Security Directory

I

ILK Internet GmbH

ilk.de

60

ILK Internet GmbH is a specialized technology and internet service provider based in Karlsruhe, Germany, offering tailored solutions including internet access, network connectivity, hosting, private cloud, server housing, colocation, and professional IT services. The company targets business clients and tenants of the Karlsruhe Technology Park, positioning itself as a regional expert in connectivity and IT infrastructure services. The website content is professional and well-structured, reflecting a focused B2B business model with clear service offerings. Technically, the website is built on WordPress using the Avada theme and jQuery libraries, indicating a modern and maintainable platform. The site is mobile-optimized and provides a good user experience with clear navigation and relevant meta tags. Hosting details are not explicitly disclosed, but the site uses HTTPS with a good SSL configuration, contributing to secure communications. From a security perspective, the site enforces HTTPS but lacks visible security headers such as Content-Security-Policy or X-Frame-Options. There is no explicit incident response or security policy published, and no cookie consent mechanism is detected, which may impact GDPR compliance. The WHOIS data for the domain is missing or indicates the domain is unregistered, which raises concerns about domain legitimacy and requires further verification. Overall, the website presents a trustworthy and professional front for ILK Internet GmbH, but improvements in security headers, privacy compliance mechanisms, and domain registration transparency are recommended to enhance trust and security posture.

G

German Federation for Biological Data e.V.

gfbio-ev.de

50

The German Federation for Biological Data e.V. (GFBio e.V.) is a small non-profit organization based in Germany focused on collecting, preserving, and distributing biological and environmental data for research purposes. It plays a key role as a coordinating partner in the National Research Data Infrastructure (NFDI), particularly in the biodiversity sector. The website presents a professional and consistent brand image, targeting researchers, academic institutions, and data centers involved in biological data management. Key services include service development, data curation, software development, and project management within research data infrastructures. Technically, the website uses a modern front-end stack including Bootstrap, various icon libraries, and JavaScript libraries such as jQuery and Glightbox. It is hosted on a domain registered with DomainDiscount24, with no privacy protection on WHOIS, indicating transparency. The site is mobile-optimized and has good SEO practices, though some technical improvements are possible, such as updating jQuery and adding security headers. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and a cookie consent mechanism, which are important for GDPR compliance. No explicit security or incident response policies are published. Google Analytics is used for user tracking, with moderate tracking levels but no visible cookie consent banner. Overall, the website is trustworthy, professional, and well-positioned within its niche, but could improve privacy compliance and security posture by implementing cookie consent, security headers, and publishing security policies.

C

Caritas München und Oberbayern

caritas-nah-am-naechsten.de

54

Caritas München und Oberbayern is a well-established non-profit organization providing a broad range of social services including care for the elderly, support for children and families, assistance for people with disabilities, migration and integration services, and volunteer engagement opportunities. The organization maintains a strong regional presence in Munich and Upper Bavaria, supported by a professional website that reflects its mission and services. The website features comprehensive contact information, official branding, and active social media channels, reinforcing its credibility and community engagement. Technically, the website employs modern web technologies such as Bootstrap for responsive design, Matomo for privacy-conscious analytics, and Klaro for cookie consent management. The site is mobile-optimized and accessible, with good SEO practices evident. The use of HTTPS and privacy-focused analytics demonstrates a mature approach to user privacy and security. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks publicly available security policies or incident response contacts. No critical vulnerabilities or suspicious domains were detected. The WHOIS data is limited but does not raise significant concerns, aligning with the organization's profile. Overall, the website presents a trustworthy, professional, and privacy-compliant digital presence for a reputable non-profit social service provider. Strategic improvements could include publishing explicit security policies and incident response information to enhance transparency and trust further.

C

Codevibrant

codevibrant.com

39

Codevibrant is a small technology company specializing in WordPress themes and plugins, offering customizable and user-friendly web solutions primarily targeting WordPress users and businesses seeking web development services. The company has been operational since 2017 and maintains a professional online presence with a focus on SEO and user experience. Technically, the website is built on WordPress with a modern tech stack including jQuery, Easy Digital Downloads, and various performance and UI libraries. The site is optimized for mobile and SEO, with fast loading times and clear navigation. Security posture is good with HTTPS enabled and standard domain protections, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is basic, with a privacy policy present but lacking a cookie consent mechanism. Overall, the website demonstrates a solid business credibility and technical maturity suitable for its market niche.

I

Institut für Religionspädagogik und Lehrkräftefortbildung in Bayern

irl-bayern.de

41

The Institut für Religionspädagogik und Lehrkräftefortbildung in Bayern (IRL) is a recently founded educational institution (2025) focused on religious pedagogy and teacher training within Bavaria, Germany. It serves religious education teachers across multiple school types by providing professional development courses, resources, and events. The website reflects a professional and regionally focused organization with clear affiliations to the Archdiocese of Munich and Freising. Technically, the website is built on TYPO3 CMS with modern frontend frameworks such as Bootstrap and MDBootstrap, ensuring good mobile responsiveness and user experience. Hosting is provided by Alfahosting, a reputable German hosting provider. The site uses standard web technologies including jQuery and FontAwesome, and employs a contact form with client-side validation. From a security perspective, the site uses HTTPS and secure form submission but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No analytics or tracking scripts were detected, indicating minimal user tracking. WHOIS data is consistent with the business identity, supporting legitimacy. Overall, the website is well-structured and professional but would benefit from enhanced privacy compliance and security header implementation to improve trust and regulatory adherence.

