Security Directory

D

DRK-Blutspendedienst Baden-Württemberg – Hessen gemeinnützige Gesellschaft mit beschränkter Haftung

blutspende.de

62

The website www.blutspende.de represents the DRK-Blutspendedienst Baden-Württemberg – Hessen, a key regional entity within the German Red Cross responsible for coordinating blood donation services across Germany. The site serves as a nationwide distribution portal linking users to regional blood donation services, offering approximately 38,000 blood donation appointments annually. The target audience is the general German public interested in donating blood. The business operates as a non-profit healthcare service, playing a critical role in the national blood supply chain. Technically, the website is built on Drupal 10 CMS, leveraging modern web technologies and integrating Matomo analytics with a consent management platform (CookieFirst) to ensure privacy compliance. The site is hosted on German infrastructure with nameservers pointing to nats.de, indicating a stable and localized hosting environment. The website demonstrates good mobile optimization, accessibility, and SEO practices, with consistent branding and professional design. From a security perspective, the site enforces HTTPS, implements standard security headers, and uses a cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit privacy policy and terms of service pages, as well as lack of incident response contacts and data protection officer information, represent areas for improvement in compliance and transparency. Overall, the website is trustworthy, professionally maintained, and fulfills its mission effectively. Strategic recommendations include publishing comprehensive privacy and terms documents, establishing vulnerability disclosure channels, and enhancing transparency around data protection roles to strengthen user trust and regulatory compliance.

F

FEANI

engineers4europe.eu

59

The Engineers for Europe (E4E) Project is a European Union co-funded initiative focused on enhancing engineering skills across Europe through free online courses and collaborative research. The project targets engineers and educational institutions, aiming to strengthen the engineering profession with a focus on green, digital, entrepreneurial, and transversal skills. The website is professionally designed, content-rich, and well-structured, reflecting a mature digital presence. Technically, the site is built on Drupal 10, employs Google Tag Manager for analytics, and uses modern web fonts and responsive design techniques. Performance is moderate with good mobile optimization and accessibility features. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though some security headers and explicit security policies are absent. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a clear cookie policy and consent banner, though a dedicated privacy policy page is not explicitly linked. Business credibility is high due to EU co-funding, consortium partnerships, and extensive published materials. Overall, the site is trustworthy and safe for general audiences. Strategic recommendations include publishing a dedicated security policy, adding incident response contacts, implementing security headers, and enhancing transparency with terms of service documentation.

E

ENTSOG AISBL

entsog.eu

72

ENTSOG AISBL is a European non-profit association established in 2009 to coordinate national gas transmission system operators (TSOs) across Europe. It plays a critical role in facilitating cooperation to meet EU energy and climate goals, particularly focusing on the energy transition and net-zero decarbonisation by 2050. The organization provides key services including data transparency platforms, infrastructure mapping, network codes, and security of supply simulations. The website reflects a mature digital presence with professional design and comprehensive content targeting energy stakeholders and policy makers. Technically, the website is built on Drupal 10 with modern front-end libraries such as Bootstrap, Swiper.js, and Font Awesome. It integrates Google Tag Manager for analytics and uses Elfsight widgets for social media feeds. The site is mobile optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and vulnerability disclosure mechanisms are absent. Overall, the security posture is good with no visible vulnerabilities or exposed sensitive data. The domain WHOIS data is privacy protected under EURid policy, which is justified for this type of organization. The website is trustworthy, professional, and compliant with GDPR requirements. Strategic recommendations include enhancing security headers, publishing a security policy, and implementing a vulnerability disclosure program to further strengthen trust and security. This assessment indicates a well-established, credible organization with a strong digital footprint and a good security baseline, suitable for its role in the European energy sector.

E

ENGINEERS EUROPE Central Secretariat AISBL

feani.org

66

ENGINEERS EUROPE is a well-established federation representing professional engineers across 33 European countries. The organization focuses on uniting national engineering associations, facilitating professional mobility through certifications like the EUR ING certificate, and providing educational resources such as the European Engineering Education Database and continuing professional development materials. The website reflects a professional, non-profit entity with a clear mission to strengthen the engineering profession in Europe. Technically, the site is built on Drupal 10, uses modern web fonts, and integrates Google Tag Manager for analytics. It is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS and secure forms, though it lacks some security headers and a published security policy. Privacy compliance is strong with GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the site is trustworthy, professional, and serves its target audience effectively.

Z

Zentralwohlfahrtsstelle der Juden in Deutschland e.V.

zwst.org

52

The Zentralwohlfahrtsstelle der Juden in Deutschland e.V. (ZWST) is a well-established non-profit organization serving as the social umbrella for Jewish welfare in Germany since 1917. The website reflects a mature and professional digital presence, offering comprehensive information about their social welfare services, youth programs, inclusion initiatives, humanitarian aid, and professional training. Their market position is strong within the German social welfare sector, supported by memberships and certifications that enhance trust and credibility. The target audience includes Jewish communities, volunteers, social workers, and the general public interested in Jewish social welfare.

