Security Directory

M

Musica sacra

musicasacra.cz

55

Musica sacra is a Czech non-profit organization dedicated to the promotion and enhancement of church liturgical music. Founded in 2006, it offers educational courses for organists, organizes events, publishes newsletters and music, and supports the community of church musicians. The website serves as a hub for information, resources, and event announcements targeting church musicians, choir members, and liturgical music enthusiasts primarily in the Czech Republic. Technically, the website uses a modern tech stack including jQuery, Bootstrap 4.6, FontAwesome, and Owl Carousel, with Cloudflare DNS and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. However, it lacks explicit privacy and cookie policies, which is a compliance gap. From a security perspective, the site enforces HTTPS and uses Cloudflare DNS but does not implement key security headers such as Content-Security-Policy or HSTS. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data is consistent with the website's Czech origin and long-standing presence, supporting legitimacy. Overall, the site is trustworthy and professional but would benefit from improved privacy compliance and enhanced security headers to strengthen its security posture and regulatory adherence.

P

PAY360 Event

pay360event.com

62

PAY360 Event is a professional event organizer specializing in the payments industry, hosting large-scale conferences and exhibitions in London. The website positions PAY360 as the largest dedicated payments event, targeting payment professionals, exhibitors, sponsors, and media. The business model revolves around event management, sponsorship, and exhibition services, with a strong market position in the UK payments ecosystem. Technically, the site is built on WordPress with Elementor, leveraging modern marketing and analytics tools such as HubSpot, Google Analytics, and Matomo. The site uses Cloudflare for DNS and CDN services, enhancing security and performance. Security posture is good with HTTPS enforced and clientTransferProhibited domain status, but could be improved by enabling DNSSEC and publishing explicit security policies. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

S

Stadtgeschichtliches Museum Leipzig

mxm-leipzig.de

40

The website mxm-leipzig.de represents a cultural and educational project by the Stadtgeschichtliches Museum Leipzig, offering an innovative augmented reality experience within the historic Alten Rathaus. It targets museum visitors and culture enthusiasts, providing digital storytelling that enhances the traditional exhibition. The project is well-positioned locally with strong institutional partnerships and funding support. Technically, the site is built on WordPress with modern JavaScript libraries and includes 3D AR content, delivering a good user experience with moderate performance and mobile optimization. Security posture is adequate with HTTPS and no visible vulnerabilities, but lacks advanced security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite Matomo analytics usage. Overall, the site is professional, trustworthy, and content-rich, supporting its non-profit cultural mission.

W

Water Industry Awards

waterindustryawards.co.uk

58

The Water Industry Awards website serves as a professional platform to promote and celebrate excellence within the UK water sector. It is organized by Faversham House and supported by industry partners such as Utility Week. The site provides information about the awards, sponsorship opportunities, past winners, and event details, targeting water industry professionals and stakeholders. The business model centers on event organization and sponsorship revenue, positioning itself as a premier industry event in the UK water sector. Technically, the website leverages modern web technologies including jQuery, Bootstrap, Google Tag Manager, and New Relic for performance monitoring. It is hosted on the Swoogo event management platform, which supports event registration and content management. The site is mobile-optimized with good navigation and accessibility features, although some accessibility aspects could be enhanced. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, reflecting good privacy compliance. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not evident, representing an area for improvement. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data for the domain is unavailable due to a naming rules error, likely caused by querying the 'www' subdomain instead of the root domain, which slightly impacts trust but does not detract from the site's professional presentation. Overall, the website demonstrates a solid digital presence with good content quality, technical implementation, and privacy compliance. Strategic recommendations include enhancing security headers, maintaining third-party script audits, and clarifying domain registration details to improve trustworthiness and security posture.

S

SCM Hänssler

scm-haenssler.de

67

SCM Hänssler operates as a Christian-focused e-commerce retailer specializing in books, music, and related products. The website serves a German-speaking audience with a broad catalog of Christian literature and media, positioning itself as a trusted provider within this niche. The business model centers on online retail with a strong emphasis on customer service and compliance with European data protection regulations. Technically, the site is built on the Magento platform, leveraging modern web technologies and analytics tools such as Google Analytics and Matomo. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

