Security Directory

N

NORCE

norceresearch.no

64

NORCE is a Norwegian research institute focused on sustainable innovations and solutions for the future. The website presents a professional and consistent brand image, targeting a general audience interested in research and innovation. The technical infrastructure includes modern web technologies and analytics tools such as Matomo and Cookiebot for consent management, indicating a mature digital presence. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the website is trustworthy and well-maintained, with no signs of malicious activity or content blocking.

A

Artsdatabanken

artsdatabanken.no

72

Artsdatabanken is a Norwegian national knowledge bank dedicated to biodiversity, providing authoritative data on species and nature types. The website serves researchers, government agencies, and the public with updated and accessible information. Technically, the site is built on Drupal 11, uses Cloudflare for security and performance, and integrates Google Analytics and Microsoft Clarity for user insights. The cookie consent mechanism is robust and GDPR compliant, reflecting a mature privacy posture. Security practices are strong with HTTPS and security headers, though explicit security and incident response policies are not publicly found. Overall, the site is professional, trustworthy, and well-optimized for mobile and accessibility.

F

Forsvarets forskningsinstitutt (FFI)

ffi.no

70

Forsvarets forskningsinstitutt (FFI) is the Norwegian defense sector's dedicated research institution, specializing in applied research and development to ensure an effective and relevant defense, a secure society, and a competitive defense industry. The organization operates primarily on project-based funding from the Norwegian Armed Forces and related sectors, delivering services such as contract research, advisory, analysis, and product development. The website reflects a professional and comprehensive digital presence, targeting government stakeholders, defense industry partners, researchers, and the public. Technically, the website employs modern web technologies including Google Fonts, Vimeo API, and Siteimprove Analytics, with responsive design and accessibility features. The platform appears custom-built, likely managed by Bouvet, a Norwegian IT consultancy. Performance is moderate with good mobile optimization and SEO practices. From a security perspective, the site enforces HTTPS, includes a cookie consent mechanism, and avoids exposing sensitive data. However, explicit security headers and published security policies or incident response information are absent, representing areas for improvement. The WHOIS data is unavailable, which reduces transparency but does not detract from the site's legitimacy given its official .no domain and government affiliation. Overall, the site is trustworthy, professionally maintained, and compliant with privacy regulations, making it a reliable source for defense research information. Strategic recommendations include enhancing security headers, publishing security policies, and improving domain registration transparency.

C

CoreTrustSeal

coretrustseal.org

46

CoreTrustSeal is a specialized certification organization focused on accrediting trustworthy data repositories to promote sustainable data infrastructures. The website positions the organization as a recognized authority in the data repository certification domain, offering clear information on certification requirements, application processes, and certified repositories. The target audience includes data repository managers, research communities, and data infrastructure stakeholders. Technically, the website is built on WordPress with modern web technologies such as jQuery, Font Awesome, and Swiper.js. It employs HTTPS with a valid SSL certificate and integrates Google reCAPTCHA for form security. The site includes a GDPR-compliant cookie consent mechanism powered by Complianz, indicating a mature approach to privacy compliance. Performance and mobile optimization are good, with accessible navigation and professional design. From a security perspective, the site demonstrates good practices including HTTPS enforcement and spam protection via reCAPTCHA. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. WHOIS data is unavailable due to privacy protection, which is justified for this type of organization. The overall security posture is strong but could be improved with additional transparency on security policies. Overall, CoreTrustSeal's website is professional, trustworthy, and compliant with privacy regulations. It effectively serves its niche market with clear content and functional design. Strategic recommendations include enhancing security header implementation, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and security posture.

I

IAG - International Association of Geodesy

iag-aig.org

52

The International Association of Geodesy (IAG) is a globally recognized scientific organization dedicated to advancing geodesy research and collaboration. Established in 1862 and operating under the umbrella of the International Union of Geodesy and Geophysics (IUGG), IAG promotes geodetic science through research, data coordination, and technological development. The website serves as a comprehensive portal for information on IAG's structure, commissions, projects, and events, targeting the scientific community and related stakeholders. Technically, the website is built on a modern WordPress platform with a suite of plugins enhancing SEO, accessibility, and event management. The site demonstrates good mobile optimization and performance, with a professional design and clear navigation. However, some security best practices such as enabling DNSSEC and implementing security headers are missing. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Security posture is generally good with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The domain registration details align well with the organization's identity, enhancing trustworthiness. Social media integration is strong, supporting community engagement. Overall, the website is a professional and trustworthy resource for geodesy research and collaboration, though improvements in privacy compliance and security policies are recommended to enhance user trust and regulatory adherence.

