Security Directory

ParisHotelsfr.com operates as an online hospitality platform focusing on hotel listings and tourism information primarily for Paris and the Bourgogne region, including the Communauté d’agglomération de l’Auxerrois. The website provides rich cultural and economic insights about the Auxerrois area alongside extensive hotel listings with direct links, targeting tourists and business travelers. Technically, the site uses modern web technologies such as Leaflet.js for mapping and is served over HTTPS, ensuring secure connections. However, the absence of WHOIS data and security headers indicates areas for improvement in transparency and security hardening. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is functional and professional but would benefit from enhanced security and compliance features.

D

Defi Mode

defimode.org

60

Defi Mode is an organization dedicated to supporting and accelerating the development and transformation of actors in the French fashion and apparel industry. The website presents a professional and consistent brand image, targeting industry stakeholders and professionals in France. The business model appears to be that of a non-profit or industry support entity, with a medium-sized presence established since at least 2016. Technically, the site is built on WordPress using modern plugins such as Yoast SEO, Divi Builder, and Cookie Law Info, indicating a mature digital infrastructure with good SEO and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit privacy policies are lacking. Overall, the site is trustworthy and safe, with no adult or questionable content detected.

M

Musée du Désert

museedudesert.com

52

The Musée du Désert website presents a small cultural and historical museum focused on the Huguenot and Camisard heritage in France. The site offers information about the museum, its exhibitions, and related activities, targeting a general audience interested in history and culture. The business model appears to be non-profit and educational, with a boutique for visitors. Technically, the site is built on the SPIP CMS platform using jQuery and Colorbox for UI enhancements. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. Security posture is weak, with no visible security headers or privacy policies, and the WHOIS data is missing or indicates the domain may be unregistered, which raises concerns about domain legitimacy. Overall, the site is functional but requires improvements in security, privacy compliance, and domain registration transparency.

I

IONOS SARL

1and1.fr

65

IONOS SARL is a prominent web hosting and cloud services provider targeting both individual and professional customers primarily in France and Europe. The company offers a comprehensive portfolio including domain registration, web hosting, email solutions, cloud services, website building tools, and e-commerce hosting. Their market position is that of a large enterprise with a strong brand presence and consistent digital footprint across multiple country-specific domains. The website is professionally designed with excellent content quality, clear navigation, and mobile optimization, reflecting a mature digital infrastructure. Technically, the site leverages modern web technologies such as Next.js and React, ensuring a responsive and performant user experience. The presence of structured data and comprehensive meta tags supports good SEO practices. Security-wise, the website enforces HTTPS, implements key security headers, and uses secure forms, indicating a solid security posture. However, the absence of explicit security policies, incident response information, and vulnerability disclosure mechanisms suggests areas for improvement in transparency and security governance. The WHOIS data for the domain is notably missing or unavailable, which is unusual for a major enterprise and could be due to registry policies or privacy protection. While this does not directly indicate malicious intent, it reduces the transparency of domain ownership and registration details, slightly impacting trustworthiness. Overall, the website is safe, professional, and trustworthy, with no signs of adult or questionable content. Strategically, IONOS should enhance its security transparency by publishing detailed security policies and incident response contacts, and consider providing vulnerability disclosure channels. These steps will strengthen customer trust and compliance posture. Continued investment in technical modernization and privacy compliance will support sustained market leadership.

Crowe LLP is a large, established public accounting and consulting firm specializing in audit, tax, and consulting services for public and private entities. The website reflects a mature digital presence with comprehensive service descriptions, industry insights, and a strong emphasis on client engagement. The technical infrastructure leverages modern web technologies, including JavaScript frameworks, Google Tag Manager, and TrustArc for privacy compliance, hosted likely behind Cloudflare for performance and security. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers could be improved. The absence of WHOIS data is notable but does not detract from the professional presentation and trustworthiness of the site. Overall, Crowe LLP demonstrates a high level of digital maturity and compliance with privacy regulations.

R

Robert Bosch Stiftung

bosch-stiftung.de

53

The Robert Bosch Stiftung website represents a large, well-established non-profit foundation linked to the Bosch corporate group. The foundation focuses on funding and supporting projects in health, education, and global issues to promote a just and sustainable future. The website is professionally designed with excellent content quality, clear navigation, and consistent branding. It targets NGOs, educational institutions, policymakers, and the general public interested in social and global topics. Technically, the site uses Drupal 11 CMS with modern web technologies and moderate performance. Privacy compliance is strong, with clear cookie consent mechanisms and a comprehensive privacy policy. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are not publicly provided. Overall, the site is trustworthy, safe, and professionally maintained.

R

RAA Berlin

raa-berlin.de

41

RAA Berlin is a medium-sized non-profit organization based in Germany focused on diversity, inclusion, and community engagement. Their website highlights projects, publications, and educational offerings aimed at promoting social inclusion and addressing marginalization. The organization maintains a consistent brand presence and targets a general audience interested in social issues. Technically, the website is built on TYPO3 CMS, hosted by netcup, and integrates accessibility tools to enhance user experience. The site is well-structured, mobile-optimized, and provides multilingual options. Security posture is moderate with HTTPS assumed but lacking explicit security headers and incident response contacts. Privacy compliance is good with a comprehensive privacy policy but no visible cookie consent mechanism. Overall, the website is professional, trustworthy, and safe for general audiences.