Z

Zastoupení v České republice

evropska-unie.cz

70

The website represents the official Czech Republic representation of the European Commission, providing comprehensive information about EU policies, news, events, and services relevant to Czech citizens. It serves as a government information portal with a strong focus on transparency, multilingual support, and public engagement. The site is well-positioned as an authoritative source for EU-related information in Czechia, backed by the European Commission's infrastructure. Technically, the site is built on Drupal 10 with European Commission Library components, ensuring modern web standards, accessibility, and responsive design. The site demonstrates good SEO practices and moderate performance, with no detected blocking or WAF interference. Analytics are implemented via Piwik, with minimal user tracking and good privacy compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, security headers are not explicitly detected and could be improved. The site links to comprehensive privacy and cookie policies, indicating GDPR compliance. Incident response and vulnerability disclosure policies are referenced, though direct contact channels for security issues are not prominently displayed. Overall, the website is a trustworthy, professional, and well-maintained government portal with strong business credibility and technical maturity. It effectively serves its target audience with relevant content and clear navigation.

N

NAFTA

nafta.sk

64

NAFTA is a leading Slovak international company specializing in the storage and development of underground natural gas reservoirs, as well as exploration and production of hydrocarbons. It holds a significant market position as the 6th largest gas storage operator in Europe, with operations extending beyond Slovakia into the Czech Republic, Germany, Austria, and Ukraine. The company offers a range of services including gas storage, innovative development projects, and support services in the energy sector. The website reflects a mature digital presence built on Drupal 10, featuring modern technologies and a professional design that supports business stakeholders and customers. Security measures such as HTTPS and security headers are well implemented, although some privacy compliance aspects like explicit cookie consent and incident response information could be improved. Overall, NAFTA demonstrates a strong security posture and credible business representation with comprehensive contact information and transparency.

The Australian Communications and Media Authority (ACMA) is the national government agency responsible for regulating communications and media services in Australia. It oversees broadcasting, telecommunications, internet services, and spectrum management, ensuring compliance with legislation and protecting consumer interests. The ACMA operates as a large government entity with a clear mandate and a strong market position as the authoritative regulator in its sector. The website reflects this status with professional design, comprehensive content, and clear communication channels. Technically, the ACMA website is built on Drupal 10 and hosted on the GovCMS platform, a government-specific content management system. It employs modern web technologies including Google Tag Manager and Font Awesome for icons. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and includes a Content Security Policy header, demonstrating good security hygiene. However, additional security headers could be implemented to further harden the site. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is addressed with clear privacy and cookie policies, though GDPR compliance is not explicitly indicated, which is typical for Australian government sites. Overall, the ACMA website is trustworthy, professional, and well-maintained, with a strong alignment between its domain registration and organizational identity. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving privacy compliance transparency to align with international standards.

C

Cyfrowy Polsat S.A.

grupapolsatplus.pl

61

Grupa Polsat Plus is a leading media and telecommunications group in Central and Eastern Europe, offering a broad portfolio of services including telecommunications, video and online content, green energy, and real estate development. The company targets both individual and business customers primarily in Poland, leveraging its subsidiaries such as Plus, Cyfrowy Polsat, Telewizja Polsat, and IPLA. The website reflects a mature digital presence with comprehensive corporate information, investor relations, and sustainability initiatives. Technically, the site is built on Drupal 10 with modern JavaScript libraries and integrates common analytics tools like Google Analytics and Gemius Prism. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. Overall, the site is professional, trustworthy, and well-structured, supporting the company's market position as a major regional player.

Z

Zdravotní pojišťovna ministerstva vnitra České republiky

zdravijakovasen.cz

42

The website zdravijakovasen.cz is a health information portal operated by the Health Insurance Company of the Ministry of the Interior of the Czech Republic. It offers a wide range of health-related content including articles, videos, and seasonal health topics aimed at promoting healthy lifestyles, prevention, and wellness for a general audience including families and individuals with chronic conditions. The site is professionally designed using Drupal 10 CMS and integrates modern web technologies such as jQuery, Slick Carousel, and embedded YouTube videos to enhance user engagement. It also employs Google Tag Manager and Facebook Pixel for analytics and marketing purposes. The website demonstrates strong GDPR and cookie compliance with a clear cookie consent mechanism and a dedicated privacy policy page. However, no direct contact emails or phone numbers are found on the main pages, and there is no explicit security.txt or incident response information available. The WHOIS data for the domain is unavailable, likely due to registry privacy policies, which slightly reduces trust but does not detract from the overall professionalism and legitimacy of the site. Security posture is good with HTTPS enforced, but the absence of explicit security headers is noted as an area for improvement. Overall, the site is a trustworthy and valuable resource for health information in the Czech Republic.

U

USU Digital Consulting

usu-digitalconsulting.com

60

USU Digital Consulting is a large, established technology consulting firm based in Germany, specializing in digital transformation services including AI, process automation, digital customer experience, and e-government solutions. The company positions itself as a full-service provider with over 45 years of expertise and a strong focus on customer-centric, value-oriented consulting. Technically, the website is built on Drupal 10 and integrates multiple modern analytics and marketing tools with a robust consent management system, indicating a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though the absence of a public security policy or incident response contact is noted. The missing WHOIS data for the domain introduces some uncertainty regarding domain legitimacy, but the professional website content and technology usage support the business credibility. Overall, the website is well-designed, accessible, and trustworthy, serving a professional business audience.

