Security Directory

G

GFBio - Gesellschaft für Biologische Daten e.V.

gfbio.org

54

GFBio is a German non-profit federation focused on providing a national data infrastructure for biological and environmental research data management. Established in 2013 and funded by the DFG, it offers services including data submission, search, visualization, and training to researchers in biodiversity and ecology. The website reflects a mature organization with a clear mission and strong partnerships, notably with the NFDI4Biodiversity consortium and other research projects. Technically, the website employs modern web technologies such as Bootstrap 5, Matomo and Google Analytics for tracking, and uses secure HTTPS connections. The infrastructure appears stable and moderately performant with good mobile optimization. However, some security enhancements like DNSSEC and security headers are missing, and there is no visible cookie consent mechanism, which may impact GDPR compliance. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and domain transfer protection. The WHOIS data is transparent and consistent with the organization's profile, enhancing trustworthiness. No critical vulnerabilities or suspicious content were detected. Nonetheless, improvements in security headers, privacy compliance, and incident response disclosures are recommended. Overall, GFBio presents a trustworthy and professional online presence suitable for its research audience, with moderate risk and room for security and privacy enhancements.

L

Landesbauernverband Baden-Württemberg mbh

lbv-smg-reisen.de

41

The website www.lbv-smg-reisen.de represents a specialized travel service provider affiliated with the Landesbauernverband Baden-Württemberg mbh, focusing on group and club travel with an agricultural theme. The site offers a variety of travel programs to diverse destinations, emphasizing cultural and agricultural experiences. The business operates in Germany and targets agricultural professionals and groups interested in thematic travel. Technically, the site is built on Drupal 10, with good mobile optimization and accessibility, and moderate performance. Security posture is adequate with HTTPS enabled but lacks explicit security headers and incident response information. Privacy compliance is good with a clear privacy and cookie policy in German. Overall, the site is professional, trustworthy, and content-rich, though contact information is not explicitly found in the provided content.

B

British Chamber of Commerce in the Czech Republic

powertalks.cz

43

Powertalks.cz is a professionally designed website dedicated to a mentoring program aimed at empowering young women aged 18-29 in Czechia and Slovakia. The program is a partnership between Kérastase, a luxury haircare brand, and the British Chamber of Commerce in the Czech Republic. The website provides detailed information about the mentoring process, topics, timeline, mentors, and related events such as the Power Talks Conference. It also offers a contact form for email collection and mentor applications. The site is built on WordPress using Elementor and Yoast SEO, ensuring good technical infrastructure and SEO optimization. However, the absence of a visible privacy policy and cookie consent mechanism indicates compliance gaps. Security posture is generally good with HTTPS enabled, but lacks security headers and incident response information. WHOIS data is unavailable, limiting domain trust assessment, but the presence of reputable partners and media mentions supports legitimacy.

B

British Chamber of Commerce

bccequilibrium.cz

43

The website bccequilibrium.cz represents the Equilibrium Mentoring Programme operated by the British Chamber of Commerce in the Czech Republic. It focuses on empowering women in business and non-profit sectors through mentorship and community engagement. The programme has a well-established presence since 2011, boasting a large community of mentors and mentees. The website content is professionally presented, with detailed mentor profiles and programme statistics, targeting women seeking career development and leadership growth. Technically, the site is built on WordPress with the Avada theme and uses common plugins for e-commerce and event management. It is hosted via a Czech registrar and uses HTTPS, ensuring secure connections. However, the site lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security headers are not detected, and no explicit contact emails or phone numbers are found, which could affect user trust and compliance. Overall, the site is functional, professional, and safe for general audiences, but could improve in privacy transparency and security best practices.

N

Nova IN

novain.cz

40

Nova IN is a Czech language online magazine launched in 2023, providing news and articles across lifestyle, finance, health, and related categories. The website is built on WordPress using the Elementor page builder, hosted by REG-WEDOS. It features a modern design with good mobile optimization and clear navigation, targeting a general audience interested in varied topics. The site integrates Google Analytics and Google Tag Manager for visitor tracking but lacks visible privacy and cookie policies, which impacts its GDPR compliance stance. Security posture is moderate with HTTPS enabled but missing advanced security headers and incident response contacts. Overall, the site presents as a small but professionally designed media outlet with room for improvement in privacy and security transparency.

I

Institut für Religionspädagogik und Lehrkräftefortbildung in Bayern

rpz-bayern.de

39

The Institut für Religionspädagogik und Lehrkräftefortbildung in Bayern (IRL) is a specialized educational institution focused on religious pedagogy and teacher training within Bavaria, Germany. It serves as a regional hub for professional development of religious education teachers, offering courses, events, and resources tailored to various school types. The institute is newly founded in 2025 and operates under the auspices of the Freisinger Bischofskonferenz, emphasizing innovation and quality in religious education. Technically, the website is built on TYPO3 CMS with modern web technologies including Bootstrap and jQuery. It is hosted by Alfahosting, a reputable German hosting provider. The site demonstrates good mobile optimization and user experience, with clear navigation and professional design. However, performance is moderate and accessibility features are basic. From a security perspective, the site uses HTTPS but lacks visible security headers and formal vulnerability disclosure mechanisms. Privacy and cookie policies are not present on the analyzed page, indicating gaps in GDPR compliance. Contact information is comprehensive, including email, phone, physical address, and a contact form with validation. Overall, the website is trustworthy and professional, serving a niche educational market. Strategic improvements in privacy compliance, security headers, and transparency would enhance its security posture and user trust.

