Security Directory

U

Universitätsklinikum Leipzig

wirsindukl.de

47

The website 'wirsindukl.de' serves as the official recruitment portal for Universitätsklinikum Leipzig, the largest hospital in Leipzig, Germany. It provides comprehensive information about job opportunities, benefits, career development, and international recruitment. The site targets healthcare professionals and applicants seeking employment or training in medical and administrative fields. The business is well-positioned in the healthcare sector with recognized certifications and a strong employer brand. Technically, the site is built on GravCMS, uses modern JavaScript libraries like jQuery and Swiper.js, and implements GDPR-compliant cookie consent mechanisms. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and secure forms, though it lacks explicit security policy and incident response information. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for prospective employees.

F

füreinand'

fuereinand.at

59

füreinand' is a well-established Austrian non-profit community platform dedicated to fostering mutual support and volunteering across Austria. With over 43,000 members, it operates under the auspices of Caritas and partners with prominent media outlets to maximize outreach and impact. The website offers a professional, accessible, and content-rich experience, encouraging community participation through various missions and initiatives. Technically, the site leverages TYPO3 CMS, modern JavaScript libraries, and robust form validation, ensuring a responsive and user-friendly interface. Security-wise, the site employs HTTPS, cookie consent mechanisms, and error monitoring via Sentry, though it could enhance security headers and publish formal security policies. Overall, the platform demonstrates strong compliance with GDPR and privacy standards, reflecting its commitment to user trust and data protection.

I

i-kiu - motion graphic backend gmbH

i-kiu.at

57

i-kiu - motion graphic backend gmbH is a Vienna-based digital agency specializing in tailored digital solutions including web design, development, and marketing services. With over 15 years of experience and a portfolio of more than 1,000 projects, the company serves businesses and non-profit organizations primarily in Austria. Their expertise spans TYPO3 and WordPress platforms, UI/UX design, branding, SEO, and AI optimization. The website reflects a mature digital presence built on WordPress with Elementor, incorporating modern web technologies and a cookie consent mechanism for GDPR compliance. Security posture is solid with HTTPS enforced, though improvements in security headers and explicit privacy policies are recommended. Overall, the site demonstrates good professionalism and trustworthiness with moderate user tracking via Google Analytics.

V

Veza Digital

vezadigital.com

73

Veza Digital is a professional B2B marketing agency specializing in Webflow design, SEO, and digital growth strategies primarily for SaaS and enterprise clients. Founded in 2019 and headquartered in Toronto, Canada, the company positions itself as a premier Webflow Enterprise Partner with a strong focus on scalable, performance-optimized marketing websites. Their service portfolio includes Webflow development, SEO optimization, digital growth strategy, and B2B marketing tailored for SaaS companies at various growth stages. The website demonstrates a high level of professionalism, with comprehensive content, client testimonials, and case studies that reinforce their market credibility. Technically, the website leverages modern web technologies including Webflow CMS, GSAP for animations, HubSpot for marketing automation, and multiple analytics and tracking tools such as Facebook Pixel and Microsoft Clarity. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Hosting is provided by Webflow, ensuring reliable uptime and SSL encryption. From a security perspective, the site enforces HTTPS and uses reputable third-party scripts, but lacks explicit security headers and a published security policy or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by a comprehensive privacy policy and cookie consent mechanism, indicating good adherence to GDPR and related regulations. Overall, the website is trustworthy and professionally maintained, though the absence of WHOIS data for the domain raises some concerns about domain registration transparency. Strategic recommendations include enhancing security header implementation, publishing a security policy, and adding vulnerability disclosure information to further improve trust and compliance.

B

Bharat Recycling Show

bharatrecyclingshow.com

50

Bharat Recycling Show is a dedicated trade show and conference platform focused on commodity recycling in India, covering sectors such as metals, e-waste, batteries, tyres, and construction waste. It serves as a flagship event bringing together industry stakeholders, policymakers, and sustainability leaders to showcase technologies and foster business opportunities. The website is built on WordPress with modern plugins and SEO optimizations, providing a professional user experience with good mobile responsiveness and clear navigation. Security posture is adequate with HTTPS and reCAPTCHA usage, though lacks some security headers and explicit privacy/cookie policies. WHOIS data is missing or unavailable, which raises concerns about domain legitimacy despite the professional appearance and partnerships. Overall, the site is safe, business-focused, and well-structured but would benefit from improved transparency and security practices.

D

Daitem

daitem.it

64

Daitem is a European leader in security and protection systems, specializing in wireless alarm and fire detection technologies. The company offers tailored solutions for private and tertiary sectors, emphasizing innovation with over 50 patents and a strong R&D team. Their products are manufactured in Europe, with a history dating back to 1977, positioning them as pioneers in wireless security technology. The website reflects a mature digital presence with modern JavaScript frameworks, mobile optimization, and integration of tracking tools like Google Tag Manager and FingerprintJS for client identification. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though explicit security and incident response policies are not published. Privacy compliance is addressed with comprehensive privacy and cookie policies, albeit lacking a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-branded, targeting European private and business customers seeking advanced security solutions.