World Physiotherapy is a globally recognized non-profit organization representing over 600,000 physiotherapists through 121 member organizations worldwide. It serves as the sole international voice for the physiotherapy profession, providing advocacy, education, events, and resources to its members. The organization is UK-based with a strong global presence and operates a professional, multilingual website built on Drupal 10. The site demonstrates good digital maturity with modern technologies, mobile optimization, and compliance with GDPR and cookie consent regulations. Security posture is solid with HTTPS and cookie management, though some improvements like DNSSEC and security headers could enhance protection. Contact information is clearly provided via email and physical addresses, supported by active social media channels. Overall, the website reflects a trustworthy, professional, and well-managed organization with a strong market position in healthcare.

L

Latvijas Fizioterapeitu asociācija

fizioterapeitiem.lv

43

Latvijas Fizioterapeitu asociācija (LFA) is a Latvian professional association dedicated to physiotherapists, providing certification, education, and resources to its members and the public. The website serves as an information hub for physiotherapy-related news, events, and professional development opportunities, positioning itself as a key national body in the healthcare sector. The target audience includes physiotherapists, healthcare professionals, and the Latvian public interested in physiotherapy services. Technically, the website is built on Drupal 10, utilizing modern web technologies such as jQuery, Slick Carousel, and lazy loading for images, hosted on DigitalOcean infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. Analytics are implemented via Google Tag Manager, indicating a moderate level of user tracking. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and formal security policies such as vulnerability disclosure or incident response contacts. Privacy compliance is weak, with no visible privacy or cookie policies, which is a notable gap given GDPR requirements. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security policy disclosures to improve compliance and user trust. Strategic improvements in security headers and incident response readiness are recommended to strengthen the security posture.

T

TrailPark Plešivec

trailparkplesivec.cz

48

TrailPark Plešivec is a modern recreational facility located in the Krušné hory mountains of the Czech Republic, offering skiing, trail biking, and hospitality services. The website presents a professional and well-structured digital presence built on Drupal 10, integrating modern front-end frameworks and third-party services such as Google Tag Manager for analytics. The business targets outdoor enthusiasts and families, providing amenities like ski lifts, bike rentals, and dining options. The domain registration is consistent with the business location and age, supporting legitimacy. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements are recommended in security headers and explicit privacy policies. Overall, the website is safe, family-friendly, and demonstrates moderate digital maturity.

Ř

Ředitelství silnic a dálnic s. p.

mytocz.eu

57

The website myto.gov.cz is the official web portal for the Electronic Toll System in the Czech Republic, operated by Ředitelství silnic a dálnic s. p., a government entity. It provides comprehensive information and services related to toll payment, vehicle registration, toll rates, and customer support. The portal targets vehicle operators and transport companies using toll roads in the Czech Republic, serving as a centralized resource for toll-related matters. Technically, the site is built on Drupal 10, employs modern web technologies including Google Analytics for traffic analysis, and is mobile optimized with good accessibility and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers and a published security policy would enhance protection. The absence of WHOIS data limits domain registration insights, but the use of a .gov.cz domain strongly supports legitimacy. Overall, the site is professional, trustworthy, and well-suited for its governmental function.

I

Isover

isover.cz

61

Isover is a well-established company specializing in insulation materials and solutions, operating primarily in the Czech Republic and part of the Saint-Gobain Group. The website presents a professional and content-rich platform focused on thermal, technical, and industrial insulation products, targeting construction professionals and homeowners interested in energy efficiency. Technically, the site is built on Drupal 10, employs modern web technologies, and is optimized for mobile devices. Security posture is good with HTTPS and standard best practices, though explicit security headers and privacy policies are not clearly visible. The absence of WHOIS data limits domain trust assessment but the website content and branding indicate a legitimate business. Overall, the site is professional and trustworthy with moderate user tracking and analytics integration.

S

Statistische Ämter des Bundes und der Länder

statistikportal.de

58

Statistikportal.de is the official joint statistical portal of the Statistical Offices of the Federation and the Länder in Germany. It provides comprehensive and authoritative statistical data, interactive maps, and thematic information for researchers, policymakers, and the general public. The portal is well-structured, professionally designed, and offers a broad range of data products and services related to demographics, economy, environment, and more. Technically, the site is built on Drupal 10, uses modern JavaScript libraries, and integrates Matomo analytics with privacy-conscious settings. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The domain registration data aligns with the official nature of the site, enhancing trustworthiness. Overall, the portal demonstrates a mature digital infrastructure suitable for a government entity.

E

European Research University

eruni.org

65

European Research University (ERUNI) is a non-profit educational institution based in the Czech Republic, offering accredited undergraduate, postgraduate, and lifelong learning programmes. It is affiliated as a Recognised Teaching Centre of the University of London, with research hubs in London and Amsterdam. The website reflects a professional and well-structured digital presence, built on Drupal 10, with modern web technologies and good mobile optimization. The institution targets students seeking quality education with international opportunities, emphasizing openness, inclusivity, and research engagement. Technically, the website is hosted by WEDOS Internet, a.s., uses HTTPS, and integrates Google Tag Manager and CookieHub for analytics and cookie consent management. The site is accessible without WAF or security challenges, indicating stable hosting and configuration. However, security headers are not explicitly detected, and DNSSEC is not enabled, suggesting room for improvement in DNS and HTTP security hardening. From a security and compliance perspective, the site includes GDPR-compliant privacy and cookie policies but lacks visible terms of service, security policies, or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business claims, though the domain is relatively new compared to the founding year, indicating a recent domain registration or rebranding. Overall, ERUNI's website demonstrates a strong business credibility and digital maturity with good content quality and user experience. Strategic recommendations include enhancing security headers, enabling DNSSEC, publishing security and incident response policies, and adding terms of service to improve trust and compliance.