E

Erzbistum München und Freising

erzbistum-muenchen.de

51

Erzbistum München und Freising is a large, established religious non-profit organization serving the Catholic community in the Munich and Freising region of Germany. The website provides comprehensive information about religious services, spiritual guidance, educational programs, and social support initiatives. It targets a general audience including families, youth, and adults interested in Catholic life and community activities. The organization maintains a consistent and professional online presence with clear branding and well-structured content.

K

KEB München und Freising

keb-muenchen.de

45

KEB München und Freising is a regional non-profit organization focused on Catholic adult education within the Munich and Freising dioceses. The website offers a broad range of educational programs including senior education, family education, digital literacy, and theological courses. It serves a target audience of adults interested in faith-based and community learning. The organization holds quality certifications such as QESplus, reinforcing its credibility and commitment to educational standards. Technically, the website is built on TYPO3 CMS with modern web technologies including Bootstrap and jQuery, ensuring a responsive and accessible user experience. The site integrates cookie consent mechanisms and accessibility tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though additional security headers and a published security policy would enhance trust. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the website is professional, trustworthy, and well-positioned in its niche educational market.

Forstpraxis.de is a well-established German forestry media portal operated by Deutsche Landwirtschaftsverlag GmbH, targeting foresters, forest entrepreneurs, and forest owners. It offers comprehensive forestry news, expert articles, newsletters, and subscription-based ad-free access. The website demonstrates a mature digital infrastructure using Drupal 10 CMS, modern CSS frameworks, and integrates multiple third-party marketing and analytics tools including Google Tag Manager, Cxense, and Piano.io. Privacy compliance is strong with explicit GDPR cookie consent and a comprehensive privacy policy. Security posture is good with HTTPS and OAuth login integration, though explicit security policies and incident response contacts are not found. WHOIS data is minimal and uses dynamic DNS name servers, which slightly reduces trust but does not indicate malicious intent. Overall, the site is professional, content-rich, and trustworthy for its target audience.

A

agrarheute.com

agrarheute.com

67

agrarheute.com is a leading German-language agricultural news portal providing comprehensive coverage on farming, livestock, technology, market prices, and weather. It targets farmers, agribusiness professionals, and stakeholders in the agricultural sector, offering news, market data, guides, and multimedia content. The business model includes advertising and a subscription service for an ad-free experience. Technically, the site is built on Drupal 10 with modern web technologies and integrates multiple third-party services for analytics, advertising, and paywall management. Security posture is strong with HTTPS and GDPR-compliant cookie consent mechanisms, though security headers could be improved. The absence of WHOIS registrant data is a concern but does not outweigh the professional presentation and compliance indicators. Overall, the site is trustworthy and well-positioned in its niche.

D

Deutscher Landwirtschaftsverlag GmbH

digitalmagazin.de

66

The website kiosk.digitalmagazin.de is a digital magazine kiosk platform operated by Deutscher Landwirtschaftsverlag GmbH, targeting German-speaking audiences interested in agriculture, forestry, hunting, gardening, and beekeeping. It offers subscription and purchase services for specialized publications. The platform is built on a modern Angular framework with a consistent and professional design, providing a good user experience and clear navigation. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not found. Overall, the site presents a trustworthy and professional digital media service with moderate technical maturity and good compliance.

T

The Compote

thecompote.com

62

The Compote is a small, specialized web design studio based in Prague, Czech Republic, focusing on modern, minimalistic websites built using Webflow. The company offers key services including custom web design, Webflow development, and ongoing monthly support, targeting brands that seek creative and flexible digital presence solutions. Their market position is that of a niche expert in Webflow, serving clients internationally including the US, Germany, UK, Netherlands, and Czech Republic. The website demonstrates excellent content quality, professional branding, and strong trust indicators such as client testimonials and certification as a Webflow Certified Partner. Technically, the website leverages a modern tech stack including Webflow CMS, GSAP for animations, Splide.js for sliders, and smooth scrolling via Lenis. It integrates analytics and tracking tools like Microsoft Clarity, Google Tag Manager, and Apollo.io, and employs Cloudflare Turnstile CAPTCHA for form security. The site is fast, mobile-optimized, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses CAPTCHA on forms, but lacks explicit security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy and cookie policy, including GDPR considerations. However, the absence of a terms of service page and WHOIS registration data transparency reduces overall trust. Overall, the website presents a professional, secure, and user-friendly experience with minor areas for improvement in security headers and legal disclosures. The missing WHOIS data is a notable concern that impacts domain trustworthiness, though the business content and operations appear legitimate and credible.

W

Wirtschaftsvereinigung für den Kreis Steinfurt e.V.

wvs-steinfurt.de

48

Wirtschaftsvereinigung für den Kreis Steinfurt e.V. is a well-established regional business association founded in 1972, focused on representing and supporting the economic interests of companies in the Kreis Steinfurt region of Germany. The organization provides networking opportunities, events, and information dissemination to its members, positioning itself as a key regional business network with a strong local presence. The website reflects this with detailed event listings, news updates, and a professional presentation aligned with its mission. Technically, the website is built on WordPress using Elementor and Yoast SEO, leveraging modern web technologies including Google reCAPTCHA v3 for form security and Google Tag Manager for analytics. The site is hosted behind Cloudflare DNS, ensuring reliable performance and security. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses spam protection on forms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is limited as no privacy or cookie policies were found, which is a notable gap given GDPR requirements. Overall, the website is professional, trustworthy, and serves its business purpose well, but should improve privacy disclosures and security transparency to enhance compliance and user trust.