B

buff.rocks GmbH

buff.rocks

54

buff.rocks GmbH is a German advertising and digital agency based in Magdeburg, specializing in creative strategy, design, TYPO3 CMS web projects, campaigns, content marketing, hosting, and digital transformation services. The company positions itself as a regional expert with over 20 years of TYPO3 experience and is part of the +Pluswerk network, enhancing its market credibility. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive service descriptions, targeting businesses and organizations seeking digital agency services. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as Splide.js for carousels and Matomo for analytics, with a cookie consent mechanism in place. The site demonstrates good SEO and accessibility practices, with structured data markup enhancing search engine understanding. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. The WHOIS data is incomplete and malformed, limiting domain registration transparency and trust verification. Despite this, the website content, customer testimonials, and external trust signals such as ProvenExpert reviews and industry memberships support the legitimacy of the business. No adult or questionable content is present, making the site safe for general audiences. Overall, buff.rocks GmbH presents a credible, professional digital agency with a strong regional presence and modern technical infrastructure. Improvements in domain registration transparency and explicit security documentation would further enhance trust and compliance.

S

Startup Port

startupport.de

37

Startup Port is a regional startup support organization focused on qualifying, networking, and promoting technology and knowledge-based startups in the Hamburg metropolitan region and neighboring German states. It aggregates support offerings from ten universities and research institutions, targeting students, researchers, graduates, and startups. The website is built on WordPress with Elementor and uses privacy-conscious Matomo analytics. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers and cookie consent mechanisms are missing. The domain registration is consistent with the business purpose, though WHOIS details are minimal. Overall, the site presents a professional, trustworthy, and well-structured platform for startup support.

W

Westsächsische Hochschule Zwickau

whz.de

68

The Westsächsische Hochschule Zwickau is a regional university of applied sciences in Germany offering a broad range of study programs in technology, economics, and quality of life disciplines. The website serves students, prospective students, alumni, and international visitors with detailed information about study offerings, research, and campus life. The institution positions itself as a practical and accessible higher education provider with a strong regional and international profile. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as jQuery and Swiper, and integrates Matomo for analytics. The site demonstrates good mobile optimization, accessibility features including visual aids, and a comprehensive navigation structure. Hosting appears to be managed by academic or regional providers, consistent with the institution's profile. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not publicly detailed, and security headers are not evident. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its educational mission effectively. Strategic improvements in security transparency and header implementation could further enhance its posture.

P

Pfarrbriefservice.de

pfarrbriefservice.de

47

Pfarrbriefservice.de is a specialized website serving the German-speaking church community by providing resources for church newsletters and public relations. The site offers images, texts, advice, and a newsletter subscription service, positioning itself as a trusted non-profit resource in this niche. The business operates with clear contact information and maintains a consistent brand presence, targeting church public relations professionals and volunteers. Technically, the website is built on Drupal 10, leveraging modern libraries such as Matomo for privacy-conscious analytics and Bootstrap for responsive design. Hosting is provided by webhosting-franken.de, and the site demonstrates good mobile optimization and basic accessibility features. Performance is moderate, with room for improvement in SEO and accessibility. From a security perspective, the site enforces HTTPS and disables cookies in Matomo to enhance privacy. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a comprehensive privacy policy and GDPR adherence, though a cookie consent mechanism is absent. Overall, the website is trustworthy, professionally maintained, and well-aligned with its mission. It poses low risk but could benefit from enhanced security practices and transparency regarding incident response and terms of service.

D

DigitalPA

segnalazioni.net

68

The website www.segnalazioni.net represents DigitalPA, a company offering whistleblowing software solutions tailored for public administration and private companies in Italy. The software is designed to comply with Italian laws (Legge 179/2017 and Legge 231/2001) and EU directives, emphasizing anonymity protection and regulatory compliance. The site positions itself as a specialized provider in the whistleblowing software market, targeting organizations needing lawful and secure illicit reporting tools. Technically, the website is built on WordPress with the Avada theme and integrates modern tools such as Yoast SEO, Google reCAPTCHA Enterprise, and Matomo Analytics, indicating a moderate level of digital maturity and focus on SEO and user interaction. Security-wise, the site enforces HTTPS and uses reCAPTCHA for form protection, but lacks visible security headers and explicit security policies, which could be improved. The absence of WHOIS registration data for the domain is a notable concern, potentially impacting trust and legitimacy perceptions. Overall, the site is professional and functional but would benefit from enhanced transparency and security disclosures.

E

ERTICO

ertico.com

56

ERTICO is a well-established European partnership organization specializing in Intelligent Transport Systems (ITS) and smart mobility innovation. The website reflects a mature digital presence with a focus on collaboration, European projects, and industry events. The technical infrastructure is based on Drupal CMS with modern libraries such as Swiper.js and Matomo analytics, indicating a balanced approach to performance and privacy. Security posture is generally good with HTTPS enabled and domain registration protections in place, though improvements are recommended in security headers and explicit security policies. Privacy compliance is partially addressed through cookie consent mechanisms but lacks a visible privacy policy and terms of service. Overall, the website is professional, trustworthy, and safe for general audiences.