F

Federal Agency for Cartography and Geodesy

gdi-de.org

69

The website www.gdi-de.org represents the Spatial Data Infrastructure Germany (SDI Germany), a governmental initiative coordinated by the Federal Agency for Cartography and Geodesy. It serves as a central platform to provide standardized access to geospatial data from federal, state, and local authorities, integrated within the European INSPIRE Directive framework. The site targets government entities, researchers, and public users interested in geodata services. The business model is focused on public sector data provision and infrastructure coordination, positioning itself as a key national spatial data authority. Technically, the website is built on Drupal 10 CMS with Bootstrap 3 and FontAwesome, delivering a responsive and professionally designed user experience. The site includes structured navigation, multilingual support, and integration with external official geoportals. Performance is moderate with good mobile optimization, though accessibility features are basic. From a security perspective, HTTPS is implied but no explicit security headers were detected in the provided data. No vulnerabilities or exposed sensitive data were found in the HTML content. However, the absence of a cookie consent mechanism and explicit privacy compliance features is noted. The WHOIS data is incomplete and malformed, limiting domain trust verification, but the official government branding and content strongly support legitimacy. Overall, the website is a credible, professional government resource with good content quality and technical implementation. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing security policies, improving accessibility, and addressing WHOIS data transparency to strengthen trust and compliance.

E

Elle.cz

elle.cz

66

Elle.cz is a well-established Czech lifestyle and fashion magazine targeting women interested in fashion, beauty, and culture. Operated by BurdaMedia Extra s.r.o., it offers rich editorial content including fashion trends, beauty tips, horoscopes, and celebrity news. The website demonstrates a mature digital presence with modern technologies and extensive advertising and tracking integrations managed via consent mechanisms. However, the absence of WHOIS data limits domain trust assessment. The site uses HTTPS and includes privacy and cookie policies aligned with GDPR requirements, but lacks explicit security policy and incident response contacts. Overall, Elle.cz presents a professional and trustworthy media platform with room for improvement in transparency and security disclosures.

A

Algeco UK

algeco.co.uk

71

Algeco UK operates as a leading provider of modular buildings, site accommodation, and shipping containers across the UK and Europe. The company offers a broad range of temporary and permanent modular building solutions tailored to sectors such as construction, education, healthcare, and energy. Their market position is strong, supported by a large fleet and nationwide service centers. Technically, the website is built on Drupal 10 with modern libraries and includes cookie consent mechanisms, indicating a moderate level of digital maturity. Security posture is adequate but could be improved by implementing security headers and publishing security policies. Overall, the website is professional, accessible, and trustworthy, though WHOIS data is unavailable, which slightly impacts trust verification.

M

Modulaire Group

modulairegroup.com

67

Modulaire Group is a leading multinational company specializing in modular services and infrastructure across Europe and Asia Pacific. The company serves over 52,000 customers globally, focusing on sectors such as public administration, construction, energy, natural resources, industry, business services, and infrastructure. Their business model revolves around providing smart modular spaces, equipment, connectivity, and furniture solutions with a strong presence in 23 countries through multiple subsidiaries. Technically, the website is built on Drupal 10, utilizing modern web technologies including jQuery, Flexslider, and Google Analytics for tracking. The site demonstrates good mobile optimization, clear navigation, and consistent branding, reflecting a mature digital presence. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent but lacks explicit security headers and incident response information. No vulnerabilities or exposed sensitive data were detected in the content. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further investigation. Overall, the website presents a professional and trustworthy front for a large enterprise, with recommendations to enhance security policies, publish incident response details, and verify domain registration to strengthen trust and compliance.

A

Algeco UK

elliottuk.com

72

Algeco UK is a well-established provider of modular buildings, site accommodation, and shipping containers, serving a broad range of sectors including construction, education, healthcare, and commercial industries. The company positions itself as a market leader in the UK with extensive nationwide coverage and a large fleet. The website is professionally designed, mobile-optimized, and provides comprehensive information about products and services, supporting a B2B business model focused on rental and turnkey solutions. Technically, the website is built on Drupal 10 and integrates modern web technologies such as Google Tag Manager, HubSpot Analytics, and CookieYes for cookie consent management. The site demonstrates good SEO and accessibility practices, though performance is moderate. Security posture is adequate with HTTPS usage and cookie consent, but lacks visible security headers and explicit security policies. The WHOIS data for the exact domain queried is unavailable due to domain naming rules, indicating the domain is a subdomain rather than a registered domain itself. This is consistent with UK domain structures but reduces the ability to verify domain registration details. No privacy policy or terms of service pages were detected in the provided content, which is a gap in privacy compliance. Overall, the website presents a professional and trustworthy business front with room for improvement in security transparency and privacy documentation.