E

Each One Teach One (EOTO) e.V.

eoto-archiv.de

44

Each One Teach One (EOTO) e.V. is a small non-profit community organization based in Berlin focused on education, empowerment, and cultural preservation for Black, African, and Afro-diasporic communities. Founded in 2012, it operates a neighborhood library and organizes events, workshops, and advocacy initiatives. The website reflects a well-structured and content-rich platform targeting its community with multilingual support and clear navigation. Technically, the site uses modern web technologies including HTTPS and JavaScript libraries like Swiper.js for interactive content. Security posture is good with HTTPS enabled and no exposed sensitive data, though it lacks some security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy, professional, and safe for general audiences.

П

ПАШОВИ КАРС ООД

pashovcars.com

57

Pashov Cars is a Bulgarian company specializing in the sale of high-quality used cars sourced from Europe, the USA, and Canada. The company offers a comprehensive range of services including free consultations, preferential leasing and credit terms, vehicle registration assistance, insurance services, and professional car servicing. Positioned as a trusted partner in the Bulgarian used car market, Pashov Cars targets individual and business customers seeking reliable automotive solutions. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, enhancing user experience and trust. Technically, the website employs modern web technologies including JavaScript, CSS, and HTML5, with integration of Google Tag Manager and Facebook Pixel for analytics and marketing. The platform is built on a custom e-commerce solution by Valival Commerce, with moderate performance and good SEO practices. Security posture is solid with HTTPS enabled and domain transfer protections, though some security headers could be improved. Privacy compliance is addressed with visible privacy and cookie policies and a consent mechanism. Overall, the security posture is adequate for the business size, with no critical vulnerabilities detected. The domain registration data aligns well with the business claims, indicating legitimacy and transparency. Strategic recommendations include enhancing security headers, publishing a formal security policy, and continuous monitoring of third-party scripts to maintain security and compliance standards.

D

Classic Lineage 2 Drop & Spoil Database

dropspoil.com

52

Dropspoil.com is a specialized online database dedicated to providing comprehensive drop and spoil information for the classic Lineage 2 MMORPG, covering chronicles from C1 to High Five. It serves a niche audience of classic server players and nostalgic gamers seeking detailed and accurate game data. The website operates primarily as an informational resource supported by advertising revenue, with no direct commercial transactions evident. Technically, the site employs standard web technologies including HTML, CSS, JavaScript, Google Fonts, Google Adsense, and Google Analytics. It features a cookie consent mechanism compliant with GDPR, ensuring user privacy preferences are respected. However, the absence of WHOIS registration data for the domain (likely a subdomain) and lack of security headers indicate areas for improvement in security posture. Overall, the site provides good content quality and user experience but could enhance trust and security by adding explicit contact details, security policies, and technical safeguards.

P

PMfun.com

pmfun.com

52

PMfun.com is a niche gaming resource website dedicated to providing comprehensive tools and databases for Lineage 2 players, including drop and spoil calculators, NPC drop rates, farming strategies, and quest walkthroughs. The site targets the Lineage 2 gaming community and offers a variety of content to enhance gameplay experience. Technically, the site uses standard web technologies with Google Fonts, Google Analytics, and Google Adsense for monetization and tracking. Privacy compliance is addressed with a cookie consent mechanism and GDPR-aligned policies. Security posture is moderate with HTTPS likely enabled but lacking explicit security headers and incident response information. The absence of WHOIS registration data raises concerns about domain legitimacy, although the active and content-rich website suggests operational stability. Overall, the site is functional and serves its audience well but would benefit from improved transparency and security practices.

B

BGtop.net

bgtop.net

45

BGtop.net operates as a Bulgarian web directory and ranking platform, providing a catalog of Bulgarian websites ranked by user votes. Established in 2002, it holds a strong market position as a popular resource for Bulgarian internet users seeking categorized website listings. The platform offers services such as site addition, editing, and statistical insights, targeting website owners and general users interested in Bulgarian web content. Technically, the site uses standard web technologies including HTML, CSS, JavaScript, Google Adsense for monetization, and Google Analytics for traffic analysis. Hosting appears to be managed via sureserver.com nameservers with domain registration through eNom, LLC. The website demonstrates basic mobile optimization and accessibility with moderate performance and good SEO practices. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not publish explicit security or incident response policies. Privacy and cookie policies are present with consent mechanisms, indicating basic GDPR compliance. Overall, the site is safe for general audiences with no adult content detected. The domain age and registration details support the legitimacy and stability of the service.

B

Bichinger Software & Consulting

bichinger.de

58

Bichinger Software & Consulting is a small technology company based in Germany specializing in professional web platform software development using Ruby on Rails and Vue.js. The company targets businesses seeking custom web platform solutions and consulting services. The website is currently offline with a placeholder message indicating renewal, limiting content availability and detailed business information. The technical infrastructure leverages modern frameworks and technologies, including PostgreSQL and Docker, indicating a contemporary development environment. However, the website lacks visible contact information, privacy policies, and terms of service, which impacts trust and compliance perception. Security posture shows basic implementation with CSRF tokens but lacks visible security headers and documented policies. Overall, the site is functional but minimal, with moderate technical maturity and room for improvement in security and compliance documentation.

