Security Directory

F

Freiburger Orientierungsjahr

freiburger-orientierungsjahr.de

45

The Freiburger Orientierungsjahr website represents a small, regionally focused educational and faith-based orientation year program affiliated with the Archdiocese of Freiburg. It offers young adults a structured year for personal development, study and career orientation, and faith strengthening. The website is professionally designed with clear navigation and consistent branding, targeting primarily German-speaking youth seeking guidance after high school. Technically, the site uses Edith CMS, jQuery, Bootstrap, and Matomo analytics, hosted on professional infrastructure with HTTPS and cookie consent mechanisms in place. Security posture is solid with no critical vulnerabilities detected, though some security best practices like security headers and incident response policies could be improved. Overall, the site is trustworthy, GDPR compliant, and safe for general audiences.

V

VDI Technologiezentrum GmbH

vditz.de

41

VDI Technologiezentrum GmbH is a well-established innovation agency and project management organization with over 50 years of experience. The company focuses on implementing innovative funding programs in key future-oriented sectors such as digitalization, sustainability, mobility, security, education, and health. Positioned as a leading project carrier in Germany, VDI TZ serves a broad audience including businesses, research institutions, and public clients across Germany and Europe. Their business model revolves around fostering research, shaping innovations, organizing networks, and communicating scientific knowledge.

H

Hafen Hamburg Marketing e.V.

hafen-hamburg.de

10

Hafen Hamburg Marketing e.V. operates the official website for the Port of Hamburg, Germany's largest seaport and a major European logistics hub. The website provides comprehensive information on port operations, shipping schedules, events, statistics, and partner organizations. It targets logistics professionals, shipping companies, regional stakeholders, and tourists. The business model focuses on port marketing, promotion, and providing valuable data to stakeholders. The site is well-branded and professionally maintained, reflecting a large, established organization in the transportation sector. Technically, the website uses a modern tech stack including ProcessWire CMS, jQuery, MapLibre GL, and Matomo analytics. It is mobile-optimized and features good SEO practices. Hosting appears stable with nameservers linked to a known hosting provider. Performance is moderate with good user experience and navigation clarity. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security headers and a cookie consent mechanism, which are recommended for GDPR compliance. No incident response or security policy information is publicly available. Analytics usage is moderate with Matomo tracking. Overall, the website is trustworthy, professional, and content-rich with minor areas for security and privacy improvement. There are no signs of malicious or adult content, and the domain registration aligns with the business purpose. Strategic recommendations include enhancing privacy compliance, adding security headers, and publishing security policies to improve trust and compliance.

M

Medienanstalt Rheinland-Pfalz

wmk-rlp.de

51

The website 'Woche der Medienkompetenz Rheinland-Pfalz' is a government-backed initiative focused on promoting media literacy across the Rheinland-Pfalz region in Germany. It serves a broad audience including schools, families, sports clubs, and seniors, providing educational resources and campaigns to combat misinformation and enhance trustworthy information dissemination. The site is well-positioned within its regional market, supported by numerous reputable partners and government entities. Technically, the website is built on TYPO3 CMS, hosted by Schlund Technologies, and employs privacy-conscious analytics via Matomo with cookie-less tracking by default. The site demonstrates good mobile optimization, clear navigation, and professional design, reflecting a mature digital infrastructure suitable for its public service mission. From a security perspective, the website enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security policies or incident response contacts, and security headers are not visibly implemented. No vulnerabilities or sensitive data exposures were detected, indicating a solid security posture but with room for improvement in transparency and header security. Overall, the website is trustworthy, compliant with privacy regulations, and serves its educational purpose effectively. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security culture.

M

Medienanstalt Rheinland-Pfalz

oktv-rlp.de

58

The website www.oktv-rlp.de serves as the official platform for Offene Kanäle (Open Channels) in Rheinland-Pfalz, Germany, providing citizens with opportunities to create and broadcast local television content. Operated under the auspices of the Medienanstalt Rheinland-Pfalz, it supports community media engagement through volunteer associations and offers services such as live streaming, workshops, and content upload. The site is well-established with over 30 years of history and maintains a strong regional presence. Technically, the website is built on WordPress 6.8.3 with a custom theme and uses several plugins including Contact Form 7, Complianz GDPR for cookie management, FooBox for image lightbox, and Matomo for analytics. The site employs HTTPS with good SSL configuration and uses hCaptcha for form protection, reflecting a moderate to good digital maturity. Mobile optimization is basic but functional, and SEO practices are adequately implemented. From a security perspective, the site enforces HTTPS and cookie consent mechanisms, uses encrypted email addresses to reduce scraping, and integrates hCaptcha to mitigate spam. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, and there is no published security.txt or vulnerability disclosure policy. The overall security posture is moderate with room for improvement in header implementation and incident response transparency. Overall, the website is trustworthy, compliant with GDPR, and professionally maintained. It effectively serves its community media mission with clear contact information and transparent policies. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving mobile and accessibility features to further strengthen its security and user experience.

S

Stiftung MKFS

mkfs.de

50

The MedienKompetenz Forum Südwest (MKFS) is a German non-profit educational foundation focused on promoting media literacy, especially in digital and social media contexts. With over 25 years of experience, MKFS provides educational projects, free materials, and workshops targeting youth, educators, and media-interested individuals primarily in the Southwest Germany region. The website reflects a well-established organization with consistent branding and trusted partnerships with regional media authorities. Technically, the site is built on WordPress, uses Matomo for privacy-conscious analytics, and implements GDPR-compliant cookie consent mechanisms. Security posture is good with HTTPS and cookie consent enforcement, though additional security headers and formal security policies could enhance protection. Overall, the site is professional, accessible, and trustworthy, with no detected adult or questionable content.