A

Algeco

algeco.se

61

Algeco is a well-established international supplier specializing in modular buildings, containers, and related construction equipment, serving primarily the Swedish market and broader Nordic region. The company operates under the parent company Modulaire Group and maintains several regional subsidiaries. Their business model focuses on both sales and rental of modular solutions tailored to various industries including education, healthcare, infrastructure, and events. The website content is professionally crafted, emphasizing sustainability and innovation, with a clear market position as a world-leading provider in their sector. Technically, the website is built on Drupal 10, leveraging modern web technologies and marketing tools such as HubSpot for forms and analytics, and Google Tag Manager for tracking. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and a public security policy are absent. The security evaluation reveals a good baseline with no visible vulnerabilities or exposed sensitive data. However, the absence of WHOIS data for the exact www.algeco.se domain suggests it is a subdomain or alias, which slightly impacts trust but is consistent with the professional and transparent nature of the website. Privacy compliance is strong, with comprehensive policies and GDPR adherence evident. Overall, Algeco's digital presence is robust, trustworthy, and aligned with industry best practices, supporting their business credibility and customer engagement effectively.

A

ALGECO

algeco.it

69

Algeco is a leading multinational company specializing in modular building solutions across Europe, offering rental and sales of temporary and permanent modular spaces. The company targets diverse sectors including industry, construction, education, public administration, healthcare, and non-profit organizations. The website reflects a mature digital presence with a Drupal 10 CMS, responsive design, and a cookie consent mechanism, indicating awareness of privacy regulations. However, explicit privacy and terms of service pages are not detected in the provided content, suggesting room for compliance improvement. Security posture is solid with HTTPS, DNSSEC, and no visible vulnerabilities, but incident response details are absent. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

A

Algeco

algeco.fr

59

Algeco is a leading French company specializing in the design and provision of modular buildings for various sectors including construction, education, and local economies. The company emphasizes sustainability and low-carbon solutions in its offerings. The website reflects a mature digital presence built on Drupal 10, integrating modern tracking and consent management technologies. Security posture is solid with HTTPS, security headers, and reCAPTCHA protections, though explicit security policies and incident response contacts are absent. The lack of WHOIS data is a concern but does not detract significantly from the overall legitimacy given the professional website and business information. Strategic recommendations include publishing security policies and verifying domain registration details to enhance trust.

A

Algeco

algeco.fi

58

Algeco is a well-established global leader in modular construction solutions, offering a wide range of modular buildings, worksite spaces, and storage containers primarily targeting businesses and organizations in Finland and neighboring countries. The company emphasizes sustainability, innovation, and customer-centric solutions, supported by a professional and content-rich website built on Drupal 10. The site demonstrates strong digital maturity with modern technologies, mobile optimization, and integrated marketing and analytics tools such as HubSpot and Google Tag Manager. Security posture is solid with HTTPS enforced and secure form handling, although explicit security policies and incident response details are not publicly available. Overall, the website reflects a trustworthy and professional business with comprehensive contact information and GDPR-compliant privacy and cookie policies.

A

Algeco

algeco.dk

61

Algeco is a well-established provider of modular building solutions primarily serving the Danish and Nordic markets. The company offers a wide range of modular products and services tailored to sectors such as construction, education, healthcare, and housing. Their market position is strong, supported by over 50 years of innovation and a parent company, Modulaire Group, with multiple subsidiaries across the region. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content focused on business clients. Technically, the website is built on Drupal 10, leveraging modern web technologies and marketing tools like HubSpot and Google Tag Manager. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and secure form handling, though some security headers and explicit security policies are absent. The absence of WHOIS data limits domain registration trust analysis, but the overall digital footprint and business information suggest legitimacy. Privacy and cookie policies are comprehensive and GDPR compliant, with active consent mechanisms. Contact information is complete and clearly presented. Overall, the website presents a trustworthy and professional business front with room for improvement in security policy transparency and WHOIS data availability.

A

Alfons W. Gentner Verlag GmbH & Co. KG

gentnershop.de

48

Gentnershop.de is the online storefront for Alfons W. Gentner Verlag GmbH & Co. KG, a German media house specializing in publications related to craft, technology, and healthy living and working. The website offers subscription services and single-issue sales for various magazines and media products, targeting professionals and businesses in the energy and technical sectors. The company positions itself as a leading media brand in its markets, providing reliable products and solutions to support economic success. Technically, the site is built on Drupal 10 with Commerce 2, integrating modern marketing and privacy management SDKs such as Marfeel and a GDPR consent platform. The website is mobile-optimized and demonstrates good SEO and accessibility practices, though some accessibility features could be improved. Security-wise, the site enforces HTTPS and uses consent management for GDPR compliance but lacks explicit security headers and published security policies or incident response contacts. The WHOIS data is minimal but shows no signs of privacy protection or suspicious registration, supporting the legitimacy of the domain. Overall, the site is professional, secure, and compliant with privacy regulations, though it could enhance transparency around security policies and incident response.

B

Bidfood Hungary

bidfood.hu

49

Bidfood Hungary is a large-scale food production and distribution company operating under the international Bidcorp group, the second largest global foodservice distributor. The company offers a wide range of food products and related services, including direct delivery to restaurants and retail outlets, supported by an e-commerce platform and a mobile ordering application. The website is built on Drupal 10, featuring modern web technologies and GDPR-compliant cookie consent mechanisms. Social media presence and multiple language options enhance its market reach. Security posture is solid with HTTPS and secure forms, though some security headers and policies could be improved. Overall, the site reflects a professional and trustworthy business with good technical and privacy compliance.