B

birdingtours GmbH

birdingtours.de

57

birdingtours GmbH operates as Germany's leading specialist in birdwatching travel, offering a wide range of guided tours across Germany, Europe, Africa, Asia, and the Americas. The company targets both novice and experienced birdwatchers, providing expert-led tours, educational content, and a dedicated shop for birdwatching equipment. Their market position is strong within the niche ecotourism and nature travel sector, supported by partnerships with conservation organizations and a loyal customer base. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates standard marketing and analytics tools with user consent mechanisms. Security posture is solid with HTTPS enforced and consent management implemented, though explicit security headers could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, reflecting a mature digital presence for a medium-sized travel business.

S

swissnet ICT GmbH

swissnet.de

59

swissnet ICT GmbH is a medium-sized German IT system house and telecommunications provider specializing in tailored ICT solutions for business clients, including IT infrastructure, security, services, and telephony. The company targets medium to enterprise businesses, offering scalable and integrated communication and IT solutions. Their market position is that of a regional specialist with a strong emphasis on quality and certifications such as ISO 27001 and ISO 9001. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile use, and employs security best practices including HTTPS and CAPTCHA protections. Security posture is solid with room for improvement in explicit security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR, providing comprehensive contact and support options.

M

mbr-rlp-nord.de

mbr-rlp-nord.de

54

The website mbr-rlp-nord.de serves as a regional support and advisory platform focused on combating right-wing extremism, racism, and antisemitism in the northern Rheinland-Pfalz region of Germany. It targets engaged civil society actors, organizations, and institutions, providing assistance in dealing with extremist activities and promoting democratic values. The site is hosted on WordPress.com, leveraging standard WordPress technologies and plugins, with a moderate performance and good mobile optimization. Security posture is solid due to HTTPS and managed hosting, but lacks explicit security headers and formal policies. Privacy compliance is weak, with no visible privacy or cookie policies, and no contact information for data protection or incident response. Overall, the site is trustworthy and professional but would benefit from enhanced compliance and security transparency.

A

Arbeit und Leben gGmbH

berufssprachkurse-mainz.info

61

The website berufssprachkurse-mainz.info represents a vocational language course offering operated by Arbeit und Leben gGmbH under commission from the German Federal Office for Migration and Refugees (BAMF). The courses target migrants and individuals seeking to improve their German language skills for professional integration and recognition, particularly in healthcare professions. The site is hosted on WordPress.com and uses standard WordPress technologies with Jetpack and other common plugins. The content is professionally presented with relevant images and course descriptions, targeting a German-speaking audience. Technically, the site is well-structured, mobile-optimized, and uses HTTPS, but lacks some advanced security headers and a visible privacy policy page. No contact emails or phone numbers are directly provided on the main pages, which slightly reduces transparency. The WHOIS data is privacy protected by Identity Digital Inc., which is common and justified for this type of non-profit educational site. Overall, the site is legitimate, secure, and serves its educational purpose effectively.

H

Hawaii Interactive

hawaii.do

61

Hawaii Interactive is a small digital agency based in Lausanne, Switzerland, specializing in web development, design, and hosting services. Established in 2014, the company presents a professional online presence with a portfolio of projects showcasing their expertise in WordPress and modern web technologies. The website is well-structured, mobile-optimized, and uses a modern tech stack including WordPress, Gravity Forms, and Matomo analytics. Security measures include HTTPS, anti-spam protection, and monitoring integrations, though there are gaps such as missing DNSSEC and security headers. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the business appears legitimate and trustworthy with clear contact information and consistent branding.

F

Fondamentale – La Filiera delle Costruzioni

filierafondamentale.it

55

Fondamentale – La Filiera delle Costruzioni is a collaborative union representing key stakeholders in the Italian construction sector, including companies and labor unions. The organization focuses on enhancing competitiveness through innovation, sustainability, training, safety, and legal compliance. Their website reflects a professional presence with clear messaging and partnerships with recognized industry bodies. Technically, the site is built on WordPress with Elementor, using modern libraries and a responsive design. Security posture is good with HTTPS and cookie consent implemented, though lacking explicit privacy and security policies. Overall, the site is trustworthy and serves as an effective communication platform for the organization.

H

Homes4All

homes4all.it

63

Homes4All is a small Italian real estate company specializing in the recovery and valorization of disused properties, transforming them into socially and economically valuable housing opportunities. Their business model emphasizes sustainability, social impact, and collaboration with investors, private individuals, public entities, and communities. The website reflects a professional and consistent brand image with clear messaging and targeted content for their audience. Technically, the site is built on WordPress with modern plugins and frameworks, including SEO and analytics tools, ensuring good performance and mobile optimization. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms in place, although explicit security and incident response policies are not published. Overall, the site demonstrates a mature digital presence with moderate user tracking and good privacy compliance.