S

Stiftung MedienKompetenz Forum Südwest

silver-tipps.de

47

Silver Tipps is a German non-profit educational platform dedicated to empowering older adults with digital literacy and safe internet usage skills. The website offers a variety of content including articles, videos, online lectures, and quizzes, supported by reputable media and governmental partners. The target audience is primarily seniors seeking to overcome digital barriers and gain confidence in using modern technologies. The project is backed by the Stiftung MedienKompetenz Forum Südwest and other regional media authorities, positioning it as a trusted resource in the digital education sector for older populations. Technically, the website is built on WordPress with a modern tech stack including jQuery and privacy-focused Matomo analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The use of privacy-respecting analytics and absence of commercial advertising reflect a strong commitment to user privacy and non-commercial educational goals. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some security headers and a visible cookie consent mechanism, which are areas for improvement to enhance compliance with EU regulations. No critical vulnerabilities or suspicious elements were detected, and the WHOIS data indicates a legitimate domain registration consistent with the project's nature. Overall, Silver Tipps presents a professional, trustworthy, and well-structured platform with a clear mission. Strategic recommendations include implementing a cookie consent banner, adding security headers, publishing a security policy, and providing direct contact information to further strengthen trust and compliance.

K

Kochava

aimplatform.io

55

Kochava operates a sophisticated marketing analytics platform specializing in next-generation Marketing Mix Modeling (MMM) through its AIM product. The company targets marketers and user acquisition professionals, particularly in the gaming industry, offering privacy-first, machine learning-driven insights to optimize marketing spend and growth strategies. The website demonstrates a mature digital presence with professional design, comprehensive privacy compliance, and advanced technical infrastructure leveraging WordPress, Google Analytics, Matomo, and other modern tools. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies could be enhanced. WHOIS data is unavailable, which slightly impacts domain trust but the overall brand and content quality indicate a legitimate enterprise. Strategic recommendations include improving security transparency and WHOIS data availability to bolster trust.

W

Walmag Magnetics s.r.o.

walmag.cz

58

Walmag Magnetics s.r.o. is a Czech manufacturer specializing in magnetic clamps and lifting magnets with a long-standing tradition dating back to the 1960s. The company operates independently since 2011 and serves a broad international market spanning 60 countries. Their product portfolio includes certified lifting magnets, magnetic clamps, demagnetizers, and comprehensive service offerings including warranty and post-warranty repairs and training. The website reflects a professional and well-established business with clear branding and extensive customer testimonials, reinforcing their market position. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and various analytics and tracking tools such as Google Tag Manager, Matomo, Microsoft Clarity, and Smartlook. The site is mobile-optimized, SEO-friendly, and integrates multiple languages and an e-commerce platform. However, security headers are not evident in the provided data, and an audit is recommended to enhance security posture. Security-wise, the site uses HTTPS and implements Google reCAPTCHA on forms, indicating a baseline security awareness. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and GDPR compliant, with active consent mechanisms. The absence of WHOIS data limits domain trust verification, but the website content and business information strongly support legitimacy. Overall, Walmag Magnetics presents a low-risk profile with a solid business foundation and good digital maturity. Strategic recommendations include enhancing HTTP security headers, continuous monitoring of third-party scripts, and improving accessibility compliance to further strengthen their security and compliance posture.

W

WITTMANN Group

wittmann-group.com

61

WITTMANN Group operates as a global leader in manufacturing injection molding machines, automation, and auxiliary equipment for the plastics processing industry. Their website reflects a mature, well-established business with a broad international presence and a comprehensive product and service offering. The company targets industrial clients and manufacturing professionals worldwide, providing advanced smart technologies and training services to enhance production efficiency. Technically, the website is built on Drupal 10, leveraging modern JavaScript libraries and analytics tools such as Matomo and Google Tag Manager. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. Hosting details are not explicit but DNS and domain registration data indicate a stable infrastructure. From a security perspective, the site enforces HTTPS and uses asynchronous loading for analytics scripts, minimizing performance impact. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be added to strengthen defenses. DNSSEC is not enabled, which is a recommended enhancement. No vulnerabilities or exposed sensitive data were found in the analyzed content. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. The absence of a dedicated security policy or incident response contact is noted but not uncommon for this industry. Strategic improvements in security headers and DNS security would further enhance the site's posture.

M

Medienanstalt Rheinland-Pfalz

medienanstalt-rlp.de

51

Medienanstalt Rheinland-Pfalz is a regional media authority dedicated to enabling media participation and safeguarding media diversity in the German state of Rheinland-Pfalz. The organization focuses on media regulation, media literacy, citizen media, and media promotion, serving a broad audience including citizens, seniors, children, and media professionals. Their website is professionally designed, content-rich, and well-structured, reflecting their public service mission. Technically, the website is built on TYPO3 CMS and employs Matomo analytics configured to respect user privacy by disabling cookies. The site is hosted on domaincontrol.com nameservers and uses HTTPS to secure communications. Mobile optimization and accessibility are well implemented, providing a good user experience across devices. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The WHOIS data aligns with the website's regional and organizational identity, supporting legitimacy. Overall, the website demonstrates a strong security posture, excellent content quality, and good privacy compliance, making it a trustworthy platform for its intended audience.