E

EURAXESS

euraxess.at

74

EURAXESS Austria is a professional pan-European platform supported by the European Commission, providing comprehensive information and support services to researchers, entrepreneurs, universities, and businesses. The website offers job listings, funding opportunities, career development tools, and assistance for living and working in Austria. It is well-positioned in the education and government sectors, targeting researchers and related stakeholders. The platform is free of charge and integrates with a broader EURAXESS network across Europe and worldwide hubs. Technically, the website is built on Drupal 10, leveraging modern web technologies and European Commission web tools. It demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with room for improvement in security headers and explicit incident response information. The site uses Matomo analytics with privacy-conscious configurations. From a security perspective, the site enforces HTTPS and cookie consent mechanisms, but lacks some advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the legitimacy and consistency of the domain with the European Commission's initiative. Overall, EURAXESS Austria presents a trustworthy, professional, and well-maintained platform with strong content quality and privacy compliance. Strategic improvements in security headers and incident response transparency would further enhance its security posture and user trust.

C

CASA Möbel

casa-moebel.at

53

CASA Möbel is a well-established Austrian furniture retailer specializing in indoor and outdoor furniture, offering a broad product range including sofas, chairs, tables, bedroom furniture, and home accessories. The company emphasizes quality, design, and customer service, supported by a large showroom and professional consultation services. Their website reflects a mature digital presence with a modern Drupal 10 CMS and integrated e-commerce capabilities. The site is optimized for mobile devices and provides a seamless user experience with clear navigation and rich content. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and no visible vulnerabilities. Privacy compliance is robust, featuring a comprehensive privacy policy and GDPR-aligned cookie consent. Overall, CASA Möbel presents a trustworthy and professional online presence suitable for their retail business model.

V

Verband Österreichischer Ziegelwerke

ziegel.at

57

The website ziegel.at represents the Verband Österreichischer Ziegelwerke, the Austrian Brick Manufacturers Association, serving as a national industry body advocating for the brick manufacturing sector. The site provides comprehensive information about brick products, technical details, sustainability, and industry news, targeting architects, builders, and stakeholders interested in sustainable construction materials. The business model is that of an industry association focused on information dissemination, advocacy, and member services. Technically, the site is built on Drupal 10 with a modern frontend stack including jQuery and various UI libraries, offering a professional and responsive user experience. Security posture is adequate with HTTPS enforced, but lacks some advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and professional, with minor areas for improvement in security and privacy compliance.

Z

ZinCo GmbH

zinco.de

50

ZinCo GmbH is a German-based manufacturer and provider of green roof systems, fall protection solutions, and solar integration products. The company positions itself as a pioneer and leader in the green roofing industry, offering extensive and intensive green roof systems, retention green roofs, and dachdurchdringungsfreie (penetration-free) fall protection systems. Their website is professionally designed, content-rich, and targets architects, planners, construction professionals, and private customers. The company also offers seminars, planning support, and seminar room rentals, emphasizing sustainability and climate adaptation solutions. Technically, the website is built on Drupal 10 with modern web technologies, providing good mobile optimization, accessibility, and SEO. Security posture is solid with HTTPS and cookie consent mechanisms, though some security best practices like explicit security policies and headers could be improved. Overall, the site is trustworthy, compliant with GDPR, and free of suspicious content.

Z

ZinCo GmbH

zinco-greenroof.com

56

ZinCo GmbH is a well-established German company specializing in the manufacturing and design of green roof systems globally. The company positions itself as an international pioneer with a comprehensive product portfolio and planning tools aimed at architects, builders, and environmental planners. The website is professionally designed using Drupal 10, featuring good mobile optimization, clear navigation, and rich content including case studies and product details. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though improvements such as enabling DNSSEC and additional security headers are recommended. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page. Overall, the site reflects a credible and mature business with a strong market presence in the green roofing sector.

P

PrimaCat vehnätön ja viljaton kissanruoka - aina runsaasti lihaa | PrimaCat

primacat.com

63

PrimaCat is a Finnish brand specializing in wheat-free and grain-free cat food products, emphasizing natural nutrition with high meat content and no added sugars. The website targets cat owners primarily in Finland and neighboring Nordic countries, offering a range of dry and wet cat food, treats, and cat litter. The business model focuses on retail distribution with availability in local stores. Technically, the website is built on Drupal 10, leveraging modern web technologies and integrating analytics and marketing tools such as Matomo and Google Tag Manager. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and policies are absent. WHOIS data is missing, which raises some concerns about domain registration transparency, but the website content and social media presence support legitimacy. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with room for improvement in business credibility and security transparency.

E

Energistics Consortium

energistics.org

65

Energistics Consortium is a well-established organization founded in 2006, specializing in developing and promoting data interoperability standards for the global energy industry. Their website reflects a professional and consistent brand presence, targeting energy sector professionals including operators, service companies, software developers, and regulators. The consortium offers key services such as standards development, certification, developer resources, and educational programs, positioning itself as a critical enabler of digital transformation in upstream energy operations. Technically, the website is built on Drupal 10 with modern libraries like jQuery and Bootstrap, providing a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is basic with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and credible with a strong market position in the energy standards domain.