I

IT-Forum Nord Westfalen e.V.

it-forum.net

56

IT-Forum Nord Westfalen e.V. operates a regional IT community platform focused on fostering collaboration and exchange among IT companies and professionals in the Nord Westfalen region of Germany. The website serves as a hub for events, networking, and knowledge sharing, supported by local companies and the IHK. The business model is that of a non-profit association, emphasizing community building rather than commercial sales. The organization was founded in 2021, consistent with the domain registration date. Technically, the website is built on WordPress with standard plugins such as Yoast SEO and MonsterInsights for analytics. It uses Cloudflare for DNS and likely CDN services, and implements a cookie consent mechanism via Usercentrics, indicating awareness of privacy compliance requirements. The site is moderately optimized for performance and mobile devices, with good SEO practices in place. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy policy or terms of service documents were found, which are important for GDPR compliance and user trust. No incident response or vulnerability disclosure information is provided, representing an area for improvement. Overall, the website is professional, safe, and trustworthy for its intended audience, but could improve its privacy and security posture by publishing relevant policies, enabling DNSSEC, and adding security headers. Contact information visibility should also be enhanced to improve business credibility and user engagement.

B

Bundesministerium für Wirtschaft und Energie

innovation-beratung-foerderung.de

67

The website innovation-beratung-foerderung.de is an official German government portal managed by the Bundesministerium für Wirtschaft und Energie (Federal Ministry for Economic Affairs and Energy). It provides comprehensive information and support on innovation funding programs such as go-inno, INNO-KOM, and WIPANO, targeting researchers, entrepreneurs, SMEs, and public research institutions in Germany. The site serves as a key resource for accessing government-backed innovation consulting and funding services. From a technical perspective, the site employs a range of JavaScript libraries including jQuery 1.8.3, jwplayer, and eTracker analytics. It is hosted on managed IP infrastructure with HTTPS enforced, ensuring secure communication. The website is mobile-optimized and accessible, with good SEO practices and clear navigation. However, some technologies like the older jQuery version could be updated to improve security. Security posture is solid with HTTPS and cookie consent mechanisms in place, including explicit user consent for video services. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy policy and a named data protection officer contact. However, the site could enhance security by implementing additional HTTP security headers and publishing a security policy or incident response contact. Overall, the website is trustworthy, professional, and well-aligned with its government mandate. It effectively balances user privacy, security, and accessibility. Strategic recommendations include updating legacy libraries, enhancing security headers, and formalizing vulnerability disclosure processes to further strengthen the security posture.

KAB Deutschlands e.V. is a well-established German non-profit organization dedicated to promoting social justice, workers' rights, and Catholic social teachings. The website serves as a platform for advocacy, education, and community engagement, targeting workers and social activists. It offers a variety of resources including news, campaigns, educational materials, and legal support services. The organization maintains an active presence on multiple social media platforms and provides clear contact channels including email, phone, and physical address. The website is built on TYPO3 CMS with modern web technologies and demonstrates good content quality and user experience.

S

Seelsorgestiftung Oberfranken

seelsorgestiftung-oberfranken.de

44

Die Seelsorgestiftung Oberfranken is a regional non-profit foundation established in 2010 that supports various seelsorgerische (pastoral care) services in the Oberfranken region of Germany. Its primary focus is on supporting TelefonSeelsorge and other pastoral care initiatives in hospitals, police, prisons, senior homes, and for tourists. The website is professionally designed using Drupal 10, with good mobile optimization and accessibility. It integrates a modern cookie consent manager (Klaro) ensuring GDPR compliance. Contact information and donation details are clearly presented, enhancing trust and transparency. The domain registration data aligns well with the organization's stated mission and regional focus, indicating legitimacy.

F

Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Bayreuth / BDKJ-Regionalverband Bayreuth

bdkj-bayreuth.de

60

The website 'jugend-im-dekanat-bayreuth.de' serves as the official online presence for the Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Bayreuth and the BDKJ-Regionalverband Bayreuth, a non-profit organization affiliated with the Catholic Church in Germany. It provides comprehensive information on youth pastoral activities, events, funding opportunities, and support services targeted at youth and volunteers within the church community. The site is well-structured, accessible, and compliant with GDPR regulations, featuring a cookie consent mechanism and privacy policy. Technically, it is built on the Alkacon Mercury CMS platform, uses Matomo for analytics, and integrates accessibility tools to enhance user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and incident response contacts could be improved. Overall, the site reflects a professional, trustworthy, and community-focused organization with a clear mission to support youth work in the region.

The analyzed website is currently inaccessible beyond a Cloudflare security verification page that performs bot detection and user verification. The domain azs.forsaledomain.net lacks any verifiable WHOIS registration data, indicating it may be a parked or placeholder domain rather than an active business website. No business information, contact details, or privacy policies are present, severely limiting the ability to assess the site's purpose or legitimacy. The technical infrastructure is minimal, relying on basic HTML, CSS, and JavaScript with Cloudflare's challenge platform scripts. Security posture is weak due to lack of visible security headers and absence of SSL configuration details. Overall, the site appears to be a non-operational or parked domain with no meaningful content or business presence.