B

Brain Appeal GmbH

brain-appeal.com

51

Brain Appeal GmbH is a specialized internet agency based in Mannheim, Germany, focusing on TYPO3 CMS and Symfony-based web development and consulting since 1998. The company offers tailored TYPO3 solutions including consulting, relaunches, extension development, and proprietary digital products such as time tracking and event calendar systems, primarily serving educational institutions and businesses. Their website is professionally designed, multilingual, and showcases recent projects and certifications, reflecting a mature and credible digital presence. Technically, the site uses TYPO3 CMS, Symfony, and Matomo analytics with privacy-conscious configurations. Security posture is good with HTTPS and cookie tracking disabled, though security headers and cookie consent mechanisms could be improved. WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy, but the overall business credibility and website professionalism mitigate this risk. Strategic recommendations include enhancing security headers, implementing cookie consent, and clarifying domain registration details.

G

Grexel Systems ltd.

grexel.com

47

Grexel Systems ltd. is a well-established Finnish company specializing in energy certificate registry solutions and consulting services, operating since 2003 and part of the EEX Group. The company holds a leading position in the European energy certification market, serving over ten thousand active account holders across 15 countries. Their key offerings include registry services, consulting, auction platforms, and integration services, all focused on energy attribute certificates and environmental commodities. The website reflects a professional and consistent brand image with clear business information and comprehensive privacy and cookie policies, indicating strong compliance with GDPR and related regulations. Technically, the website is built on WordPress using the Enfold theme and several common plugins such as Contact Form 7 and Matomo Analytics for privacy-conscious user tracking. The site is mobile-optimized and performs moderately well, with room for improvement in accessibility and security headers. Security posture is strengthened by the display of ISO 27001 certification and the use of HTTPS, although DNSSEC is not enabled and some security headers are missing. The company provides clear contact information including phone, email, and physical address, enhancing business credibility. Overall, the security posture is solid with good privacy compliance, but could benefit from additional security hardening such as enabling DNSSEC and publishing a vulnerability disclosure policy. No WAF or blocking mechanisms were detected, and the site content is fully accessible and safe for general audiences.

M

Ministry of the Environment of the Czech Republic

sdg-data.cz

58

The website www.sdg-data.cz is an official government portal managed by the Ministry of the Environment of the Czech Republic, providing comprehensive data and information related to the United Nations' 2030 Agenda for Sustainable Development and the Czech Republic's national strategic framework CR 2030. It serves as a key resource for policymakers, researchers, and the public interested in sustainable development indicators and progress within the Czech Republic. The site features structured content, including detailed descriptions of the SDGs, national goals, and links to official partner organizations. Technically, the site is built on Drupal 10, employs Matomo for privacy-conscious analytics, and uses modern web technologies such as Bootstrap and jQuery UI. The site is mobile optimized and accessible, with a cookie consent mechanism compliant with GDPR regulations. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved and a security.txt file added. WHOIS data for the domain is unavailable, which slightly reduces trust from a domain registration perspective, but the content and external references strongly support legitimacy. Overall, the site is professional, trustworthy, and well-suited for its governmental informational purpose.

H

Heinrichs Messtechnik GmbH

heinrichs.eu

51

Heinrichs Messtechnik GmbH is a well-established German company specializing in process instrumentation with over 100 years of experience. Their product portfolio includes various types of flow meters such as Coriolis, Variable Area, Magnetic Inductive, Flap, and Vortex Flow meters, targeting industrial and energy sectors. The company maintains a professional online presence with a WordPress-based website using the Avada theme, integrating modern analytics and cookie consent tools. Technically, the website is well-structured, mobile-optimized, and performs moderately well, though some improvements in accessibility and security headers are recommended. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but explicit security policies and incident response contacts are missing. Overall, the website reflects a credible and trustworthy business with room for enhanced privacy compliance and security transparency.

L

LMI Technologies

lmi3d.com

64

LMI Technologies is a global leader specializing in 3D scanning and inspection technologies, providing advanced machine vision solutions to manufacturing and industrial sectors. Their product portfolio includes FactorySmart® laser, snapshot, and line confocal sensors, complemented by AI-driven visual inspection software. The company targets industrial clients seeking to improve production quality and efficiency through non-contact 3D inspection technologies. The website reflects a mature digital presence built on WordPress with WooCommerce and Elementor, indicating a modern and scalable infrastructure. Security posture is solid with HTTPS enforcement and domain locking, though improvements such as DNSSEC and formal security policies are recommended. Privacy compliance is basic with cookie consent but lacks explicit privacy and terms policies. Overall, the site is professional, trustworthy, and well-aligned with the company's market position.