V

Vantaan kaupunki

vantaa.fi

71

The website www.vantaa.fi is the official municipal portal for the city of Vantaa, Finland, serving over 250,000 residents. It provides comprehensive information about city services, governance, urban planning, events, and citizen participation. The site targets residents, businesses, and stakeholders interested in municipal affairs. Technically, it is built on Drupal 10, employs modern web technologies, and integrates analytics and cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response details are not published. Overall, the site is trustworthy, well-structured, and compliant with GDPR, supporting a positive user experience and public trust.

A

Armacell

armacell-core-foams.com

68

Armacell is a global enterprise specializing in innovative insulation and engineered foam products, serving key sectors such as energy, manufacturing, and transportation. The company emphasizes sustainability, energy efficiency, and advanced materials like aerogel. Their website demonstrates a mature digital presence with a modern Drupal CMS, strong mobile optimization, and comprehensive content. Security posture is solid with HTTPS and CDN protections, though additional security headers and explicit policies could enhance trust. The absence of WHOIS data is a concern but does not outweigh the professional presentation and certifications. Overall, Armacell presents as a credible and established business with room for improved transparency in security and domain registration details.

G

GE Aerospace

geaerospace.com

71

GE Aerospace is a leading global provider of jet and turboprop engines and integrated aircraft systems serving commercial, military, business, and general aviation sectors. The company offers a broad portfolio of propulsion products and services, including engine maintenance and customer support, positioning itself as a key player in the aerospace industry. The website reflects a mature enterprise with comprehensive content targeting industry professionals, investors, and potential employees. Technically, the website is built on Drupal 10 and incorporates modern web technologies such as Google Tag Manager and Evidon for cookie consent, ensuring a responsive and accessible user experience. The site demonstrates good SEO practices, mobile optimization, and accessibility features, contributing to a professional digital presence. From a security perspective, the site enforces HTTPS, employs security headers, and integrates consent mechanisms for privacy compliance. However, it lacks a public vulnerability disclosure policy and incident response contact details, which are recommended for enhanced transparency and security readiness. Overall, the website is trustworthy and professionally maintained, though the absence of WHOIS domain registration data raises questions about domain legitimacy that warrant further verification. Strategic improvements in security disclosure and incident response communication would strengthen the security posture and stakeholder confidence.

T

TRIDO, s.r.o.

trido.cz

56

TRIDO, s.r.o. is a Czech manufacturer specializing in custom garage doors, automatic doors, and industrial door solutions, serving both residential and commercial clients. With over 27 years of market presence, TRIDO positions itself as a reliable and innovative company offering tailored products and professional installation and service. The company maintains a broad network of authorized distributors and service partners across the Czech Republic and Slovakia, enhancing its market reach and customer support capabilities. The website reflects a mature digital presence with comprehensive product information, customer service options, and multimedia content to engage visitors effectively. Technically, the website is built on Drupal 10, leveraging Bootstrap 3.4.5 for responsive design and integrating modern web technologies such as Google Fonts, YouTube embeds, and consent management via Cookiebot. The site demonstrates good mobile optimization and SEO practices, although performance is moderate. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks some advanced security headers and explicit incident response information. From a security and compliance perspective, the site includes privacy and cookie policies with GDPR compliance indicators and provides clear contact information for customer support and service. However, the absence of WHOIS data and lack of explicit security policy or vulnerability disclosure pages slightly reduce trustworthiness. No critical vulnerabilities or adult content were detected, and the site maintains a professional and safe environment for its users. Overall, TRIDO's website is a well-structured, content-rich platform supporting its manufacturing business with a good balance of technical sophistication and user experience. Strategic improvements in security headers and domain registration transparency would further enhance its credibility and security posture.

M

Ministry of Industry and Trade

ris3.cz

48

The RIS3 website is an official government platform managed by the Ministry of Industry and Trade of the Czech Republic, focusing on the national smart specialisation strategy for research and innovation. It serves as a comprehensive resource for stakeholders interested in regional and national innovation priorities, providing strategy documents, news, events, and partner information. The site targets researchers, policymakers, and innovation communities within the Czech Republic and the EU. Technically, the website is built on Drupal 10 with modern JavaScript libraries for calendar and UI components, and it integrates Google Analytics for user tracking. The site is mobile-optimized, accessible, and follows good SEO practices. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms, and secures user login forms, though it lacks explicit published security policies or incident response contacts. WHOIS data is unavailable, likely due to CZ NIC policies, but the domain's .gov.cz TLD and content strongly indicate legitimacy. Overall, the website demonstrates a mature digital presence with good security and privacy compliance, suitable for its governmental function.

B

BUAV

crueltyfreeinternational.org

67

Cruelty Free International is a well-established non-profit organization focused on ending animal suffering in laboratories through advocacy, undercover investigations, and the globally recognized Leaping Bunny cruelty-free certification program. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content aimed at educating the public and encouraging donations and activism. Technically, the site is built on Drupal 10, integrates modern analytics and marketing tools, and implements cookie consent mechanisms aligned with GDPR requirements. Security posture is strong with HTTPS enforced and no obvious vulnerabilities, though some security headers could be explicitly confirmed and a security policy published. Overall, the domain registration data aligns well with the organization's identity, supporting high trustworthiness. The site is safe for general audiences and does not contain any adult or explicit content.