A

Abalos Therapeutics GmbH

abalos-tx.com

55

Abalos Therapeutics GmbH is a small, innovative biotechnology company based in Germany focused on developing novel immuno-oncology therapies using a proprietary arenavirus-based platform. Their lead candidate ABX-001 aims to trigger precise innate and adaptive immune responses within tumors to treat cancer effectively. The company targets healthcare professionals, investors, and partners with a professional and content-rich website that highlights their scientific foundation, therapeutic approach, and team. Technically, the website is built on WordPress with modern plugins and frameworks, offering good mobile optimization and user experience. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong with comprehensive policies and GDPR adherence. Overall, the website reflects a credible and trustworthy biotech firm with clear business messaging and investor relations.

Berlin Hyp is a leading European commercial real estate financier operating as part of the LBBW universal bank group. The company specializes in large-volume real estate financing for professional investors and housing companies, emphasizing sustainability, ESG principles, and digital innovation to streamline customer processes. The website reflects a mature and professional business with a clear market position and strong branding consistency. Technically, the site is built on the Contao CMS platform, uses modern JavaScript libraries like Swiper.js, and integrates Matomo analytics with GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and session management in place, though explicit security headers and incident response policies are absent. Overall, the site is trustworthy, well-structured, and compliant with privacy regulations.

H

Hotel "Das Köhle"

das-koehle.at

49

Hotel "Das Köhle" is a family-oriented hospitality business located in the Serfaus-Fiss-Ladis region of Tirol, Austria. The website presents the hotel as a regional family hotel offering accommodation and related services to tourists and families visiting the area. The business operates on a small scale with a focus on hospitality and tourism. Technically, the website is built on WordPress using Elementor and Yoast SEO plugins, indicating a modern CMS infrastructure with SEO optimization. Performance and mobile optimization are good, but accessibility features are basic. Security posture is weak due to lack of visible security headers, absence of privacy and cookie policies, and no incident response or vulnerability disclosure information. The domain uses privacy protection for WHOIS data, which is common for small businesses but reduces transparency. Overall, the website is functional and professional but lacks critical security and privacy compliance elements.

M

Home mtsonline - Outstanding Booking Performance.

mts-online.com

62

The website www.mts-online.com presents itself as a digital marketing and online sales performance service provider, focusing on outstanding booking performance through targeted digital marketing and online distribution. The content is professional and business-oriented, targeting companies seeking to improve their booking and sales results. The technical infrastructure leverages modern web technologies including Astro framework, Swiper.js for UI components, and integrates major analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag. The website is accessible without any WAF or security challenge blocking content, and it uses HTTPS with a good SSL configuration. However, the security posture is moderate due to the absence of security headers and lack of visible privacy or cookie policies. The WHOIS data is notably missing or unavailable, which raises concerns about domain registration legitimacy and reduces overall trust. No contact information or security incident response details are provided, limiting transparency and compliance indicators. Overall, the website is functional and professional but requires improvements in security best practices, privacy compliance, and transparency to enhance trust and reduce risk.

M

Marché du Film Online

marchedufilm.online

59

Marché du Film Online is a specialized online platform dedicated to hosting film industry events such as online screenings, livestreamed conferences, pitching sessions, and showcases. It serves as a digital marketplace and networking hub for film professionals, sales agents, and participants worldwide. The platform is closely associated with the established Marché du Film brand, enhancing its market credibility and positioning it as a key player in the film event sector. The website is professionally designed, mobile-optimized, and integrates with trusted third-party services like Cinando for user authentication and Zendesk for support.

P

PicDrop GmbH

picdrop.com

72

PicDrop GmbH operates a professional photo sharing platform designed primarily for photographers and teams, offering services such as photo sharing, proofing, collaboration, and digital asset management. The platform is well-established with a significant user base and extensive content delivery, positioning itself as a trusted solution in the photography technology market. The website demonstrates a high level of digital maturity, utilizing WordPress with Elementor, modern SEO practices, and responsive design to provide an excellent user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are absent. The lack of publicly available WHOIS data introduces some transparency concerns but does not detract significantly from the overall legitimacy given the professional presentation and business information. Strategic recommendations include enhancing security header implementation, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

O

Oö. Ordensspitäler Koordinations GmbH

ooe-ordensspitaeler.at

66

Oö. Ordensspitäler Koordinations GmbH operates as a regional healthcare coordination entity in Upper Austria, focusing on hospital coordination, training, collective agreements, and patient information. The website presents a professional and consistent brand image, targeting patients, healthcare professionals, and trainees. The business model centers on healthcare service coordination within the regional hospital network. Technically, the site uses a modern tech stack including jQuery, Swiper.js, Orejime for cookie consent, Matomo and Google Analytics for tracking, and is built on the siteswift CMS platform. The site is mobile optimized, accessible, and SEO friendly. Security posture is good with HTTPS enforced, anonymized IP tracking, and CSRF protections, though additional security headers could enhance protection. Privacy compliance is strong with clear cookie and privacy policies aligned with GDPR. No direct contact emails or phone numbers were found on the homepage, suggesting contact details are on dedicated subpages. Overall, the website is trustworthy, well-maintained, and suitable for its healthcare audience.