B

Bürgernetz Dillingen e.V.

dillingen.de

39

Bürgernetz Dillingen e.V. is a German non-profit association focused on communication and information technologies, established in 1995. The website serves primarily its members, offering services such as cloud storage (ownCloud), webmail, and association management tools. The site is built on Joomla! CMS and uses JavaScript libraries including jQuery and MooTools. The content is well-structured, mobile responsive, and presented in German, targeting local members. However, contact information is limited to an email address, with no phone or physical address details visible. Privacy policy is present but cookie consent mechanisms are missing. Security posture is moderate with CSRF tokens implemented but lacking security headers and explicit HTTPS enforcement details. No advertising or tracking technologies are detected, indicating a privacy-conscious approach. WHOIS data is minimal but does not raise suspicion.

NonProfit-Link.org is a specialized SaaS platform designed to empower non-profit organizations and mission-driven individuals by providing customized link-in-bio pages to centralize their digital presence, fundraising, and supporter engagement. Powered by HeyLink.me, the platform offers tools for easy customization, real-time analytics, and integration with donation and event promotion services. The website demonstrates a professional design and clear messaging targeted at the non-profit sector. Technically, it uses modern frameworks such as Next.js and React, with Google Analytics for user tracking. Security posture is generally good with HTTPS enabled, but lacks visible security headers and privacy compliance documentation. WHOIS data is privacy-protected, which is typical for SaaS providers, and no suspicious patterns were detected. Overall, the site is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

HeyLink.au is a technology-focused business offering Australian customers the ability to register .AU domains combined with a smart link-in-bio page platform. The service targets Australian businesses, creators, and professionals seeking a localized and credible digital presence. The website is well-designed, mobile-optimized, and leverages modern web technologies such as Next.js and React. It integrates Google Analytics for user tracking but lacks explicit privacy and cookie policies, which is a compliance gap. Security posture is generally good with HTTPS enforced, but the absence of security headers and incident response policies suggests room for improvement. Overall, the domain registration data is limited but consistent with a legitimate Australian-based service. The risk profile is low, with recommendations to enhance privacy compliance and security headers to strengthen trust and regulatory adherence.

KODE.link is a newly launched technology platform specializing in instant QR code generation and digital business card creation, integrated with the HeyLink.me ecosystem. The service targets business professionals and marketers seeking fast, customizable, and trackable QR code solutions. The website is built on modern web technologies including React and Next.js, hosted with Cloudflare DNS services, and employs Google Tag Manager for analytics. While the site demonstrates good design quality and mobile optimization, it lacks explicit privacy, cookie, and terms of service policies, which impacts its privacy compliance score. Security posture is solid with HTTPS and domain transfer protections, but could be improved by enabling DNSSEC and adding security headers. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. Overall, the platform appears legitimate and professionally presented but would benefit from enhanced transparency and security disclosures.

P

Persollo

persollo.com

56

Persollo is a technology company specializing in AI-powered influencer marketing analytics and instant checkout solutions. Their platform enables brands and agencies to analyze social media accounts across Instagram, TikTok, and YouTube, discover influencers with targeted audiences, and facilitate social media sales with a streamlined one-click checkout process. Positioned as a leading solution in influencer marketing, Persollo targets marketing professionals seeking transparency and efficiency in influencer campaigns. Technically, the website is built on modern frameworks such as React and Semantic UI, with integrations including Stripe for payments and Cloudfront for content delivery. The infrastructure is hosted with DigitalOcean DNS and leverages multiple external services for analytics and social media engagement. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site uses HTTPS with a good SSL configuration and domain registration protections. However, it lacks DNSSEC and explicit security headers, and does not publicly disclose incident response or vulnerability handling policies. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but cookie consent mechanisms are absent. Overall, Persollo presents a professional and trustworthy online presence with a solid business model and technical foundation. Strategic enhancements in security policies, privacy compliance, and transparency would further strengthen their risk posture and customer trust.

P

pdir GmbH

contao-themes.net

56

Contao-Themes.net is a specialized digital agency project by pdir GmbH, offering a curated collection of free and premium Contao CMS themes. The company leverages over 15 years of experience in Contao development to provide high-quality themes, installation, support, and consulting services. The website is well-positioned in the niche market of Contao CMS themes, targeting web agencies, freelancers, and businesses seeking professional Contao templates. Technically, the site uses a modern stack including Contao CMS, Bootstrap, jQuery, and integrates Google Adsense and Matomo analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though improvements like enabling DNSSEC and adding CSP headers are recommended. Privacy compliance is strong with clear cookie consent mechanisms and GDPR-aligned policies. Overall, the site demonstrates professionalism, trustworthiness, and a clear business model focused on theme sales and related services.

