Security Directory

B

Bleecker Burger

bleecker.co.uk

59

Bleecker Burger is a well-established burger restaurant chain operating multiple locations across London, recognized for its award-winning burgers and quality casual dining experience. The website reflects a strong brand presence with comprehensive content, including menus, locations, news, and social media integration. Technically, the site is built on WordPress with modern SEO and cookie consent implementations, leveraging Google Analytics and Facebook Pixel for marketing and analytics. Security posture is solid with HTTPS and bot management cookies, though explicit security policies and incident response contacts are not published. The WHOIS data for the www subdomain is unavailable due to domain registration rules, which slightly impacts trust but does not detract from the website's professionalism. Overall, the site demonstrates a mature digital presence with good privacy compliance and user experience.

N

NABU | naturgucker

nabu-naturgucker.de

52

NABU|naturgucker is a well-established non-profit organization dedicated to nature observation, education, and conservation in Germany. The website serves as a hub for citizen science activities, offering a social network for nature observations, an online academy, travel experiences, and a participatory nature journal. It targets nature enthusiasts and researchers, providing extensive resources and community engagement opportunities. The platform is professionally designed, SEO optimized, and mobile-friendly, reflecting a mature digital presence. Technically, it is built on WordPress with modern plugins enhancing functionality and user experience. Security posture is good with HTTPS and cookie consent mechanisms in place, though formal security policies and incident response contacts are not explicitly published. Overall, the site is trustworthy, content-rich, and aligned with its mission to promote nature awareness and scientific collaboration.

A

Association Out of the Box

biennaleoutofthebox.ch

49

The website biennaleoutofthebox.ch represents the Association Out of the Box, a Swiss cultural organization that organizes the Biennale Out of The Box, an inclusive arts festival scheduled for May 2025. The festival showcases a variety of artistic performances and exhibitions created by artists with disabilities, targeting a broad audience including persons with different forms of handicap. The site is professionally designed with good accessibility features and clear navigation, reflecting a well-established niche cultural event. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery, Underscore.js, and media players like Plyr, along with a slick carousel for image sliders. The site is mobile-optimized and uses HTTPS with a strong SSL configuration. SEO is enhanced by the Yoast SEO plugin, and accessibility is supported by features like text resizing and easy-to-read content indicators. From a security perspective, the site enforces HTTPS and does not expose sensitive data or use vulnerable libraries. However, it lacks published privacy and cookie policies, terms of service, and incident response information, which are important for GDPR compliance and user trust. No security headers were detected, and no vulnerability disclosure mechanisms are present. The WHOIS data aligns well with the website's claims, indicating legitimacy. Overall, the site is a credible and professional platform for a cultural festival with good technical and security foundations but requires improvements in privacy compliance and security transparency to enhance trust and regulatory adherence.

S

Sortie Relax - Genève

sorties-relax.ch

50

Sorties Relax is a small Geneva-based cultural event organizer coordinated by the Association Out of the Box. The organization focuses on providing relaxed and inclusive cultural outings such as theatre, cinema, exhibitions, and concerts. The website serves as an information hub for upcoming events and offers a newsletter subscription to engage its audience. The target audience is general public interested in cultural activities in Geneva. Technically, the website is built on WordPress with modern SEO and accessibility features, including Yoast SEO and Google reCAPTCHA for form security. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS and anti-bot measures, but lacks some advanced security headers and formal privacy and cookie policies, which are compliance gaps. The domain registration data aligns well with the business claims, indicating legitimacy and transparency. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

Ö

Österreichische Gesellschaft für Pneumologie (ÖGP)

ogp.at

49

The Österreichische Gesellschaft für Pneumologie (ÖGP) is a well-established Austrian scientific society dedicated to the research, education, and patient care in the field of lung diseases. The website serves as a comprehensive portal offering information on expert groups, publications, events, and educational resources targeting medical professionals and patients interested in pneumology. The organization leverages international networks to provide high-quality knowledge dissemination and advocacy within the Austrian healthcare system. Technically, the website is built on WordPress with modern plugins for SEO, analytics, and cookie consent, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit privacy and security policies are missing. Overall, the site is professional, trustworthy, and well-positioned within its niche.

G

Guten Tag Apotheke

mein-tag.de

61

MEIN TAG® is a German-language health advisory website affiliated with the Guten Tag Apotheke pharmacy network. It provides daily health and wellness content, including medical news, tips, recipes, and expert advice. The platform targets the general German-speaking public interested in health topics and wellness. The business model centers on content publishing with ancillary services such as a pharmacy finder and e-prescription information, supported by advertising partnerships and a linked online shop. Technically, the site is built on WordPress with modern plugins for SEO, advertising, and GDPR compliance, delivering a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are missing. No critical vulnerabilities or privacy issues were detected. Overall, the site is professional, trustworthy, and compliant with GDPR, serving as a reliable health information source.

H

HDG Group

hdg-group.it

49

HDG Group is a small Italian company founded in 2022 specializing in integrated branding and communication strategies. Their website presents a professional image with a focus on helping brands find their voice across communication touchpoints. The company targets businesses seeking branding and marketing services. Technically, the website is built on WordPress using modern libraries such as jQuery and Swiper.js, with SEO optimization via Yoast and cookie compliance through Iubenda. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers and explicit policies are missing. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a visible privacy policy or terms of service. Overall, the website is well-designed, mobile-optimized, and trustworthy, supported by consistent WHOIS data and partner domain references.

