kirche Steiermark

katholische-kirche-steiermark.at

68

Katholische Kirche Steiermark operates as the official Catholic Church diocese for the Steiermark region in Austria, providing religious, educational, and community services. The website serves as a comprehensive portal for news, events, parish information, and faith resources, targeting the general public and church members. The organization has a long history dating back to 1218, reflected in the domain's age and consistent WHOIS data. Technically, the site uses a modern CMS (siteswift), integrates various JavaScript libraries, and employs a consent management system to comply with privacy regulations. Security posture is strong with HTTPS, security headers, and CSRF protections in place, though explicit security policies and incident response information are not published. Overall, the site is professional, accessible, and trustworthy, with active social media engagement and good privacy compliance.

S

Solute GmbH

billiger.de

10

billiger.de is a well-established German price comparison platform operated by Solute GmbH, offering consumers a comprehensive service to find the best prices and deals across various product categories. The website is professionally designed with a focus on usability, mobile optimization, and accessibility, leveraging modern JavaScript technologies and Cloudflare infrastructure for performance and security. While the site employs standard security best practices such as HTTPS and secure login forms, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. No contact information for security incidents or data protection officers is provided, indicating room for improvement in transparency and compliance. Overall, the website is trustworthy and safe for general audiences, with a strong market position in the German e-commerce sector.

M

Meine Kirchenzeitung

meinekirchenzeitung.at

65

MeineKirchenzeitung.at is a German-language online media portal aggregating regional and local news from various Austrian church newspapers. It serves as a centralized hub linking to multiple diocesan publications, offering news, reports, opinions, event listings, and ePaper access primarily targeting German-speaking audiences interested in church and regional topics in Austria. The website demonstrates a consistent and professional brand presence with good content quality and clear navigation. Technically, it employs modern web technologies including Google Analytics, Google Tag Manager, Swiper.js, and Foundation CSS framework, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie banner aligned with GDPR requirements. However, WHOIS data is unavailable due to quota limits, limiting domain registration trust verification. Overall, the site is trustworthy, safe, and professionally managed, with room for technical and security enhancements.

E

ETHENEA Independent Investors S.A.

ethenea.com

66

ETHENEA Independent Investors S.A. operates as an independent asset management company specializing in multi-asset investment funds, targeting investors with various risk profiles. The company offers a range of funds including Ethna Funds, HESPER FUND, and other third-party funds, positioning itself as a strong and independent partner in the finance sector primarily serving the German market. The website content is professionally presented in German, with clear navigation and relevant investment information. Technically, the site uses modern JavaScript libraries, Umbraco CMS, and integrates cookie consent mechanisms compliant with GDPR. Security posture is moderate with HTTPS implied but lacks visible security headers and explicit incident response contacts. WHOIS data is unavailable, which raises some legitimacy concerns, but the website branding and content quality suggest a professional operation. Overall, the site is well-structured, privacy compliant, and trustworthy from a user perspective, though domain registration transparency is lacking.

A

Arbeiter-Samariter-Bund Österreichs

samariterbund.net

68

The Arbeiter-Samariter-Bund Österreichs is a well-established non-profit organization founded in 1927, providing a wide range of healthcare, emergency, social, and humanitarian services primarily in Austria with international outreach. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site is built on TYPO3 CMS with modern JavaScript frameworks and includes standard analytics and marketing tools. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and a dedicated security policy page are absent. The WHOIS data is unavailable, which limits domain registration trust verification, but the overall site and external references indicate legitimacy. Privacy compliance is well addressed with a detailed privacy policy and cookie management. Overall, the site is professional, trustworthy, and safe for general audiences.

F

Festival aufm Platz

festival-aufmplatz.de

45

Festival aufm Platz is a well-established cultural festival in Niedersachsen, Germany, offering free open-air literary and musical events supported by reputable foundations such as the VGH Stiftung and Niedersächsische Sparkassenstiftung. The website reflects a professional and accessible platform with good SEO and accessibility features, built on WordPress with modern plugins and frameworks. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious elements were detected. The site lacks explicit contact emails or phone numbers on the homepage, and no terms of service or security policies are published, which could be enhanced for transparency. Overall, the site is trustworthy, well-branded, and serves a general audience with safe content.