I

IAG - International Association of Geodesy

ggos.org

52

The International Association of Geodesy (IAG) operates the Global Geodetic Observing System (GGOS) website, providing a comprehensive platform for geodetic infrastructure, data products, and scientific expertise to monitor Earth system processes. The organization is positioned as a leading global scientific entity in geodesy, targeting researchers, scientists, and governmental bodies. The website reflects a professional and consistent brand aligned with IAG's mission and is hosted on a WordPress platform with modern plugins and SEO tools. Technically, the site is well-structured, mobile-optimized, and uses HTTPS with reCAPTCHA for security, though it lacks DNSSEC and some security headers. Privacy and cookie policies are not explicitly found, indicating room for compliance improvement. Overall, the site is trustworthy, secure, and serves its scientific community effectively.

S

Sparkasse Hegau-Bodensee

sparkasse-hegau-bodensee.de

67

Sparkasse Hegau-Bodensee is a regional German bank serving private and corporate customers primarily in the Hegau and Bodensee regions. The website offers a comprehensive range of banking services including online banking, accounts, credit cards, loans, investments, insurance, and real estate financing. The bank positions itself as a trusted local financial institution with strong community ties and a focus on customer service. Technically, the website is built on a modern CMS platform (likely Adobe Experience Manager), uses standard web technologies, and is optimized for accessibility and SEO. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and session management features, although explicit security policies and incident response contacts are not publicly listed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, reflecting a mature digital presence for a regional bank.

B

British Chamber of Commerce Czech Republic

britcham.cz

46

The British Chamber of Commerce Czech Republic is a professional membership organization dedicated to fostering trade and business growth between British, Czech, and international companies. It offers a variety of services including networking events, business support, and specialized programmes such as EduBusiness Lounge and Power Talks. The website reflects a well-established entity with a clear market position and a medium-sized membership base. Technically, the site is built on WordPress with modern plugins and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA usage, though additional security headers could enhance protection. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and serves its target audience effectively.

D

Daniel Kiechle EDV

kiechle-edv.de

52

Daniel Kiechle EDV is a small German IT service provider specializing in infrastructure, security, and communication solutions. The company targets local businesses and professionals seeking IT consulting and remote support services. The website is professionally designed using WordPress with a clear focus on its core services and contact accessibility. The technical infrastructure is based on a standard WordPress CMS with common libraries such as jQuery and Bootstrap, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though it lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and functional but could improve in security and compliance transparency.

B

Baustoffmarkt-Gruppe

baustoffmarkt-gruppe.de

51

Baustoffmarkt-Gruppe is a German company specializing in building materials, targeted modernization, and sustainable renovation services. The website serves as a digital presence to inform and attract customers interested in construction and renovation projects. The company appears to operate in the retail sector with a medium-sized business profile. Technically, the website is built on WordPress using the Divi theme, with common plugins for enhanced functionality and tracking. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is partially addressed with a cookie policy and consent mechanism, but no clear privacy policy or terms of service pages were found. Contact information is limited to a contact form without explicit emails or phone numbers. Overall, the website is professional and trustworthy but could improve transparency and security documentation.

IFB Eigenschenk GmbH is a small engineering consultancy specializing in geotechnics, planning, construction supervision, water, and environmental services. The company targets clients requiring specialized engineering and environmental project support. The website is built on TYPO3 CMS and employs modern consent management tools such as Usercentrics and Google Tag Manager for analytics and tracking. The technical infrastructure is moderate in performance with good mobile optimization and SEO practices. Security posture is adequate with HTTPS usage and cookie consent but lacks visible security headers and formal security policies. No privacy policy or terms of service were found, which is a compliance gap. The WHOIS data is minimal but does not raise immediate concerns about legitimacy. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

C

CTS Composite Technologie System GmbH

ctscom.de

42

CTS Composite Technologie System GmbH is a German medium-sized manufacturing company specializing in GRP (glass reinforced polyester) constructions and grating systems for industries such as railway, offshore, architecture, and chemical sectors. The company emphasizes corrosion resistance and durability in its products, serving industrial clients and construction professionals. The website is built on Drupal 7 with a moderate technical infrastructure including jQuery, Bootstrap, and Google Analytics with IP anonymization. The site features cookie consent mechanisms and basic privacy compliance, though the privacy policy is only available in German. Security posture is moderate with some risks due to outdated CMS and libraries. No critical vulnerabilities or malicious content were detected. Overall, the website presents a professional and trustworthy business presence with room for technical and security improvements.