S

Sozialversicherung für Landwirtschaft, Forsten und Gartenbau (SVLFG)

svlfg.de

65

The SVLFG website represents the Sozialversicherung für Landwirtschaft, Forsten und Gartenbau, a German government social insurance institution focused on agricultural, forestry, and horticultural sectors. The organization provides statutory insurance services including accident insurance, pension schemes, health and nursing care insurance, and prevention programs. The website is professionally designed, well-structured, and targets a broad audience including farmers, employers, employees, medical professionals, and related institutions. It offers comprehensive information and digital services tailored to its sector. Technically, the website is built on the Scrivito CMS platform, utilizing modern web technologies such as JavaScript and CSS. It includes accessibility features, mobile optimization, and SEO best practices. The site uses HTTPS with strong SSL configuration and security headers, ensuring secure communication. Tracking is implemented via etracker, with a cookie consent mechanism in place, reflecting good privacy compliance. Security posture is solid with no visible vulnerabilities or exposed sensitive data. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent, which could be improved to enhance transparency and trust. The WHOIS data aligns with the website's claims, indicating a legitimate and consistent domain registration. Overall, the website scores highly in content quality, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy and professional digital presence for a government social insurance entity.

E

easyvote

easyvote.ch

63

easyvote.ch is a Swiss non-profit educational platform focused on providing neutral, easily understandable political information and voting guidance to Swiss citizens, students, and educators. The website offers a variety of resources including voting recommendations, educational materials, explainer videos, and a dedicated app to assist voters. It maintains a strong market position as a trusted source for political education in Switzerland, supported by partnerships such as with the Swiss Youth Parliament Association (DSJ). The platform targets a broad audience including the general public and schools, emphasizing accessibility and neutrality in political content. Technically, the site is built on the Neos CMS and Flow PHP framework, leveraging modern web technologies with moderate performance and good mobile optimization. The site implements privacy and cookie policies with consent mechanisms, uses plausible analytics for minimal tracking, and integrates newsletter services via CleverReach. Security posture is solid with HTTPS enforced and mail obfuscation to protect contact information, though additional security headers could enhance protection. Overall, easyvote.ch presents a professional, trustworthy, and user-friendly digital presence aligned with its educational mission.

U

Universität Liechtenstein

uni.li

10

Universität Liechtenstein is a regional higher education institution in Liechtenstein offering a range of academic programs including bachelor's, master's, doctoral, and continuing education courses primarily in architecture, business, finance, law, and information systems. The university also engages in research and knowledge transfer activities, targeting students, researchers, and professionals seeking further education. The website is professionally designed with clear navigation and multilingual support, reflecting a mature digital presence. Technically, the site is built on Drupal 10 CMS, uses Matomo analytics with privacy-conscious configurations, and is served over HTTPS with good mobile optimization and accessibility features. Security posture is generally strong with encrypted connections and privacy-aware analytics, though it lacks some security headers and explicit privacy and cookie policies. Overall, the domain registration details align well with the university's identity, indicating legitimacy and trustworthiness.

G

GoDaddy Operating Company, LLC

arivela.com

73

This website is a domain sales landing page for the domain arivela.com, hosted on a GoDaddy subdomain (forsale.godaddy.com). It serves as a marketplace interface allowing potential buyers to make offers on the domain. The platform is part of GoDaddy's extensive domain aftermarket ecosystem, leveraging their infrastructure and trusted brand. The site is professionally designed with clear calls to action, secure payment options, and a visible contact phone number, targeting individuals and businesses interested in premium domain acquisition. Technically, the site uses modern web technologies including React (Next.js), secure HTTPS, and integrates Google reCAPTCHA for bot protection. Security posture is strong with no visible vulnerabilities and good SSL configuration. Privacy and cookie policies are present on the parent domain, indicating compliance with GDPR and other regulations. Overall, the site is trustworthy and well-positioned within the domain aftermarket industry.

L

Liechtensteinische Landesverwaltung

statistikportal.li

57

The website www.statistikportal.li is the official statistics portal of the Liechtensteinische Landesverwaltung (Liechtenstein Government Administration). It provides comprehensive statistical data, indicators, and reports covering a wide range of topics including population, economy, social issues, environment, and sustainable development. The portal targets the general public, researchers, government officials, and businesses interested in official Liechtenstein statistics. The business model is a government-operated public service offering open access to data and information, positioning itself as the authoritative source for national statistics in Liechtenstein. Technically, the website employs modern web technologies including HTML5, CSS, JavaScript, and SVG graphics. It uses Matomo analytics with an opt-out mechanism, indicating a moderate level of user tracking balanced with privacy considerations. The site appears to be built on the Pimcore CMS platform, with good mobile optimization, accessibility, and SEO practices. Performance is moderate, with a well-structured navigation system facilitating user experience. From a security perspective, the site enforces HTTPS with excellent SSL configuration and implements key security headers such as Content-Security-Policy and Strict-Transport-Security. No vulnerabilities or exposed sensitive data were detected in the analyzed content. However, the site lacks visible privacy and cookie policies, incident response contacts, and vulnerability disclosure mechanisms, which are important for compliance and security transparency. Overall, the website is a trustworthy and professional government portal with high business credibility and a solid security posture. The main areas for improvement include publishing comprehensive privacy and cookie policies with consent mechanisms, providing clear security incident contacts, and establishing a vulnerability disclosure process to enhance compliance and user trust.

X

Xtoniq Soft

xtoniq.com

59

Xtoniq Soft is a Swiss-based software development company specializing in fintech and digital banking solutions. They provide custom software development services focused on neobanks, digital banks, and financial service providers, offering products such as savings accounts, payment processing, cards, lending, and wealth management accessible via web and mobile platforms. The company positions itself as a trusted partner in the Swiss and European fintech markets with a small but professional team founded in 2021. Technically, the website uses modern web technologies including React and Cloudflare DNS services, delivering a well-designed, mobile-optimized user experience. Security posture is adequate with HTTPS and domain transfer protections, but lacks advanced DNS security (DNSSEC) and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy with room for improvement in security and privacy practices.

S

Ski amadé

skiamade.com

64

Ski amadé is a prominent winter tourism website promoting skiing and snowboarding holidays in Austria, specifically in the Salzburg and Styria regions. The site offers extensive information about winter activities, slopes, and related services, targeting winter sports enthusiasts and tourists. The website is professionally designed with excellent content quality and mobile optimization, providing a positive user experience. Technically, it uses modern web technologies including Bootstrap and JavaScript, with good SEO and accessibility practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are not evident in the provided data. The absence of WHOIS registration data is a notable concern, reducing domain trustworthiness despite the professional appearance of the website. Overall, the site is reliable for its business purpose but would benefit from improved transparency in domain registration and enhanced security headers.

M

Mandarin Oriental Hotel Group

mandarinoriental.com

72

Mandarin Oriental Hotel Group is a globally recognized luxury hospitality brand offering premium hotel stays, fine dining, spa, wellness, and event services. The website reflects a high level of professionalism, targeting affluent travelers and business clients seeking luxury experiences worldwide. The company maintains a strong market position in the hospitality sector with a consistent and elegant brand presentation. Technically, the website employs modern technologies including Adobe Experience Platform, Google Tag Manager, and OneTrust for privacy compliance. Hosting and performance are optimized via Akamai CDN services, ensuring fast load times and excellent mobile responsiveness. The site includes comprehensive cookie consent mechanisms and privacy policies aligned with GDPR requirements. From a security perspective, the site enforces HTTPS, implements key security headers, and avoids exposing sensitive data. However, the absence of a public security policy or incident response information and the lack of WHOIS domain registration transparency are notable gaps. No vulnerabilities or malicious content were detected, indicating a mature security posture overall. The overall risk is moderate with recommendations to improve domain registration transparency and publish explicit security policies. The website is safe for general audiences and demonstrates strong trustworthiness and business credibility.

B

Bundesverband Personal Training

bundesverband-pt.de

55

The Bundesverband Personal Training is a German association dedicated to promoting excellence and integrity within the personal training industry. It offers high-quality continuing education and fosters a strong professional network for personal fitness trainers. The organization positions itself as a key industry body supporting professional standards and development. Technically, the website is built on WordPress using the Avada theme, hosted by Schlund Technologies, and incorporates modern web technologies with a cookie consent mechanism to comply with GDPR. Security posture is solid with HTTPS enforced and no critical vulnerabilities detected, though additional security headers could enhance protection. Privacy compliance is well addressed with comprehensive policies and consent management. Overall, the website reflects a professional and trustworthy business presence with a clear focus on its target audience.

E

enercity AG

enercity.com

65

enercity AG is a major municipal energy provider in Germany, serving approximately one million customers with electricity, heat, and drinking water. The company also offers services related to electromobility, decentralized energy generation, energy efficiency, telecommunications, and smart infrastructure, emphasizing sustainability and climate neutrality. The website reflects a mature digital presence with comprehensive content, clear navigation, and a strong focus on corporate responsibility and investor relations. Technically, the site employs modern web technologies, including JavaScript and cookie consent management via consentmanager.net, and integrates Google Tag Manager for analytics. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though explicit security headers and published security policies are absent. WHOIS data is missing or inaccessible, which is unusual but does not detract significantly from the site's legitimacy given the rich content and social media presence. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

W

Weltnaturerbe Buchenwälder - Startseite

weltnaturerbe-buchenwaelder.de

43

The website www.weltnaturerbe-buchenwaelder.de serves as an informational platform dedicated to the UNESCO World Natural Heritage European Beech Forests. It provides educational content, media galleries, and news related to the conservation of ancient beech forests across multiple European countries. The target audience includes nature enthusiasts, conservationists, and the general public interested in environmental heritage. Technically, the site is built on TYPO3 CMS and hosted on Amazon AWS infrastructure, utilizing modern web technologies including SVG for interactive maps and Matomo for analytics. The site is mobile optimized and offers a good user experience with clear navigation and consistent branding. Security-wise, the site uses HTTPS and Matomo analytics with some privacy considerations, but lacks explicit privacy and cookie policies, security headers, and vulnerability disclosure information. Overall, the site is safe, professional, and trustworthy but could improve its privacy compliance and security posture by adding relevant policies and headers.

A

Amt Crivitz

amt-crivitz.de

51

Amt Crivitz operates as a local government administrative service provider in Germany, offering a broad range of citizen services including online appointment booking, access to official documents, and information on local governance, economic development, education, and cultural activities. The website targets residents and businesses within the Amt Crivitz region and serves as a comprehensive portal for municipal information and services. The business model is typical of a public sector entity focused on community service and local administration. Technically, the website is built using standard web technologies such as HTML5, CSS, and JavaScript, likely managed via a custom or proprietary CMS. The site demonstrates good mobile optimization, accessibility, and SEO practices, though no advanced frameworks or analytics tools are detected. Performance is moderate, with a clear and consistent navigation structure enhancing user experience. From a security perspective, the site enforces HTTPS and uses secure forms but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is generally good with a comprehensive privacy policy present, but the absence of a cookie consent mechanism is a notable gap. Contact information is clearly provided, enhancing business credibility. Overall, the website is trustworthy, professional, and safe for general audiences. Strategic improvements in security headers, cookie consent, and transparency around security policies would enhance the security posture and compliance standing of the site.

B

Bauhaus-Archiv GmbH

bauhaus-shop.de

70

Bauhaus-Shop is an e-commerce platform operated by Bauhaus-Archiv GmbH, offering design products associated with the Bauhaus-Archiv Museum in Berlin. The website targets general consumers interested in Bauhaus design merchandise, positioning itself as a niche cultural museum shop. The business model focuses on online retail through a Shopify-based storefront, leveraging Shopify's infrastructure and payment systems. The site is professionally branded and consistent with the museum's identity, providing a good user experience and clear navigation.

W

Wirtschaftskammer Oberösterreich

wkooe.at

10

Wirtschaftskammer Oberösterreich (WKOÖ) is the regional chamber of commerce for Upper Austria, providing a wide range of services, information, and consulting to entrepreneurs and business owners in the region. The website serves as an official portal offering news, events, legal and financial guidance, and access to various business support services. It is part of the larger Austrian WKO network, positioning itself as a key regional business support entity. Technically, the website is built on a modern stack with responsive design, accessibility considerations, and uses a CMS likely based on Gentics. It integrates Google Tag Manager and a custom chatbot for enhanced user interaction. The site is well-optimized for SEO and mobile devices, with good performance and structured navigation. From a security perspective, the site enforces HTTPS and includes some security headers, though it lacks explicit published security policies, vulnerability disclosure, or incident response contacts. Privacy compliance is partially implemented with cookie consent mechanisms but lacks a clearly accessible privacy policy page. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website is professional, trustworthy, and serves its business audience well, but could improve transparency and compliance by publishing detailed privacy, terms, and security-related documents.

G

Golfclub Entfelden

aarau-west.ch

67

The website www.aarau-west.ch represents a local hospitality business centered around the Golfclub Entfelden in Oberentfelden, Switzerland. It offers golf-related services, hotel accommodations, aparthotel apartments, and restaurant facilities. The site is well-branded and targets golf enthusiasts and visitors to the region. The business appears to be a small-sized local operator with a clear focus on personalized golf and hospitality experiences. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including JavaScript and CSS, and implements a cookie consent mechanism with GDPR compliance. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses hCaptcha for bot protection, but lacks explicit security headers and published security policies. No contact emails or phone numbers are directly visible, which could be improved for better user engagement and trust. Overall, the website is professional, secure, and compliant with privacy regulations, with room for enhancements in security transparency and contact information availability.

C

Craft of Scandinavia AB

craftsportswear.ch

75

Craft Sportswear is a Swedish-based company specializing in high-quality training clothing for running, cycling, and cross-country skiing. Established in 1973, the company has a strong market presence in the sportswear retail sector, targeting athletes and fitness enthusiasts. The website reflects a professional e-commerce platform with a consistent brand image and comprehensive product offerings including teamwear and outlet sales. The parent company is New Wave Group SA, indicating a medium-sized enterprise with a solid business foundation. Technically, the website is built on modern technologies including React and Next.js, with Storyblok CMS integration. The site is well-optimized for mobile devices, SEO, and accessibility, providing a smooth user experience. Performance is moderate with good loading times and responsive design. Privacy and cookie policies are clearly presented with consent mechanisms, demonstrating compliance with GDPR requirements. From a security perspective, the site enforces HTTPS and uses cookie consent tools, but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data reduces trust slightly, but the overall digital footprint and business information support legitimacy. Overall, Craft Sportswear's website is a professional, secure, and user-friendly platform suitable for its retail business model. Strategic improvements in security transparency and WHOIS data visibility would enhance trust and compliance further.

A

AZ Zeno

azzeno.be

10

AZ Zeno is a well-established regional hospital in Belgium with multiple campuses serving patients, visitors, and healthcare professionals. The website provides comprehensive information about medical services, departments, and patient care, reflecting a strong market position in the healthcare sector. The digital infrastructure uses modern web technologies including JavaScript frameworks, SVG graphics, and integrates popular analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and TikTok Pixel. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS implied and no exposed sensitive data, but lacks explicit security headers and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy, but could improve in privacy and security transparency.

D

Dewaele Vastgoeddiensten

dewaele.com

9

Dewaele Vastgoeddiensten is a prominent Belgian real estate company specializing in residential, luxury, and commercial properties. The company offers a comprehensive range of services including buying, selling, renting, investing, property management, and advisory services. The website is multilingual, targeting Dutch, French, and English-speaking audiences, reflecting a broad market reach within Belgium. The presence of multiple subsidiary brands under the Dewaele umbrella indicates a diversified and well-established market position. Technically, the website employs modern web technologies such as JavaScript frameworks (likely Alpine.js), Google Tag Manager for analytics, and Imgix for image delivery. The site is mobile-optimized and features a professional design with clear navigation, enhancing user experience. However, some technical improvements could be made, such as adding explicit security headers and improving accessibility features. From a security perspective, the website uses HTTPS and implements cookie consent mechanisms, indicating a baseline security posture and some privacy compliance. However, the absence of a visible privacy policy, terms of service, and WHOIS data raises concerns about transparency and domain legitimacy. No critical vulnerabilities were detected in the provided content, but the lack of security headers and incident response information suggests room for improvement. Overall, the website presents a professional and trustworthy front for a large real estate business, but the missing WHOIS data and privacy documentation reduce the confidence level. Strategic recommendations include publishing comprehensive privacy and security policies, enhancing security headers, and verifying domain registration details to improve trust and compliance.

S

Small Luxury Hotels of the World

myslh.com

58

Small Luxury Hotels of the World operates the mySLH portal as a member login platform for its luxury hospitality services. The website serves as an access point for registered users to manage bookings and membership details. The domain is well-established since 2008, indicating a mature business presence in the luxury hotel sector. The technical infrastructure includes Umbraco CMS and modern JavaScript libraries, with hosting DNS managed via Cloudflare. The site is moderately optimized for mobile and performance but lacks comprehensive SEO and accessibility features. From a security perspective, the website employs basic best practices such as clientTransferProhibited domain status and anti-forgery tokens in forms. However, it lacks DNSSEC, explicit security headers, and published privacy or cookie policies, which are critical for compliance and trust. Google Analytics and Tag Manager are used for user tracking, but no cookie consent mechanism is evident, indicating potential GDPR compliance gaps. Overall, the website is functional and consistent with the brand but requires improvements in privacy compliance, security hardening, and transparency to enhance user trust and regulatory adherence. No adult or explicit content is present, making it safe for general audiences.

R

REMONDIS SE & Co. KG

remondis-whistleblower-policy.de

58

REMONDIS SE & Co. KG operates a dedicated whistleblower policy website providing downloadable policy documents in multiple languages, demonstrating a commitment to corporate compliance and governance. The website targets employees and stakeholders seeking whistleblower information and is part of a large enterprise likely operating in the waste management and recycling sector. The technical infrastructure is based on TYPO3 CMS, indicating a professional and scalable content management approach. The website is moderately optimized for performance and mobile use, with basic accessibility and SEO features. Security posture is adequate with HTTPS usage but lacks visible security headers and explicit privacy or cookie policies. No contact or incident response information is provided, which limits user engagement and compliance transparency. Overall, the site is trustworthy and professionally maintained but could improve in privacy compliance and security best practices.

C

Café Konditorei Reichenau

cafe-konditorei-reichenau.at

53

Café Konditorei Reichenau is a small hospitality business located in Reichenau an der Rax, Austria, specializing in pastries, cakes, breakfast, and savory snacks. The website reflects a local café with a historical reputation and seasonal event focus, targeting tourists, hikers, and local visitors. The business model centers on retail and on-site dining with options for pre-ordering specialty cakes. Technically, the website uses standard web technologies with moderate performance and good mobile optimization but lacks advanced frameworks or CMS identification. Security posture is adequate with HTTPS enforced but lacks security headers and explicit security policies. Privacy compliance is good with a visible cookie consent mechanism and privacy policy. Contact information is clear and professional, enhancing business credibility. Overall, the website is safe, professional, and trustworthy with no adult or questionable content detected.

The website alixon-web.ch presents a small technology business offering a modular web management platform primarily targeting organizations and businesses needing address management, event scheduling, website content editing, and communication tools. The platform uses a proprietary CMS with Ext JS for UI components and provides multiple portal options for different user groups. The site is primarily in German and hosted on subdomains related to alixon-web. Technically, the site uses HTTPS for login forms but lacks visible security headers and privacy policies, indicating room for improvement in security and compliance. No contact emails or phone numbers are provided, which may affect user trust and support accessibility. Overall, the site is functional with basic content and moderate technical implementation but lacks comprehensive privacy and security measures.

C

Charlotte Tilbury

charlottetilbury.com

68

Charlotte Tilbury is a well-established luxury beauty brand specializing in makeup, skincare, and fragrance products. The website targets the European market with localized content and currency options. The brand operates a sophisticated e-commerce platform leveraging modern web technologies such as React and Next.js, ensuring a fast and responsive user experience. The site demonstrates strong branding consistency and professional design, reinforcing its market position as a premium retailer. Security measures including HTTPS and comprehensive security headers are in place, contributing to a robust security posture. Privacy compliance is evident with clear privacy and cookie policies and consent mechanisms. However, the absence of publicly available WHOIS data limits domain trust verification. Overall, the site presents a low-risk profile with recommendations to enhance transparency around security policies and incident response.

A

adidas

adidas.fi

11

adidas.fi is the official Finnish e-commerce website for adidas, a globally recognized sportswear and equipment brand. The site offers a comprehensive range of sports apparel and equipment tailored to various sports such as swimming, football, and running. The website targets sports enthusiasts and general consumers in Finland, leveraging a strong brand presence and a well-established market position as a leader in the retail sportswear industry. The business model focuses on direct online sales, supported by extensive customer service and account management features. Technically, the website employs modern web technologies including React and Next.js frameworks, ensuring a fast, responsive, and accessible user experience. Hosting and CDN services appear to be provided by Akamai, contributing to excellent performance and global reach. The site is well-optimized for SEO and mobile devices, with comprehensive metadata and structured data enhancing search visibility. From a security perspective, adidas.fi demonstrates a strong posture with enforced HTTPS, robust security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms aligned with GDPR requirements. However, explicit incident response and vulnerability disclosure policies are not publicly found, suggesting areas for improvement. Overall, adidas.fi is a professional, secure, and trustworthy e-commerce platform with a high level of digital maturity. Strategic recommendations include enhancing transparency around security policies, publishing a vulnerability disclosure framework, and maintaining continuous security audits to uphold the strong security posture.