E

ERTICO - ITS Europe

itsworldcongress.com

54

The ITS World Congress Birmingham 2027 website represents a major international event organized by ERTICO - ITS Europe, focusing on intelligent transport systems and mobility innovation. The event targets a global audience of industry experts, exhibitors, and partners, offering extensive networking, exhibition, and knowledge-sharing opportunities. The website is professionally designed with clear branding, comprehensive event details, and calls to action for participation and partnership. Technically, the site is built on Drupal CMS with modern JavaScript libraries such as Swiper.js and jQuery, and integrates Matomo analytics and Mailchimp for marketing and user engagement. The site is mobile optimized and accessible, with good SEO practices and a cookie consent mechanism compliant with GDPR. Security-wise, the site uses HTTPS and implements cookie consent but lacks visible security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data for the subdomain is missing, which is typical for subdomains but slightly reduces trustworthiness. Overall, the site demonstrates a strong security posture with room for improvement in security headers and incident response transparency. The overall risk is low, with recommendations to enhance security headers, publish security policies, and consider a security.txt file to improve trust and compliance. The site is safe, professional, and trustworthy for its intended audience.

G

Glow Space z. s.

glowspace.cz

52

Glow Space z. s. is a Czech non-profit digital community focused on developing and supporting Christian open-source applications and projects. The organization positions itself as an alliance of Christian digital projects, targeting developers, users, and supporters within the Christian digital ecosystem. Their business model revolves around community collaboration, open-source software development, and fundraising through donation platforms. The website reflects a niche market position with a clear focus on Christian digital initiatives and community engagement. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Fontello icons, Owl Carousel, and Matomo analytics. It is hosted with a reputable registrar (REG-WEDOS) and uses Cloudflare DNS services. The site is mobile-optimized and uses HTTPS with a good SSL configuration. However, accessibility and SEO optimizations are basic, and no major CMS is detected beyond the IS OMNIA system for parish management. From a security perspective, the site enforces HTTPS and uses Cloudflare DNS, which are positive indicators. However, it lacks security headers such as Content-Security-Policy and X-Frame-Options. There is no visible privacy or cookie policy, nor is there a published security policy or incident response contact information. The use of Matomo analytics indicates moderate user tracking without explicit consent mechanisms, which may pose compliance risks under GDPR. Overall, the website is professionally designed and trustworthy, with good content quality and clear business information. The main risks relate to privacy compliance gaps and missing security headers. Strategic improvements in these areas would enhance the site's security posture and regulatory compliance.

J

Jubileum 2025

jubileum2025.cz

58

The Jubileum 2025 website serves as an informational and community platform dedicated to the religious event of the Jubilee year 2025 and its preparatory year 2024. It provides visitors with detailed information about the jubilee, including official documents, prayers, hymns, news updates, and event galleries. The site targets religious communities, pilgrims, and the general public interested in the jubilee celebrations, positioning itself as a niche, non-profit event website with official church backing. Technically, the website employs a modern but straightforward technology stack including jQuery, Bootstrap 4.6.1, Fontello icons, Owl Carousel, and Matomo analytics for user tracking. It is hosted behind Cloudflare DNS and likely uses Cloudflare CDN services. The site is mobile-optimized with good navigation and design quality, though accessibility features are basic. The CMS powering the site is IS OMNIA, a system for parish management. From a security perspective, the site uses HTTPS with a good SSL configuration and no visible exposed sensitive data. However, it lacks explicit security headers such as Content-Security-Policy and HSTS, which could improve its security posture. Privacy compliance is weak due to the absence of privacy and cookie policies and no consent mechanism, which is a notable gap given GDPR requirements. Contact information is limited to a contact form without explicit emails or phone numbers. No incident response or vulnerability disclosure information is provided. Overall, the website is trustworthy and professionally presented with a clear purpose and consistent branding. The domain registration is recent but appropriate for the event timeline, and no suspicious patterns are detected. Strategic improvements in privacy compliance and security headers would enhance the site's security and trustworthiness.