P

Picus

picus.xyz

51

Picus is a technology-focused investment firm supporting visionaries building Web3 solutions for mass adoption. The company positions itself as a niche player in the Web3 venture capital space, targeting startups and developers in this emerging technology sector. Founded in 2019, Picus presents a professional and consistent brand image with a well-structured website that emphasizes its portfolio and approach. The website leverages WordPress with SEO optimizations and modern web technologies, including SVG animations and caching plugins, indicating a moderate level of digital maturity. From a security perspective, the website employs HTTPS with a valid SSL certificate and enforces domain transfer protections. However, DNSSEC is not enabled, and some advanced security headers are missing, which could be improved. The site includes a comprehensive privacy policy and cookie consent mechanism compliant with GDPR, but lacks explicit security policies or incident response information. No contact emails or phone numbers are publicly listed, which may impact direct communication channels. Overall, the website is well-designed, user-friendly, and trustworthy, with good SEO and privacy compliance. The absence of critical security issues and the consistency of WHOIS data support a high legitimacy score. Strategic recommendations include enabling DNSSEC, adding security headers, publishing security policies, and enhancing contact information to improve trust and security posture.

K

Kagiso Media

kmradio.co.za

45

Kagiso Media Radio is a prominent South African media company specializing in radio broadcasting, audio content, and digital publishing. Established in 2024, it operates multiple well-known radio stations and offers services including research and analytics, publishing, digital development, and podcast production. The company targets South African audiences and advertisers, positioning itself as a leading media entity in the region. Technically, the website is built on WordPress with modern front-end technologies like Swiper.js and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or terms of service. Overall, the website is professional, trustworthy, and content-rich, reflecting a medium-sized enterprise with a clear market presence.

B

BioRN - Life Science Cluster Rhine-Neckar

biorn.org

53

BioRN - Life Science Cluster Rhine-Neckar is a well-established innovation cluster based in the Rhine-Neckar region of Germany, focusing on biotech and life sciences. The organization fosters collaboration between academia, industry, and public stakeholders to promote health innovations and support startups. The website reflects a mature digital presence with rich content, event information, and member services, targeting life science professionals and investors. Technically, the site is built on WordPress with modern plugins for SEO and cookie management, hosted by a reputable German registrar. Security posture is adequate with HTTPS and cookie consent but lacks some advanced security headers and policies. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the domain registration and website content align well, indicating a legitimate and credible business presence.

A

Alpas

alpas.ai

59

Alpas is a technology startup founded in 2020 that offers an AI-powered sourcing automation platform targeting manufacturing companies and procurement professionals. Their solution enables faster supplier discovery, procurement spend reduction, and enhanced supplier transparency through a 360° supplier view. The website is built on WordPress, uses modern technologies including Cloudflare DNS and Google APIs, and implements a cookie consent mechanism via Termly. Security posture is good with HTTPS and domain transfer protection, though DNSSEC is not enabled and no explicit security or privacy policies are published. The domain registration is privacy protected but consistent with the company's startup profile. Overall, the website presents a professional and trustworthy image with strong business credibility and good technical implementation.

M

Musikkultur Rheinsberg gGmbH

kammeroper-schloss-rheinsberg.de

45

Kammeroper Schloss Rheinsberg is a well-established international festival and music education organization based in Germany, focusing on young opera singers. It offers a rich program of operas, concerts, and an international singing competition, attracting a culturally engaged audience. The organization operates as a non-profit and maintains a professional online presence with detailed event and visitor information. Technically, the website is built on WordPress with modern libraries and plugins, providing good mobile optimization and SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit privacy and security policy pages. Overall, the site is trustworthy and professionally managed, serving its cultural mission effectively.

M

Musikkultur Rheinsberg gGmbH

musikakademie-rheinsberg.de

45

Musikakademie Rheinsberg is a well-established cultural and educational institution based in Brandenburg, Germany, focused on music education, music theater, and amateur music. The organization offers a wide range of courses, workshops, and event hosting services targeting musicians, educators, and music enthusiasts. The website reflects a medium-sized non-profit entity with a clear mission to serve musicians of all generations and promote cultural engagement through music. The business model is centered on educational and cultural services with a strong regional presence. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap Grid, and various plugins such as Yoast SEO and Borlabs Cookie for privacy compliance. The site demonstrates good mobile optimization, SEO practices, and moderate performance. The use of structured data enhances search engine visibility. However, hosting provider details are not explicitly identified. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. Security headers are not explicitly detected, suggesting room for improvement. No vulnerabilities or exposed sensitive data were found in the content. Overall, the security posture is good but could be enhanced with additional policies and technical controls. The overall risk assessment is low with no signs of malicious activity or unsafe content. Strategic recommendations include publishing security and privacy policies, implementing security headers, and establishing incident response contacts to improve trust and compliance. The website is professional, trustworthy, and suitable for its target audience.