A

adidas Canada

adidas.ca

11

Adidas Canada operates a comprehensive e-commerce platform offering sneakers and activewear tailored for the Canadian market. As a subsidiary of the global adidas AG brand, it maintains a strong market position with a focus on quality, innovation, and customer engagement. The website reflects a mature digital infrastructure leveraging modern technologies such as React and Next.js, supported by robust CDN and monitoring services to ensure performance and reliability. Security posture is strong, with HTTPS enforcement, security headers, and privacy compliance evident throughout the site. No critical vulnerabilities or blocking mechanisms were detected, indicating a well-maintained and trustworthy platform. Strategic recommendations include enhancing incident response visibility and establishing a public vulnerability disclosure policy to further strengthen security culture and compliance.

K

KaraFun Group

karafun-group.com

67

KaraFun Group is a French-based company specializing in the production and distribution of multi-track instrumental music and karaoke-related technologies. They operate a diverse ecosystem including consumer karaoke applications, business solutions for karaoke bars, private karaoke box venues, and applications for musicians. The company positions itself as a leader in the karaoke and instrumental music market with a strong international presence and a rich catalog of exclusive music content. Technically, the website and associated services leverage a modern and diverse technology stack including PHP, C++, Kotlin, Swift, and Node.js, supporting multiple platforms such as Android, iOS, Mac, WebAssembly, and Windows. The website is well-designed, mobile-optimized, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is generally good with HTTPS enforced and no obvious vulnerabilities detected, though the absence of security headers and explicit incident response policies suggests room for improvement. The WHOIS data is missing or inaccessible, which reduces domain trustworthiness despite the professional appearance and consistent branding of the website. Overall, KaraFun Group presents a credible and professional business with a solid technical foundation but should improve transparency in domain registration and privacy compliance mechanisms.

F

flamme rouge gmbh

flammerouge.com

46

flamme rouge gmbh is a small media agency based in Berlin, Germany, specializing in developing sophisticated media for web and print. They offer consulting services to optimize content, design, and technical aspects of communication strategies for their clients. The website is professionally designed with clear contact information and a focus on business clients seeking media and communication services. Technically, the site uses basic HTML and CSS without advanced frameworks or CMS detected. There is no evidence of analytics or tracking technologies, indicating a minimalistic technical footprint. Security posture is weak due to lack of HTTPS information and missing security headers. The absence of WHOIS registration data is a significant concern, reducing trust in domain legitimacy. Overall, the site is functional and professional but requires improvements in security and compliance to enhance trustworthiness.

D

Drblitz-weblab

drblitz-weblab.com

62

Drblitz-weblab is a specialized TYPO3 CMS web development agency based in Poland, established in 2017. The company positions itself as a leader in the TYPO3 ecosystem, offering comprehensive services including website creation, implementation, updates, custom module development, and training. Their target audience primarily consists of businesses and organizations seeking professional TYPO3 solutions. The website is professionally designed, mobile-optimized, and provides a clear navigation structure, supporting their market positioning. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including JavaScript and CSS, with Google Tag Manager and Analytics integrated for marketing and analytics purposes. The domain is registered with OVH sas and uses Cloudflare for DNS services, ensuring reliable hosting infrastructure. Performance is moderate with good SEO and basic accessibility features. From a security perspective, the site uses HTTPS and has domain status protections to prevent unauthorized changes. However, it lacks DNSSEC, security headers, and explicit security or incident response policies on the site. Privacy compliance is partially addressed through a cookie consent mechanism, but no dedicated privacy policy or terms of service pages were found. No contact emails or phone numbers were explicitly identified in the provided content. Overall, the website demonstrates a solid business and technical foundation with room for improvement in security best practices and privacy compliance. Strategic recommendations include enabling DNSSEC, publishing comprehensive privacy and security policies, implementing security headers, and enhancing contact transparency to improve trust and compliance.

C

charicomm.de is available for purchase - Sedo.com

charicomm.de

71

The website is a domain sales landing page hosted by Sedo.com, a well-established domain marketplace with over 26 years of experience. The page offers the domain charicomm.de for sale at 699 EUR, highlighting services such as free transfer, personal assistance, and multiple payment options. The target audience is domain buyers and investors. The business model is domain brokerage and marketplace services, with a strong market position supported by high monthly domain transfer volumes. Technically, the site uses modern web technologies including JavaScript ES modules and Cloudflare DNS/CDN services. The site is mobile optimized with good design and basic accessibility features. Performance is moderate, and SEO is basic but functional. The SSL configuration is good with HTTPS enforced, but DNSSEC is not enabled, representing a minor security gap. Security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the site lacks published privacy policies, terms of service, security policies, and incident response contacts, which are important for compliance and trust. Contact information is clearly provided with a verified company email and phone number. No suspicious or malicious content was detected, and the content is safe for general audiences. Overall, the domain and website appear legitimate and trustworthy, with room for improvement in privacy compliance and security policy transparency. The AI overall score is 77, reflecting a good but not perfect security and compliance posture.

D

DIHK Unternehmensnetzwerk Klimaschutz

klima-plattform.de

50

The website www.klima-plattform.de serves as a German national platform under the DIHK umbrella, aimed at fostering a network for companies and multipliers engaged in climate protection. It provides a centralized resource for improving climate protection knowledge and facilitating collaboration across Germany. The platform is powered by TYPO3 CMS, indicating a stable and mature technical foundation. However, the site lacks visible privacy and cookie policies, contact information, and security headers, which are critical for compliance and trust. No advanced analytics or tracking scripts were detected, suggesting a minimal data collection approach. The domain registration details are limited but appear consistent with the business purpose. Overall, the site presents a professional and focused business presence but requires improvements in privacy, security, and contact transparency to enhance trust and compliance.