M

Migros Group

migros-engagement.ch

75

The website engagement.migros.ch is a professionally designed platform representing the social engagement arm of the Migros Group, a leading Swiss enterprise. It focuses on promoting and funding cultural, community, health, education, climate, and technology initiatives. The site targets a broad audience interested in social projects and funding opportunities, positioning itself as a trusted non-profit resource under the Migros brand. Technically, the site uses modern JavaScript libraries, Google Analytics, Facebook Pixel, and OneTrust for cookie consent, indicating a mature digital infrastructure likely powered by Adobe Experience Manager. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security policies and vulnerability disclosures are absent. The site shows no signs of adult or unsafe content and is fully accessible without WAF or blocking mechanisms. Overall, the domain registration and website content align well, reflecting high legitimacy and trustworthiness.

N

Netzwerk Universitätsmedizin

netzwerk-universitaetsmedizin.de

61

Netzwerk Universitätsmedizin (NUM) is a German academic and government-affiliated network established to coordinate clinical COVID-19 research across university medical centers. The website serves as a central platform for researchers to access data, bioprobes, and initiate new studies, supported by various specialized research platforms. The site is professionally designed, multilingual (German and English), and uses TYPO3 CMS with modern web technologies. Hosting is provided by Hetzner, a reputable German hosting provider. Security posture is strong with HTTPS, consent management, and self-hosted Matomo analytics, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Contact is primarily via forms and dedicated contact pages, with social media presence on LinkedIn and YouTube. Overall, the site reflects a mature, trustworthy, and professional research network platform.

M

Medizinischer Fakultätentag

medizinische-fakultaeten.de

46

The Medizinischer Fakultätentag is a well-established non-profit umbrella organization representing medical faculties in Germany, focusing on advancing medical education and research. The website provides comprehensive information on their initiatives, members, and events, targeting academic and medical professionals. Technically, the site is built on WordPress with modern plugins and demonstrates good mobile optimization and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

S

Società editoriale Il Portico Spa

emi.it

53

EMI - Editrice Missionaria Italiana is a well-established Italian publishing company specializing in books, cultural events, and educational materials with a mission-oriented focus. The company operates under Società editoriale Il Portico Spa and has a strong market presence in Italy, targeting a general audience interested in literature and cultural content. The website reflects a professional and consistent brand image, offering a variety of services including book sales, event promotion, and newsletter subscriptions. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and Swiper.js, with good mobile optimization and SEO practices. Security-wise, the site uses HTTPS with DNSSEC enabled and implements cookie consent via Iubenda, though it lacks explicit security headers and a published security policy. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information and social media integration.

W

Welthaus Österreich

welthaus.at

51

Welthaus Österreich is a non-profit consortium of seven Catholic development organizations operating across multiple Austrian regions. The website serves as an educational platform offering workshops, materials, and guest encounters focused on global justice and development policy. It targets educators, activists, and the general public interested in development issues. The organization is small-sized, founded in 2017, and maintains a consistent brand presence across its regional partners. Technically, the site is built on WordPress with modern plugins like Yoast SEO and Matomo analytics, ensuring good SEO and moderate performance. Mobile optimization and accessibility are adequate but could be improved. Security posture is solid with HTTPS and cookie consent implemented, though lacks explicit security policies and incident response information. Overall, the site is trustworthy, professional, and compliant with basic privacy standards, though it could enhance transparency and security documentation.

M

MDR (Mitteldeutscher Rundfunk)

mdrjump.de

62

MDR JUMP is a digital entertainment brand operated by Mitteldeutscher Rundfunk (MDR), a major public broadcaster in Germany. The website serves as a hub for radio streaming, podcasts, video content, event information, and traffic updates primarily targeting audiences in Eastern Germany and Mitteldeutschland. The platform is well-branded, professionally designed, and integrates social media and Alexa skill support to enhance user engagement. The content is diverse, catering to a broad general audience with a focus on entertainment and community.

A

AFLAMUNA

daleel.film

45

Daleel.film is a specialized non-profit platform created by AFLAMUNA and partners to support independent Arab filmmakers by providing comprehensive guides focused on social and environmental engagement in filmmaking. The website offers multiple guides including funding resources, impact organizations, green production practices, and impact campaign toolkits. It targets independent filmmakers in the Arab region and aims to facilitate their journey with accessible, open resources. Technically, the website uses a modern tech stack including jQuery, Bootstrap, and Google Analytics, with a responsive design optimized for mobile users. Security posture is solid with HTTPS and CSRF protections, though it lacks visible security headers and privacy/cookie policies. The absence of WHOIS data suggests privacy protection, which is reasonable for this type of non-profit entity. Overall, the site is professional, trustworthy, and serves a niche community effectively.