E

Erzdiözese Salzburg

rupertusblatt.at

59

The Rupertusblatt website serves as the official weekly newspaper for the Erzdiözese Salzburg, providing religious, cultural, and social news relevant to the Archdiocese and its community. It offers subscription services, e-paper access, and community engagement features. The site is well-branded and professionally maintained, reflecting its role as a trusted regional media outlet. Technically, the site uses a modern CMS (siteswift), integrates popular JavaScript libraries for UI and interactivity, and implements a cookie consent mechanism aligned with GDPR requirements. Security practices include CSRF token usage and consent management, though HTTP security headers and SSL configuration details are not explicitly visible. The absence of WHOIS data limits domain registration transparency but does not detract from the site's evident legitimacy and professional presentation. Overall, the site is a reliable, well-structured platform serving its target audience effectively.

D

Dieter Janecek

dieterjanecek.de

49

Dieter Janecek's website serves as the official online presence for a German Bundestag member representing Munich-West/Mitte. The site focuses on political communication, providing news, event information, and a newsletter subscription to engage constituents and supporters of the Green party. The business model centers on political representation and public outreach, targeting German citizens and political stakeholders. The website is well-branded, consistent, and offers multilingual support, enhancing accessibility for a broader audience. Technically, the site is built on WordPress using a modern tech stack including jQuery, Swiper.js, and several reputable plugins for events, forms, and multilingual content. The site demonstrates good mobile optimization and moderate performance, with a clean and professional design. SEO and accessibility are basic but adequate for the site's purpose. From a security perspective, the website enforces HTTPS and implements a GDPR-compliant cookie consent mechanism with granular user controls. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly present, and there is no dedicated security or incident response policy visible. The WHOIS data aligns with the website content, indicating a legitimate and consistent domain registration. Overall, the website presents a low-risk profile with good privacy compliance and a solid security posture for a political site. Strategic improvements could include adding security headers, incident response information, and enhanced accessibility features to further strengthen trust and compliance.

T

transform!europe

transform-network.net

47

transform!europe is a well-established European non-profit network focused on alternative political thinking and dialogue, primarily targeting left-wing activists, academics, and political groups. Founded in 2009, it offers a range of services including publications, events, webinars, podcasts, and a multilingual newsletter. The website is professionally designed with consistent branding and good content quality, supporting multiple languages and optimized for SEO and mobile devices. The technical infrastructure is based on WordPress with modern plugins and frameworks, hosted behind Cloudflare DNS services, and uses Google Analytics for user tracking. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced DNS security (DNSSEC) and security headers. No explicit security or incident response policies are published. Overall, the website is credible and trustworthy with a moderate security maturity level.

N

Startseite - NIEDERSACHSEN PACKT AN

niedersachsen-packt-an.de

44

The website 'niedersachsen-packt-an.de' appears to be a regional government or public initiative site focused on the Niedersachsen (Lower Saxony) region in Germany. The site uses WordPress CMS with performance optimization via WPRocket and includes custom fonts and scripts. The content is primarily in German and targets the general public in the region. The site design and navigation are good, with mobile optimization present. However, there is a lack of explicit privacy, cookie, and terms of service policies, as well as no visible contact information, which impacts compliance and trust. Security posture is minimal with no detected security headers or incident response contacts. The domain uses official Niedersachsen name servers, indicating legitimacy, but WHOIS data is limited. Overall, the site is functional and professional but could improve in privacy and security transparency.

W

WInTO GmbH

winto-gmbh.de

46

WInTO GmbH is a regional economic development company operating under the Landkreis Oberhavel in Germany. The company focuses on improving the economic structure of the region by providing comprehensive services including project development, business support, and networking. Their website reflects a professional and consistent brand image targeting businesses, investors, and regional partners. Technically, the site uses modern frontend technologies and privacy-conscious analytics with Matomo and Cookiebot. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are absent. Overall, the site is trustworthy and well-positioned as a government-related economic development entity.