C

Colbe

colbe.com

63

Colbe is a European network specializing in workplace health and wellbeing, aiming to help employees feel better and maintain wellbeing at work. The company operates as a network of health and wellbeing specialists, providing integrated services such as corporate wellbeing, employee assistance, and absence management. The website presents a professional and consistent brand image, targeting organizations and employees across Europe, particularly in the Netherlands. The business is positioned as a trusted partner to leading European organizations, emphasizing connection and sustainable wellbeing. Technically, the website is built using modern frameworks including Next.js and React, with Google Tag Manager integrated for analytics. The site is mobile-optimized, accessible, and SEO-friendly, offering a smooth user experience. However, some technical improvements are recommended, such as implementing security headers and publishing a security policy. From a security perspective, the site uses HTTPS with good SSL configuration and no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Overall, the website is professional and trustworthy in content and design, but the lack of WHOIS data and explicit contact emails or phone numbers slightly reduces business credibility. Strategic recommendations include verifying domain registration, enhancing security headers, and publishing incident response information to improve trust and security posture.

Logo-Solution GmbH is a small German technology company specializing in software solutions for logistics and online reservation systems, IT consulting for medium-sized businesses, and modern website design. Founded in 2014 and based in Berlin, the company presents itself as a local, experienced provider with a multidisciplinary team. The website is basic but functional, providing essential company information and contact details without advanced features or policies. Technically, the site uses standard HTML, CSS, and JavaScript with Google Fonts, hosted likely on kasserver.com. Security posture is modest, with no DNSSEC, no visible security headers, and no privacy or cookie policies, indicating room for improvement in compliance and protection. The domain registration is consistent and legitimate, supporting the company's credibility. Overall, the site is safe and professional but lacks advanced security and privacy features.

The website www.rexona.com/fi/home.html represents the Finnish localized site for Rexona, a personal care brand specializing in deodorants and antiperspirants, owned by Unilever. The site is professionally designed, well-branded, and provides product information and marketing content targeted at general consumers in Finland. It leverages a modern digital infrastructure based on Adobe Experience Manager and integrates privacy compliance tools such as OneTrust for cookie consent. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and incident response information are absent. The WHOIS data is missing or unavailable, which is unusual but the site’s strong corporate branding and linkage to official Unilever domains support its legitimacy. Overall, the site is a reliable and professional brand presence with good privacy compliance and user experience.

O

Open Innovation City Bielefeld

openinnovationcity.de

10

Open Innovation City Bielefeld is a municipally backed initiative focused on fostering open innovation across city sectors including government, education, culture, and business. The website serves as a hub for project information, community engagement, and educational offerings. Technically, the site is built on TYPO3 CMS, hosted by agenturserver, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting its role as a regional innovation platform.

T

True Light, LLC

truelightdesigns.com

10

True Light, LLC operates the website truelightdesigns.com, providing customized web development services primarily focused on e-commerce platforms such as Shopify, Turbify, BigCommerce, Magento, WooCommerce, and others. Established since 2007, the company positions itself as a specialized service provider for businesses seeking tailored web solutions and API integrations. The website content is professional and well-structured, targeting business clients in need of web development expertise. Technically, the website employs modern web technologies including Google Tag Manager and Font Awesome icons, with hosting infrastructure leveraging Cloudflare DNS services. The site is mobile-optimized and demonstrates good SEO practices, although no CMS is explicitly detected. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections in place. However, it lacks DNSSEC and important security headers, which are recommended to enhance security posture. Privacy compliance is partial; while a privacy policy and terms of service are present, there is no cookie consent mechanism despite the use of tracking scripts. Contact information is limited to a contact form without explicit emails or phone numbers, which may impact user trust. Overall, the website is trustworthy and professionally maintained with a solid business foundation. Strategic improvements in security headers, privacy compliance, and contact transparency would further strengthen its security posture and user confidence.

C

Convertia

convertia.com

10

Convertia is a strategic consulting and technology company specializing in marketing, sales, and customer experience optimization through digital strategies and AI integration. The company positions itself as an expert partner for businesses seeking to enhance their digital acquisition and operational efficiency. The website demonstrates a mature digital presence with comprehensive service offerings and client case studies, indicating a medium-sized enterprise with a strong market position in the technology sector. Technically, the site is built on modern frameworks like Next.js and React, optimized for performance and mobile responsiveness. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and business-focused, though WHOIS data is unavailable, suggesting privacy protection or registration opacity.

V

Virgin Money Foundation

virginmoneyfoundation.org.uk

67

Virgin Money Foundation is a UK-based non-profit organization affiliated with Virgin Money UK, focused on supporting and transforming communities for the better. The website presents a professional and consistent brand image aligned with Virgin Money, targeting UK communities and charitable organizations. The business model centers on charitable grants and social impact initiatives, positioning the foundation as an established player in the UK non-profit sector. Technically, the website employs modern JavaScript libraries, Adobe DTM for tag management, and Evidon for consent management, indicating a mature digital infrastructure. The site is HTTPS secured and includes meta tags for SEO and social media integration, though no CMS or hosting provider details are evident. Performance and mobile optimization are moderate to good, with basic accessibility features. From a security perspective, the site enforces HTTPS and uses consent management scripts to comply with GDPR. However, the absence of a full Content-Security-Policy header, security.txt, and explicit incident response policies suggests room for improvement. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS lookup failed due to domain naming rules, which raises some trust concerns, but the website content and branding mitigate these to an extent. Overall, the website is professional and trustworthy but would benefit from enhanced transparency in privacy, security policies, and contact information to improve compliance and user trust.