Hochschulforum Digitalisierung is a well-established German non-profit initiative focused on supporting and shaping the digital transformation of higher education institutions. It operates as a think-and-do tank, providing networking, consulting, innovation, qualification, and publishing services to universities and related stakeholders. The organization is affiliated with reputable entities such as the Stifterverband, CHE, and HRK, reinforcing its credibility and market position within the education sector in Germany. The website content is rich, professionally designed, and regularly updated with news, events, and publications relevant to its target audience of higher education professionals and students. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, WPBakery Page Builder, and multilingual support via WPML. It demonstrates good performance, mobile optimization, and SEO best practices. Cookie consent is managed via Borlabs Cookie, indicating attention to privacy compliance, although explicit privacy and terms of service documents are not detected. Security posture is solid with HTTPS enforced and some security plugins in use, but lacks published security policies or vulnerability disclosure information. Overall, the security posture is good but could be improved by adding explicit privacy, security, and incident response policies. No critical vulnerabilities or suspicious content were detected. The domain registration data is consistent with the website's claims, supporting legitimacy. The site is safe for general audiences and does not contain any adult or questionable content. Strategic recommendations include publishing comprehensive privacy and terms of service policies, establishing a security incident response framework, and enhancing security headers to further strengthen the security posture and trustworthiness of the website.

The Deutsch-Französisches Hochschulinstitut (DFHI) is a well-established educational cooperation between the Hochschule für Technik und Wirtschaft des Saarlandes (htw saar) and the Université de Lorraine (UL), offering bilingual German-French degree programs primarily in management, engineering, and informatics. Founded in 1978, it serves approximately 450 students and has a strong alumni network exceeding 3400 graduates. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support, targeting prospective students, current students, alumni, and partner organizations. Technically, the website is built on WordPress with modern plugins for SEO, cookie consent, and responsive design. It uses HTTPS with good SSL configuration and includes structured data for enhanced search engine visibility. The site demonstrates good mobile optimization and accessibility features, although some additional security headers could improve its security posture. From a security perspective, the site employs HTTPS and cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data is privacy protected as per EURid policy, which is typical for .eu domains, and does not raise suspicion. The domain's legitimacy is supported by consistent branding, partner links, and professional content. Overall, the DFHI website presents a trustworthy, professional, and secure platform for its educational mission. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and potentially publishing a dedicated security policy or incident response information to further strengthen trust and compliance.

L

Landesregierung Brandenburg

digitalesbb.de

44

Digitales Brandenburg is an official digital transformation initiative by the Landesregierung Brandenburg (State Government of Brandenburg, Germany). The website serves as a comprehensive information portal providing updates on digital policies, strategies, and projects within the state. It targets citizens, municipalities, and businesses interested in digital development and government services in Brandenburg. The platform offers news, event information, newsletters, and resources related to digital infrastructure and society. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses SEO best practices and analytics tools such as Google Analytics and WP Statistics. The hosting is managed via kasserver.com, consistent with the domain's WHOIS data. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit policies are missing. Privacy compliance is partial, with a comprehensive privacy policy present but lacking a cookie consent mechanism. Overall, the website is professional, trustworthy, and well-positioned as a government digital resource.

L

Lagfa Brandenburg

mitjemacht-brandenburg.de

44

The website 'Landesarbeitsgemeinschaft Freiwilligenagenturen Brandenburg - Lagfa Brandenburg' represents a small non-profit organization focused on coordinating volunteer agencies within the Brandenburg region of Germany. It serves as a regional leader in promoting volunteer work and supporting volunteer agencies. The site provides information and resources targeted at volunteers and organizations involved in volunteer activities. Technically, the website is built on WordPress, utilizing popular plugins such as Yoast SEO and MonsterInsights for SEO and analytics respectively. It employs Google reCAPTCHA for bot protection and has implemented cookie consent mechanisms, indicating a basic level of privacy compliance. Security posture is moderate with HTTPS enforced and some best practices observed, but lacks explicit security headers and formal security policies. Overall, the site is professional and trustworthy but could improve in privacy transparency and security documentation.

I

Institut für Angewandte Informatik (InfAI)

infai.org

55

InfAI is a well-established German research institute specializing in applied computer science with a focus on digitalization, energy systems, and transportation. The website reflects a professional and consistent brand presence, targeting researchers and industry stakeholders. The technical infrastructure is based on WordPress with modern plugins and themes, ensuring a good user experience and SEO optimization. Security posture is solid with HTTPS enforced and domain protections in place, though DNSSEC is not enabled. Privacy compliance is strong, featuring a comprehensive GDPR-compliant cookie consent mechanism and detailed privacy policies. Overall, the website demonstrates a mature digital presence suitable for its research and consultancy business model.

T

twingle - einfach Spenden

twingle.de

47

twingle is a German-based online fundraising platform specializing in donation widgets and fundraising project management tools tailored for non-profit organizations. The company has established a reputable market position, evidenced by its iF Design Award 2021 and ISO 27001 certified hosting environment. Their services include a variety of donation tools such as occasion-based donations, gift certificates, and mobile/contactless payment options, supported by APIs for CRM integration. The platform is designed for ease of use, mobile responsiveness, and broad payment method support, targeting NGOs and fundraising professionals. Technically, twingle operates on a WordPress CMS with popular plugins like Yoast SEO and Slider Revolution, hosted on INWX-managed servers. The website demonstrates good SEO and mobile optimization, though performance is moderate. Security practices include SSL encryption, ISO 27001 certified data centers, and use of Google reCAPTCHA, but could be improved by adding security headers and explicit privacy and cookie policies. The security posture is solid with no detected vulnerabilities or exposed sensitive data. However, the absence of privacy and cookie policies and incident response contacts indicates room for compliance improvement. The website content is professional, trustworthy, and safe for general audiences, with no adult or questionable content detected. Overall, twingle presents a credible and well-structured fundraising solution with a good balance of technical maturity and business credibility. Strategic enhancements in privacy compliance and security headers would further strengthen its market trust and regulatory adherence.