K

Kindertagesstätte St. Anna Bad Staffelstein

kita-stanna-badstaffelstein.de

59

Kindertagesstätte St. Anna Bad Staffelstein is a small, local childcare and early education provider affiliated with the Catholic Church (Erzbistum Bamberg) serving families in Bad Staffelstein, Germany. The website provides comprehensive information about childcare services including nursery (Krippe), kindergarten, parental fees, daily routines, and contact details. The business model is non-profit and community-focused, targeting parents seeking trusted childcare solutions. The site is well-branded and consistent with the parent organization’s identity. Technically, the website is built on the Alkacon Mercury CMS platform, utilizing modern web technologies such as JavaScript, SVG icons, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and includes strong accessibility features via the eyeAble plugin. Performance is moderate with good SEO and metadata implementation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly observed and no incident response or vulnerability disclosure information is provided, which could be improved. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It effectively serves its target audience with clear contact information and relevant content. Strategic improvements in security policy transparency and technical security headers would enhance its posture further.

The website represents the Catholic parish of Schwürbitz, Germany, serving local community members with information about religious services, parish staff, events, and contact details. It is positioned as a small, non-profit religious entity under the Erzbistum Bamberg. The site uses a modern technical stack including Bootstrap, jQuery, and Matomo analytics, hosted on servers consistent with the domain's WHOIS data. Security posture is adequate with HTTPS, cookie consent, and reCAPTCHA integration, though security headers and explicit policies could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is trustworthy, professionally designed, and well-suited for its target audience.

U

Unsere Heimat Schwürbitz

schwuerbitz.de

53

Unsere Heimat Schwürbitz is a local community website serving the Schwürbitz area in Germany. It provides residents and visitors with news, event information, cultural content, and local business listings. The site is positioned as a community engagement platform encouraging participation and sharing of local information. The business model is primarily informational and community-driven without evident commercial sales or e-commerce components. Technically, the website is built on WordPress 6.8.3 with a modern tech stack including jQuery, Google Maps API integration, and plugins for event management, weather display, anti-spam protection (CleanTalk), and GDPR cookie consent (Complianz). The site is hosted on DomainControl.com nameservers and uses HTTPS with a valid SSL certificate, ensuring secure communications. The design is responsive and accessible, with good SEO and navigation clarity. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, anti-spam measures, and cookie consent management. However, it lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms. No security headers were detected in the HTML content, which could be improved. No vulnerabilities or exposed sensitive data were found. Overall, the website is safe, trustworthy, and compliant with GDPR requirements. It serves its community purpose well but could enhance security posture by adding security policies and headers. There are no signs of adult or questionable content, and the site is fully accessible without WAF or blocking mechanisms.

F

Franziskaner

franziskaner.net

54

Franziskaner.de is the official website of the Franziskaner, one of the largest Catholic male religious orders worldwide, active in Germany since 1221. The site provides rich content about their history, spiritual offerings, projects, and community engagement, targeting a general audience interested in spirituality and religious life. The website is built on WordPress with a modern tech stack including jQuery and WP Rocket for performance optimization. It is hosted likely by Mittwald, a German hosting provider, and uses Matomo analytics with privacy-conscious settings. Security posture is solid with HTTPS and security best practices, though explicit security policies and incident response contacts are absent. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-maintained, serving as a credible digital presence for the religious organization.

K

Kongregation der St. Franziskusschwestern Vierzehnheiligen

fs-vierzehnheiligen.de

47

The Kongregation der St. Franziskusschwestern Vierzehnheiligen is a small non-profit religious organization based in Germany, focused on spiritual programs, community engagement, and support services. Their website serves as an information portal for their congregation, offering multilingual content and promoting their events, spiritual guidance, and volunteer opportunities. The organization maintains a clear and consistent brand presence with accessible contact information and active social media channels. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as jQuery and Swiper.js for enhanced user experience. The site is hosted on servers associated with kasserver.com and employs HTTPS with Google Tag Manager for analytics. Mobile optimization and SEO practices are good, though accessibility features are basic. Cookie consent mechanisms are implemented in compliance with GDPR. From a security perspective, the site uses HTTPS and cookie consent but lacks visible security headers in the HTML content. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, indicating a legitimate and trustworthy domain. However, there is no explicit security policy or incident response information available. Overall, the website is professional, trustworthy, and compliant with privacy regulations, suitable for its target audience. Strategic improvements in security headers and explicit security policies could further enhance its posture.

B

Büro Coburg / BDKJ-Regionalverband Coburg

bdkj-lichtenfels.de

55

The website represents a regional non-profit youth pastoral organization affiliated with the Erzdiözese Bamberg, serving the Coburg and Lichtenfels areas in Germany. It provides youth support, event organization, volunteer coordination, and educational programs targeting young people and youth workers. The site is well-structured, with clear navigation and relevant content tailored to its audience. Technically, it uses the alkacon Mercury CMS platform, integrates Matomo analytics for privacy-conscious tracking, and includes accessibility features via the eyeAble plugin. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are missing. Contact information is clearly presented with physical addresses, phone numbers, and obfuscated emails. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

D

DPSG Diözesanverband Bamberg

dpsg-bamberg.de

49

DPSG Diözesanverband Bamberg is a regional non-profit scouting organization in Germany, affiliated with the national Deutsche Pfadfinderschaft St. Georg (DPSG). The website serves as an information hub for members, providing details on events, facilities, and organizational structure. It targets scouts and volunteers within the Bamberg diocese, offering resources such as event calendars, booking inquiries for scout houses, and educational content. The organization maintains a consistent brand presence and clear communication channels, including email, phone, and social media links. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses SEO best practices via Yoast SEO and structured data.