P

fordskladom.sk

prevereneauto.sk

43

Fordskladom.sk is a Slovakian online platform specializing in the sale of used Ford vehicles. Established in 2019, the website targets consumers interested in purchasing pre-owned Ford cars within Slovakia. The business operates a niche retail model focusing on vehicle listings, comparisons, and filtering to facilitate customer decision-making. The website demonstrates consistent branding and a professional design tailored to its target audience. Technically, the site is built on a modern JavaScript framework (likely Vue.js/Nuxt.js) and integrates common marketing and tracking tools such as Google Tag Manager and Facebook Pixel. Cookie consent is managed via Usercentrics, indicating some level of privacy compliance. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and explicit privacy and terms of service documentation. Overall, the site presents a moderate risk profile with room for improvement in compliance and security best practices.

I

IJ Willtrinken e.U.

willtrinken.at

52

IJ Willtrinken e.U. operates an e-commerce platform focused on nighttime beverage delivery in Vienna, Austria. The website offers a wide range of alcoholic and non-alcoholic drinks including beer, wine, spirits, and party packages, targeting adult consumers seeking fast delivery services. The business positions itself as a local night delivery service with a focus on convenience and quick service. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience.

The website www.leteckezazitky.sk offers aviation experience services across Slovakia, including hot air balloon flights, acrobatic flights, and pilot training experiences. It targets a general audience interested in unique aviation activities and gifts. The site uses modern web technologies such as Vue.js and Bootstrap, with Google Tag Manager integrated for analytics and marketing purposes. Hosting assets are served via DigitalOcean Spaces CDN, indicating a cloud-based infrastructure. Security posture is moderate but lacks critical elements such as security headers and explicit privacy and cookie policies. No contact information or incident response details are provided, which may impact user trust and compliance. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices.

S

Sviečky - zdravé sviečky zo Slovenska pre váš domov | svetlusa.sk

svetlusa.sk

59

The website svetlusa.sk is an e-commerce platform specializing in healthy candles produced in Slovakia, targeting general consumers interested in home decor and wellness products. The business appears to be a small local retailer established in 2021, with a clear focus on selling natural and healthy candles. The website uses modern web technologies including Bootstrap 5, Google Tag Manager, Microsoft Clarity, and other marketing and analytics tools, indicating a moderate level of digital maturity. Hosting is provided by websupport.sk, a Slovak hosting provider, and the domain is secured with HTTPS and DNSSEC, reflecting good technical infrastructure. Security posture is adequate with HTTPS and DNSSEC enabled, but lacks advanced security headers and explicit security policies. Privacy compliance is basic, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is functional and professional but could improve transparency and compliance by adding privacy and security policies and explicit contact information.

B

Bratiska

bratiska.sk

59

Bratiska.sk is an e-commerce website specializing in quality textiles and unique gifts primarily for home use, targeting a general audience in Slovakia. The business appears to be a small retail operation established in 2013, with a consistent brand presence and a focus on home-related products. The website uses modern web technologies including Bootstrap and integrates multiple marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity. Cookie consent is managed via CookieHub, indicating some level of privacy compliance. Security posture is adequate with HTTPS and DNSSEC enabled, but lacks advanced security headers and explicit security policies. No contact emails or phone numbers are explicitly visible, which may affect user trust and support accessibility. Overall, the site is functional and professionally designed but could improve in privacy transparency and security best practices.

Z

Zlaté šperky s dušou: Ručne vyrobené príbehy od roku 1957

zlatokov.sk

50

The website represents a small Slovakian business specializing in handcrafted gold jewelry with a long heritage dating back to 1957. The site is designed with modern responsive technologies such as Bootstrap 5, providing a good user experience and clear navigation for its target audience. However, the website lacks critical privacy and security documentation such as privacy policies, cookie consent mechanisms, and security headers, which impacts its overall security posture. No contact information or social media presence was detected in the provided content, limiting direct communication channels. The domain registration data is consistent and supports the business's legitimacy and history, enhancing trustworthiness. Overall, the website is functional and professionally designed but requires improvements in security and privacy compliance to meet modern standards.

The website curaproxpartner.sk appears to be a small business or partner site related to CURAPROX, likely targeting the Slovakian market. The site uses modern frontend technology such as Bootstrap 5.3.5 and is hosted behind Cloudflare DNS, indicating a standard and reliable hosting setup. However, the content is minimal and lacks substantive business descriptions, contact information, or privacy and security policies. The absence of privacy and cookie policies, contact details, and security headers suggests a low maturity level in compliance and security posture. The domain is registered since 2018 with a valid registrar and shows no suspicious WHOIS patterns, indicating legitimacy but limited business presence online. Overall, the site is accessible without WAF blocking or security challenges but requires significant improvements in content, compliance, and security to enhance trust and professionalism.