I

IT2GO s.r.o.

farnost.cz

60

The website farnost.cz represents IS OMNIA, a specialized modular information system designed for parish management in the Czech Republic. The platform offers a web module for parish websites, mobile applications for priests and parishioners, and integrated management features such as mass intentions and schedules. The business is operated by IT2GO s.r.o., a small Czech company with a domain age dating back to 2000, indicating established presence and experience in this niche market. The site is professionally designed with clear navigation and consistent branding, targeting parish communities and clergy. Technically, the website employs modern web technologies including Bootstrap, jQuery, and Matomo analytics, hosted with WEDOS and using Cloudflare DNS services. The site is mobile-optimized and provides a good user experience, though accessibility features are basic. Performance is moderate, and SEO practices are basic but adequate for the target audience. From a security perspective, the site uses HTTPS (implied by Cloudflare DNS and modern setup), includes CAPTCHA on its contact form to prevent spam, and uses Matomo for analytics to reduce privacy concerns. However, no explicit security headers were detected in the provided data, and no cookie consent mechanism is present despite analytics usage. There is no published incident response or security policy, and no direct contact emails or phone numbers are provided, which could limit user trust and support responsiveness. Overall, the website is safe, professional, and trustworthy for its intended audience, with room for improvement in security headers, privacy compliance, and contact transparency. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic enhancements in security posture and privacy practices would further strengthen the platform's credibility and compliance.

B

Bistum Aachen

gottesdienste-im-bistum-aachen.de

57

The website 'Gottesdienste im Bistum Aachen' serves as an official platform for the Diocese of Aachen, Germany, providing comprehensive information about church services within the diocese. It offers users the ability to search for services by location and date, focusing on the upcoming two weeks, and includes additional information about parishes and church buildings. The site is clearly targeted at residents and visitors interested in religious services in the region, positioning itself as a trusted community resource within the non-profit religious sector. Technically, the website is built on the OpenCms content management system and employs modern JavaScript libraries such as Slick Slider for UI elements and Matomo for privacy-conscious analytics. The site is hosted on domains associated with the Diocese of Aachen, ensuring alignment between hosting and organizational identity. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and includes a GDPR-compliant cookie consent banner. However, it lacks explicit security headers and does not provide visible security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, showing consistent registration and no privacy protection, which is appropriate for this type of organization. Overall, the website demonstrates a solid security posture and good privacy compliance, with a trustworthy and professional presentation. Strategic improvements could include adding security headers, publishing a security policy, and providing incident response contacts to enhance transparency and security readiness.

L

Landkreis Wittenberg

landkreis-wittenberg.de

57

Landkreis Wittenberg operates a regional government website providing citizens and businesses with access to public administration information, online services, and local news. The site is well-structured, uses modern WordPress technologies including Elementor and Yoast SEO, and integrates a service portal for digital applications. The technical infrastructure is solid, hosted on Schlund Technologies with HTTPS and cookie consent mechanisms in place. Security posture is good with no visible vulnerabilities, though explicit security headers and policies could be improved. Privacy compliance is moderate due to lack of explicit privacy and terms pages in the provided content. Overall, the website is trustworthy, professional, and serves its public sector role effectively.

V

VWI Verband Deutscher Wirtschaftsingenieure e.V.

vwi.org

48

The VWI Verband Deutscher Wirtschaftsingenieure e.V. is a well-established professional association representing Wirtschaftsingenieure (industrial engineers) in the German-speaking region. With over 6,000 members, 20 regional groups, and 40 university groups, the association focuses on personal networking, quality education, and political advocacy for its members. The website serves as an information hub for members and interested parties, presenting a professional and consistent brand image. Technically, the website is built on WordPress, utilizing popular plugins such as LayerSlider and WPBakery Page Builder. It employs Matomo for analytics and Cookiebot for cookie consent management, reflecting a moderate level of digital maturity and compliance with privacy regulations. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and implements cookie consent with granular user controls. However, it lacks DNSSEC and security headers, which are recommended for enhanced protection. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms a long-standing domain registration consistent with the association's history, enhancing trustworthiness. Overall, the website presents a low-risk profile with good business credibility and privacy compliance. Strategic improvements in security headers, explicit privacy and security policies, and clearer contact information would further strengthen its posture.

B

big. bechtold-gruppe

big-gruppe.com

63

big. bechtold-gruppe is a well-established German family-owned service provider specializing in integrated facility, engineering, and security services. Founded in 1981 and employing over 3,000 people, the company offers a broad portfolio including engineering services, facility management, security services, and smart services. Their market position is strong within Germany, targeting businesses and organizations requiring comprehensive building-related services. The website reflects a professional and consistent brand image with clear navigation and detailed service descriptions. