Security Directory

V

Verbraucherzentrale Bremen

verbraucherzentrale-bremen.de

58

Verbraucherzentrale Bremen operates as an independent consumer advice and advocacy organization serving the Bremen and Bremerhaven regions in Germany. The website offers comprehensive information, consultation services, and various projects focused on consumer protection, energy advice, legal matters, and education. It maintains a strong market position as a trusted non-profit entity with active community engagement and multiple partnerships. Technically, the site is built on Drupal 10 with modern libraries and demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS and privacy-conscious analytics, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the website is professional, trustworthy, and well-aligned with its mission, with no signs of malicious activity or content safety concerns.

V

Verbraucherzentrale Brandenburg

verbraucherzentrale-brandenburg.de

57

Verbraucherzentrale Brandenburg is a regional consumer protection organization in Germany providing comprehensive advisory services, educational resources, and consumer information primarily focused on energy, finance, digital world, health, and legal rights. The website is professionally designed using Drupal 10 CMS, featuring modern web technologies and a good user experience optimized for mobile devices. The organization maintains a strong regional presence with multiple consultation locations and projects. Security posture is adequate with HTTPS implied and no visible vulnerabilities, though security headers could be improved. Privacy compliance is strong with a clear privacy policy and GDPR adherence. Overall, the website reflects a trustworthy, mature non-profit entity serving consumers in Brandenburg.

V

Verbraucherzentrale Berlin

verbraucherzentrale-berlin.de

56

Verbraucherzentrale Berlin is a well-established consumer advice and advocacy organization serving the Berlin region. The website offers comprehensive information and services across multiple consumer-related sectors including energy, health, digital literacy, and finance. It targets a broad audience including vulnerable groups such as refugees and seniors. The organization operates multiple projects and provides educational events, consultations, and publications. Technically, the site is built on Drupal 10 with modern web technologies and integrates Matomo analytics for user tracking. The site is mobile-optimized and accessible with good SEO practices. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is good with a clear GDPR privacy policy but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and serves as a key regional resource for consumer protection.

V

Verbraucherzentrale Bayern

verbraucherzentrale-bayern.de

63

Verbraucherzentrale Bayern is a well-established non-profit consumer protection organization serving the Bavaria region in Germany. The website offers extensive consumer information, advisory services, educational programs, and project portals covering areas such as energy, health, digital issues, food, environment, travel, and contracts. It maintains a strong market position as a regional consumer advocate linked to national and European consumer protection bodies. Technically, the site is built on Drupal 10 with modern web technologies, providing good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response pages are not found. Privacy compliance is robust with clear privacy and cookie policies and GDPR adherence. Overall, the site is professional, trustworthy, and content-rich, supporting a broad audience of consumers and stakeholders.

K

KB, de nationale bibliotheek

kb.nl

72

The KB (Koninklijke Bibliotheek) is the national library of the Netherlands, providing extensive digital and physical collections including manuscripts, books, newspapers, and maps. It serves a broad audience including researchers, publishers, members, cultural enthusiasts, and the general public. The website is built on Drupal 10, featuring modern web technologies and analytics tools such as Matomo and Ahrefs. It offers multilingual support and comprehensive navigation for various user groups. Security posture is solid with HTTPS and responsible disclosure policies, though some security headers could be improved. Privacy compliance is well addressed with clear policies, though a cookie consent mechanism is not evident. Overall, the site is professional, trustworthy, and aligned with its governmental and cultural mission.

V

Verbraucherzentrale Bundesverband

verbraucherzentrale.de

58

Verbraucherzentrale.de is the official portal for the Verbraucherzentrale Bundesverband and its regional consumer centers across Germany. It provides comprehensive consumer protection services including advice, education, political advocacy, complaint handling, and legal actions. The website is well-structured, professionally designed, and targets German consumers seeking trustworthy information on finance, energy, health, environment, travel, and contracts. The organization holds a strong market position as a leading non-profit consumer protection entity in Germany. Technically, the site is built on Drupal 10 with modern JavaScript libraries and is optimized for mobile and accessibility. It uses Matomo for privacy-conscious analytics and integrates newsletter services. Hosting is via DomainControl nameservers, and the site employs HTTPS, although explicit security headers were not detected in the provided data. Privacy compliance is strong with a clear GDPR-compliant privacy policy, but no explicit cookie consent mechanism was found. Security posture is good but could be improved by adding security headers and publishing incident response or security policies. No vulnerabilities or suspicious content were detected. The domain WHOIS data is limited but consistent with a legitimate organization. Overall, the site is trustworthy, professional, and serves its mission effectively.

U

University of Massachusetts

massachusetts.edu

67

The University of Massachusetts website serves as the official portal for the UMass system, providing comprehensive information about its campuses, educational programs, research initiatives, and community impact. The site is well-branded and professionally designed, targeting prospective and current students, faculty, staff, alumni, policymakers, and journalists. It positions UMass as a leading public university system in New England with nationally ranked campuses and significant research funding. Technically, the website is built on Drupal 10 and integrates modern analytics and marketing tools such as Google Analytics, Microsoft Clarity, Facebook Pixel, and Coveo Search. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate to fast performance profile. Security best practices are observed with HTTPS enforcement and cookie consent mechanisms, though explicit security headers and incident response policies are not prominently disclosed. The security posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with accessible privacy and cookie policies, including GDPR considerations. However, WHOIS data is unavailable due to .edu domain restrictions, which is typical for educational institutions, but limits domain registration transparency. Overall, the website reflects a mature digital presence with strong business credibility and trustworthiness. Strategic recommendations include enhancing security header implementation, publishing incident response and vulnerability disclosure policies, and improving direct contact information for security matters.

B

Buchjournal

buchjournal.de

57

Buchjournal is a well-established media publication serving the German book trade sector, offering a leading customer magazine with a large readership. The website provides book reviews, bestseller lists, and literature news, targeting literature enthusiasts and book retailers. The business model revolves around subscription and advertising revenue, positioning Buchjournal as a key player in its niche market. Technically, the site is built on Drupal 10, leveraging modern analytics (Matomo) and advertising tools (Revive Adserver), hosted by Anexia. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Security-wise, the site enforces HTTPS, includes cookie consent mechanisms, and respects Do Not Track signals, though it lacks explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and compliant with GDPR, with room for improvement in security transparency and policy disclosures.

S

Stadt Augsburg

wassersystem-augsburg.de

53

The website for Das Augsburger Wassersystem serves as an official informational and educational platform managed by the city of Augsburg, Germany. It highlights the UNESCO World Heritage status of the Augsburg Water Management System, providing detailed content about its history, key objects, tours, events, and educational resources. The site targets tourists, local citizens, and cultural heritage enthusiasts, positioning itself as a trusted source for information on this unique urban water landscape.

I

ifo Institute

econpol.eu

68

The ifo Institute's EconPol Europe platform is a reputable economic policy research and advisory network focused on European economic and fiscal policy. It leverages a global network of economists, including Nobel laureates, to provide evidence-based policy advice. The website is professionally designed, well-structured, and targets policymakers, researchers, and the public interested in economic policy. Technically, it uses Drupal 10 CMS hosted on Microsoft Azure DNS infrastructure, with modern web technologies and good mobile optimization. Security posture is strong with HTTPS and cookie consent mechanisms, although explicit security policies and vulnerability disclosures are absent. Overall, the site is trustworthy and compliant with GDPR, with clear contact information and active social media presence.

I

ifo Institute

cesifo.org

66

The ifo Institute operates the CESifo Network, a globally recognized independent economic research network funded by the State of Bavaria. The network connects over 2000 prominent economists worldwide, fostering international scientific exchange and economic policy debate. The website serves as a hub for research dissemination, events, publications, and policy discussions, targeting economists, researchers, and policymakers. The business model is primarily non-profit and government-funded, emphasizing academic collaboration and policy impact. Technically, the website is built on Drupal 10, hosted on Microsoft Azure DNS infrastructure, and employs modern web technologies including JavaScript frameworks and Matomo analytics. The site is well-optimized for mobile devices, accessible, and SEO-friendly, reflecting a mature digital presence. The content is rich, professionally presented, and multilingual, enhancing its global reach. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks publicly visible security policies or incident response contacts. No vulnerabilities or suspicious elements were detected in the content or WHOIS data. The domain registration is consistent with the organization's profile, hosted on reputable infrastructure without privacy protection, appropriate for a public research entity. Overall, the website demonstrates a strong security posture, excellent content quality, and good privacy compliance, supporting the credibility and trustworthiness of the CESifo Network as a leading economic research platform.

I

ifo Institut

ifo.de

61

The ifo Institut is a prominent German economic research institute focused on shaping economic debate through high-quality research and policy advice. The website reflects a mature digital presence with a professional design, comprehensive content, and strong integration with academic and policy networks such as CESifo and EconPol Europe. Technically, the site is built on Drupal 10, hosted on Microsoft Azure DNS infrastructure, and uses modern web technologies ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response policies could be improved. Privacy compliance is well addressed with GDPR-compliant privacy and cookie policies. Overall, the site demonstrates high business credibility and trustworthiness, serving a target audience of researchers, policymakers, and the public interested in economic research.

B

Better Internet for Kids (European Commission initiative)

saferinternet.org

73

Better Internet for Kids is an official European Union initiative aimed at creating a safer and better internet environment for children and young people. The platform provides resources, policy monitoring, research, and campaigns to empower and protect young internet users across the EU. It operates under the European Commission's digital strategy and uses a modern Drupal 10 CMS with the European Commission's design system for consistent branding and accessibility. Technically, the website is well-structured, mobile-optimized, and uses HTTPS with a good security posture, although explicit security headers could be improved. Privacy compliance is strong with a clear cookie consent mechanism and GDPR-aligned policies. The site does not expose sensitive contact information directly but provides contact through dedicated pages. Security-wise, the site shows no signs of vulnerabilities or malicious content. The domain is a subdomain of europa.eu, indicating high legitimacy and trustworthiness despite the lack of WHOIS data due to EURid privacy policies. Overall, the site is professional, trustworthy, and serves as a key EU resource for child online safety. Recommendations include enhancing security headers, publishing a formal security policy and incident response information, and implementing a vulnerability disclosure policy to further strengthen trust and security posture.