F

Fydelia

fydelia.com

53

Fydelia is a UK-based technology company specializing in WiFi marketing solutions designed to enhance customer engagement and loyalty for venues. Their platform offers features such as digital scratch cards, integration with major WiFi hardware providers, and seamless connectivity with marketing and loyalty platforms like Airship, SevenRooms, and Klaviyo. The website demonstrates a professional and consistent brand presence, targeting businesses seeking to leverage WiFi as a marketing channel. Technically, the site is built on WordPress with modern integrations for analytics and advertising, though some scripts like Google Analytics are commented out. Security posture is solid with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is missing or privacy-protected, which slightly impacts trust but does not negate the legitimacy of the active business presence. Overall, the site is well-structured, mobile-optimized, and provides clear contact information, supporting a positive business credibility profile.

M

Main-Echo

main-echo.de

60

Main-Echo is a regional news media company serving Aschaffenburg and surrounding areas in Germany. The website provides news, event information, and local announcements targeting a general audience interested in regional developments. The business model is focused on regional news publishing with digital services including newsletters and push notifications. Technically, the site uses a modern CMS (fidion fCMS), integrates Google Tag Manager, Facebook SDK, and other analytics and advertising technologies, and is optimized for mobile devices with good SEO practices. Security posture is adequate with HTTPS enforced and consent management implemented, but lacks explicit security headers and published security policies. Privacy compliance is basic, with no explicit privacy or cookie policy pages found in the provided content. Overall, the site is professional, trustworthy, and aligned with its business purpose, but could improve transparency and security documentation.

M

Mirus

mirus.it

73

Mirus is an established Italian communication company with over 30 years of experience, specializing in integrated communication, consulting, events, digital branding, and strategic creativity. The company targets businesses seeking to strengthen their brand presence through multi-channel experiences. Their market position is supported by a portfolio of notable clients including government and regional entities, and a clear emphasis on certifications and ethical practices. Technically, the website is built on WordPress with Elementor and incorporates modern SEO and analytics tools, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though there is room for improvement in explicit security policies and incident response disclosures. Overall, the website presents a professional, trustworthy, and compliant digital presence suitable for its business domain.

K

Katholische Aktion St. Pölten

ka-stp.at

66

Katholische Aktion St. Pölten is a small non-profit religious community organization based in Austria, focused on faith, social justice, and community engagement within the Diocese of St. Pölten. The website serves as a hub for information about their activities, events, and publications, targeting local community members interested in active faith participation. The organization maintains a consistent brand presence with clear contact information and social media integration. Technically, the website is built on WordPress using Elementor and several modern plugins, ensuring good SEO, mobile optimization, and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Privacy compliance is strong with comprehensive policies and consent management. Overall, the site is trustworthy, professional, and well-maintained, supporting the organization's mission effectively.

C

Carlsen Verlag

carlsen.de

51

Carlsen Verlag is a well-established German publishing company specializing in children's books, young adult literature, manga, and comics. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to its target audience of children, young adults, educators, and fans of comics and manga. The company operates under the Bonnier Group umbrella and maintains subsidiaries such as Lappan Verlag and Carlsen K. Technically, the site is built on Drupal CMS, uses modern JavaScript libraries like Swiper.js, and integrates Google Tag Manager for analytics and marketing. The site is mobile-optimized and accessible, with good SEO practices.

D

Die Werkstatt Verlagsauslieferung GmbH

werkstatt-auslieferung.de

60

Die Werkstatt Verlagsauslieferung GmbH is a German logistics service provider specializing in distribution and warehousing for book publishers and nonbook companies across Europe. The company operates a large warehouse facility and offers comprehensive services including order processing, packaging, shipping, and marketing support. Their website reflects a medium-sized enterprise with a professional online presence and clear contact information. Technically, the site is built on the Contao CMS platform using modern JavaScript libraries such as jQuery and Swiper.js, with a moderate performance profile and good mobile optimization. Security posture is adequate with HTTPS and secure login forms, but lacks explicit security headers and incident response information. Privacy compliance is well addressed with a cookie consent mechanism and a GDPR-compliant privacy policy. Overall, the website is trustworthy and suitable for its B2B audience.

M

morehotlist

morehotlist.com

59

morehotlist is a German-language online magazine dedicated to independent books and publishers, providing news, event information, and award announcements. The website targets readers and book enthusiasts interested in the independent literary scene. It operates as a niche media outlet with a small but consistent presence in the German market. The business model revolves around content publishing and community engagement through social media and subscriptions. The site is hosted on WordPress.com, leveraging Jetpack and other WordPress plugins for functionality and performance.

Ö

Österreichische Bischofskonferenz

bischofskonferenz.at

62

The website www.bischofskonferenz.at serves as the official online presence of the Austrian Bishops' Conference, providing authoritative information, official statements, and publications related to the Catholic Church in Austria. It targets church members, interested citizens, and stakeholders seeking reliable religious and organizational content. The site is well-positioned as a governmental religious entity with a medium organizational size and a clear mission to inform and communicate church positions. Technically, the site is built on the siteswift CMS platform, leveraging modern JavaScript libraries such as jQuery, Swiper.js, and Klaro for cookie consent management. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Security-wise, HTTPS is enforced, CSRF protections are in place for forms, and a comprehensive cookie consent mechanism is implemented. However, explicit security headers and a published security policy or incident response contacts are absent, representing areas for improvement. Overall, the website exhibits a strong security posture with no visible vulnerabilities or suspicious content. Privacy compliance is well addressed through GDPR-aligned policies and consent mechanisms. The business credibility is high, supported by consistent branding, official domain registration, and clear contact information. The site is safe for general audiences with no adult or questionable content. Strategically, the site would benefit from publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance. Enhancing explicit security headers and accessibility features would further strengthen its technical and security posture.

K

Katholische Aktion Österreich

kaoe.at

59

The Katholische Aktion Österreich (KAÖ) is the official lay organization of the Catholic Church in Austria, focusing on social advocacy, education, and community engagement aligned with Christian values. It holds a prominent position as the largest Catholic lay organization in Austria, serving a broad audience including church members and the general public interested in Catholic social issues. The website provides comprehensive information, news, dossiers, and contact points for various dioceses and affiliated movements. Technically, the site uses a modern CMS (siteswift), jQuery, and other contemporary web technologies, with good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS, uses security headers, and implements cookie consent mechanisms, reflecting a mature security posture. No critical vulnerabilities or blocking mechanisms were detected, and privacy compliance is well addressed with a detailed privacy policy and cookie consent. Overall, the site is professional, trustworthy, and safe for general audiences.

J

JW Lees Brewery & Pubs

jwlees.co.uk

67

JW Lees Brewery & Pubs is a longstanding family-owned brewery and hospitality operator based in Manchester, UK, with a history dating back to 1828. The company manages a broad portfolio of pubs, inns, hotels, and a brewery producing award-winning beers. Their market position is strong regionally, serving customers across Greater Manchester, Cheshire, and North Wales. The website reflects a mature business with professional branding and comprehensive service offerings. Technically, the website leverages modern web technologies including Next.js and React, with integration of Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. However, some accessibility and privacy compliance aspects could be improved. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of security headers and explicit privacy and cookie policies are areas for enhancement. The WHOIS data for the queried domain is unavailable due to domain registration issues, which slightly impacts trustworthiness but does not detract from the business legitimacy as evidenced by the website content and social media presence. Overall, JW Lees presents a professional and credible online presence with room for improvement in privacy compliance and security best practices. Strategic recommendations include implementing comprehensive privacy and cookie policies, publishing security incident response information, and enhancing security headers to strengthen trust and compliance.

K

Katholische ArbeitnehmerInnen Bewegung Österreich

kaboe.at

60

The website www.kaboe.at represents the Katholische ArbeitnehmerInnen Bewegung Österreich, a well-established Austrian non-profit organization focused on social advocacy, labor rights, and Catholic community engagement. The site provides rich content including news, campaigns, publications, and event information, targeting workers and socially conscious audiences in Austria. Technically, the site is built on the siteswift CMS platform, leveraging modern JavaScript libraries such as jQuery, Swiper, and Magnific Popup, with a cookie consent mechanism implemented via Klaro. Security posture is good with HTTPS enforced and CSRF protections in place, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent. WHOIS data confirms the legitimacy and transparency of the organization, matching the website's claims. Overall, the site is professional, trustworthy, and well-maintained.

K

Kueez

kueezrtb.com

58

Kueez is a technology company specializing in providing innovative solutions for publishers and performance marketers. Their offerings include the Kueez Monetization Suite and an End2End Marketing Platform designed to drive profitable growth and scalable marketing performance. The company targets digital publishers and marketers seeking to optimize revenue and campaign effectiveness. The website demonstrates a professional and consistent brand presence with strong client logos and active content such as blogs and social media engagement. Technically, the site is built on Webflow with modern libraries and includes GDPR-compliant consent management, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and secure forms, though explicit security headers and published security policies are absent. WHOIS data for the subdomain is unavailable, which is typical for subdomains but slightly reduces trust. Overall, the site is well-designed, functional, and business credible with moderate to high trustworthiness.

B

Büchergilde Gutenberg

buechergilde.de

53

Büchergilde Gutenberg is a well-established German book community and cooperative founded in 1924, offering curated book subscription boxes, an online bookshop, and literary events. The website reflects a professional and consistent brand presence targeting German-speaking book lovers and literature enthusiasts. Technically, the site uses modern frameworks such as Next.js and React, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled but lacks visible security headers and formal privacy or cookie policies. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. Overall, the domain and website appear legitimate and consistent with the business history and sector.

M

Medienberatung NRW

bildungsmediathek-nrw.de

59

Bildungsmediathek NRW is a regional educational media platform serving schools and educators in North Rhine-Westphalia, Germany. It offers a wide range of educational media, apps, and materials to support teaching and learning. The platform is supported by governmental and regional bodies, ensuring a trusted and authoritative source of educational content. The website is professionally designed with clear navigation and a strong focus on accessibility and user experience. Technically, it employs modern web technologies including JavaScript frameworks and privacy-focused analytics, hosted likely on specialized educational cloud infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear privacy and terms policies, but lacks a cookie consent mechanism. Overall, the site is trustworthy, well-maintained, and serves its educational mission effectively.

K

Katholische Aktion der Erzdiözese Wien

ka-wien.at

60

Katholische Aktion der Erzdiözese Wien is a small non-profit Christian organization affiliated with the Archdiocese of Vienna. It focuses on societal and ecological engagement to foster a more just and peaceful world, targeting socially conscious Christians and community members in Austria. The website provides information on their activities, volunteer opportunities, spiritual programs, and newsletters to keep their audience engaged. Technically, the website is built on the siteswift-CMS platform, utilizing modern JavaScript libraries such as jQuery, Swiper, and Magnific Popup. It implements cookie consent management via Klaro and uses Google Analytics for visitor tracking. The site is mobile-optimized and accessible, though SEO optimization is basic. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but lacks advanced security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a clear privacy and cookie policy, including consent mechanisms. Overall, the website is professional, trustworthy, and well-maintained, with clear contact information and consistent branding. Strategic improvements could include enhanced security headers, publishing incident response contacts, and adding a vulnerability disclosure policy to strengthen security posture and trust.

K

Katholische Kirche Steiermark

graz-seckau.at

68

Katholische Kirche Steiermark operates as the official Catholic Diocese of Graz-Seckau, Austria, providing religious, educational, and community services. The website serves as a comprehensive portal for diocesan news, parish information, faith education, and community engagement. It holds a strong regional position as a trusted religious authority with a history dating back to 1218. Technically, the site is built on the siteswift-CMS platform, leveraging modern JavaScript libraries such as jQuery and Swiper.js, and integrates Google Maps and Matomo analytics. The site is mobile-optimized and accessible, with a clear navigation structure and professional design. Security posture is solid with HTTPS, security headers, and CSRF protections, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is well managed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is trustworthy, professional, and well-maintained, serving its target audience effectively.