D

Deutsche Pfadfinderschaft Sankt Georg

dpsg.de

51

The Deutsche Pfadfinderschaft Sankt Georg (DPSG) operates a professional and content-rich website focused on youth scouting activities in Germany. The organization is a large non-profit entity providing scouting programs for children and adolescents, emphasizing inclusion, gender equality, and international cooperation. The website is built on Drupal 9 Thunder, uses Matomo for analytics with privacy-conscious settings, and includes a cookie consent mechanism. While the site is well-designed, mobile-optimized, and accessible, it lacks explicit privacy policy and terms of service pages, and does not publish a security policy or incident response contacts. Contact information is primarily via social media and forms, with no direct emails or phone numbers found. The WHOIS data confirms the domain's legitimacy and consistency with the organization's identity. Overall, the site demonstrates good technical maturity and business credibility but could improve privacy compliance and security transparency.

G

GMK – Medien. Marken. Kommunikation.

magazin-gesund-leben.de

50

The website 'GESUND LEBEN – das Gesundheitsmagazin für Bayreuth' is a regional health magazine published quarterly, targeting health-interested audiences in the Bayreuth region of Germany. It is operated by GMK – Medien. Marken. Kommunikation. in partnership with several reputable local healthcare institutions. The business model focuses on disseminating health information through print and digital media, leveraging strong local partnerships to reach its audience effectively. Technically, the website is built on WordPress 6.8.2 with common plugins such as Yoast SEO for search optimization, Contact Form 7 for user communication, and SiteOrigin Panels for layout management. It employs Usercentrics for GDPR-compliant cookie consent and Matomo for privacy-respecting analytics. The site is moderately performant, mobile-optimized, and has good SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS with an excellent SSL configuration and integrates consent management for privacy compliance. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The overall security posture is good but could be improved with additional headers and policies. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It provides clear contact via email and forms but lacks phone or physical address details on the homepage. The content is safe for general audiences, focused on health topics without any adult or questionable material. The domain WHOIS data is minimal but consistent with a small regional media business. No WAF or blocking mechanisms were detected, allowing full content access and analysis.

E

Evangelisch-Lutherische Kirche in Bayern

pilgern-bayern.de

44

The website www.pilgern-bayern.de is a well-structured, content-rich platform operated by the Evangelical Lutheran Church in Bavaria, focusing on pilgrimage activities and spiritual engagement within Bavaria. It serves a niche audience of pilgrims and religious community members by providing detailed information on pilgrimage routes, events, spiritual literature, and community networking. The site leverages modern web technologies including Drupal 10 and Bootstrap, ensuring good mobile optimization and accessibility. A cookie consent manager (Klaro) is implemented, reflecting strong privacy compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Contact is primarily via a web form, with no direct emails or phone numbers published. Overall, the site demonstrates a high level of professionalism and trustworthiness appropriate for a non-profit religious organization.

The Katholischer Seelsorgebereich Gottesgarten website serves as an informational portal for the Catholic pastoral care area Gottesgarten in Germany, providing comprehensive details about sacraments, pastoral services, events, and contact information for the local community. The site is well-positioned as a regional non-profit religious community resource, targeting parishioners and residents in the Gottesgarten region. It offers clear navigation, relevant content, and consistent branding aligned with its mission. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Font Awesome, and integrates Matomo analytics for user tracking with privacy considerations. The site is hosted on kirche-bamberg.de infrastructure, uses HTTPS, and includes a cookie consent mechanism compliant with GDPR. Mobile optimization and accessibility are adequately addressed, though some improvements could be made in security headers and accessibility features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, use of reCAPTCHA, and anonymized analytics tracking. However, explicit security headers are not evident, and no incident response or security policy pages are published. No vulnerabilities or suspicious content were detected. The domain WHOIS data aligns well with the website content, indicating legitimacy and trustworthiness. Overall, the website presents a low-risk profile with a solid privacy and security posture for a non-profit religious organization. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining up-to-date third-party libraries to further strengthen the security posture.

K

Kur und Tourismus Service der Adam Riese Stadt Bad Staffelstein

bad-staffelstein.de

64

The website 'bad-staffelstein.de' serves as the official tourism and municipal service portal for the city of Bad Staffelstein, Germany. It provides comprehensive information about local tourism, health and wellness services, cultural events, accommodations, and city services. The site targets tourists, visitors, and local citizens, positioning itself as a regional tourism and public service provider. The business model is focused on promoting tourism and providing municipal information, supported by a medium-sized organizational structure. Technically, the site is built on the Weblication CMS platform, employs modern web standards, and integrates Google Tag Manager for analytics. The design is professional, mobile-optimized, and offers clear navigation, although accessibility features are basic. Security posture is moderate with HTTPS usage implied but lacks visible security headers and explicit privacy or cookie policies. No critical vulnerabilities or adult content were detected. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices.

Telefonseelsorge Erlangen is a small, non-profit organization providing free, confidential telephone counseling services to individuals facing acute distress, interpersonal difficulties, and emotional crises. The service operates 24/7 with trained volunteers offering anonymous support. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive privacy and cookie policies, reflecting a strong commitment to user privacy and compliance with GDPR. Technically, the site leverages modern web technologies including jQuery, Bootstrap, and Matomo analytics, hosted on infrastructure associated with kirche-bamberg.de, indicating a stable and reputable hosting environment. Security posture is good with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is trustworthy, well-maintained, and aligned with its mission to provide emotional support services in Erlangen, Germany.

E

Sign in to elkbIdent

elkb.de

61

The website analyzed is an intranet login portal for ELKB (Evangelical Lutheran Church in Bavaria), providing secure user authentication via Keycloak and OpenID Connect protocols. It serves internal users requiring access to the ELKB intranet resources. The site is minimalistic, focusing solely on login functionality without public-facing content or marketing elements. The technical infrastructure leverages modern authentication frameworks and responsive design but lacks visible security headers and privacy policies. The WHOIS data is unavailable or malformed, limiting domain trust verification, though the domain is a subdomain of a known organization. Overall, the site demonstrates basic technical maturity but requires improvements in security best practices and privacy compliance.