K

Kurt König

kurt-koenig.de

71

Kurt König Baumaschinen is a German-based company specializing in the sales and servicing of construction machinery. The company appears to be an established medium-sized business with a domain registered since 2001, indicating a long-standing presence in the industry. Their website targets construction companies and machinery operators, offering key services related to heavy equipment. The digital infrastructure leverages modern frontend technologies such as Tailwind CSS and integrates marketing and analytics tools like HubSpot and Google Tag Manager. Hosting is provided via Amazon AWS DNS infrastructure, ensuring reliable availability. Security posture is adequate with HTTPS enabled and domain status protections, but lacks advanced security headers and DNSSEC. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy or terms of service pages. Overall, the website is professional and trustworthy, though improvements in privacy transparency and security hardening are recommended.

V

vanRaam

vanraam.com

68

vanRaam is a specialized manufacturer of custom bicycles tailored for special needs, including electric tricycles, tandem bikes, wheelchair bikes, and low-entry bikes. With over 110 years of Dutch quality craftsmanship, the company targets individuals and organizations requiring adaptive cycling solutions. The website reflects a well-established niche business with a clear focus on accessibility and customization. Technically, the site is built on modern frameworks such as Next.js and React, hosted on Vercel, and integrates reputable third-party services for analytics, marketing, and payment processing. The site is performant, mobile-optimized, and includes a comprehensive cookie consent mechanism, demonstrating good digital maturity. Security posture is strong with HTTPS enforced and use of Cloudflare for protection, though explicit security headers and incident response policies are not clearly published. The absence of WHOIS data limits domain trust verification, but the professional presentation and use of trusted services support legitimacy. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in business credibility and transparency.

B

Bayerisches Staatsministerium für Ernährung, Landwirtschaft, Forsten und Tourismus

100genussorte.bayern

71

Genussorte Bayern is a government-backed initiative promoting the culinary richness of Bavaria through a well-structured website featuring regional specialties, events, recipes, and interactive maps. The platform targets both residents and tourists interested in exploring Bavarian food culture. Technically, the site is built on WordPress with Elementor and uses modern JavaScript libraries and plugins to enhance user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although some HTTP security headers could be improved. Privacy compliance is robust, with a comprehensive privacy policy and cookie management system. Overall, the site presents a trustworthy and professional image consistent with its government affiliation.

Genuss Bayern is a Bavarian government-affiliated platform dedicated to promoting the rich culinary heritage and regional specialties of Bavaria. The website serves as an informational hub offering insights into Bavarian food culture, recipes, regional producers, and culinary tours, targeting both locals and tourists interested in authentic Bavarian cuisine. The platform is positioned as a niche cultural and culinary promoter within the Bavarian region, leveraging official government branding and partnerships with related Bavarian culinary initiatives. Technically, the website is built on the IMPERIA CMS platform and uses standard web technologies such as Foundation CSS, Fancybox, and SlickNav for responsive design and user experience. The site demonstrates good mobile optimization, accessibility, and a clear navigation structure, although SEO and privacy compliance could be improved. Security posture is moderate with HTTPS usage implied but lacks explicit security headers and published security policies. No contact emails or phone numbers are directly available on the homepage, and no cookie consent mechanism is present, indicating partial GDPR compliance. Overall, the website is trustworthy and professional, with a focus on cultural promotion rather than commercial activity.

D

Diözesan-Caritasverband Würzburg

caritas-wuerzburg.de

53

The website www.caritas-wuerzburg.de represents the Diözesan-Caritasverband Würzburg, a large non-profit organization focused on social services, charitable activities, and community support within the Unterfranken region of Germany. The site offers extensive information about their services including help and counseling, volunteering, donations, projects, and social services for various vulnerable groups such as children, families, seniors, and people with disabilities. The organization positions itself as a regional leader in social welfare and charity, targeting a broad audience including those in need and potential volunteers or donors. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as Bootstrap, jQuery, and Font Awesome for UI components. It integrates privacy-conscious analytics via Matomo and employs Usercentrics for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization and accessibility features, with a well-structured navigation system that supports user experience and SEO. From a security perspective, the site enforces HTTPS and uses privacy-respecting analytics, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious external domains were detected. The WHOIS data is consistent with the website's professional presentation, indicating legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, serving as a reliable digital presence for a reputable non-profit organization. Strategic improvements could focus on enhancing security headers, publishing a security policy, and providing explicit contact information for incident response to further strengthen trust and security posture.