1

10x Founders

10xfounders.com

65

10x Founders is a venture capital firm focused on early-stage investments in ambitious technology startups, primarily in Europe. The company positions itself as a leading early-stage investor with a strong network of over 200 entrepreneurs and investors, supporting founders to build global tech giants. Their portfolio includes notable companies such as Simpleclub and Ivy, and they emphasize their experience backing unicorns and successful exits. The website reflects a professional and modern digital presence built on Webflow, with fast performance and mobile optimization. Security posture is generally good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is unavailable, which raises some concerns about domain registration transparency. Overall, the business appears credible and well-positioned in the venture capital sector, but domain registration status should be monitored for legitimacy.

K

Katholische Kirche in Oberösterreich, Diözese Linz

gruessgott.at

62

The website www.gruessgott.at serves as the online presence for the GRÜSS GOTT! magazine, a publication affiliated with the Catholic Church in Upper Austria (Diözese Linz). It provides religious, cultural, and social content targeted at the general public interested in faith and church-related topics. The site offers access to current and past magazine issues, podcasts, and related articles. Technically, the site is built on the siteswift CMS platform, utilizing modern JavaScript libraries such as jQuery and Swiper.js, and integrates Piwik Pro for analytics. The site is mobile optimized and includes accessibility features. Security-wise, it employs CSRF tokens in forms and a GDPR-compliant cookie consent mechanism, but lacks explicit security headers and incident response information. The domain uses privacy protection for WHOIS data, which is justified for this non-profit entity. Overall, the site is professional, trustworthy, and safe for general audiences.

M

Medienreferat der Österreichischen Bischofskonferenz

katholisch.at

67

Katholisch.at is the official web portal of the Catholic Church in Austria, operated by the Medienreferat der Österreichischen Bischofskonferenz. It provides comprehensive news, information, and resources related to the Catholic Church's activities, liturgical calendar, and religious education. The website targets the Austrian Catholic community and the general public interested in church affairs. Technically, the site uses a modern CMS (siteswift-CMS) and popular JavaScript libraries such as jQuery and Swiper.js, ensuring a responsive and user-friendly experience. Privacy and security are well addressed with HTTPS, cookie consent management via Klaro, and use of security headers. However, explicit contact information and formal security policies are not prominently displayed. Overall, the site is professional, trustworthy, and well-maintained, serving as a key informational resource for its audience.

K

KIRCHENZEITUNG Diözese Linz

kirchenzeitung.at

61

KIRCHENZEITUNG Diözese Linz operates as a regional religious media outlet providing news, cultural, and spiritual content grounded in Christian worldview. The website targets the Catholic community and church-interested individuals primarily in Austria. It offers subscription services, event information, and digital ePaper access, positioning itself as a trusted source within its niche. Technically, the site is built on the siteswift CMS platform, leveraging modern JavaScript libraries such as jQuery and Swiper.js, and integrates Piwik PRO for analytics with a strong emphasis on privacy compliance via Klaro consent management. Security posture is solid with HTTPS enforced and CSRF protections in place, though some security headers could be improved. The site is well-optimized for mobile and accessibility, with clear navigation and professional design. No blocking or WAF challenges were detected, allowing full content access.

Ö

Österreichische Ordenskonferenz

ordensgemeinschaften.at

63

The website www.ordensgemeinschaften.at represents the Österreichische Ordenskonferenz, a non-profit organization serving as the central representative body for 191 religious orders in Austria. The site provides comprehensive information about these orders, their social, educational, and cultural activities, targeting the general public interested in religious and spiritual matters. The organization positions itself as a key advocate and information hub for religious communities in Austria. Technically, the website is built on the siteswift-CMS platform and employs a modern tech stack including jQuery, Swiper.js, and Matomo analytics. It features a responsive design optimized for mobile devices and includes a robust cookie consent mechanism via Klaro. The site demonstrates good SEO practices and accessibility features, although some improvements could be made. From a security perspective, the site enforces HTTPS, implements CSRF protection on forms, and includes standard security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and GDPR-aligned consent management. However, the site lacks explicit security policies, incident response information, and terms of service. Overall, the website is trustworthy, professionally maintained, and aligned with its non-profit mission. Strategic recommendations include publishing security and incident response policies, enhancing accessibility, and providing clearer direct contact information to improve user trust and compliance.