W

WEISSER RING Stiftung

weisser-ring-stiftung.de

50

The WEISSER RING Stiftung is a German non-profit foundation dedicated to supporting victims of crime and strengthening their societal position. The foundation operates through funding projects aligned with its mission, supported by donations and conservative investment strategies. The website presents a professional and consistent brand image, targeting donors, supporters, and victims seeking assistance. Technically, the site is built on Drupal 10, hosted likely by Deutsche Telekom, and uses Piwik analytics with privacy-conscious settings. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and incident response policies could be improved. Overall, the site is trustworthy and well-maintained, reflecting the foundation's reputable standing in the non-profit sector.

L

Literatur Rheinland

literatur-rheinland.de

49

Literatur Rheinland is a cultural network platform dedicated to connecting literary institutions, initiatives, and actors within the Rheinland region of Germany. It promotes literary events, publishes a magazine, and offers a literature map highlighting regional literary figures and institutions. The website is built on Drupal 10, featuring modern web technologies and responsive design, ensuring good user experience and accessibility. Social media integration with Facebook, Instagram, and YouTube supports community engagement. Privacy compliance is addressed with a cookie consent banner and a privacy policy in German. Security posture is adequate with HTTPS and cookie management, though some security headers and explicit policies could be improved. Overall, the site serves as a trusted regional literary hub with good content quality and professional presentation.

L

Literaturbüro NRW e.V.

literaturbuero-nrw.de

40

Literaturbüro NRW e.V. is a well-established non-profit organization based in Düsseldorf, Germany, dedicated to promoting literature and culture across North Rhine-Westphalia. Founded in 1980, it supports authors and young talents through events, publications, and educational projects. The organization is publicly funded by the city of Düsseldorf and the state of NRW, positioning it as a key cultural institution in the region. The website reflects this mission with clear content, event calendars, and resources for writers and literature enthusiasts. Technically, the website is built on Drupal 10, indicating a modern and maintainable CMS platform. The site is mobile-optimized, accessible, and well-structured with good SEO practices. Hosting appears stable with known DNS providers. However, there is no visible cookie consent mechanism or advanced security headers, which could be improved to enhance compliance and security posture. From a security perspective, the site uses HTTPS and does not expose sensitive data or vulnerable libraries. No incident response or security policy pages are published, and no vulnerability disclosure mechanism is evident. Social media integration is strong, but no analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the security posture is solid but could benefit from additional headers and privacy enhancements. The overall risk is low given the non-profit cultural nature of the organization and the absence of suspicious indicators. Strategic recommendations include implementing cookie consent, publishing security policies, adding security headers, and considering a vulnerability disclosure page to improve transparency and compliance.

W

WEISSER RING e. V.

weisser-ring.de

60

WEISSER RING e. V. is Germany's largest non-profit organization dedicated to supporting victims of crime and violence. The organization provides comprehensive services including local victim support, a free victim hotline, online counseling, prevention work, and volunteer engagement. With nearly 40,000 members and 400 local offices, it holds a strong market position in the victim support sector. The website is professionally designed using Drupal 10, optimized for mobile, and offers clear navigation and rich content relevant to its audience. Social media presence and external partnerships enhance its outreach. Security posture is solid with HTTPS and no evident vulnerabilities, though some improvements in security headers and privacy consent mechanisms are recommended. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate entity.

M

Ministerium fuer Inneres und Kommunales NRW

polizei.nrw

70

The website polizei.nrw is the official online presence of the Police of North Rhine-Westphalia, operated by the Ministry of the Interior and Municipal Affairs of NRW, Germany. It provides comprehensive information including press releases, crime prevention tips, traffic safety, and career opportunities. The site targets citizens, media, and stakeholders interested in police work and public safety in NRW. It holds a strong market position as a trusted government source with consistent branding and high content quality. Technically, the site is built on Drupal 10 with modern JavaScript libraries such as Splide for carousels and Shariff for social sharing. It uses Matomo analytics with DoNotTrack enabled, reflecting a privacy-conscious approach. The site is mobile-optimized and accessible, with features for easy language and sign language support. Performance is moderate, with room for improvement in security headers and DNSSEC. Security posture is good with HTTPS enforced and no visible vulnerabilities. However, security headers like CSP and X-Frame-Options are not detected and could be added. Privacy compliance is strong with a clear privacy policy and GDPR adherence, though a cookie consent mechanism is missing. Contact information is present but no direct emails or incident response contacts are found. Overall, the site is professional, trustworthy, and well-maintained, suitable for its government function. Recommendations include enhancing security headers, enabling DNSSEC, and implementing cookie consent to further improve compliance and security.

B

Bitkom

bitkom-events.de

50

Bitkom Events is a German-based event organizer specializing in digital transformation and technology conferences, summits, and large-scale events. The company provides a platform for partners to showcase their expertise and products, targeting business professionals and digital innovators. The website is professionally designed, consistent in branding, and offers clear navigation and relevant content in German. The technical infrastructure is modern, leveraging Drupal 10 CMS, with integrated analytics via Google Analytics and Matomo, and a GDPR-compliant cookie consent mechanism via Usercentrics. Hosting is provided by Colt, a reputable provider, ensuring reliable performance and security. Security posture is solid with HTTPS enforced and secure form handling, though some HTTP security headers are missing and no explicit security or incident response policies are published. Overall, the website is trustworthy, compliant with privacy regulations, and well-positioned in its market niche.