S

Sedačky na mieru a nábytok od slovenského výrobcu

sedacka.sk

59

The website sedacka.sk represents a Slovak small business specializing in custom sofa manufacturing and furniture retail. The site is designed with modern technologies such as Bootstrap 5 and integrates common marketing and tracking tools including Google Tag Manager and CookieHub for cookie consent management. The business appears to be locally focused with a domain age consistent with a company founded in 2019. The website content is relevant and professionally presented, targeting general consumers interested in custom furniture solutions. From a technical perspective, the website uses a solid tech stack with responsive design and moderate performance. Hosting is provided by SmartWeb, a known hosting provider in the region. Security posture is adequate with HTTPS and DNSSEC enabled; however, the absence of security headers and formal privacy or terms of service documents indicates room for improvement in compliance and security best practices. Security-wise, no WAF or blocking mechanisms are detected, and no vulnerabilities or suspicious patterns are evident from the data. The site uses tracking pixels from Pinterest, Facebook, and Google Ads, indicating moderate user tracking. Privacy compliance is basic, with a cookie consent mechanism present but lacking a visible privacy policy. Overall, the risk level is moderate with recommendations to enhance security headers, publish privacy and terms documents, and improve contact transparency. Strategic recommendations include implementing comprehensive privacy and security policies, adding security headers, establishing a vulnerability disclosure process, and enhancing accessibility and SEO features to improve trust and compliance. These steps will strengthen the website's security posture and business credibility in the competitive furniture retail market.

M

Kvalitné pletivo na plot a oplotenie domu

martinec.sk

59

The website martinec.sk is a Slovak-based business focused on providing quality fencing mesh and home fencing solutions. Established in 2004, the domain age and DNSSEC enabled status indicate a stable and legitimate online presence. The site targets homeowners or property owners interested in fencing products, with content primarily in Slovak. Technically, the website uses modern frontend technologies such as Bootstrap 5.3.3 and integrates analytics tools like Microsoft Clarity and Google Tag Manager. A cookie consent mechanism is implemented via CookieHub, indicating some level of privacy compliance. However, no explicit privacy policy or terms of service were found, which is a compliance gap. Security posture is moderate with HTTPS and DNSSEC enabled, but lacks visible security headers and explicit security policies. Contact information is not explicitly provided in the analyzed content, which may affect business credibility and user trust. Overall, the website is functional and moderately professional but would benefit from enhanced privacy disclosures, security headers, and clearer contact details.

E

Eifela

eifela.sk

53

Eifela is a newly established Slovak health-related business, as indicated by the domain registration date in early 2024 and the website title emphasizing health support. The website uses modern web technologies including Bootstrap 5 and integrates common marketing and cookie consent tools such as Google Tag Manager and CookieHub. The technical infrastructure is hosted on Websupport with DNSSEC enabled, indicating a baseline of security awareness. However, the website lacks visible privacy policies, terms of service, and contact information, which limits its compliance and trustworthiness from a user perspective. Security headers are not detected, suggesting room for improvement in hardening the web server configuration. Overall, the website is accessible without WAF or blocking mechanisms, and the content is safe and appropriate for a general audience.

A

act legal

actlegal.com

54

act legal is a German-based legal services provider established in 2014, offering legal advice and consultancy primarily to German-speaking clients. The website presents a professional design with moderate content quality and good user experience, targeting individuals and businesses seeking legal support. The technical infrastructure includes modern web technologies such as Bootstrap, Google Tag Manager, and CookieHub for cookie consent management. Hosting and domain registration are managed via GoDaddy.com, LLC, with a domain age consistent with a mature business presence. Security posture is moderate with HTTPS enabled but lacks advanced security headers and published security policies. Privacy compliance is basic, with a cookie consent mechanism but no explicit privacy or terms of service pages detected. Overall, the website is functional and trustworthy but would benefit from enhanced privacy disclosures and security practices.

L

LX media GmbH

lx-media.at

75

LX media GmbH is a professional digital agency based in Austria, specializing in UX/UI design, digital communication, and development expertise. Founded in 2018, the company positions itself as a leading innovator in creating meaningful digital experiences for businesses undergoing digital transformation. Their website reflects a high level of professionalism, with clear business information, comprehensive privacy and cookie policies, and a modern technical infrastructure leveraging Next.js, React, and Storyblok CMS. The company actively uses marketing and analytics tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag, all managed with user consent mechanisms. Security posture is strong with HTTPS enforcement and standard security headers, though there is room for improvement in publishing explicit security policies and incident response information.

K

K-moto s.r.o.

chigee.sk

42

K-moto s.r.o. operates an e-commerce website specializing in motorcycle accessories and technology products under the brand Chigee. The website targets motorcycle enthusiasts primarily in Slovakia, offering a range of products including smart navigation systems, protective gear, and related accessories. The business model is retail-focused, leveraging an online platform built on PrestaShop CMS. The site demonstrates a moderate level of digital maturity with integration of modern tracking and marketing tools such as Google Tag Manager, Facebook Pixel, and Klaviyo. Security posture is solid with HTTPS enforced and secure form tokens, but lacks advanced security headers and visible privacy or cookie policies, which are compliance gaps. Overall, the website is professional and trustworthy, but could improve privacy compliance and security transparency.

S

Scrubdesignz

scrubdesignz.com

51

Scrubdesignz is a specialized e-commerce business focused on providing high-quality graphics kits, plastics kits, and seat covers for motocross and dirt bikes. Established in 2014 and based in Slovakia, the company targets motocross enthusiasts and professional riders globally. The website is built on the Magento platform, leveraging modern JavaScript libraries and tools such as RequireJS, KnockoutJS, and Slider Revolution to deliver a responsive and visually appealing user experience. Social media integration and Google Analytics are used for marketing and user behavior tracking. Security posture is adequate with HTTPS enabled and secure forms, but lacks DNSSEC and security headers, and no explicit privacy or cookie policies are present, indicating compliance gaps. Overall, the site is professional and trustworthy but could improve privacy compliance and security hardening.