N

NavVis GmbH

navvis.com

71

NavVis GmbH is a technology company specializing in advanced reality capture and digital twin solutions, serving industries such as surveying, construction, manufacturing, and process plants. The company offers a combination of hardware products like the NavVis MLX and VLX series, alongside software platforms such as NavVis IVION, enabling clients to capture, process, and access spatial data efficiently. NavVis positions itself as an innovative leader in handheld and wearable laser scanning technology with a strong B2B focus. Technically, the website is built on the HubSpot CMS platform, integrating modern analytics and marketing tools including Google Tag Manager, Matomo, Hotjar, and Usercentrics for privacy compliance. The site is well-optimized for SEO, mobile responsiveness, and accessibility, featuring structured data and comprehensive cookie consent mechanisms. From a security perspective, the site enforces HTTPS with strong SSL configurations and includes standard security headers. Forms are protected with reCAPTCHA, and no exposed sensitive data or vulnerable libraries were detected. However, the absence of explicit incident response contacts and vulnerability disclosure policies represents an area for improvement. Overall, the website demonstrates a high level of professionalism, technical maturity, and privacy compliance, though the lack of WHOIS transparency slightly impacts trustworthiness. Strategic recommendations include publishing terms of service, incident response information, and vulnerability disclosure details to enhance security posture and user trust.

E

Erzbistum Freiburg

fortbildung-ebfr.de

43

The website www.fortbildung-ebfr.de serves as the official platform for pastoral education and training within the Archdiocese of Freiburg, Germany. It offers a range of educational services including workshops, coaching, supervision, and online learning targeted at clergy, pastoral workers, educators, and volunteers. The site reflects a well-structured and consistent brand aligned with its non-profit religious mission. Technically, the site is built on Edith CMS, leveraging common web technologies such as jQuery, Bootstrap, and Matomo analytics. Hosting and DNS infrastructure are consistent with the content provider, indicating a stable technical foundation. Security posture is adequate with HTTPS enabled and some privacy-aware analytics configurations; however, the absence of explicit privacy and cookie policies and missing security headers represent compliance and security gaps. Overall, the site is safe, professional, and trustworthy but would benefit from enhanced privacy compliance and security best practices.

D

Diözesanstelle Berufe der Kirche

berufe-der-kirche-freiburg.de

44

The website 'Diözesanstelle Berufe der Kirche' serves as an informational and advisory platform focused on church-related professions and vocational guidance within the Archdiocese of Freiburg, Germany. It targets individuals interested in pursuing careers in the church, offering coaching, orientation, and event information. The site is positioned as a regional non-profit service with strong ties to the church community and affiliated organizations. Technically, the site is built on Edith CMS, uses modern JavaScript libraries like jQuery and FontAwesome, and integrates Matomo analytics with respect for user privacy preferences. The hosting and domain registration are consistent with the organization's identity, indicating legitimacy and trustworthiness. Security posture is good with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and explicit cookie consent mechanisms are recommended. Overall, the site presents professional content with clear navigation and a consistent brand image, supporting its mission effectively.

W

Web Commerce GmbH

konradsblatt-online.de

47

Konradsblatt is a regional weekly newspaper serving the Catholic community of the Freiburg Archdiocese in Germany. It offers news, commentary, and religious content through its website, e-paper subscriptions, and an online shop. The website is professionally designed with clear navigation and targets readers interested in church-related news and events. The business operates in the media and non-profit sectors, leveraging digital platforms to extend its reach. Technically, the website uses Edith CMS as its content management system, with frontend technologies including jQuery, Bootstrap, and FontAwesome. It employs Matomo analytics with cookie disabling features to track user interactions while respecting privacy preferences. The site is hosted with UI-DNS name servers and uses HTTPS, ensuring secure communications. Mobile optimization and SEO practices are well implemented, though accessibility could be improved. From a security perspective, the website enforces HTTPS and uses some security headers but lacks comprehensive security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with no explicit privacy or cookie policy pages found, though a cookie consent mechanism is present. Overall, the website is trustworthy and professionally maintained, with a strong business credibility score. Strategic improvements in privacy disclosures, security headers, and incident response transparency would enhance its security posture and compliance standing.

S

Scholz Promotion Service GmbH

scholzpromotion.de

49

Scholz Promotion Service GmbH is a medium-sized German company specializing in sustainable and creative promotional products and full-service fulfillment solutions. The company holds ISO certification and EcoVadis Gold status, positioning itself as a quality and sustainability-focused supplier in the retail promotional products sector. Their services include sourcing, logistics, custom shop systems, and product design, targeting business clients seeking innovative marketing merchandise. Technically, the website is built on TYPO3 CMS with modern frontend frameworks and integrates multiple analytics and marketing tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response disclosures are recommended. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting a strong business credibility profile.

S

Setra Buses

setra-bus.com

61

Setra Buses operates a professional and comprehensive website showcasing their premium bus and coach models, sales services, and after-sales support. The company targets transport operators and fleet managers with a strong emphasis on quality and design. The website is built on a modern technical stack with Adobe Experience Manager CMS, uses Matomo analytics, and implements Usercentrics for GDPR-compliant consent management. Security posture is good with HTTPS and no visible vulnerabilities, though security headers could be improved. The absence of WHOIS data for the domain is a notable concern, potentially indicating a new registration or privacy protection, which slightly reduces trustworthiness. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations.

D

Daimler Buses GmbH

omniplus.com

75

OMNIplus, operated by Daimler Buses GmbH, is a leading service provider specializing in bus and coach maintenance, repair, and digital services across Europe. The website showcases a comprehensive portfolio including service contracts, 24-hour mobility services, workshop expertise, spare parts, and innovative digital solutions branded as OMNIplus ON. The company targets bus operators and fleet managers, positioning itself as a trusted enterprise-level partner in the transportation sector. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and integrating Matomo analytics with user consent management via Usercentrics. The site is well-structured, mobile-optimized, and provides a professional user experience with clear navigation and rich content. However, some security best practices such as explicit security headers and vulnerability disclosure mechanisms are absent. From a security perspective, the site enforces HTTPS and employs consent mechanisms for privacy compliance, reflecting a mature privacy posture. The absence of WHOIS domain registration data is a notable anomaly that warrants further investigation, though the website content and business information strongly indicate legitimacy under Daimler Buses GmbH. Overall, the website presents a low risk profile with strong business credibility and privacy compliance, but improvements in security headers and domain registration transparency are recommended to enhance trust and security posture.