L

Landkreis Freyung-Grafenau

mehralsduerwartest.de

50

The website www.mehralsduerwartest.de serves as the official regional marketing campaign platform for Landkreis Freyung-Grafenau, Germany. It promotes the region's business landscape, quality of life, and community engagement through rich multimedia content, stories, and event information. The site targets residents, families, local businesses, and tourists, positioning itself as a trusted source for regional promotion backed by local government. Technically, the site is built on WordPress with modern plugins like Yoast SEO and Borlabs Cookie, ensuring good SEO and privacy compliance. The infrastructure is stable with HTTPS and moderate performance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR regulations.

S

Splitpixel Creative Ltd

splitpixel.co.uk

11

Splitpixel Creative Ltd is a specialized full-service digital agency based in Huddersfield, UK, focusing on accessible, inclusive, and sustainable digital solutions. Their core offerings include bespoke WordPress development, web design, branding, and strategic multi-channel digital marketing, targeting businesses and charities, particularly in the arts, culture, and B2B sectors. The company emphasizes quality user experiences and regional market understanding, positioning itself as a trusted partner in Yorkshire and beyond. Technically, the website is built on WordPress with modern technologies such as Yoast SEO, Google Tag Manager, Vimeo integration, and CookieYes for consent management. The site demonstrates excellent mobile optimization, accessibility compliance, and SEO best practices, reflecting a mature digital infrastructure. Performance is moderate, with room for optimization in hosting and security headers. From a security perspective, the site uses HTTPS and cookie consent mechanisms effectively but lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS lookup failed due to querying the subdomain rather than the registered domain, but the website content and structured data confirm legitimacy and professional operation. Overall, Splitpixel presents a strong digital presence with high content quality, good technical implementation, and solid privacy compliance. Strategic improvements in security headers and incident response transparency would enhance their security posture further.

M

Musikkultur Rheinsberg gGmbH

musikkultur-rheinsberg.de

52

Musikkultur Rheinsberg gGmbH is a well-established cultural non-profit organization based in Germany, offering a broad range of music and cultural events, including concerts, operas, festivals, and educational courses. It operates through three main divisions: the Musikakademie Rheinsberg, the Kammeroper Schloss Rheinsberg, and the Schlosstheater Rheinsberg, serving both professional and amateur musicians as well as cultural audiences. The organization holds a strong market position as a cultural beacon in northern Brandenburg, with a clear focus on music and performing arts. The website is built on a modern WordPress platform utilizing popular plugins such as Yoast SEO, Borlabs Cookie for privacy compliance, and various JavaScript libraries for enhanced user experience. The site demonstrates good technical maturity with responsive design, SEO optimization, and moderate performance. Analytics are handled via Matomo, indicating a preference for privacy-conscious tracking. From a security perspective, the site enforces HTTPS and uses privacy and cookie management plugins, but lacks explicit published security policies, incident response contacts, or vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, supporting the legitimacy of the domain and organization. Overall, the website is professional, trustworthy, and serves its cultural mission effectively. However, improvements in privacy documentation, security transparency, and accessibility could enhance compliance and user trust.

F

Fondazione FIRMO

fondazionefirmo.com

68

Fondazione FIRMO is a specialized non-profit organization dedicated to research, awareness, and support related to bone diseases, primarily operating in Italy. The website presents a professional and consistent brand image, targeting patients, healthcare professionals, researchers, and donors. It offers key services including research funding, patient education, events, and publications. Technically, the site is built on WordPress with modern SEO and slider plugins, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit privacy or cookie policies. The absence of WHOIS data for the domain raises legitimacy concerns, though the active content and social media presence support its authenticity. Overall, the site is functional and trustworthy but would benefit from enhanced security and compliance documentation.

B

Burda Principal Investments

burdaprincipalinvestments.com

71

Burda Principal Investments (BPI) is a growth equity investment division of Hubert Burda Media, focusing on providing long-term capital to fast-growing digital technology and media companies. The company positions itself as a later-stage corporate investor supporting visionary entrepreneurs building global category leaders. The website reflects a professional and well-structured digital presence with strong SEO and content quality, targeting entrepreneurs, investors, and technology/media sectors. The business model centers on flexible growth equity investments without rigid fund limitations, enabling support at various development stages.

A

Auxxo

auxxo.de

54

Auxxo is a specialized venture capital fund focusing on pre-seed and seed stage investments in female (co-)founded startups across Europe. The website presents a professional and consistent brand image, targeting female entrepreneurs seeking early-stage funding. The technical infrastructure is based on WordPress CMS with modern plugins such as Yoast SEO and Usercentrics for cookie consent, hosted on German servers. While the site is well-designed and mobile-optimized, it lacks explicit privacy and terms of service pages, as well as visible contact information, which impacts its privacy compliance and business credibility scores. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and publishing security policies.