G

Gaerne

gaerne.com

69

Gaerne is an established e-commerce business specializing in motorcycle boots and footwear, serving motorcycle enthusiasts and professionals. The website is built on the BigCommerce platform, leveraging modern e-commerce technologies and third-party analytics tools such as Google Analytics, Microsoft Clarity, and Facebook Pixel. Privacy and cookie policies are implemented with a consent mechanism, reflecting good compliance with GDPR standards. The domain is long-standing, created in 1997, and secured with HTTPS and domain transfer protection, indicating a trustworthy online presence. However, the absence of explicit security policies and incident response contacts suggests room for improvement in transparency and security governance.

F

FARN – Fachstelle Radikalisierungsprävention und Engagement im Naturschutz

nf-farn.de

54

FARN is a specialized non-profit organization founded in 2017 by NaturFreunde Deutschlands and Naturfreundejugend Deutschlands. It focuses on researching and preventing radicalization and extremist influences within the nature and environmental protection sectors. The website provides educational content, consulting, and qualification services targeted at environmental actors and youth. Technically, the site is built on Drupal 7 with a moderate performance profile and good mobile optimization. Privacy-conscious analytics via Matomo is implemented with DoNotTrack and cookie disabling, though no explicit cookie consent mechanism is present. Security posture is solid with HTTPS and privacy-respecting analytics but lacks some security headers and published policies. Overall, the site is professional, trustworthy, and well-branded with clear partner affiliations.

S

Stadtverwaltung Maxhütte-Haidhof

maxhuette-haidhof.de

63

The website www.maxhuette-haidhof.de serves as the official digital presence of the city administration of Maxhütte-Haidhof, Germany. It provides comprehensive municipal information, including city council details, local events, urban planning, and citizen services. The site targets residents and visitors, offering online portals for administrative tasks such as registrations and permits. The business model is that of a local government entity focused on public service delivery. Technically, the site is built on the IKISS CMS platform, utilizing legacy but functional JavaScript libraries like jQuery and Slick Carousel. Hosting is provided by Hetzner, a reputable German hosting provider. Accessibility is enhanced through Eye-Able assistive technology scripts, and cookie consent mechanisms comply with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. No advanced analytics or advertising scripts are present, reflecting a privacy-conscious approach. Overall, the site is professional, trustworthy, and well-aligned with its government function.

Brill Audio Visual Kft. is a well-established Hungarian audiovisual service provider specializing in event technology solutions including sound, lighting, projection, LED walls, interpretation, voting systems, IT solutions, and stage design. Founded in 1995, the company has expanded its presence across Central Europe through the Brill AV Media European Group. The website reflects a professional business with a clear focus on corporate and international event clients. Technically, the site is built on Drupal 7 with standard web technologies and moderate performance and mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and updated CMS versions, which could pose risks. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is trustworthy and business credible but would benefit from enhanced security and privacy practices.

T

Tím Zones.sk

pscpsc.cz

45

The website pscpsc.cz is a Czech Republic focused postal code search service operated by Tím Zones.sk. It provides users with the ability to search postal codes by city, street, or postal code, and offers a list of popular postal codes. The site is positioned as a niche informational service targeting the general public in the Czech Republic. Technically, the site uses a custom or unknown CMS with common web technologies such as jQuery, Google Tag Manager, Google Adsense, and Facebook SDK. Hosting is provided by Websupport, a regional hosting provider. The site is mobile optimized and has good SEO and accessibility basics. Security posture is moderate with HTTPS enabled and a consent management platform for GDPR compliance, but lacks explicit security headers and detailed privacy or terms of service pages. No direct company contact emails or phone numbers are present on the site, but contact is available via the parent company Zones.sk. Overall, the site is professional, trustworthy, and safe for general audiences.

T

Team Zones.sk

capcap.it

57

capCAP.it is a specialized Italian website offering postal code (CAP) lookup services for cities and streets across Italy. The site targets Italian residents and users needing postal code information, providing a user-friendly search interface with autocomplete features and popular city CAP listings. The business model appears to be advertising-supported, leveraging Google Adsense and Google Tag Manager for monetization and analytics. The site is relatively new, established in 2022, and operated by Team Zones.sk, a company linked via contact and copyright references.

T

Team Zones.sk

plzplz.at

59

plzPLZ.at is a specialized online service providing postal code search functionality for cities and streets in Austria. The website is operated by Team Zones.sk and targets general users seeking postal code information. It offers autocomplete search features and lists popular postal codes, enhancing user convenience. The site is well-positioned in its niche market, focusing on Austrian postal code data with a clear and consistent branding approach. Technically, the website employs a modern tech stack including jQuery, jQuery UI, Google Fonts, Google Tag Manager, and Google Adsense for advertising and analytics. Hosting is provided by websupport.sk, a known hosting provider. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and a comprehensive consent management platform to comply with GDPR cookie and tracking regulations. However, explicit security headers are not detected, and no formal security or incident response policies are published. The site does not expose sensitive data and uses secure forms for user input. Advertising partners and tracking vendors are numerous but transparently disclosed via the consent mechanism. Overall, the website presents a moderate risk profile with good privacy compliance and a solid technical foundation. Strategic improvements in security headers, explicit privacy and security policies, and enhanced contact information would strengthen trust and compliance. The domain registration is consistent and legitimate, supporting the website's credibility.