P

Pfarrei Mariä Geburt Altenkunstadt

pfarrei-altenkunstadt.de

61

Pfarrei Mariä Geburt Altenkunstadt is a local Catholic parish in Germany providing religious and community services. The website serves as an information portal for parishioners and visitors, offering details on church services, staff, committees, sacraments, and contact information. It targets the local community and those interested in parish activities. The business model is non-profit and community-focused, with a clear emphasis on accessibility and user engagement. Technically, the website is built on the alkacon Mercury CMS platform, leveraging JavaScript, Matomo analytics for privacy-conscious tracking, and OpenStreetMap for location services. The site is hosted likely by Telekom Deutschland, indicated by the nameservers. The website demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive user experience. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism with opt-in for external content. However, explicit security headers and incident response policies are not evident. No vulnerabilities or exposed sensitive data were detected. The WHOIS data shows consistent domain usage with no suspicious patterns, although registrant details are minimal. Overall, the website is trustworthy, safe, and professionally maintained, with room for improvement in security policy transparency and technical hardening. It effectively serves its community role with good content quality and accessibility.

K

Kath. Seelsorgebereich Obermain-Jura

ssb-obermain-jura.de

59

The Katholischer Seelsorgebereich Obermain-Jura website serves as the digital presence for a small regional non-profit religious organization in Germany. It provides parishioners and community members with information about religious services, events, and parish contacts. The site is well-structured, accessible, and includes privacy and cookie consent mechanisms, reflecting a commitment to user privacy and compliance with GDPR. The technical infrastructure is based on the alkacon Mercury CMS platform, with integrations such as Matomo analytics and OpenStreetMap for location services. Hosting is stable and consistent with the domain's purpose. From a security perspective, the website uses HTTPS and implements cookie consent but lacks explicit security policies or incident response contacts. No critical vulnerabilities or suspicious content were detected. The site demonstrates good accessibility and SEO practices, enhancing user experience and trustworthiness. External links are primarily to related parish websites and church infrastructure, reinforcing the site's community focus. Overall, the website presents a professional and trustworthy digital front for the religious community it serves. Strategic improvements could include adding explicit security policies, incident response contacts, and enhanced security headers to further strengthen its security posture.

Hilfe von Haus zu Haus e.V. is a well-established local non-profit organization based in Germany, focused on providing neighborhood assistance primarily to elderly, sick, and families with young children. Founded in 2003, the organization operates with a community-centric approach, offering services such as companionship, support for daily activities, and social engagement. Their market position is strong within the local community, supported by over 105 volunteers and a structured leadership team. The website reflects a clear mission and transparent communication with the public, including membership and donation options. Technically, the website is built on WordPress using the Divi theme, incorporating standard plugins like Contact Form 7 for communication and Borlabs Cookie for privacy compliance. The site is hosted on kasserver.com, with HTTPS enabled and basic security measures such as hCaptcha for spam prevention. Performance and mobile optimization are adequate, though some improvements in security headers and incident response documentation could enhance the security posture. From a security perspective, the site demonstrates good privacy compliance with visible privacy and cookie policies and consent mechanisms. However, explicit security policies and vulnerability disclosure mechanisms are absent. No critical vulnerabilities or suspicious activities were detected. The domain WHOIS data aligns with the organization's history, supporting legitimacy. Overall, the website is professional, trustworthy, and serves its community purpose effectively. Strategic recommendations include enhancing security headers, publishing a security policy or incident response plan, and considering a security.txt file to improve transparency and trust.

B

Bundesanstalt für Landwirtschaft und Ernährung (BLE)

ble.de

59

The Bundesanstalt für Landwirtschaft und Ernährung (BLE) is a German federal government agency focused on agriculture, nutrition, market organization, rural development, fisheries, climate, and sustainable consumption. It serves a broad audience including agricultural practitioners, consumers, authorities, and project funders. The website provides comprehensive information, project funding details, and various services, positioning BLE as a key governmental player in the agricultural sector in Germany. Technically, the site is built on the Government Site Builder CMS, featuring responsive design, good accessibility, and moderate performance. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are absent. The site uses Matomo analytics with user consent, ensuring privacy compliance. Overall, the website is professional, trustworthy, and well-aligned with its governmental mission.

J

Jugendmigrationsdienste (JMD)

lass-uns-reden.de

55

The website www.lass-uns-reden.de represents the Bundesprogramm JMD Respekt Coaches, a German federal initiative aimed at promoting democratic values, respect, tolerance, and the prevention of extremism and racism among youth in schools. The program is implemented by Jugendmigrationsdienste (JMD) in cooperation with schools and partners in political education and radicalization prevention. It has a significant reach with over 600,000 youths engaged through more than 15,000 group offerings nationwide since its inception in 2018. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and demonstrates good mobile optimization, accessibility, and SEO practices. The site includes a cookie consent mechanism but lacks explicit privacy policy and terms of service pages. No advanced analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, HTTPS is enforced, but explicit security headers and incident response policies are not published. The WHOIS data is minimal but consistent with the website's German governmental affiliation, supporting legitimacy. No blocking or WAF challenges were detected, allowing full content access. Overall, the website is professional, trustworthy, and well-aligned with its governmental and educational mission. Strategic improvements include publishing comprehensive privacy and security policies, adding security headers, and providing incident response contacts to enhance trust and compliance.