J

Jyväskylän Vuokra-Asunnot - JVA

jva.fi

69

Jyväskylän Vuokra-Asunnot (JVA) is a Finnish rental housing service provider focused on the Jyväskylä region. The website presents a professional and consistent brand image, offering rental housing services primarily to local residents. The business model is centered on public housing rental management, targeting tenants in the Jyväskylä area. The site uses Drupal 10 CMS and integrates modern web technologies including JavaScript and Cloudflare for performance and security. Cookie consent and privacy compliance are well implemented, reflecting GDPR adherence. Security posture is solid with HTTPS and security headers in place, though explicit security and incident response policies are not publicly found. Overall, the website is safe, well-structured, and trustworthy, with moderate user tracking for analytics and marketing purposes.

J

Jyväskylän kaupunginteatteri

jklteatteri.fi

67

Jyväskylän kaupunginteatteri is the official city theatre of Jyväskylä, Finland, providing theatrical and cultural services to the local community. The website is hosted on a modern Drupal 10 CMS platform and integrates trusted third-party services for analytics and marketing, including Google Tag Manager and Trustmary. The site is well-branded and professionally designed, targeting a general audience interested in cultural events. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and a public security policy. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the website reflects a credible municipal cultural institution with room for improvement in transparency and security documentation.

S

Suomen käsityön museo

craftmuseum.fi

65

The website www.craftmuseum.fi represents the Finnish Handicraft Museum, a cultural institution dedicated to showcasing traditional and contemporary handicrafts, including Finnish national costumes. The site targets a general audience including families and cultural enthusiasts, providing exhibition information and educational content. Technically, the site is built on Drupal 10, uses Cloudflare for hosting and security, and integrates a comprehensive GDPR-compliant cookie consent mechanism. The site demonstrates good SEO practices and mobile optimization, although contact information and legal pages like terms of service are limited or absent. Security posture is solid with HTTPS and security headers, but lacks explicit security policy and vulnerability disclosure details. Overall, the domain registration aligns well with the museum's identity, indicating legitimacy and trustworthiness.

J

Jyväskylän seutu

jyvaskylanseutu.fi

66

Jyväskylänseutu.fi is a regional government website serving the Jyväskylä area in Finland, providing residents and visitors with local news, events, and community services. The website is built on Drupal 10, indicating a modern and maintainable technical infrastructure. It employs reputable third-party services for analytics and cookie consent management, ensuring compliance with GDPR and enhancing user privacy. The site demonstrates good mobile optimization and accessibility, contributing to a positive user experience. Security posture is strong with HTTPS enforced and appropriate cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the website is trustworthy and professionally maintained, suitable for its public sector role.

O

Oulun yliopisto

oulu.fi

75

Oulun yliopisto is a large, internationally active research university based in Finland, providing higher education and producing scientific knowledge and solutions. The website reflects a mature digital presence built on Drupal 10, integrating modern analytics and consent management tools such as Google Analytics, Matomo, and CookieInformation. The site is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. Security posture is strong with HTTPS enforced and Cloudflare used for hosting and protection, although explicit security policies and incident response contacts are not published. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the domain registration and website content are consistent and trustworthy, representing a legitimate educational institution.

F

Fondation Restena

my.lu

63

The website my.lu/fr is the official platform managed by Fondation Restena for registering and managing .lu domain names. It offers two modes of domain management: classical paper forms and a modern online platform launched in June 2023. The site targets individuals and organizations in Luxembourg seeking .lu domain services. The business is positioned as the official registrar for .lu domains, providing trusted and secure domain management services. Technically, the site is built on Drupal 10 with modern frontend technologies including lazy loading images and Font Awesome icons. It is mobile optimized and accessible with good SEO practices. Security posture is solid with HTTPS and secure forms, though explicit security headers and policies are not published. Privacy and cookie policies are not found, indicating room for compliance improvement. WHOIS data confirms the legitimacy of the domain and its management by Fondation Restena. Overall, the site is professional, trustworthy, and safe for general audiences.

E

Eurogroup for Animals

eurogroupforanimals.org

49

Eurogroup for Animals is a pan-European non-profit advocacy organization dedicated to improving animal welfare and defending animal interests across Europe. The website serves as a platform to communicate their mission, campaigns, and policy initiatives to a broad audience including NGOs, policymakers, and the general public interested in animal welfare. The organization positions itself as a key voice in European animal advocacy with a focus on policy influence and public awareness. Technically, the website is built on Drupal 10, leveraging modern web technologies including Font Awesome for icons, Google Tag Manager for analytics, and Cookiebot for cookie consent management. The site demonstrates good digital maturity with mobile optimization, accessibility features, and a cookie consent mechanism that complies with GDPR requirements. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS and implements cookie consent with granular user controls. However, explicit security headers like Content-Security-Policy and X-Frame-Options were not detected in the provided data, suggesting an area for improvement. No vulnerabilities or exposed sensitive data were found. The WHOIS data is unavailable or privacy protected, which is typical for non-profit organizations and does not raise immediate concerns. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it would benefit from enhanced security header implementation and clearer contact information. The risk profile is low, with no critical issues detected.