D

DA-ZWISCHEN

netzgemeinde-dazwischen.de

47

DA-ZWISCHEN is a German-language digital Christian community platform focused on fostering faith-based engagement and inspiration. The website offers community chat, monthly impulses via mail and messenger, and digital worship services, currently paused for reorientation. The platform positions itself as a niche non-profit community with a small but engaged audience. Technically, the site is built on WordPress with modern plugins for SEO and GDPR compliance, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. WHOIS data is unavailable due to malformed query responses, which slightly impacts trust but the website content and policies indicate legitimate operation. Overall, the site is professional, privacy-conscious, and safe for general audiences.

Kirchliche Jugendarbeit Diözese Würzburg is a non-profit organization affiliated with the Bistum Würzburg, focusing on youth work, education, and faith formation within the diocese. The website serves as a portal for information on events, services, and contact details aimed at young people and church communities. The organization holds a stable regional position with clear branding and a consistent message aligned with its religious and educational mission. Technically, the website is built on TYPO3 CMS with modern frontend technologies and includes privacy-conscious analytics and consent management tools. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, serving its audience effectively.

B

Bistum Würzburg

bistum-wuerzburg.de

53

Bistum Würzburg is a large regional Catholic Church organization serving the Unterfranken area in Germany. The website provides comprehensive information about faith, church services, community engagement, education, and charitable activities. It targets local Catholic believers and interested parties with a non-profit service model. Technically, the site is built on TYPO3 CMS with modern frontend technologies and uses Matomo for privacy-conscious analytics. The site implements GDPR-compliant cookie consent via Usercentrics and provides standard legal pages such as privacy policy and imprint. Security posture is good with HTTPS and privacy-respecting analytics, though some security headers could be improved. No blocking or WAF challenges were detected, and the site content is safe and appropriate for general audiences.

P

Pfarrei Evangelisch unter der Veste

evangelisch-gemeinsam.de

44

The website evangelisch-gemeinsam.de represents a regional non-profit religious community, specifically a parish composed of four evangelical-lutheran congregations in the Coburg area of Germany. It serves as an information portal for church services, events, groups, and community engagement, targeting local members and interested visitors. The site is built on Drupal 10, leveraging modern web technologies and includes a consent management system for GDPR compliance. The technical infrastructure is solid, hosted on a provider indicated by the nameservers kunde24.de, with good mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and cookie consent implemented, though some security headers could be improved and no explicit security policy or incident response information is published. The website does not employ advertising or extensive tracking, enhancing privacy compliance. Overall, the site is trustworthy, professional, and well-aligned with its community-focused mission.

F

Fachstelle für den Umgang mit sexualisierter Gewalt der ELKB

aktiv-gegen-missbrauch-elkb.de

52

The Fachstelle für den Umgang mit sexualisierter Gewalt der ELKB is a specialized non-profit entity operating under the Evangelical Lutheran Church in Bavaria (ELKB). It provides comprehensive support services including counseling for victims of sexualized violence, advisory roles in suspected cases, prevention work, and material assistance. The organization targets victims, church communities, and affiliated institutions, positioning itself as a trusted resource within the religious and social support sector in Germany. The website reflects a professional and well-branded digital presence with clear navigation and relevant content tailored to its audience. Technically, the website is built on WordPress with a modern theme (Avada) and utilizes plugins for SEO (Yoast), analytics (Matomo), accessibility, and newsletter management (CleverReach). Hosting is provided by Contabo, with domain registration consistent with the organization's identity. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Privacy considerations are evident through the use of Matomo with disabled cookies, but the absence of a cookie consent mechanism is a noted gap. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the lack of security headers and absence of published security or incident response policies indicate areas for improvement. Overall, the site maintains a high level of trustworthiness and professionalism, suitable for its sensitive and important mission. Risk assessment shows no critical vulnerabilities or suspicious indicators. Strategic recommendations include implementing security headers, adding cookie consent for GDPR compliance, publishing security policies, and considering a vulnerability disclosure mechanism to enhance transparency and trust.

M

Medical Valley EMN e. V.

medical-valley-emn.de

50

Medical Valley EMN e.V. is an internationally leading cluster based in Erlangen, Germany, focused on healthcare innovation and medical technology. The organization supports a broad target audience including industry partners, startups, researchers, healthcare providers, politicians, investors, and citizens. Their business model revolves around providing healthcare services along the entire value chain from product ideation to market access and reimbursement. The website reflects a strong market position as a key player in the healthcare innovation ecosystem in the European metropolitan region of Nuremberg.