W

Wirtschaftsförderung Land Brandenburg GmbH

wdb-brandenburg.de

62

Wirtschaftsförderung Land Brandenburg GmbH operates a professional website focused on workforce development, training, and integration services in the Brandenburg region of Germany. The site offers comprehensive information and personalized consulting services to businesses and individuals seeking to enhance skills and qualifications. The organization positions itself as a regional government-related economic development agency with a strong emphasis on supporting local labor markets and educational initiatives. Technically, the website is built on Drupal 10 CMS with modern JavaScript libraries including jQuery UI and Blazy for image lazy loading. It employs Matomo analytics for privacy-conscious user tracking and features a responsive design with good accessibility and SEO practices. The site uses HTTPS with excellent SSL configuration, though security headers are not explicitly detected, indicating room for improvement. From a security perspective, the website demonstrates good privacy compliance with a clear privacy policy, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. However, it lacks a published security policy or incident response contact details. The WHOIS data shows standard domain registration with GoDaddy name servers, consistent with the business purpose, though registrant details are minimal. Overall, the website is trustworthy, professional, and well-maintained, serving its target audience effectively. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular vulnerability assessments to further strengthen the security posture.

B

Bitkom

aidaq.berlin

55

The website aidaq.berlin represents a professional event platform for the AI & Data Summit and Quantum Summit, organized under the Bitkom umbrella. These summits focus on cutting-edge trends in AI, data, and quantum computing, targeting industry leaders, decision-makers, and experts primarily in Germany and Europe. The business model centers on event hosting, networking, and knowledge exchange, positioning itself as a major European event in the technology sector. The domain is newly registered in late 2023, aligning with the event timeline for 2024 and 2025, and is hosted with reputable infrastructure and registrar services. Technically, the site is built on Drupal 10 CMS with modern JavaScript libraries and integrates Google Tag Manager and Usercentrics for analytics and consent management, reflecting a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with good performance and professional design. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is strong, with clear privacy and cookie policies and GDPR consent mechanisms in place. Overall, the security posture is good but could be enhanced by publishing explicit security policies and incident response contacts. The site shows no signs of malicious activity or suspicious content. Business credibility is high, supported by consistent branding, social media presence, and transparent domain registration. The site is safe for general audiences and does not contain adult or questionable content.

D

Dachverband der autonomen Frauenberatungsstellen NRW e.V.

frauenberatungsstellen-nrw.de

52

The website www.frauenberatungsstellen-nrw.de represents the Dachverband der autonomen Frauenberatungsstellen NRW e.V., a well-established non-profit umbrella organization supporting autonomous women's counseling centers in North Rhine-Westphalia, Germany. The organization provides comprehensive support, advocacy, and educational services aimed at empowering women and girls, promoting gender equality, and combating violence. The site reflects a strong regional presence with a clear mission and professional presentation. Technically, the website is built on Drupal 10, leveraging modern web technologies including jQuery, Matomo Analytics for privacy-conscious tracking, and lazy loading for performance optimization. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. Hosting details are limited but DNS points to vegasystems.de nameservers. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, security headers could be enhanced to improve protection. Privacy policies and cookie documentation are comprehensive and clearly accessible, demonstrating a commitment to data protection and user privacy. Overall, the website scores highly on content quality, technical implementation, security posture, privacy compliance, and business credibility. It serves its target audience effectively with trustworthy and relevant content. There are no indications of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers and considering a vulnerability disclosure policy to further strengthen security posture.

2

2050 Media Projekt gGmbH

klimafakten.de

68

Klimafakten.de is a German-language non-profit platform operated by 2050 Media Projekt gGmbH, focused on providing reliable information about climate change and facilitating effective communication about climate solutions. The website offers comprehensive resources including scientific facts, communication handbooks, training academies, and community networking events. It targets policymakers, media, organizations, and individuals interested in climate topics. Technically, the site is built on Drupal 10 with modern front-end libraries and is hosted behind Cloudflare, ensuring good performance and security. Privacy compliance is well addressed with clear cookie consent and privacy policies. Security posture is strong with HTTPS and no visible vulnerabilities, though explicit security headers and incident response policies could be improved. Overall, the site is professional, trustworthy, and well-positioned as a leading climate information resource in the German-speaking market.

B

Bitkom e. V.

bitkom.org

59

Bitkom e. V. is the leading German industry association representing the information and telecommunications sector. The organization acts as a think tank and advocacy group, providing market data, events, and policy consultation to its members and stakeholders. The website reflects a mature digital presence with comprehensive content, including podcasts, events, and research reports, targeting industry professionals, policymakers, and the public interested in digital transformation in Germany. Technically, the site is built on Drupal 10 with modern libraries and includes a consent management platform for privacy compliance. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and explicit incident response information are lacking. The WHOIS data is unavailable, which slightly reduces domain trust, but the overall professionalism and transparency of the site support its legitimacy.