B

Bundesarbeitsgemeinschaft der Seniorenorganisationen

digitalpakt-alter.de

52

The DigitalPakt Alter website represents a well-established non-profit initiative under the Bundesarbeitsgemeinschaft der Seniorenorganisationen (BAGSO) umbrella, aimed at empowering older adults in Germany to enhance their digital skills and social participation. The site offers a variety of services including funding programs, workshops, materials, and events, targeting seniors and volunteers. It enjoys strong institutional backing from BAGSO and the German Federal Ministry for Family Affairs, which enhances its credibility and market position. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as jQuery and slick sliders, with a focus on accessibility and mobile responsiveness. Hosting is provided via rzone.de, and the site implements a comprehensive cookie consent mechanism with Matomo analytics for privacy-conscious user tracking. The site demonstrates good SEO and accessibility practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses secure forms with validation. However, it lacks publicly available security policies or incident response contacts, which could be improved to enhance transparency and readiness. No vulnerabilities or suspicious content were detected, and privacy compliance is strong with GDPR-aligned policies and consent mechanisms. Overall, the website is trustworthy, professionally maintained, and aligned with its mission to support digital inclusion for seniors. Strategic recommendations include publishing explicit security and incident response policies, considering a vulnerability disclosure program, and maintaining regular audits of third-party scripts to sustain security posture.

D

Deutschland sicher im Netz e.V.

digitaler-engel.org

56

The Digitaler Engel website is a well-structured, professionally designed platform operated by Deutschland sicher im Netz e.V., a recognized non-profit organization focused on supporting older adults in Germany with digital literacy. The site offers educational content, event information, and downloadable materials, supported by government funding. Technically, the site uses Drupal 10 CMS, integrates Matomo for privacy-respecting analytics, and employs Klaro for consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and consent mechanisms, though some security headers and incident response contacts could be improved. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given its official affiliations. Overall, the site is safe, privacy-compliant, and trustworthy, targeting a general audience with educational goals.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

perspektiven-schaffen.de

65

The website perspektiven-schaffen.de is an official German government platform managed by the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend. It focuses on promoting equality in the labor market, providing comprehensive information, tools, and resources for employees, employers, and other stakeholders. The site features various programs such as the GAPS action program, online courses, calculators, and curated content like podcasts and publications. The platform is well-positioned as a trusted government resource with a clear mission to support labor market equality and integration.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

lokale-buendnisse-fuer-familie.de

63

The website lokale-buendnisse-fuer-familie.de represents a German federal government initiative under the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend. It serves as a platform to promote and support local family alliances across Germany, aiming to improve family-friendly working and living conditions through networking, project development, and information dissemination. The initiative is well-established since 2004 and targets political actors, civil society, businesses, and families. Technically, the website employs standard web technologies including JavaScript and CSS, with Matomo analytics integrated in a privacy-conscious manner requiring user consent. The site is well-structured, accessible, and optimized for mobile devices, reflecting a mature digital presence. However, no explicit CMS or hosting provider details are evident, and security headers are not explicitly detected. From a security perspective, the site uses HTTPS (implied by the URL), enforces cookie consent, and avoids exposing sensitive data. There is no public security policy or incident response information, and no vulnerability disclosure mechanism is found. The WHOIS data is minimal but consistent with a government entity, supporting legitimacy. Overall, the site is professional, trustworthy, and compliant with GDPR, with good privacy practices. Recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to improve transparency and security posture.

F

Frauen Vielfalt Politik

frauen-macht-politik.de

57

Frauen Vielfalt Politik is a specialized non-profit initiative focused on empowering women in local German politics through information, consulting, networking, and best practices. The website serves as a central hub for resources, events, and community engagement, supported by reputable partners including the Deutscher LandFrauenverband and the German Federal Ministry for Family, Seniors, Women and Youth. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates accessibility tools and privacy-compliant analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site presents a professional, trustworthy, and well-structured platform with a clear mission and target audience.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

starkimberuf.de

67

The website represents the official German Federal Ministry for Family Affairs, Senior Citizens, Women and Youth, focusing on programs to support families with migration backgrounds, particularly mothers seeking employment. It provides comprehensive information on integration initiatives, labor market participation, and related studies, positioning itself as a key government resource in this domain. The site is well-structured, professionally designed, and targets families, policymakers, and labor market stakeholders. Technically, the site employs modern web technologies including JavaScript and CSS frameworks, with Matomo analytics integrated for user behavior tracking under strict privacy controls. The site is mobile-optimized and accessible, with good SEO practices. Hosting and CMS details are not explicitly disclosed but the site performs moderately well. Security posture is strong with HTTPS enforced and privacy-compliant cookie consent mechanisms. However, explicit security headers and incident response contacts are not evident, suggesting room for improvement in transparency and security policy communication. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR, serving as a reliable government information portal with low risk exposure.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend

elternchancen.de

53

ElternChanceN is a German government-funded program under the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend, focused on strengthening families through qualified parental guidance and educational support. The website serves as an information and resource hub for pedagogical professionals and families, offering program details, events, networking maps, and online offerings. It leverages modern web technologies including TYPO3 CMS and standard JavaScript libraries to deliver a responsive and accessible user experience. The site integrates Matomo analytics with anonymized tracking and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with privacy standards.