A

ARGE AVM ÖSTERREICH (Arbeitgemeinschaft der diözesanen Medienstellen Österreichs)

medienverleih.at

58

The website medienverleih.at serves as a media platform and service facility for the dioceses of Austria, providing audiovisual media and educational content primarily focused on church-related topics for children and the general public. It acts as a central hub linking various diocesan media centers and offers resources such as explanations of religious holidays and media lending services. The site targets educational and church communities within Austria, positioning itself as a non-profit media service provider within the religious sector. Technically, the website is built on the siteswift-CMS platform and employs a modern tech stack including jQuery, Swiper.js for sliders, and a comprehensive cookie consent management system (Klaro). The site demonstrates moderate performance and good mobile optimization, with accessibility features and basic SEO practices in place. Security-wise, the site uses CSRF tokens in forms and cookie consent mechanisms but lacks visible advanced security headers and explicit security policies. From a security posture perspective, the site shows awareness of privacy compliance with GDPR-aligned cookie consent and a linked privacy policy. However, no explicit incident response or vulnerability disclosure policies are found. The absence of contact emails and phone numbers on the main page limits direct communication channels. The site is free from adult or questionable content, making it safe for general audiences. Overall, medienverleih.at is a professionally maintained, moderately secure, and privacy-conscious website serving a niche non-profit media service role within the Austrian diocesan community. Strategic improvements in security headers, explicit security policies, and enhanced contact information could further strengthen its trustworthiness and compliance.

D

Diözese Linz

spirituelle-wegbegleiter.at

64

The website represents the Spirituelle Wegbegleiter:innen initiative under the Diözese Linz, a religious non-profit organization in Austria. It offers spiritual guidance, training courses, and community events focused on meditation, fasting, pilgrimage, and grief counseling. The site is well-positioned regionally as a trusted spiritual resource with a clear target audience of individuals seeking spiritual support and education. The business model is non-profit and community-oriented, supported by the Catholic Church in Upper Austria. Technically, the website uses a modern CMS (siteswift), with a tech stack including jQuery, Swiper.js, and a consent management platform (Klaro). It integrates Google Analytics and Piwik Pro for analytics with privacy-conscious configurations such as IP anonymization and opt-in consent. The site is mobile-optimized, accessible, and SEO-friendly, with good performance characteristics. Security posture is solid with HTTPS enforced, CSRF protection on forms, and a comprehensive cookie consent mechanism. However, some security headers are missing and no explicit security or incident response policies are published. No vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professional, and compliant with GDPR. It effectively serves its community with relevant content and maintains a good balance between usability, privacy, and security.

A

Associazione Italiana dei Pazienti con Disordini Rari del Metabolismo del Fosfato

aifosf.it

53

AIFOSF is an Italian non-profit association dedicated to patients with rare disorders of phosphate metabolism. The organization focuses on promoting knowledge dissemination, prevention initiatives, and social aspects related to these rare diseases. The website serves as an information hub for patients, healthcare professionals, and researchers, providing news, events, and educational resources. The association maintains a scientific committee and collaborates with partners such as Kyowa Kirin, indicating a credible presence in the healthcare non-profit sector. Technically, the website is built on WordPress using the Elementor framework, leveraging modern web technologies such as jQuery, Swiper.js, and Font Awesome for UI elements. The site is mobile-optimized and presents a professional design with clear navigation. Performance is moderate, with room for improvement in SEO and accessibility features. From a security perspective, the site enforces HTTPS and shows no signs of WAF or blocking mechanisms. However, it lacks several security headers and does not provide a visible security policy or incident response contacts. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected, which is important for GDPR adherence. Overall, the website is trustworthy and professionally maintained, serving its niche audience effectively. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance its security posture and regulatory compliance.

B

Bündnis für Gemeinnützigkeit

buendnis-gemeinnuetzigkeit.org

49

Bündnis für Gemeinnützigkeit is a German non-profit coalition representing the third sector, including culture, sports, nature conservation, and welfare organizations. It acts as a collective voice advocating for civic engagement and democratic participation in society. The organization is well-established since 2010 and collaborates with leading umbrella organizations and civil society experts. The website provides information about its mission, members, positions, and events, targeting stakeholders in the non-profit and civic sectors in Germany. Technically, the site is built on WordPress with modern plugins and frameworks, offering good SEO and mobile optimization. Security posture is solid with HTTPS and domain transfer protection, but lacks DNSSEC and some security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact is primarily via email and a contact form, with no phone numbers or social media links visible. Overall, the site is professional, trustworthy, and serves its audience effectively.

A

Arxia

arxia.be

63

Arxia is a professional association representing employers in the private security sector in Belgium. The organization focuses on advocacy, information dissemination, and membership services for companies involved in private security, including surveillance and security technology. The website is built on Drupal 10, employs modern web technologies, and includes cookie consent mechanisms to comply with privacy regulations. The site is accessible without restrictions and presents professional content relevant to its target audience. Security posture is good with HTTPS enforced, though additional security headers and explicit policies could enhance trust. WHOIS data is restricted due to registry policies, but the domain and website content align with a legitimate business entity.