D

DigitalPA S.r.l.

garatelematica.net

63

DigitalPA S.r.l. operates the website garatelematica.net, offering a leading software platform for managing electronic public procurement processes in Italy. The platform supports public entities in conducting secure, compliant, and efficient digital tendering and procurement activities. The company positions itself as a market leader with over 1000 public contracting authorities as clients and offers complementary services including consulting and training for public procurement professionals. The website content is professionally presented, with comprehensive information about software modules, services, and client testimonials, targeting public administration entities and suppliers.

D

DigitalPA S.r.l.

acquistitelematici.it

66

DigitalPA S.r.l. operates the website acquistitelematici.it, offering a certified e-procurement platform tailored for the Italian Public Administration and companies. The platform supports comprehensive management of procurement processes, including compliance with Italian public contract codes and ANAC requirements. The company positions itself as a market leader in Italy with over 1,000 active platforms and extensive client references from public entities. The business model combines software licensing with specialized consultancy and training services, targeting public sector officials and private companies involved in procurement. The website content is professional, well-structured, and rich in relevant information, supporting a strong market presence.

Základní škola a Mateřská škola Černovice is a small local educational institution in the Czech Republic providing primary and nursery education with a focus on eco-school principles. The website serves as an information portal for parents and the community, offering details about school activities, schedules, and contact information. The institution positions itself as a partner to children and parents, emphasizing respect for individuality and responsibility. Technically, the website uses a modern but somewhat dated tech stack including jQuery and Google Tag Manager, with Matomo analytics for privacy-conscious tracking. Security posture is good with HTTPS and reCAPTCHA implemented, though some security headers and policies are missing. The WHOIS data is unavailable, which limits domain legitimacy verification, but the website content and contact details appear authentic and professional. Overall, the site is well-structured, accessible, and compliant with GDPR requirements through cookie consent and privacy policy presence.

Školní jídelna Pelhřimov is a local school canteen serving pupils of nearby elementary schools and employees, with supplementary services for external diners. The website provides detailed information about the facility, its history since 1964, and operational details. The business operates in the education sector, focusing on school meal provision in Pelhřimov, Czech Republic. The site is professionally designed with clear navigation and contact information, supporting its role as a trusted local service provider. Technically, the site uses a custom CMS with jQuery and Matomo analytics, indicating moderate digital maturity. Security posture is adequate but could be improved with security headers and explicit privacy compliance mechanisms. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces transparency but does not strongly impact legitimacy given the public nature of the organization. Overall, the site is safe, accessible, and serves its intended audience effectively.

E

Erzdiözese Freiburg

ebfr.de

44

The Erzdiözese Freiburg website serves as the official digital presence of one of Germany's largest Catholic archdioceses, providing extensive information on faith, pastoral care, education, social services, and community engagement. The site targets a broad audience including parishioners, families, youth, and church staff within the Freiburg region. It offers structured navigation and a variety of resources reflecting its role as a major religious institution. Technically, the website is built on Edith CMS, leveraging modern JavaScript libraries like jQuery and AblePlayer, and uses Matomo for analytics with privacy-conscious configurations. Hosting and content delivery are managed via w-commerce.de and related domains. Security posture is adequate with HTTPS enforced, but lacks explicit security headers and published security policies. Privacy compliance is limited due to missing visible privacy and cookie policies. Overall, the site is professional, trustworthy, and well-branded, but could improve transparency and security practices.

K

KOBOLD Messring GmbH

kobold.com

51

KOBOLD Messring GmbH is a German-based manufacturer specializing in industrial measuring and control equipment focused on flow, pressure, level, and temperature measurement. The company holds a strong international market position as a leading instrumentation engineering enterprise, offering a broad portfolio of products and automation solutions tailored for diverse industrial sectors. Their website reflects a professional and comprehensive digital presence with multi-language support and detailed product showcases. Technically, the website is built on MATRIX-CMS with jQuery and integrates Matomo analytics and Google Tag Manager, both managed with user consent to ensure privacy compliance. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some improvements in accessibility and security headers could be made. From a security standpoint, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security policies or incident response contacts. No vulnerabilities or suspicious scripts were detected. The absence of WHOIS data for the domain is a concern but does not detract significantly from the overall legitimacy given the professional content and valid contact information. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

G

Gesellschaft für Informatik e.V.

ocdcpro.de

55

OCDCpro is an educational and innovation-focused project operated by the Gesellschaft für Informatik e.V., aiming to promote European sovereignty in semiconductor technology through an open-source chip design competition for students and young talents. The project leverages open-source toolchains to foster learning and collaboration among students and educators in relevant technical fields, with industry partnerships enabling practical chip fabrication opportunities. The website is professionally designed using TYPO3 CMS, with good mobile optimization and clear navigation. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy linked to the parent organization's domain. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site reflects a trustworthy and credible educational initiative with a moderate to high level of technical maturity.