K

Kompetenzzentrum Technik-Diversity-Chancengleichheit e. V.

zukunftswerkstatt-kommunen.de

50

Zukunftswerkstatt Kommunen (ZWK) is a German government-funded non-profit project managed by Kompetenzzentrum Technik-Diversity-Chancengleichheit e. V. It supports 40 municipalities in managing demographic change through consulting, digital tools, and networking. The website is professionally designed using TYPO3 CMS and modern web technologies, providing comprehensive content, accessibility features, and clear navigation. Security posture is strong with HTTPS, security headers, and reCAPTCHA integration, though dedicated security and incident response policies are not published. Overall, the site is trustworthy, compliant with GDPR, and serves a specialized governmental audience effectively.

B

Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend (BMBFSFJ)

jugend-staerken.de

63

The website www.jugend-staerken.de is a German government initiative operated by the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend (BMBFSFJ). It focuses on supporting youth with special needs in their transition to independence through various programs and partnerships. The site serves as an informational and coordination platform for these programs, targeting young people, municipalities, and youth welfare organizations. Technically, the site uses a modern tech stack including jQuery UI and Matomo analytics, hosted on domaincontrol.com nameservers, and employs a CMS likely tailored for government use. The website is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. Security posture is good with HTTPS enforced and privacy-respecting analytics, though some security headers and explicit incident response contacts are missing. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, reflecting its government affiliation.

B

Bundesstiftung Mutter und Kind

bundesstiftung-mutter-und-kind.de

64

The Bundesstiftung Mutter und Kind is a German government-affiliated foundation dedicated to supporting pregnant women in distress through financial aid and counseling services. It operates under the Bundesministerium für Bildung, Familie, Senioren, Frauen und Jugend (BMBFSFJ) and has a longstanding history of over 40 years. The website provides comprehensive information on available aids, application procedures, and educational materials targeting pregnant women, families, and counseling centers. The foundation maintains a strong market position as a trusted social support entity within Germany.

B

Bundesamt für Familie und zivilgesellschaftliche Aufgaben

fonds-missbrauch.de

54

The Fonds Sexueller Missbrauch website is an official German government platform managed by the Bundesamt für Familie und zivilgesellschaftliche Aufgaben. It provides critical support services for individuals affected by sexual abuse in familial and institutional contexts, offering financial assistance for therapies and other related costs. The site targets victims, counseling centers, and the general public, positioning itself as a trusted government resource with clear contact channels and comprehensive informational content. Technically, the website is built on TYPO3 CMS and employs Matomo analytics configured for privacy compliance, including IP anonymization and opt-in consent mechanisms. The site demonstrates good mobile optimization, accessibility, and SEO practices, though it lacks some advanced security headers. Hosting appears to be managed by a German provider, ensuring data residency and compliance. From a security perspective, the site enforces HTTPS and respects user privacy with a transparent cookie consent banner. However, it does not publicly disclose a security policy, incident response contacts, or vulnerability disclosure mechanisms, which could be improved to enhance trust and readiness. No vulnerabilities or suspicious indicators were detected, and the WHOIS data aligns with the official government entity, supporting legitimacy. Overall, the website is professional, trustworthy, and well-aligned with its mission. Strategic improvements in security headers and incident response transparency would further strengthen its posture and user confidence.

J

Jugendmigrationsdienste (JMD)

jmd-portal.de

56

Jugendmigrationsdienste (JMD) is a large, government-funded non-profit organization in Germany focused on supporting young people aged 12 to 27 with migration backgrounds through counseling, education, and integration services. The website reflects a well-established nationwide network with approximately 500 service points, supported by recognized partners and government initiatives. The content is professionally presented, multilingual, and accessible, targeting youth and stakeholders in migration integration. Technically, the site is built on TYPO3 CMS with modern web technologies including Bootstrap and Mapbox for interactive maps, and uses Matomo for privacy-conscious analytics. Security posture is strong with HTTPS enforced and a cookie consent mechanism, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates good digital maturity and compliance with GDPR, with room for improvement in transparency of security and incident response information.

D

Deutsch-Französischer Bürgerfonds

buergerfonds.eu

55

The Deutsch-Französischer Bürgerfonds website serves as an informational and funding platform dedicated to promoting Franco-German friendship and European cooperation through cultural and social projects. The organization operates as a non-profit entity, targeting German and French citizens and organizations interested in bilateral relations and European integration. The website content is professionally presented in German, with a French partner site linked, reflecting its bi-national focus. The business model centers on advising, networking, and financing relevant projects, positioning the organization as a niche player in the governmental and non-profit sector. Technically, the website is built on the Drupal CMS platform, utilizing modern front-end technologies such as Bootstrap, jQuery, and Google Tag Manager. Cookie consent is managed via Cookiebot, demonstrating compliance with EU privacy regulations. The site is mobile-optimized and exhibits good SEO practices, although some accessibility features could be enhanced. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks visible security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected by EURid, which is typical for EU domains and justified for this type of organization. Overall, the domain and website appear legitimate and trustworthy. The overall risk assessment is low, with recommendations to improve security headers, publish privacy and terms documents, and provide clear contact information for security incidents. These steps would enhance compliance and trustworthiness further.