V

Ville de Lancy

lancy.ch

56

Ville de Lancy is the official municipal website for the city of Lancy, Switzerland, providing comprehensive information about the city's administration, cultural programming, social services, environmental initiatives, and community activities. It serves residents and visitors with relevant municipal services and event information. The website positions itself as a key information hub for the third largest commune in the canton of Geneva by population. Technically, the site is built on Drupal 10 with modern front-end frameworks such as Bootstrap and Swiper.js, ensuring good mobile optimization and accessibility. The site uses HTTPS and integrates tracking tools like Facebook Pixel and Google Tag Manager for analytics and marketing purposes. Security posture is solid with no visible vulnerabilities or exposed sensitive data, but lacks publicly available privacy and cookie policies, security policies, and incident response information, which are important for compliance and trust. Overall, the website is professional, trustworthy, and well-maintained, but could improve privacy compliance and transparency.

B

Beurer

shop-beurer.com

64

Beurer's official online store presents a well-structured e-commerce platform focused on health, wellness, beauty, and kid care products. The site leverages Shopify's robust infrastructure and integrates multiple marketing and analytics tools to enhance customer engagement and operational efficiency. The presence of customer reviews and comprehensive privacy and cookie policies reflects a mature digital presence. However, the absence of WHOIS domain registration data and direct company contact details introduces some uncertainty regarding domain ownership transparency. Overall, the website demonstrates a strong market position in the healthcare retail sector with a professional and secure online shopping experience.

F

Flix SE

flix.careers

60

Flix SE operates an international career website focused on attracting talent for its tech-driven transportation services. The company emphasizes sustainability, teamwork, and personal growth, positioning itself as a modern and innovative player in the travel industry. The website provides comprehensive career information, office locations worldwide, and insights into company culture, targeting job seekers interested in technology and global opportunities. Technically, the site is built on WordPress with modern JavaScript libraries and SEO optimizations, hosted likely on DigitalOcean infrastructure. Security posture is strong with HTTPS enforced and consent management implemented, though some security headers and explicit incident response contacts are missing. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting Flix SE's brand and recruitment efforts effectively.

G

GUURU

guuru.com

65

GUURU is a technology company specializing in AI-based customer service solutions that connect shoppers with passionate customer communities for authentic product advice. The company operates a B2B SaaS model targeting e-commerce businesses seeking to enhance shopper trust and engagement through live community conversations. The website demonstrates a mature digital presence with a WordPress CMS, modern JavaScript libraries, and integrations with HubSpot and Google Tag Manager for analytics and marketing. Security posture is solid with HTTPS, domain transfer protection, and cookie consent mechanisms, though improvements such as enabling DNSSEC and publishing security policies are recommended. Overall, GUURU presents a professional, trustworthy, and well-branded online presence with clear market positioning in the AI customer service niche.

M

Mairie du Grand-Saconnex

grand-saconnex.ch

55

The website www.grand-saconnex.ch serves as the official digital presence of the municipality of Grand-Saconnex in Switzerland. It provides comprehensive information about local government services, community events, social and cultural activities, and practical resources for residents and businesses. The site targets local citizens, businesses, and visitors, positioning itself as a trusted source for municipal information and services. The business model is that of a government entity focused on public service and community engagement. Technically, the website is built on Drupal 10, leveraging modern web technologies such as Bootstrap Icons, Swiper.js, and LightGallery for enhanced user experience. It employs Google Analytics for visitor insights and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS and uses cookie consent banners to comply with privacy regulations. No critical vulnerabilities or exposed sensitive data were detected. However, there is room for improvement in publishing explicit security policies and incident response contacts, as well as enhancing HTTP security headers. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy standards. It effectively serves its community with relevant content and functional design, though it could benefit from additional transparency in security and incident management policies.

C

Commune de Choulex

choulex.ch

50

The website 'Commune de Choulex' serves as the official online presence for the local government of Choulex, Switzerland. It provides residents and visitors with essential information about municipal administration, political affairs, public services, leisure activities, commerce, environmental initiatives, and community support programs including assistance for Ukrainian refugees. The site targets local citizens and stakeholders seeking authoritative municipal information. Technically, the website is built on WordPress using the Colibri Page Builder Pro plugin, leveraging common web technologies such as jQuery, Swiper.js, and Fancybox for interactive elements. The site is mobile-optimized and presents a professional design with clear navigation, although accessibility features are basic. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks some recommended security headers and does not display privacy or cookie policies, which are important for GDPR compliance. Overall, the website is trustworthy and credible as a government resource but would benefit from enhanced privacy compliance and security hardening.

C

Commune d'Aire-la-Ville

aire-la-ville.ch

47

The website www.aire-la-ville.ch serves as the official online presence for the Commune d'Aire-la-Ville, a local government entity in the Canton of Geneva, Switzerland. It provides residents and visitors with information about municipal administration, political bodies, administrative procedures, territorial planning, communication, foundations, regulations, job offers, and election information. The site is primarily targeted at local citizens and government stakeholders. Technically, the site is built on WordPress 6.8.3, incorporating standard web technologies such as HTML5, CSS3, Google Maps API, and Swiper.js for interactive elements. The site demonstrates moderate performance and good mobile optimization, with a clear navigation structure and consistent branding. Security-wise, the site uses HTTPS with a good SSL configuration but lacks visible security headers and published security policies. Privacy compliance is weak, with no privacy or cookie policies detected, and no consent mechanisms in place. Contact information is not clearly visible in the provided HTML content. Overall, the site is legitimate and trustworthy as a government portal but would benefit from enhanced privacy and security disclosures.