I

IMU Institut GmbH

imu-institut.de

46

IMU Institut GmbH is a German-based independent research and consulting organization specializing in labor-oriented research, business consulting, and training with a focus on economic, organizational, and technological matters. With over 40 years of experience, the institute serves members of works councils, personnel councils, economic committees, supervisory boards, and companies, providing research projects, advisory services, seminars, and publications. The website is professionally designed, well-structured, and targets a German-speaking audience interested in workplace transformation and labor relations. Technically, the website is built on TYPO3 CMS using Bootstrap 5 and modern JavaScript libraries such as jQuery and Photoswipe. It is hosted on servers managed via DomainControl nameservers. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced and secure form handling, but lacks explicit security headers and incident response information. The security evaluation shows no critical vulnerabilities or exposed sensitive data. Privacy compliance is strong with a comprehensive privacy policy, but the absence of a cookie consent mechanism and security.txt file are noted gaps. Contact information is clearly presented with multiple channels including email, phone, and a contact form. Social media presence on Facebook and LinkedIn supports trust and outreach. Overall, IMU Institut GmbH's website reflects a credible, professional, and secure online presence suitable for its business domain. Strategic improvements in cookie consent, security headers, and incident response disclosures would enhance compliance and security posture further.

A

Aspekte GmbH Ludwigsburg

aspektegmbh.de

52

Aspekte GmbH Ludwigsburg is a small German company specializing in advertising concepts, promotional products, and marketing services, with a niche focus on DJK-related merchandise distribution. The website is built on WordPress with a responsive design and includes accessibility and GDPR compliance features, indicating a moderate level of digital maturity. Security posture is good with HTTPS enabled and cookie consent mechanisms in place, though additional security headers and formal policies could enhance protection. Overall, the site is professional and trustworthy, serving business clients primarily in Germany.

M

Makkabi Deutschland e.V.

makkabi.de

62

Makkabi Deutschland e.V. is a prominent Jewish sports federation in Germany, focusing on organizing sports events, youth engagement, and social responsibility initiatives such as anti-antisemitism programs. The organization targets the Jewish community and sports enthusiasts, providing a platform for cultural and athletic activities. The website reflects a medium-sized non-profit entity with a consistent brand presence and active social media engagement. Technically, the site is built on WordPress using Elementor and several plugins to manage events and content, with moderate performance and good mobile optimization. Security-wise, the site enforces HTTPS and uses some security best practices but lacks explicit security policies and vulnerability disclosure mechanisms. Overall, the site is professional, trustworthy, and compliant with GDPR, though it could benefit from enhanced security headers and incident response information.

K

DIE DIGITALE PLATTFORM FÜR AMBITIONIERTE SPORTVEREINE

kurabu.com

70

Kurabu.com presents itself as a digital platform aimed at ambitious sports clubs, offering automation and simplification of club management processes without requiring IT expertise. The website is professionally designed with a clear focus on engaging all stakeholders in club activities to save time, money, and effort. The platform appears to operate on a SaaS business model targeting sports organizations. Technically, the site is built on Webflow and integrates modern tools such as Cookiebot for GDPR-compliant cookie consent, Google Tag Manager, and Hotjar for analytics. However, the absence of WHOIS data raises concerns about the domain's registration legitimacy. Security posture is moderate with HTTPS implied but lacking visible security headers and explicit security policies. Privacy compliance is supported by a comprehensive cookie consent mechanism, though no dedicated privacy policy or terms of service pages were found. Overall, the site is safe, professional, and user-friendly but would benefit from enhanced transparency and security documentation.

F

FIMCAP - International Federation of Catholic Parochial Youth Movements

fimcap.org

46

FIMCAP is an international non-profit federation uniting Catholic and Christian youth organizations across 28 countries with 31 member organizations. Founded in 1962 and officially recognized by the Holy See, it provides networking, advocacy, and organizes intercontinental and continental youth activities. The website is built on WordPress using modern plugins such as Elementor and Yoast SEO, hosted by GoDaddy. It features good design quality, clear navigation, and mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is basic with a cookie consent mechanism but no explicit privacy or terms of service pages. Overall, the site is trustworthy and professional, serving a general audience interested in youth and community development.

K

Kolping International

kolping.net

51

Kolping International is a well-established Catholic social non-profit organization with a global presence, serving 400,000 members across 60 countries. The organization focuses on social projects including education, microcredits, rural development, and water access initiatives. The website is professionally designed using WordPress with multilingual support and SEO optimization, reflecting a mature digital presence. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trust but does not detract from the overall legitimacy suggested by the website content. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and clarifying domain registration details.