F

Fundacja Centrum im. prof. Bronisława Geremka

geremek.pl

48

Fundacja Centrum im. prof. Bronisława Geremka is a Polish non-profit foundation established in 2008 to preserve and promote the legacy and public values represented by Professor Bronisław Geremek. The foundation engages in educational programs, public debates, monitoring disinformation, and publishing relevant materials. The website reflects a professional and consistent brand image targeting a general audience interested in culture, education, and European values. Technically, the site is built on WordPress with modern frameworks and includes SEO and accessibility features, though some improvements in security headers and DNSSEC could enhance its posture. The security posture is solid with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and incident response information. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy, well-maintained, and aligned with the foundation's mission.

T

Trivali

trivali.be

46

Trivali is a Belgian digital agency specializing in custom web design, webshop development, and marketing services primarily using Drupal and WordPress platforms. The company positions itself as an expert in tailored web solutions, targeting businesses seeking professional digital presence and marketing support. The website reflects a small-sized agency with a clear focus on quality and client collaboration. Technically, the site is built on WordPress with Elementor, integrating modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and standard security headers present, though no explicit security policy or incident response information is published. Privacy compliance is well addressed with GDPR-compliant cookie consent and a comprehensive privacy policy. Overall, the domain WHOIS data is restricted due to .be registry policies but shows no suspicious indicators. The website is professional, trustworthy, and well-optimized for SEO and user experience.

V

Vitesco Technologies GmbH

vitesco-technologies.com

64

Vitesco Technologies GmbH is a leading automotive technology company specializing in electrification and powertrain solutions. Recently merged into the Schaeffler Group as of October 1, 2024, the company focuses on sustainable mobility technologies including electric drives, battery management, and hybrid systems. The website reflects this corporate transition and provides comprehensive information for suppliers, investors, and customers. The business model centers on manufacturing and supplying innovative drivetrain components and systems for various vehicle types, positioning itself as a key player in the evolving automotive market. The company leverages its parent Schaeffler Group's global presence and resources to strengthen its market position. Technically, the website is built on modern frameworks including Angular and Kentico CMS, with a responsive design and good SEO practices. It uses TailwindCSS for styling and integrates video content and interactive menus. Analytics are handled via Piwik (Matomo), indicating a moderate level of user tracking balanced with privacy compliance. The site is well-structured and professionally designed, offering a good user experience across devices. From a security perspective, the site enforces HTTPS and shows good SSL configuration. While explicit security headers like Content-Security-Policy are not evident, no critical vulnerabilities or exposed sensitive data were found. Privacy and cookie policies are present and indicate GDPR compliance, though no explicit incident response or security policy pages were detected. The absence of WHOIS data reduces some trust but is mitigated by the corporate nature and transparency of the site. Overall, the website presents a professional and trustworthy digital presence for Vitesco Technologies within the automotive electrification sector. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving accessibility features to further strengthen security posture and compliance.

O

Opolsku

opolsku.cz

41

The website www.opolsku.cz serves as an informational and service platform focused on Polish-Czech business cooperation. It provides details about Poland, membership firms, and offers services such as translation, business missions, marketing, and consulting. The target audience appears to be businesses and professionals interested in economic cooperation between Poland and the Czech Republic. The website is built on WordPress using popular plugins and themes, indicating a moderate level of technical maturity. The site is accessible, mobile-optimized, and well-structured, but lacks critical privacy and cookie policies as well as visible contact information, which impacts its compliance and trustworthiness. Security posture is adequate with HTTPS enabled, but security headers and incident response information are missing. The absence of WHOIS data reduces domain trustworthiness and should be investigated further.

F

Ferrit s.r.o.

ferrit.cz

59

Ferrit s.r.o. is a Czech-based company specializing in manufacturing and servicing global mining transport solutions, including suspended monorail systems, rail transport, trackless machinery, mining processing equipment, and safety devices for mining rescue operations. The company targets mining and industrial transport sectors worldwide, boasting a client base across multiple countries as evidenced by their interactive client map. Their business model focuses on providing comprehensive transport and safety solutions for underground mining operations, supported by over 25 years of industry experience and EU funding projects. The website reflects a professional and consistent brand image with multilingual support and active social media engagement. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Google Analytics, and Google Tag Manager, ensuring responsive design and moderate performance. The site integrates cookie consent mechanisms and secure login/registration forms, indicating attention to privacy and user security. However, some security headers are not explicitly detected, and no public security or incident response policies are found, suggesting room for improvement in transparency and security maturity. Security posture is generally good with HTTPS enforced and secure form handling, but the absence of WHOIS data and domain registration details introduces uncertainty about domain legitimacy. The website shows GDPR compliance through privacy and cookie policies, though terms of service and vulnerability disclosure mechanisms are not evident. Overall, the site is safe, professional, and trustworthy, but would benefit from enhanced security documentation and domain registration transparency. Strategic recommendations include implementing comprehensive security headers, publishing incident response and vulnerability disclosure policies, and verifying domain registration details to strengthen trust and compliance.