K

Kreisstadt Unna

unna.de

51

Kreisstadt Unna operates an official municipal website providing comprehensive information and digital services to its citizens and visitors. The site offers access to news, cultural events, administrative services, and contact information, positioning itself as a central hub for local government communication. The website leverages modern technologies including Drupal 10 CMS, Matomo Analytics with privacy-respecting configurations, and Bootstrap for responsive design. It demonstrates a mature digital infrastructure with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR requirements.

M

Ministerium für Kinder, Jugend, Familie, Gleichstellung, Flucht und Integration des Landes Nordrhein-Westfalen

familienportal.nrw

62

The Familienportal.NRW website is an official government portal managed by the Ministry for Children, Youth, Family, Equality, Refuge and Integration of the State of North Rhine-Westphalia, Germany. It provides centralized, accessible, and multi-language information and services for families, parents, and children in the region. The portal offers comprehensive content covering pregnancy, child age groups, family topics, and legal information, supported by contact forms and newsletter subscriptions. The site is well-positioned as a trusted government resource with strong branding and accessibility features. Technically, the site is built on Drupal 10 CMS with modern frontend libraries such as Font Awesome and accessible slick carousels. It employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. The website is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security best practices are observed, including HTTPS enforcement and security headers, though no explicit incident response or vulnerability disclosure policies are publicly available. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is robust, with clear privacy and cookie policies and GDPR adherence. The lack of WHOIS data is due to privacy protection, which is justified for a government domain. Social media presence on major platforms enhances trust and outreach. Overall, the site demonstrates a high level of professionalism, trustworthiness, and user-centric design. Strategic recommendations include establishing a public vulnerability disclosure policy, publishing incident response contacts, and continuous monitoring of third-party libraries to maintain security integrity. These steps will further enhance the portal's security maturity and user trust.

K

Kreisstadt Unna

stadt-unna.de

51

The website www.unna.de serves as the official digital portal for the Kreisstadt Unna municipal government in Germany. It provides citizens and visitors with comprehensive information about city services, cultural events, administrative contacts, and digital service access. The site is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence for a medium-sized government entity. Technically, it is built on Drupal 10 with modern libraries such as Font Awesome and integrates Matomo Analytics with privacy-conscious configurations. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though it lacks explicit security policy and incident response disclosures. Overall, the site is trustworthy, compliant with GDPR, and offers a positive user experience for its target audience.

S

Stadt Castrop-Rauxel

castrop-rauxel.de

61

The website www.castrop-rauxel.de is the official municipal portal for the city of Castrop-Rauxel in Germany. It provides comprehensive information and services for residents, businesses, and visitors, including citizen services, event news, city planning, and digital applications. The site is built on Drupal 10 with modern frontend technologies and includes accessibility and mobile optimization features. The presence of a cookie consent mechanism via Klaro and the use of Matomo analytics with DoNotTrack respected indicate a privacy-conscious approach. However, explicit privacy policy and terms of service pages were not detected in the provided content. Security posture is moderate with HTTPS implied but lacking visible security headers or published security policies. The domain WHOIS data is consistent with a legitimate government entity, and no suspicious patterns were found. Overall, the site is professional, trustworthy, and serves as a key digital interface for the city government.

M

Accueil | Médiathèques Plaine Commune

mediatheques-plainecommune.fr

47

The website www.mediatheques-plainecommune.fr serves as the online presence for Médiathèques Plaine Commune, a public media library network likely serving the Plaine Commune area in France. The site provides cultural and educational resources to the general public, positioning itself as a government or public service entity. The website is built on Drupal 10 CMS and utilizes Matomo Analytics with DoNotTrack enabled, reflecting a moderate level of digital maturity and privacy awareness. However, the absence of visible privacy and cookie policies, as well as the lack of security headers, indicates room for improvement in compliance and security practices. The WHOIS data is not publicly available, suggesting privacy protection, which is common for public institutions but reduces transparency. Overall, the site is functional and safe but would benefit from enhanced security and privacy disclosures.

L

La Turbine

laturbine-cergypontoise.fr

48

La Turbine is a French business incubator and enterprise hotel located in Cergy-Pontoise, providing coworking spaces, personalized support, and a dynamic entrepreneurial community. The website is built on Drupal 10 and integrates modern web technologies including Google Tag Manager and Slick Carousel for enhanced user experience. The site demonstrates good content quality, clear navigation, and mobile optimization, targeting startups and entrepreneurs in the local ecosystem. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though security headers and explicit incident response policies are absent. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

The Academy of Motion Picture Arts and Sciences operates the official Oscars.org website, serving as the authoritative source for information about the Academy Awards, including history, events, press releases, and screenings. The site targets both the general public and film industry professionals, maintaining a strong market position as the leading organization behind the Oscars. The business model is non-profit and focused on cultural and media promotion. Technically, the website is built on Drupal 10, leveraging modern web technologies and integrating Google Tag Manager and Cookiebot for analytics and privacy compliance. The site demonstrates good digital maturity with responsive design, accessibility features, and SEO optimization. Security posture is strong, with HTTPS enforced, appropriate security headers, and no visible vulnerabilities. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-maintained, though it lacks publicly visible contact information and explicit security or incident response policies. Strategic recommendations include publishing security policies, incident response contacts, and vulnerability disclosure information to enhance transparency and trust.

A

Agglomération de Cergy-Pontoise

cergypontoise.fr

49

The Agglomération de Cergy-Pontoise website serves as the official digital presence for the local government authority managing 13 communes in the Cergy-Pontoise region of France. It provides comprehensive information on urban planning, public services, cultural activities, waste management, transportation, and social programs. The site targets residents, local businesses, and visitors, offering accessible resources and contact points for community engagement. Technically, the website is built on Drupal 10, leveraging modern web technologies including Google Tag Manager and Facebook SDK for analytics and social integration. The site is mobile-optimized, accessible, and structured with clear navigation, reflecting a mature digital infrastructure suitable for a public sector entity. From a security perspective, the site enforces HTTPS and uses trusted third-party scripts. While explicit security headers are not fully confirmed, no vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are implemented with GDPR compliance, though no dedicated security policy or incident response contacts were found. Overall, the domain and website present a legitimate, trustworthy public sector resource with good content quality and technical implementation. The lack of WHOIS data is consistent with AFNIC privacy norms and does not detract from the site's credibility. Strategic improvements could include enhanced security headers and explicit incident response information.

S

Stage Entertainment Nederland

stage-entertainment.nl

73

Stage Entertainment Nederland is a prominent provider of musicals and live theater experiences in the Netherlands, offering popular shows such as Moulin Rouge! De Musical and Disney FROZEN. The company operates a professional and user-friendly website focused on ticket sales, group arrangements, and theater rentals. The site targets a broad audience interested in cultural and entertainment events. Technically, the website is built on Drupal 10 and integrates modern marketing and analytics tools such as HubSpot Forms, Google Tag Manager, and Optimizely, ensuring a mature digital presence with good mobile optimization and accessibility. Security-wise, the site enforces HTTPS, uses Content Security Policy nonces, and implements cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly available. Overall, the domain registration details align well with the business claims, indicating a legitimate and trustworthy entity.

P

PADI

padi.com

73

PADI is a globally recognized leader in scuba diving education, offering a comprehensive range of courses, certifications, and dive-related services. The website reflects a mature digital presence with multilingual support, e-commerce capabilities, and integrated travel and conservation initiatives. Technically, the site is built on Drupal 10 and leverages modern analytics and marketing tools, ensuring good performance and user experience. Security posture is strong with HTTPS, consent management, and no visible vulnerabilities, although explicit security headers should be verified at the HTTP level. WHOIS data is unavailable, likely due to privacy protection, which is common for large brands. Overall, the site is professional, trustworthy, and well-optimized for its audience.

S

Stage Entertainment

stage-entertainment.com

73

Stage Entertainment is a prominent global producer and operator of musical theatre productions, attracting millions of visitors annually. The company operates multiple theatres across Europe and collaborates with international partners to produce and license major musicals. The website reflects a mature digital presence built on Drupal 10, with modern content delivery via AWS Cloudfront and integrated analytics through Google Tag Manager. Security posture is solid with HTTPS and cookie consent mechanisms in place, though explicit privacy and security policies are not directly visible. The absence of WHOIS data for the domain is a notable gap but does not detract significantly from the professional presentation and operational legitimacy of the site. Overall, the company demonstrates a strong market position in the entertainment sector with a well-structured online presence.

W

WTTW

wttw.com

66

WTTW is a prominent public media broadcaster serving Chicago and the Midwest, affiliated with PBS. The website offers a rich array of content including local news, educational programming for children, documentaries, and community engagement features. It operates as a non-profit entity supported by donations and sponsorships, positioning itself as a trusted source of public media in its region. Technically, the site is built on Drupal 10, leveraging modern web technologies and third-party services such as Google Tag Manager and Facebook Pixel for analytics and advertising. The site is well optimized for mobile and accessibility, with clear navigation and professional design. Security posture is strong with HTTPS enforced, security headers implied, and consent management implemented. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. WHOIS data is unavailable, likely due to privacy protection, but the site’s content and affiliations strongly indicate legitimacy. Overall, WTTW’s digital presence is mature, secure, and user-friendly, serving a broad general audience with safe and relevant content.

M

Middle East Eye

middleeasteye.net

71

Middle East Eye is a professional online news media platform focused on delivering news, opinion, video, and analysis related to the Middle East and surrounding regions. The website demonstrates a strong market position as a regional news outlet with a consistent and professional brand presence. Technically, the site is built on Drupal CMS with modern web technologies including Font Awesome, Google Analytics, Google Tag Manager, and Cookiebot for consent management. The site is mobile optimized and accessible with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are missing. The absence of publicly available WHOIS data and explicit privacy policies slightly reduce trust and compliance confidence. Overall, the site is well-maintained and trustworthy for general audiences interested in Middle East affairs.

M

METAL TRADE COMAX – Division COMAX Dach

comaxdach.de

57

COMAX Dach, a division of METAL TRADE COMAX, is a leading manufacturer specializing in metal roofing solutions primarily serving the German and Czech markets. The company offers a range of premium metal roofing products and related services, including custom painting and logistics. Their market position is strong, supported by decades of experience since 1973 and membership in the European Coil Coating Association (ECCA). The website reflects a professional and well-structured digital presence built on Drupal 10, with modern marketing and analytics integrations such as Google Tag Manager and CookieHub for GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, well-branded, and targets B2B customers in the construction and roofing sectors.