D

Deutsche Hochschulmedizin e.V.

deutsche-hochschulmedizin.de

47

Deutsche Hochschulmedizin e.V. is a non-profit association representing university hospitals and medical faculties across Germany. It serves as a central body advocating for the interests of university medicine, promoting collaboration in teaching, research, and patient care. The organization targets stakeholders in politics, science, and society, positioning itself as a key player in the German healthcare sector. The website reflects a professional and consistent brand image, with clear communication of its mission and services. Technically, the website is built on WordPress 6.8.3, utilizing modern JavaScript libraries such as jQuery, Swiper.js, and Borlabs Cookie for consent management. The site is mobile-optimized and demonstrates good SEO practices with structured data and meta tags. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is limited but consistent with the website's legitimacy, supported by authoritative nameservers and external partner links. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements in security headers, incident response transparency, and accessibility would enhance its security posture and user trust.

H

Heritage Orchestra

theheritageorchestra.com

49

Heritage Orchestra is a well-established UK-based music organization specializing in non-classical and electronic orchestral collaborations. The website showcases their projects with high-profile artists and offers merchandise through an integrated WooCommerce shop. The business targets music fans and collaborators interested in innovative orchestral performances. Technically, the site is built on WordPress with modern JavaScript libraries and is mobile-optimized, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks DNSSEC and security headers, and no explicit privacy or cookie policies are present, indicating compliance gaps. Overall, the domain registration is consistent with the business history, enhancing trustworthiness.

D

Distinction Agency

distinctionagency.com

71

Distinction Agency is a specialized marketing firm focusing on athlete and influencer marketing, delivering authentic partnerships, dynamic content, and strategic public relations. The company targets athletes, brands, creators, and sports properties, positioning itself as a niche player in the media sector. Founded in 2018, the agency offers services including social media marketing, experiential marketing, and public relations, aiming to amplify client influence through tailored campaigns. Technically, the website is built on WordPress, utilizing common technologies such as jQuery, Swiper.js for sliders, and WPForms for contact forms. The site demonstrates good mobile optimization and moderate performance, with a professional design and clear navigation. Hosting and domain registration are consistent with the business profile, registered via GoDaddy since 2018. From a security perspective, the site employs HTTPS and form validation but lacks advanced security headers and DNSSEC. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by a privacy policy and cookie consent banner, though no explicit security or incident response policies are present. Overall, the website presents a professional and trustworthy front with minor technical and security improvements recommended to enhance protection and compliance.

D

Dévorer

devorer.com

56

Dévorer is a UK-based company specializing in redefining campus dining experiences by integrating global street food offerings with data-driven insights and sustainable practices. The company targets university students and campus communities, operating events across multiple UK locations including prestigious institutions like Imperial College London. Their business model leverages partnerships with over 300 street food vendors and employs AI and computer vision technologies to optimize vendor selection and consumer satisfaction. The website reflects a mature, small-sized business with a strong emphasis on innovation and sustainability.

S

Stadtbibliothek Biel/Bienne

bibliobiel.ch

50

Stadtbibliothek Biel/Bienne is a bilingual public library serving the Biel/Bienne region in Switzerland. It focuses on promoting culture and information through a variety of services including book lending, digital media access, events, and educational programs. The library is supported financially by the city of Biel, the Canton of Bern, and regional cultural associations, positioning it as a key cultural institution in the area. The website reflects this mission with bilingual content, event listings, and access to digital resources. Technically, the site is built on the Weblication CMS platform, utilizing modern JavaScript libraries such as jQuery and Swiper.js, and integrates Google Analytics and Tag Manager for user tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and anonymizes IPs in analytics, but lacks some security headers and a cookie consent mechanism, which are recommended for GDPR compliance. No critical vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and serves its public service role effectively.

S

SolarXplorers SA

solarstratos.com

52

SolarStratos is an innovative Swiss-based project by SolarXplorers SA focused on pioneering solar-powered stratospheric flight to demonstrate sustainable technology and climate protection. The website presents a professional and well-structured digital presence with rich multimedia content, targeting eco-conscious audiences and aviation enthusiasts. The project leverages sponsorships and memberships to support its mission. Technically, the site is built on WordPress with Elementor and integrates modern tracking and marketing tools such as Google Analytics and Facebook Pixel. Security posture is generally good with HTTPS and cookie consent mechanisms, but lacks visible security headers and explicit security policies. WHOIS data is missing, which raises some legitimacy concerns, though the active social media presence and detailed contact information mitigate this risk. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced transparency in domain registration and security disclosures.