@

@pressmedia.net

svetdnes.sk

41

Svět Dnes is an online magazine primarily serving Czech and Slovak audiences with lifestyle, news, and advice content. The website operates on a WordPress platform, leveraging modern web technologies such as Google Analytics and Tag Manager for user tracking and performance monitoring. The business model centers on content publishing and advertising, targeting a general adult audience interested in lifestyle and current affairs. The domain registration is consistent with the website's regional focus and business profile, with DNSSEC enabled to enhance domain security. Cookie consent mechanisms and GDPR compliance are implemented, reflecting attention to privacy regulations. However, explicit security policies and incident response information are not publicly available, indicating areas for improvement in transparency and security posture.

The website www.mjobs.cz is a Czech language online media portal focused on publishing articles across various lifestyle categories such as curiosities, housing, finance, women's topics, and advice. It operates on the WordPress CMS platform using the Soledad theme and Elementor page builder, indicating a modern and flexible technical infrastructure. The site is well-structured with clear navigation and good mobile optimization, serving a general audience interested in lifestyle and news content. However, the absence of visible privacy, cookie, and terms of service policies suggests limited compliance with privacy regulations. Security posture is moderate with HTTPS enabled but lacking important security headers, which could be improved to enhance protection against common web threats. The WHOIS data is unavailable, likely due to privacy protection, which reduces transparency and trustworthiness from a domain registration perspective. Overall, the site is functional and content-rich but would benefit from improved privacy compliance and security hardening.

C

Carus-Verlag

carus-verlag.com

62

Carus-Verlag is a specialized music publisher based in Stuttgart, Germany, focusing on choral music. Their website offers a comprehensive catalog of printed and digital choral sheet music, practice aids, and apps for choir singers and directors. The business model centers on online retail and digital distribution, targeting choir enthusiasts and professionals. The website demonstrates a professional design with good navigation and mobile optimization, supported by a modern tech stack including OXID eShop, Google Tag Manager, and Cookiebot for consent management. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, but lacks visible security headers and explicit privacy policy documentation. The absence of WHOIS data raises concerns about domain registration legitimacy, though the website content and technical setup suggest a legitimate business. Overall, the site is safe, well-structured, and user-friendly, but would benefit from enhanced transparency and security practices.

The website narr.de currently serves only a 404 Not Found error page, indicating that the requested resource is unavailable. There is no accessible content, metadata, or business information presented on the site. The domain is hosted on servers associated with Rackspeed Cloud, but no further technical or business details are available. Due to the lack of content and absence of security or privacy policies, the website's digital maturity is very low. Security posture cannot be properly assessed, but the absence of HTTPS and security headers suggests poor security hygiene. Overall, the site presents a high risk of being incomplete or abandoned, and no trust or compliance indicators are present.

L

Landwirtschaftsverlag GmbH

lv.de

46

Landwirtschaftsverlag GmbH operates as a major German media company specializing in agriculture, food, and rural lifestyle content. With over 900 employees and significant revenue, it holds a strong market position among Germany's top 100 media companies. The website reflects a professional digital presence with a focus on publishing and digital media services targeted at agricultural professionals and rural communities. Technically, the site uses modern frameworks like Bootstrap and integrates Google Analytics and Usercentrics for tracking and consent management, indicating a mature digital infrastructure. Security posture is solid with HTTPS and anonymized analytics, though explicit security headers and incident response information are absent. Overall, the site is compliant with GDPR and provides clear business information, though lacks direct contact emails or phone numbers on the main pages. The domain registration data is minimal but consistent with the business claims, and no blocking or WAF interference was detected.

The website at seapics.com is currently inaccessible to the public, returning a 403 Forbidden error page. This indicates that access is restricted or blocked, preventing any meaningful content or business information from being displayed. The domain is registered since 2000 with Tucows Domains Inc., showing a long-standing registration, but the website itself does not provide any visible business or contact details. The hosting provider is identified as SiteGround based on the name servers. The lack of privacy policies, cookie consent mechanisms, terms of service, or contact information further limits the ability to assess the business or compliance posture. Technically, the site lacks DNSSEC and security headers, and no analytics or marketing tools are detected. Overall, the site appears to be either under maintenance, restricted, or misconfigured, resulting in a poor user experience and low trustworthiness.

L

LifeWatch Belgium

lifewatch.be

59

LifeWatch Belgium is a well-established national research infrastructure supporting biodiversity and ecosystem research. It provides a broad range of scientific data services and collaborates within the European LifeWatch ERIC consortium. The website is professionally designed using Drupal 10, with good mobile optimization and accessibility. Privacy and cookie compliance are well implemented, reflecting GDPR adherence. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. The domain registration is consistent and legitimate, registered with BELNET since 2009. Overall, the website presents a trustworthy and authoritative presence in its sector.

N

National Oceanography Centre

noc-innovations.com

62

NOC Innovations Ltd is a UK-based subsidiary of the National Oceanography Centre, specializing in delivering cutting-edge marine research and autonomous technology solutions globally. The company offers a broad range of services including autonomy, tide prediction software, technical services, consultancy, partnerships, technology licensing, and sustainability initiatives. Positioned as a world-leading scientific and technical services provider, NOC Innovations targets organizations seeking sustainable marine economy solutions. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the website employs modern technologies such as Google Tag Manager, Google Maps API, CookieHub for consent management, and Cloudflare for security and bot management. The site is well-optimized for mobile devices, accessible, and SEO-friendly, with good performance metrics. Privacy compliance is robust, featuring detailed privacy and cookie policies with explicit consent mechanisms. From a security perspective, the site enforces HTTPS, uses Cloudflare Bot Management, and integrates Google reCaptcha for risk analysis. However, it lacks some security headers and a published security policy or incident response information. The WHOIS data aligns well with the website's claims, showing consistent registration details and no privacy protection, supporting the site's legitimacy. Overall, the website demonstrates a strong security posture, high business credibility, and excellent content quality, making it a trustworthy and professional platform for its target audience.