M

METAL TRADE COMAX – DIVISION COMAX ROOFS

comaxroofs.co.uk

67

COMAX ROOFS is a leading Czech manufacturer specializing in coated aluminium and metal roofing products, operating under the parent company METAL TRADE COMAX. The company offers a range of premium roofing products and services including custom painting and packaging, targeting roofing professionals and merchants primarily in the UK and Europe. The website demonstrates a mature digital presence with a modern Drupal 10 CMS, responsive design, and integrated privacy and cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. The absence of WHOIS data due to domain registration errors introduces some risk in domain legitimacy assessment, but the professional content and trust indicators mitigate this concern. Overall, the website is well-structured, trustworthy, and business-focused, supporting COMAX ROOFS' market position as a reputable manufacturer.

M

METAL TRADE COMAX – DIVIZE STŘECHY COMAX

strechycomax.cz

63

Střechy COMAX is a leading Czech manufacturer specializing in metal roofing products, operating under the parent company METAL TRADE COMAX. The company emphasizes quality, reliability, and customer satisfaction, offering a broad range of metal roofing solutions with a strong focus on innovation and sustainability, including integrated photovoltaic roofing systems. Their market position is solidified by decades of experience since 1973 and membership in key industry associations. Technically, the website is built on Drupal 10, employs modern web technologies, and includes standard marketing and analytics tools such as Google Tag Manager and CookieHub for privacy compliance. Security posture is good with HTTPS, security headers, and cookie consent mechanisms, though the site lacks a publicly available security policy or incident response information. Overall, the website is professional, user-friendly, and trustworthy, though the absence of WHOIS data limits domain registration transparency.

S

Saint-Gobain

saint-gobain.cz

57

Saint-Gobain CZ operates as a world leader in modern and sustainable construction materials, offering a wide range of products and solutions for both construction and industrial sectors. The website reflects a mature enterprise with a strong brand presence, multiple partner brands, and a focus on sustainability and innovation. The technical infrastructure is based on Drupal 10 with modern web technologies, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some improvements in security headers and incident response transparency are recommended. Privacy compliance is partial, with a privacy policy present but lacking explicit cookie consent mechanisms. Overall, the site presents a professional and trustworthy digital presence aligned with its business stature.

The Rockefeller Brothers Fund is a well-established philanthropic foundation focused on advancing social change for a more just, sustainable, and peaceful world. Their website clearly communicates their mission, thematic programs, grantmaking activities, and mission-aligned investing initiatives. The organization targets philanthropic partners, grantees, and social change advocates, positioning itself as a key player in the non-profit sector with a global reach. Technically, the website is built on Drupal 10, leveraging modern analytics tools such as Google Analytics, Hotjar, and Plausible Analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, providing a professional and user-friendly experience. However, some security best practices like security headers and explicit cookie consent mechanisms could be improved. From a security perspective, the site uses HTTPS and secure forms, with no visible vulnerabilities or exposed sensitive data. The absence of WHOIS data reduces transparency but does not significantly impact the trustworthiness given the strong branding and external social media presence. Overall, the site maintains a solid security posture but could enhance compliance and transparency. The overall risk assessment is low, with recommendations focusing on improving security headers, cookie consent, and publishing security policies to further strengthen trust and compliance.

I

International Crisis Group

crisisgroup.org

64

International Crisis Group is a well-established independent, non-profit, non-governmental organization founded in 1995, dedicated to preventing and resolving deadly conflicts worldwide. The organization provides in-depth conflict analysis, policy recommendations, and advocacy services targeting policymakers, international organizations, and the public interested in peacebuilding. The website reflects a professional and consistent brand image, leveraging modern web technologies including Drupal 10 CMS, Google Analytics, and Facebook SDK for social engagement and analytics. The technical infrastructure is solid with good mobile optimization, accessibility, and SEO practices, although some security headers could be improved. The site uses HTTPS and avoids exposing sensitive data, indicating a good security posture. However, explicit privacy and cookie policies are not detected in the provided content, which is a compliance gap. Contact information is clearly presented in structured data, enhancing business credibility. Overall, the security posture is strong with room for enhancement in security headers and privacy compliance. The domain WHOIS data is unavailable or protected, which is common for NGOs and does not raise immediate concerns. The website is safe for general audiences, with no adult or questionable content detected. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and maintaining transparency in data protection practices.

I

Institut für die Wissenschaften vom Menschen Institute for Human Sciences

iwm.at

61

The Institut für die Wissenschaften vom Menschen (IWM) is a well-established academic research institute based in Vienna, Austria, focusing on advanced research in humanities and social sciences. It hosts numerous fellows annually, organizes scholarly events, and publishes academic content including books, articles, and podcasts. The website reflects a mature digital presence with clear navigation, professional design, and comprehensive content tailored to academics, researchers, and policy makers. Technically, the website is built on Drupal 10, leveraging modern web technologies such as jQuery, Bootstrap, and lazy loading for performance optimization. It employs Google Analytics with IP anonymization and a GDPR-compliant cookie consent mechanism, indicating a good level of privacy awareness. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the site uses HTTPS with good SSL configuration and some security headers, though it lacks explicit security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable or privacy protected, which is typical for academic institutions and does not raise immediate concerns. Overall, the website demonstrates a strong security posture, excellent content quality, and good privacy compliance, making it a trustworthy and professional platform. Strategic improvements could include publishing a security policy, incident response contacts, and a vulnerability disclosure program to enhance transparency and security culture.

G

Georgia Department of Economic Development

georgia.org

67

The Georgia Department of Economic Development operates as the official state agency promoting business growth, investment, and economic development within Georgia. The website serves as a comprehensive resource for businesses seeking to locate, expand, or start operations in the state, offering detailed information on incentives, workforce development, infrastructure, and industry sectors. The agency positions itself as a leading economic development authority with a strong market presence and government backing. Technically, the website is built on Drupal 10, leveraging modern web technologies and integrations such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight for analytics and marketing. The site is hosted with reputable providers and uses Cloudflare DNS, ensuring good performance and security. Mobile optimization and accessibility are well addressed, providing a positive user experience. From a security perspective, the site enforces HTTPS, employs standard security headers, and maintains a clean domain registration profile consistent with a government entity. While DNSSEC is not enabled, the overall security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is supported by clear privacy and cookie policies with consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and compliance, making it a reliable platform for its target audience. Strategic recommendations include enabling DNSSEC, publishing a formal security policy, and adding vulnerability disclosure information to further enhance security transparency.

D

DRK-Blutspendedienst West gGmbH

bsdwest.de

64

DRK-Blutspendedienst West gGmbH is a large non-profit healthcare organization operating in Germany, specializing in blood donation services and transfusion medicine across the regions of Nordrhein-Westfalen, Rheinland-Pfalz, and Saarland. The organization plays a critical role in supplying hospitals and medical practices with essential blood products, organizing thousands of blood donation events annually, and providing expert medical consultation. Their digital presence includes a well-structured website built on Drupal 10, complemented by a digital blood donor service accessible via web and mobile apps, and active engagement on major social media platforms. Technically, the website employs modern web technologies including Bootstrap, FontAwesome, and JavaScript libraries for enhanced user experience and accessibility. The site is mobile-optimized, GDPR compliant with a robust cookie consent mechanism, and uses Matomo analytics configured to respect user privacy (Do Not Track). While HTTPS is enforced, and no critical security vulnerabilities are evident, the site lacks publicly available security policies and incident response contacts, which are recommended for improved transparency and trust. Overall, the security posture is solid with good privacy compliance, but could be enhanced by adding explicit security documentation and security.txt files. The business credibility is high, supported by consistent branding, professional content, and clear contact channels. No suspicious or malicious content was detected, and the site is safe for general audiences.

E

EXX s.r.o.

exx.cz

49

EXX s.r.o. is a well-established Czech company specializing in lighting design, interior design, and custom manufacturing services. With a domain age since 2007 and over 25 years of experience in lighting, the company targets both commercial and residential clients seeking professional and tailored design solutions. Their business model combines design expertise with in-house manufacturing capabilities, positioning them as a comprehensive service provider in their sector. The website is professionally designed using Drupal 10, featuring modern tracking tools like Google Analytics and Facebook Pixel, and supports mobile responsiveness and accessibility. However, the absence of an explicit privacy policy and security headers indicates room for improvement in compliance and security posture. Overall, the site is trustworthy and reflects a credible business presence in the Czech Republic.

D

DRK-Blutspendedienst Nord-Ost gemeinnützige Gesellschaft mit beschränkter Haftung

blutspende-nordost.de

60

DRK-Blutspendedienst Nord-Ost is a reputable non-profit organization dedicated to blood donation services across several German federal states. The website serves as a comprehensive portal for donors, medical professionals, and volunteers, offering appointment scheduling, educational content, and community engagement. The organization maintains a strong regional presence with consistent branding and trusted partnerships. Technically, the website is built on Drupal 10, leveraging modern web technologies and privacy-conscious analytics via Matomo. It is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. The hosting appears stable with EPAG nameservers. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with the organization's profile, supporting legitimacy. Overall, the site presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements could focus on enhancing security headers and publishing formal security and incident response policies.

D

DRK-Blutspendedienst NSTOB

blutspende-leben.de

60

The website www.blutspende-leben.de serves as the official portal for the DRK-Blutspendedienst NSTOB, a regional blood donation service under the German Red Cross. It provides comprehensive information and services related to blood donation, including appointment booking, donor services, educational content, and resources for medical professionals. The site targets blood donors and healthcare stakeholders in Germany, emphasizing community health and non-profit service. Technically, the site is built on Drupal 10 with modern libraries such as Bootstrap and FontAwesome, and integrates Matomo for analytics and Cookiefirst for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security-wise, HTTPS is enforced and privacy compliance is well implemented with clear privacy and cookie policies. However, some security headers are missing and no explicit incident response or vulnerability disclosure information is provided. Overall, the site demonstrates a strong security posture with room for improvement in header security and incident transparency. The domain WHOIS data aligns well with the website's claims, showing legitimacy and consistency. The site is trustworthy, professional, and safe for general audiences.