The website kolping-europa.eu is currently inaccessible, presenting a 403 Forbidden error page that blocks access to any substantive content. Due to this restriction, no business information, contact details, or policies are available for review. The domain is registered through Tucows.com Co., a reputable registrar, but the lack of accessible content limits the ability to assess the company's market position or services. Technically, the site shows minimal optimization and lacks visible security headers or scripts, indicating a basic or placeholder setup. The security posture cannot be fully evaluated due to the blocked content, but the absence of HTTPS confirmation and security policies suggests potential gaps. Overall, the site presents a high risk for users due to lack of transparency and accessibility, and strategic recommendations include restoring access, implementing security best practices, and publishing compliance documentation.

S

Stiftung Pfadfinderinnen

stiftung-pfadfinderinnen.de

48

Stiftung Pfadfinderinnen is a German non-profit foundation dedicated to supporting innovative and traditional scouting projects within the Pfadfinderinnenschaft St. Georg community. The website serves as an informational and donation platform, providing project news, funding opportunities, and ways to support the foundation. The organization maintains a niche position in the non-profit sector focused on youth and scouting activities in Germany. Technically, the website is built on the Contao Open Source CMS and uses legacy JavaScript libraries such as jQuery 1.9.1 and the older Google Analytics ga.js script, indicating some modernization opportunities. Hosting is provided by Alfahosting, a German hosting provider, and the site uses HTTPS with a cookie consent mechanism, reflecting basic GDPR compliance. Security posture is moderate but could be improved by updating libraries and implementing security headers. Overall, the site is professional, trustworthy, and well-structured, with clear navigation and relevant content for its target audience.

P

PSG-Bundeskursstätte Ahrhütte

ahrhuette.de

63

The website www.ahrhuette.de represents PSG-Bundeskursstätte Ahrhütte, a small hospitality business specializing in group accommodation primarily for children and youth groups in the Eifel region of Germany. The business offers self-catering group houses for school trips, courses, and youth activities, with a focus on groups affiliated with child and youth welfare. The website content is well-structured, informative, and targeted to its niche audience, reflecting a consistent and professional brand image. The business is affiliated with the PSG-Bundesamt, which is evident from contact details and email domains. Technically, the website is built on the Contao Open Source CMS platform, utilizing jQuery and Revolution Slider for interactive elements. The site is moderately performant with good mobile optimization and basic accessibility features. SEO is basic but functional, with meta tags and structured data present. The website employs HTTPS with a good SSL configuration and includes a cookie consent mechanism compliant with GDPR requirements. However, explicit security headers and detailed security or incident response policies are not publicly available. From a security perspective, the site shows a good baseline posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is adequately addressed with clear privacy and cookie policies. Contact information is transparent and complete, enhancing business credibility. No adult or unsafe content is present, making the site suitable for general audiences. Overall, the website is a trustworthy, niche hospitality service platform with solid privacy practices and a moderate security posture. Strategic improvements in security headers, accessibility, and public security policies could further enhance its risk profile and compliance stature.

P

Pfadfinderinnenwerk St. Georg e.V.

psg-boutique.de

61

PSG Boutique is an e-commerce website operated by Pfadfinderinnenwerk St. Georg e.V., a German scouting organization. The site offers a variety of scouting-related merchandise including clothing, badges, work materials, and special campaign items. The business targets members and supporters of the organization, providing niche products tailored to this community. The website is built on WordPress with WooCommerce and uses modern plugins and themes to deliver a professional shopping experience. SEO and structured data are well implemented, enhancing discoverability and user experience. Contact information and privacy policies are clearly presented, supporting trust and compliance.

B

Burg Rothenfels am Main

burg-rothenfels.de

51

Burg Rothenfels am Main is a historic hospitality and educational institution located in Bavaria, Germany. The organization operates a youth hostel and conference center offering accommodation, educational programs, and event hosting with a focus on community, culture, and music. The website is professionally designed using TYPO3 CMS, with good accessibility and mobile optimization. It provides comprehensive contact information and GDPR-compliant privacy and cookie policies. The site integrates Google Analytics and Tag Manager with IP anonymization and includes an accessibility toolbar (eyeAble). Security posture is solid with HTTPS and secure analytics configuration, though it lacks explicit security headers and published security policies. Overall, the domain registration and website content are consistent and trustworthy, reflecting a legitimate and established non-profit hospitality provider.