P

PALATINA Business Angels Rhein-Neckar e.V.

palatina-angels.de

65

PALATINA Business Angels Rhein-Neckar e.V. is a non-profit association founded in 2020 focused on supporting innovative and scalable startups in the Rhein-Neckar region through early-stage financing and mentoring by experienced entrepreneurs and investors. The organization has established a strong regional presence with over 180 startups supported and offers numerous events and networking opportunities. Technically, the website is built on WordPress with modern plugins for SEO, membership management, event handling, and cookie consent, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and incident response information could enhance protection. Overall, the site is professional, trustworthy, and compliant with GDPR, serving its target audience effectively.

M

MARS – Center for Entrepreneurship

launchtomars.de

55

MARS – Center for Entrepreneurship is a university-affiliated startup support center based at Technische Hochschule Mannheim, Germany. Founded in 2020, it provides free entrepreneurial support, coaching, courses, workspace, and networking opportunities primarily to university members, alumni, and select external participants. The website is well-structured, professionally designed, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it is built on WordPress with modern plugins and follows good security practices including HTTPS and cookie consent mechanisms. However, it lacks explicit security policies and incident response contacts, which could be improved. Overall, the site is trustworthy, compliant with GDPR, and safe for general audiences.

D

DeepTechHub

deep-tech-hub.de

40

DeepTechHub is a regional ecosystem platform dedicated to fostering the growth of deep tech startups in north-western Baden-Württemberg, Germany. It acts as a collaborative hub connecting universities, researchers, industry experts, and entrepreneurs to promote innovation and entrepreneurship in deep technology. The website presents a professional and consistent brand image, emphasizing community building, coordination, and talent matchmaking as core services. Technically, the site is built on WordPress with modern SEO and contact form plugins, hosted by agenturserver, and optimized for mobile and accessibility. Security posture is solid with HTTPS and secure forms, though lacking explicit security policies and headers. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page. Overall, the site is trustworthy and well-positioned within its niche ecosystem.

K

Kreuzberger Lebensbrücke gGmbH

kreuzberger-lebensbruecke.de

46

The website www.wald-bruecke.de represents Kreuzberger Lebensbrücke gGmbH, a German non-profit organization focused on social integration by providing employment and training opportunities for youth, disabled, and disadvantaged individuals. The business model relies on sales of office and hygiene products, as well as specialized blind products, to fund its social projects. The site is well-structured, professionally designed, and targets a German-speaking audience interested in social welfare and integration services. Technically, the site runs on WordPress with standard plugins like Yoast SEO and CookieYes for cookie consent management. Hosting is provided by Cloudpit, as indicated by the nameservers. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security headers and incident response contact details. The site contains some suspicious hidden content related to online casinos, which may be SEO spam or misplaced text, slightly impacting trust. Overall, the site is functional, compliant with GDPR, and trustworthy for its intended audience.

S

ScaDS.AI Dresden/Leipzig

scads.de

50

ScaDS.AI Dresden/Leipzig is a German government-funded research center specializing in scalable data analytics, artificial intelligence, and big data. It operates as a permanent research facility with strong ties to TU Dresden and Leipzig University, positioning itself as a key player among Germany's AI competence centers. The website reflects a mature digital presence with comprehensive content targeting researchers, students, professionals, and the general public interested in AI and data science. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses several plugins for enhanced functionality, including Contact Form 7 and Yoast SEO. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced and no obvious vulnerabilities, but lacks DNSSEC and some security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, supporting its academic and research mission.

T

timum GmbH

timum.de

47

timum GmbH operates a specialized SaaS platform focused on automated appointment coordination and online booking solutions tailored for the real estate sector, including real estate agents, property managers, and facility management professionals. The company positions itself as a PropTech innovator with integrations into major real estate platforms and CRM systems, offering scalable solutions from basic to professional tiers. The website content is professionally presented, targeting German-speaking markets with localized versions for Switzerland and English-speaking users. Technically, the site is built on WordPress with modern frameworks and hosted on AWS infrastructure, ensuring reliable performance and good mobile optimization. Security posture is solid with HTTPS enforced and privacy compliance evident through GDPR-aligned policies and cookie consent mechanisms. However, explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates a mature digital presence with strong business credibility and trust indicators, suitable for its niche market.

C

Con i Bambini

percorsiconibambini.it

39

Percorsi con i bambini is a non-profit network platform managed by Con i Bambini, focused on coordinating and sharing projects aimed at combating educational poverty among minors in Italy. The website serves as a collaborative space for project leaders and partners to publish updates, articles, and event information. It is affiliated with Fondazione CON IL SUD, indicating a strong institutional backing. The platform targets organizations involved in social and educational initiatives, providing a niche but important service in the non-profit sector. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and the Yoast SEO plugin, ensuring good SEO and mobile responsiveness. It uses Matomo for analytics, emphasizing privacy. The site is well-structured with comprehensive metadata and structured data for SEO. However, the domain is currently expired, posing a risk to availability. Security headers are not explicitly detected, and there is no visible security policy or incident response information, which are areas for improvement. From a security perspective, the site uses HTTPS and DNSSEC, which are positive indicators. The lack of explicit security headers and vulnerability disclosure mechanisms suggests moderate security maturity. Privacy compliance is good, with clear privacy and cookie policies and a consent mechanism. Contact information is clearly provided, enhancing trust. Overall, the website is professional, trustworthy, and serves a clear social mission. The main risk is operational due to domain expiration and some missing security best practices. Addressing these will improve resilience and trustworthiness.