G

Gesellschaft für Informatik e.V.

ki-hub-kunststoffverpackungen.de

54

The KI-Hub Kunststoffverpackungen website represents a government-funded initiative by the Gesellschaft für Informatik e.V., focusing on leveraging Artificial Intelligence to enhance sustainability and circular economy practices in plastic packaging. The initiative comprises two innovation labs working collaboratively to optimize the lifecycle of plastic packaging from design to recycling. The website is professionally designed, primarily in German with an English version available, and targets industry professionals, researchers, and policymakers interested in AI and sustainability. Technically, the website is built on TYPO3 CMS with Bootstrap for responsive design and Leaflet.js for interactive maps. It employs Matomo for privacy-conscious analytics and implements a cookie consent mechanism with opt-in options. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers and explicit security policies are absent. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks a published security policy and incident response contacts, which are recommended for enhanced trust and compliance. The WHOIS data is minimal but consistent with the website's institutional affiliation, indicating legitimacy. Overall, the website scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a trustworthy and professional platform for its intended audience.

G

Gesellschaft für Informatik e.V.

common-grounds-forum.org

54

The Common Grounds Forum is a youth-focused community initiative operated by Gesellschaft für Informatik e.V., targeting young people aged 14 to 30 to engage in digital and education policy advocacy in Germany. The platform serves as a hub for developing digital policy positions and bringing youth demands to national digital summit stages. The website is professionally designed, content-rich, and clearly targeted at its audience with a strong emphasis on community events and policy demands. Technically, the site is built on TYPO3 CMS with Bootstrap and integrates privacy-respecting analytics via Matomo. Security posture is good with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with a clear cookie consent mechanism and GDPR-aligned privacy policy hosted on the parent organization's domain. Contact information is transparent, though no explicit security or incident response policies are published. Overall, the website is trustworthy, well-maintained, and aligned with its stated mission.

A

AidantK+

aidantkplus.fr

60

AidantK+ is a French healthcare support platform dedicated to informing and assisting close caregivers of cancer patients. The website offers a scientifically validated Mini-Zarit questionnaire to assess caregiver burden and provides information on available aids and support resources. The platform targets a niche audience of caregivers, positioning itself as a valuable informational resource in the healthcare non-profit sector. Technically, the website employs modern JavaScript frameworks such as Turbo-Rails and Stimulus, uses Bootstrap for responsive design, and integrates analytics tools like Matomo and Google Tag Manager. Hosting and DNS are managed via Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and formal privacy policies are absent. No contact information or incident response channels are publicly available, which limits transparency. Overall, the website is professional, trustworthy, and safe for general audiences, but could improve compliance and security transparency.

G

GC Rieber

gcrieber-fondene.no

52

GC Rieber Fondene is a Norwegian non-profit foundation that owns a significant share of GC Rieber AS and reinvests dividends into socially beneficial projects focused on culture, research, and social welfare primarily in the Bergen region. The website is professionally designed using WordPress with modern SEO and analytics tools, providing a good user experience and accessibility. Privacy and cookie compliance are well implemented with clear consent mechanisms. Security posture is strong with HTTPS and security headers, though the absence of WHOIS data limits domain trust analysis. No direct contact emails or phone numbers are publicly listed, relying on contact forms for communication. Overall, the site reflects a reputable organization with a clear social mission.

G

GC Rieber Eiendom

gcrieber-eiendom.no

55

GC Rieber Eiendom is a well-established real estate company focused on developing and managing innovative commercial properties and innovation districts in Bergen, Norway. The company targets researchers, entrepreneurs, students, and established businesses, positioning itself as a key player in sustainable urban development. The website reflects a professional and consistent brand image, supported by comprehensive content and clear navigation. Technically, the site is built on WordPress with modern SEO and analytics tools, including Yoast SEO, Matomo, and multiple marketing pixels, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The absence of WHOIS data suggests privacy protection, which is typical for corporate entities. Overall, the site demonstrates a strong business presence with moderate technical and security maturity.

V

VisionConnect GmbH

juuuport.de

56

JUUUPORT is a German nationwide online counseling platform dedicated to supporting young people facing problems on the internet, including cyberbullying, sextortion, and other online risks. The platform is operated by VisionConnect GmbH and offers confidential, free assistance through trained youth scouts. The website is professionally designed with a strong emphasis on accessibility and privacy, featuring multilingual support and tools for users with disabilities. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-focused analytics, and integrates Cookiebot for comprehensive cookie consent management. Security posture is good with HTTPS enforced and privacy best practices observed, though explicit security policies and incident response contacts are not published. Overall, the platform demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR, making it a reliable resource for its target audience.

M

Medienanstalt Rheinland-Pfalz

klicksafe.de

53

klicksafe.de is a German EU-funded initiative dedicated to promoting online safety and digital competence among children, youth, parents, and educators. It operates under the Medienanstalt Rheinland-Pfalz and is part of the Safer Internet Centres network across Europe. The website offers comprehensive educational materials, awareness campaigns, and events to support safe and critical internet use. The initiative enjoys a strong market position as a trusted source for internet safety education in Germany, supported by EU funding and partnerships. Technically, the website is built on the TYPO3 CMS platform, utilizing modern web technologies such as Bootstrap, jQuery, and Swiper.js for responsive and interactive content delivery. It employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and does not publish a security policy or incident response information. There is no cookie consent mechanism detected, which is a minor compliance gap given GDPR requirements. Overall, the security posture is solid but could be improved with additional transparency and technical controls. The website content is safe for general audiences, focusing on educational and awareness topics without any adult or explicit material. Social media presence is active across major platforms, enhancing outreach and engagement. WHOIS data aligns with the website's claims, showing consistency and legitimacy. No suspicious or malicious indicators were found. Strategic recommendations include implementing a cookie consent banner, publishing a security policy and incident response contacts, adding security headers, and considering a vulnerability disclosure policy to enhance trust and compliance.