U

University of Southampton

southampton.ac.uk

73

The University of Southampton is a large, reputable higher education institution based in the United Kingdom, offering a wide range of undergraduate, postgraduate, and research degree programs. The website serves as a comprehensive portal for prospective and current students, researchers, and academic staff, providing detailed information on courses, research projects, student life, and business collaborations. The university maintains a strong market position as a research-intensive institution with a global presence, including international partnerships such as the Malaysia campus. Technically, the website is built on Drupal 10, leveraging modern web technologies such as lazy loading images and Google Tag Manager for analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Privacy compliance is robust, with clear privacy and cookie policies and an active consent mechanism implemented via OneTrust. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security policies or incident response information, which are recommended for further strengthening its security posture. The absence of WHOIS data is typical for .uk domains and does not detract from the site's legitimacy. Overall, the University of Southampton's website is professional, trustworthy, and well-maintained, reflecting the institution's stature and commitment to compliance and user experience.

N

Natural Environment Research Council (NERC)

nerc.ac.uk

72

The Natural Environment Research Council (NERC) is a key UK government research council focused on funding and supporting environmental science research. It operates under UK Research and Innovation (UKRI) and provides grants, fellowships, and strategic programmes to advance environmental science. The website presents a professional and comprehensive digital presence, targeting UK research organizations, scientists, and public stakeholders interested in environmental research funding and outcomes. The site is well-branded, consistent, and offers clear navigation and relevant content including news, funding opportunities, and contact information. Technically, the website is built on WordPress and leverages modern analytics and consent management tools such as Google Analytics, Siteimprove, Hotjar, and Civic Cookie Control. It uses the GOV.UK design system for accessibility and user experience. The site is mobile-optimized and performs moderately well, with good SEO and accessibility features. From a security perspective, the site enforces HTTPS, employs standard security headers, and implements cookie consent mechanisms aligned with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy page, incident response contacts, and a vulnerability disclosure policy, which are recommended for enhanced transparency and security posture. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. The lack of WHOIS data is likely due to privacy protection, which is justified for a government entity. The site effectively supports its mission to promote environmental science research in the UK.

N

National Oceanography Centre

ntslf.org

70

The National Tidal and Sea Level Facility (NTSLF) is a UK-based government/non-profit research center specializing in sea level monitoring, coastal flood forecasting, and analysis of sea level extremes. It serves as a key resource for researchers, policy makers, planners, and coastal engineers by providing tidal predictions, storm surge forecasts, and tide gauge data. The website is professionally designed, well-structured, and provides comprehensive content relevant to its audience. It is affiliated with reputable institutions such as the National Oceanography Centre and the University of Liverpool, enhancing its credibility. Technically, the website is built on Drupal 10 with modern libraries including jQuery, Bootstrap, and Leaflet.js for interactive maps. It is hosted with a reputable registrar and uses Azure DNS, with HTTPS enabled ensuring secure communications. The site includes a cookie consent mechanism and links to a comprehensive privacy policy, demonstrating good privacy compliance. Performance and mobile optimization are adequate, and accessibility features are present. From a security perspective, the site employs HTTPS and domain transfer protection but lacks DNSSEC and explicit security headers. There is no published security policy or incident response contact, and no vulnerability disclosure mechanism is evident. No WAF or blocking mechanisms interfere with content access. Overall, the security posture is solid but could be improved with additional security headers and transparency. The overall risk assessment is low, with the site appearing trustworthy and professionally maintained. Strategic recommendations include enabling DNSSEC, publishing a security policy, adding vulnerability disclosure information, and implementing security headers to enhance protection and trust.

P

Permanent Service for Mean Sea Level (PSMSL)

psmsl.org

61

The Permanent Service for Mean Sea Level (PSMSL) operates as a global data bank specializing in long-term sea level change information derived from tide gauges and bottom pressure recorders. Based in the United Kingdom and supported by the National Oceanography Centre and the UK's Natural Environment Research Council (NERC), PSMSL serves a specialized audience of researchers, scientists, and environmental agencies. The organization provides open access to sea level data, derived products, and training resources, positioning itself as a trusted and authoritative source in the oceanographic research community. Technically, the website employs a straightforward HTML and CSS infrastructure with hosting supported by Microsoft Azure DNS services. The site demonstrates moderate performance and basic mobile optimization and accessibility features. However, it lacks advanced technical frameworks or CMS platforms and does not implement DNSSEC or security headers, which are recommended for enhanced security. From a security perspective, the site uses HTTPS but does not present security headers or privacy and cookie policies, indicating gaps in compliance with modern data protection standards such as GDPR. No incident response or vulnerability disclosure mechanisms are visible, which could impact the organization's readiness to handle security incidents. The absence of tracking or analytics tools suggests minimal user data collection, aligning with privacy-conscious practices. Overall, PSMSL's website is professional, content-rich, and trustworthy, but it would benefit from improved security configurations, privacy compliance documentation, and enhanced mobile and accessibility features to strengthen its digital maturity and user trust.