V

Verband Deutscher Mineralbrunnen e.V. (VDM)

vdm-bonn.de

51

The Verband Deutscher Mineralbrunnen e.V. (VDM) is a German industry association representing the economic and political interests of the mineral water sector. It serves approximately 150 small and medium-sized mineral water bottling companies, producing over 500 mineral water varieties and numerous medicinal waters. The association acts as a key employer advocate and provides political communication, public relations, and member services. The website is professionally designed using WordPress with modern plugins and SEO optimization, providing a rich user experience and mobile responsiveness. Privacy and cookie compliance are well implemented with Borlabs Cookie and a comprehensive privacy policy. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site reflects a trustworthy, professional organization with a strong digital presence.

H

Hive-IT GmbH

meinimmoportal.eu

70

MeinImmoPortal, a product of Hive-IT GmbH, is a leading provider of fully managed WordPress websites tailored for real estate professionals in Germany and Europe. The company offers scalable service packages with CRM integration, process automation, and technical support, positioning itself as a market leader with a strong partner ecosystem. The website reflects a mature digital presence with excellent content quality, clear navigation, and professional branding. Technically, the platform leverages WordPress, Yoast SEO, Matomo Analytics, and Cloudflare CDN, ensuring fast performance, mobile optimization, and privacy compliance. Security posture is strong with HTTPS, web firewall, automated backups, and privacy-respecting analytics, although explicit security headers and incident response policies could be improved. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

V

VITAKO - Bundesarbeitsgemeinschaft der kommunalen IT-Dienstleister e.V.

vitako.de

65

VITAKO is a well-established German federal association representing municipal IT service providers, encompassing 58 data centers, software, and service companies with over 20,000 employees. The organization supports approximately 750,000 IT workplaces across more than 10,000 municipalities, acting as a consultant and operational partner for local governments. Their website reflects a mature digital presence with comprehensive content focused on digital sovereignty, cybersecurity, AI guidelines, and administrative digitalization. Technically, the site is built on WordPress using the Avada theme, enhanced with SEO and GDPR compliance plugins, and integrates Google Analytics and reCAPTCHA for security and analytics. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data aligns well with the organization's claims, showing legitimacy and transparency. Overall, the site is professional, trustworthy, and well-optimized for its target audience.

N

nukliD – Radiopharmacy Cluster Dresden

nuklid.network

56

nukliD – Radiopharmacy Cluster Dresden is a specialized healthcare cluster focused on advancing radiopharmacy and nuclear medicine innovations, particularly in cancer treatment. The website presents a professional and well-structured platform aimed at healthcare professionals and industry stakeholders in the Dresden region. The business model centers on collaboration and innovation facilitation within the nuclear medicine sector. Technically, the site is built on WordPress with modern SEO and GDPR compliance plugins, offering good mobile optimization and user experience. Security posture is moderate with HTTPS usage but lacks explicit security headers and detailed privacy policies. Overall, the domain registration is privacy protected but consistent with the business profile, indicating legitimacy. Strategic recommendations include enhancing privacy disclosures, implementing security headers, and expanding contact information to improve trust and compliance.

H

HZDR Innovators School

hzdr-academy.de

53

The HZDR Academy website serves as an internal coaching and qualification platform for employees of the Helmholtz-Zentrum Dresden-Rossendorf (HZDR). It focuses on scientific knowledge transfer, career development, and networking within the research community. The site offers event listings, e-learning resources, and links to career support services, targeting doctoral researchers, postdocs, group leaders, and technical staff. The business model is centered on employee development and fostering innovation within the HZDR ecosystem. Technically, the website is built on WordPress with a modern stack including Yoast SEO, Flatpickr, and custom event management plugins. The site is mobile-optimized, well-structured, and uses HTTPS with good SSL configuration. However, some security best practices such as security headers and explicit cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. From a security perspective, the site shows no signs of vulnerabilities or exposed sensitive data. The domain registration aligns with the institutional affiliation, supporting legitimacy. Privacy policies are present but could be more comprehensive with explicit GDPR consent mechanisms. No incident response or vulnerability disclosure information is provided, which is a potential area for enhancement. Overall, the website is professional, trustworthy, and serves its internal audience well. Strategic recommendations include implementing security headers, adding cookie consent banners, publishing security policies, and establishing a vulnerability disclosure process to strengthen security and compliance further.

W

Worldline Italia

worldlineitalia.it

72

Worldline Italia is a prominent payment solutions provider in Italy, offering a range of services including POS terminals, mobile payment solutions, and e-commerce payment gateways. The company targets businesses across various sectors in Italy, leveraging partnerships with major banks such as BNL and Banco Desio to strengthen its market position. The website reflects a professional and consistent brand image, with a focus on innovative payment technologies and customer-centric solutions. Technically, the website is built on WordPress with modern technologies such as jQuery, Swiper.js, and integrates Google Tag Manager and OneTrust for analytics and cookie consent management. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers are not fully implemented, and there is no visible security policy or incident response information. No vulnerabilities or exposed sensitive data were detected, indicating a solid baseline security posture. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, Worldline Italia's website is a reliable and professional platform supporting its business objectives. Strategic improvements in security headers, privacy documentation, and accessibility would further enhance trust and compliance.

H

Hochschulallianz für den Mittelstand

hochschulallianz.de

45

Hochschulallianz für den Mittelstand is a German nationwide alliance of application-oriented universities focused on supporting small and medium-sized enterprises (SMEs). The organization facilitates networking, research collaboration, and knowledge exchange among universities and the Mittelstand sector. The website reflects a professional and consistent brand presence, targeting educational institutions and SMEs in Germany. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and WPBakery Page Builder, ensuring good SEO and user experience. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, GDPR compliant, and well-structured, serving its educational and networking mission effectively.

M

Musikkultur Rheinsberg gGmbH

schlosstheater-rheinsberg.de

10

Musikkultur Rheinsberg gGmbH operates the Schlosstheater Rheinsberg, a year-round cultural venue offering concerts, theater, dance, film, and opera in Rheinsberg, Germany. The organization targets a broad audience including families and culture enthusiasts, providing diverse programming and venue rental services. The website reflects a well-established regional cultural institution with a professional online presence and clear event information. Technically, the website is built on WordPress with modern plugins and libraries such as jQuery, Slick Slider, and Yoast SEO, indicating a mature digital infrastructure. The site is mobile-optimized and uses HTTPS with good SEO practices, although some accessibility features could be improved. Cookie consent is managed via Borlabs Cookie, showing attention to privacy compliance. From a security perspective, the site uses HTTPS and nonce tokens for AJAX calls but lacks visible security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The absence of a privacy policy page is a notable compliance gap. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The risk assessment is low given the site's cultural and non-profit nature, absence of sensitive data exposure, and legitimate domain registration. Strategic recommendations include publishing a comprehensive privacy policy, implementing security headers, and adding vulnerability disclosure information to improve trust and compliance.

K

KESLAR

keslar.de

9

KESLAR is a German energy supplier specializing in heating oil, fuels, lubricants, natural gas, electricity, and AVIA pellets, targeting private individuals, agriculture, and commercial sectors. The company operates a professional website built on WordPress with the Divi theme, enhanced by SEO and accessibility tools. The technical infrastructure is modern and moderately optimized for performance and mobile use. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and formal security policies. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the business appears legitimate and regionally focused with room for improvement in transparency and security practices.

C

CampusSource e.V.

campussource.de

62

CampusSource e.V. is a non-profit organization focused on promoting and supporting open source software solutions for higher education institutions in Germany. The website serves as a community and information hub, offering resources, news, and collaboration opportunities related to open source software in academia. The organization targets universities and related stakeholders, positioning itself as a niche player in the education technology sector. The business model revolves around community engagement and software development support rather than commercial sales. Technically, the website is built on WordPress 6.8.3, utilizing popular plugins such as Yoast SEO for search engine optimization and Real Cookie Banner for GDPR-compliant cookie consent management. Matomo analytics is employed for privacy-conscious user tracking. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance. Hosting details are not explicitly disclosed but the domain uses multiple name servers under ui-dns, indicating a stable DNS setup. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism. However, no explicit security headers were detected, and there is no published security or incident response policy. No vulnerabilities or exposed sensitive data were found in the analysis. The WHOIS data is consistent and trustworthy, with no privacy protection or suspicious registration patterns. Overall, the security posture is solid but could be improved by adding security headers and formal policies. The overall risk assessment is low, with no critical issues detected. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance. The website is professional, trustworthy, and compliant with GDPR requirements, making it a reliable resource for its target audience.

Hochschulforum Digitalisierung is a German nationwide think-and-do tank initiative focused on shaping the future of higher education through digital transformation. It operates as a non-profit entity affiliated with prominent organizations such as the Stifterverband, CHE, and HRK. The website serves as a comprehensive platform offering networking, consulting, innovation, qualification, and information services targeted at higher education institutions, staff, and students. The initiative maintains a strong market position within the German education sector, emphasizing collaboration and strategic digital development. Technically, the website is built on WordPress with modern plugins including Yoast SEO, WPBakery Page Builder, and Everest Forms, ensuring a robust and user-friendly digital presence. The site is well-optimized for mobile devices, fast loading, and incorporates SEO best practices. Cookie consent is managed via Borlabs Cookie, reflecting attention to privacy compliance, although explicit privacy and terms of service pages are not detected in the provided content. From a security perspective, the site enforces HTTPS and employs standard security practices, but lacks published security policies, incident response contacts, or vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site demonstrates a mature security posture appropriate for its non-profit educational focus. The overall risk assessment is low, with recommendations to enhance transparency by publishing privacy policies, terms of service, and incident response information. Strengthening security headers and adding a vulnerability disclosure policy would further improve trust and compliance. The website is professional, trustworthy, and well-aligned with its mission to support digital transformation in higher education.

S

Stud.IP e. V.

studip.de

41

Stud.IP e. V. operates a modern open-source learning management system primarily targeting educational institutions such as universities, authorities, associations, and companies. The platform serves as a central component of digital education concepts, offering services in teaching, learning, administration, and integration via interfaces. The website is professionally designed, content-rich, and clearly structured, supporting a German-speaking audience with a focus on education and technology sectors. The business model revolves around providing an open-source LMS solution with community and event engagement to foster adoption and development. Technically, the website is built on WordPress with modern front-end technologies including JavaScript and CSS, enhanced by SEO tools like Yoast and analytics via Koko Analytics. Hosting is provided by Cloudpit, a reputable provider, ensuring reliable infrastructure. The site demonstrates good mobile optimization and accessibility features, although SEO optimization is basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS with excellent SSL configuration but lacks explicit security headers and published security policies. Forms are secured with required fields, and no sensitive data exposure or vulnerable libraries were found. Privacy compliance is partial; while a privacy policy is present and GDPR compliance is implied, no cookie consent mechanism or detailed data retention policies are visible. Contact information is limited to a postal address without direct emails or phone numbers, and no incident response or vulnerability disclosure information is provided. Overall, the website presents a trustworthy and professional front for an established educational technology entity. Strategic improvements in privacy compliance, security policy transparency, and user data consent mechanisms would enhance trust and regulatory adherence.

E

Economy for the Common Good - Sverige

ecgsverige.se

40

ECG Sverige is a small non-profit organization dedicated to promoting the Economy for the Common Good movement in Sweden. Their website provides information about their mission to create an economic system focused on societal and environmental well-being. They offer services such as the ECG-bokslut, which complements traditional financial statements by measuring societal contributions. The organization targets businesses, municipalities, and individuals interested in sustainable economic models. Technically, the website is built on WordPress using the Genesis Framework and Yoast SEO plugin, hosted by Oderland. It employs modern web technologies and includes a cookie consent mechanism and privacy policy, indicating good digital maturity. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and DNSSEC. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though it could improve security policies and contact information visibility.

S

Sunny Side of the Doc

sunnysideofthedoc.com

9

Sunny Side of the Doc is an established international marketplace and community platform dedicated to the documentary industry, hosting events in La Rochelle, France. The website serves as a hub for documentary professionals, filmmakers, and media industry participants to connect, network, and engage in marketplace activities. The platform positions itself as a leader in the documentary event space, offering key services such as event hosting and community building. Technically, the website is built on WordPress with a modern tech stack including React and various plugins for event management and marketing. The site demonstrates good SEO practices and mobile optimization, though some accessibility features are basic. Security posture is adequate with HTTPS enforced and a consent management platform for GDPR compliance, but lacks explicit security headers and detailed privacy policies. The absence of WHOIS registration data is a notable concern, suggesting either privacy protection or a data retrieval issue, which slightly impacts trustworthiness. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security practices.

M

Movies That Matter

moviesthatmatter.nl

58

Movies That Matter is a well-established non-profit organization based in the Netherlands, focused on promoting human rights awareness through film festivals, educational programs, and international collaborations. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content relevant to its mission. Technically, the site is built on WordPress with modern analytics and marketing integrations, maintaining good performance and mobile optimization. Security posture is strong with HTTPS, DNSSEC, and cookie consent mechanisms, though some advanced security headers and explicit policies could be improved. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate entity.

F

Festival Séries Mania

seriesmania.com

58

Séries Mania is a well-established international festival dedicated exclusively to TV series, held annually in Lille, France, since 2006. The website serves as a comprehensive platform for the festival, its professional forum, and the Series Mania Institute, an educational entity focused on series training. The site targets both general audiences interested in series and industry professionals. It enjoys a strong market position as a key event in the TV series industry with significant partnerships and social media presence. Technically, the website is built on WordPress with modern SEO and analytics tools including Yoast SEO, Google Analytics, Matomo, and Google Tag Manager. It uses Cloudflare for DNS and benefits from HTTPS encryption. The site is moderately performant and well optimized for mobile devices, with good SEO practices and a cookie consent mechanism implemented via tarteaucitron.io. From a security perspective, the site uses HTTPS and has domain registration protections in place. However, it lacks visible security headers, explicit privacy policies, terms of service, and incident response information. No vulnerability disclosure or security.txt files were found. The domain registration data is consistent and supports the legitimacy of the site. Overall, Séries Mania presents a professional and trustworthy online presence with excellent content quality and business credibility. To enhance security and privacy compliance, it should publish clear privacy and security policies and implement additional security headers and vulnerability disclosure mechanisms.

A

accessible media

accessible-media.at

51

Accessible Media is a non-profit organization based in Austria dedicated to promoting and supporting barrier-free media. The website serves as a platform for organizations, companies, and institutions involved in accessible media, offering services such as consulting, service provider mediation, and public awareness events including the annual Accessibility Event (A-TAG). The organization positions itself as a key player in the Austrian accessibility landscape with a focus on practical accessibility solutions rather than just compliance checklists. Technically, the website is built on WordPress using the Avada theme and incorporates modern plugins such as Yoast SEO and Complianz GDPR for SEO and privacy compliance. The site is mobile-optimized, accessible, and performs moderately well. It employs HTTPS with a good SSL configuration and includes a cookie consent mechanism, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and cookie consent but lacks explicit security policies or incident response contacts. No security headers were detected in the HTML content, and no vulnerabilities or exposed sensitive data were found. The WHOIS data is consistent with the website's claims, enhancing trustworthiness. Overall, the security posture is solid but could be improved by adding formal security policies and headers. The overall risk assessment is low, with no signs of malicious content or suspicious behavior. Strategic recommendations include publishing a security policy, adding incident response contacts, implementing security headers, and maintaining regular plugin audits to ensure ongoing security and compliance.