W

Web Commerce GmbH

kath-musterhausen.de

47

The website www.kath-musterhausen.de represents SESAM, a web platform service designed for church institutions within the Erzdiözese Freiburg. It is developed and hosted by Web Commerce GmbH, providing a comprehensive web-building toolkit including event management, news, forms, newsletters, and room and duty scheduling. The site targets church organizations seeking a versatile and supported online presence. Technically, the site uses Edith CMS, jQuery, and Matomo analytics, with good mobile optimization and accessibility. Security posture is solid with HTTPS and some security headers, though cookie consent mechanisms and explicit security policies are lacking. Overall, the site is professional, trustworthy, and well-aligned with its niche audience.

U

Unabhängige Bundesbeauftragte gegen sexuellen Missbrauch von Kindern und Jugendlichen

schule-gegen-sexuelle-gewalt.de

67

The website 'Schule gegen sexuelle Gewalt' is an official German government-supported portal dedicated to supporting schools in developing protection concepts against sexual violence. It provides comprehensive educational content, digital training, and region-specific information to schools and educators. The site is well-positioned as a trusted resource in the child protection and education sector, collaborating with federal and state authorities. Technically, the site is built on TYPO3 CMS and uses Matomo analytics configured with strong privacy protections, including IP anonymization and user consent mechanisms. The website demonstrates good design, accessibility, and SEO practices, ensuring a positive user experience. Security posture is solid with HTTPS and privacy compliance, though explicit security headers and incident response policies are not publicly documented. Overall, the site is trustworthy, professional, and serves a critical social function with minimal risk.

S

stredohori-podripsko.cz

stredohori-podripsko.cz

46

The website stredohori-podripsko.cz operates as an online magazine focused on the beauty and cultural richness of the Středohoří and Podřipsko regions in the Czech Republic. It offers a variety of articles covering health, economy, culture, travel, and practical advice, targeting a general audience interested in local topics. The business model centers on content publishing with monetization through Google Adsense advertising. The site is relatively new, with a domain creation date indicating 2025, which appears inconsistent and may reflect a placeholder or data anomaly. Technically, the website employs standard web technologies including HTML5, CSS3, JavaScript, Matomo analytics for user tracking, and Google Adsense for advertising. The site is mobile optimized with good navigation and SEO practices, though accessibility features are basic. Hosting is provided via vas-hosting.com, with domain registration through REG-GRANSY. Performance is moderate, and no content blocking or WAF mechanisms were detected. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers such as Content-Security-Policy and X-Frame-Options. There is no visible security or incident response policy, nor a vulnerability disclosure mechanism. Privacy compliance is partial; a privacy policy and terms of use are published, but no cookie consent mechanism is present, which is a compliance gap under GDPR. No direct contact emails or phone numbers were found, only a contact form. Overall, the website presents a professional and trustworthy front for a small regional media outlet, but the WHOIS data anomaly and lack of some security and privacy features suggest areas for improvement. Strategic enhancements in privacy compliance, security headers, and transparency would strengthen trust and regulatory adherence.

D

Deutsche Ordensobernkonferenz e.V.

orden.de

41

The website www.orden.de serves as the official internet portal for the Deutsche Ordensobernkonferenz e.V., providing comprehensive information about religious orders in Germany. It targets members of religious communities and the interested public, offering news, educational resources, and organizational information. The site holds a strong position as a leading informational resource in its niche. Technically, the site is built on TYPO3 CMS, employs Matomo for analytics, and is hosted via domaincontrol.com nameservers. The site is moderately optimized for performance and mobile devices, with good SEO practices and clear navigation. Security-wise, HTTPS is enforced and spam-protection for emails is implemented via JavaScript obfuscation, but lacks advanced security headers and explicit cookie consent mechanisms. No direct contact emails or phone numbers are visible, with contact likely managed through forms. Overall, the site is professional, trustworthy, and safe for general audiences.

E

Eugen Korda

eugeneugen.eu

53

Eugen Korda is a creative professional specializing in design and art direction, focusing on sustainable and socially responsible branding. The website serves as a portfolio showcasing various projects including identity design, exhibitions, and campaigns. The target audience includes brands and individuals who value ethical and environmental considerations in their creative collaborations. Technically, the website is built on WordPress with modern libraries such as jQuery and Flickity, hosted by WebSupport s.r.o. The site demonstrates good mobile optimization and user experience, with moderate performance and basic SEO. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and policies are lacking. Privacy compliance is partial, with a privacy policy page present but no cookie consent mechanism. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

G

Gesellschaft für Informatik e.V.

gi.de

55

Gesellschaft für Informatik e.V. (GI) is a well-established German non-profit association dedicated to the field of informatics. The organization provides a broad range of services including membership, publications, events, and educational projects aimed at informatics professionals, academics, and students. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience. Technically, the site is built on TYPO3 CMS with Bootstrap, employs Matomo for privacy-conscious analytics, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not published. WHOIS data aligns with the website's legitimacy, showing consistent domain registration without privacy protection, appropriate for a professional association. Overall, the website scores well on content quality, technical implementation, privacy compliance, and business credibility, making it a trustworthy and professional online presence for the GI association.

N

National Association of Travel Agents Singapore

natas.travel

52

The National Association of Travel Agents Singapore (NATAS) operates as a professional non-profit organization representing travel agents and related stakeholders in Singapore. The website serves as a portal for membership services, trade events, tour leader registry, and travel fairs, positioning NATAS as a key industry association with regional affiliations to ASEAN and other travel bodies. The business model focuses on membership engagement, event organization, and industry support, targeting travel professionals and consumers interested in travel fairs. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Matomo analytics, and Google Maps API, delivering a moderately performant and mobile-optimized experience. The site uses custom or unknown CMS technology and integrates several tracking and analytics tools. While the site is well-structured and professionally designed, it lacks some advanced SEO and accessibility features. From a security perspective, the site uses HTTPS and includes CSRF tokens, but lacks visible security headers such as CSP or HSTS. No critical vulnerabilities were detected, but improvements in security headers and cookie consent mechanisms are recommended to enhance compliance and protection. Overall, the domain is privacy protected in WHOIS, which is common and justified for this business type. The website content and affiliations indicate legitimacy and moderate trustworthiness. The site scores well in business credibility and content quality but has room for improvement in security posture and privacy compliance.

B

Bundesverband IT-Mittelstand e.V. (BITMi)

bitmi.de

65

The Bundesverband IT-Mittelstand e.V. (BITMi) is Germany's largest professional association exclusively representing medium-sized IT companies. The organization focuses on promoting digital sovereignty 'Made in Germany' and advocates for the interests of over 2,500 IT SMEs. Their business model centers on industry representation, certification services, events, and political lobbying. The website is professionally designed, content-rich, and well-structured, targeting IT companies and stakeholders in the German digital economy. Technically, the site runs on WordPress with modern plugins and frameworks, including Yoast SEO and Events Manager, ensuring good SEO and event management capabilities. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit privacy policies are missing. Overall, the site is trustworthy, credible, and serves as a key information and networking hub for the German IT SME sector.

B

BMW Wallis Motor Ljubljana

bmw-wallis.si

42

BMW Wallis Motor Ljubljana operates as an authorized BMW dealership and service center located in Ljubljana, Slovenia. The company offers new and used BMW vehicles, servicing, test drives, and related automotive services. The website reflects a medium-sized business with a clear focus on the automotive transportation sector, targeting BMW customers in the local region. The business was founded in 2020, consistent with the domain registration date, and maintains consistent BMW branding and professional presentation. Technically, the website is built on WordPress using the Divi theme, enhanced with plugins such as WooCommerce, UberMenu, Ajax Search Pro, and Matomo analytics. The site is mobile-optimized and shows moderate performance. HTTPS is enabled, ensuring secure communication, but lacks some advanced security headers. The site does not currently display privacy or cookie policies, which impacts its privacy compliance score. From a security perspective, the site demonstrates good basic practices with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The use of Matomo analytics indicates moderate user tracking without a visible consent mechanism, which may raise GDPR compliance concerns. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, improved security headers, and explicit security and incident response policies to strengthen its security posture and regulatory adherence.

Ř

Římskokatolická farnost Radešínská Svratka, Olešná na Moravě

pallotini-pastorace.cz

56

The website represents the Roman Catholic parishes of Radešínská Svratka and Olešná na Moravě, providing parishioners and visitors with comprehensive information about religious services, community events, and spiritual life. It serves as a local community hub with a focus on non-profit religious activities. The site is well-branded and consistent with the church's mission, targeting local Czech-speaking audiences. Technically, it uses a custom CMS platform (IS OMNIA) with modern frontend technologies like Bootstrap and jQuery, hosted under a reputable registrar and using Cloudflare DNS. The site is moderately performant and mobile-optimized but lacks some advanced accessibility features.

A

Africa Food Manufacturing (AFMASS) Expos

afmass.com

41

Africa Food Manufacturing (AFMASS) Expos operates as a leading organizer of international food and beverage manufacturing and milling industry trade shows across Africa, targeting key markets such as Kenya, Nigeria, Uganda, Zambia, and Tanzania. The company positions itself as the premier platform showcasing the latest technologies in grain storage, milling, processing, packaging, ingredients, laboratory technologies, and supply chain solutions for the food, beverage, milling, and hospitality sectors. The website reflects a professional digital presence built on WordPress with the Divi theme, integrating standard analytics and advertising tools such as Google Analytics and AdSense. However, the absence of WHOIS registration details raises questions about domain registration transparency.

H

HS Timber Group

hs.at

56

HS Timber Group is a leading Austrian-based company specializing in industrial wood processing with a global footprint spanning 80 countries and seven production sites. The company employs over 2,700 staff and focuses on sustainable timber solutions for commercial and industrial clients. Their product portfolio includes various sawn timber products, glued laminated timber, panels, and pellets. The website reflects a mature digital presence built on TYPO3 CMS, featuring modern design, multilingual support, and privacy-conscious analytics via Matomo. The company demonstrates a strong commitment to sustainability and compliance, evidenced by multiple EUTR inspections and certifications. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and well-structured, supporting the company's market position as a major player in the timber manufacturing sector.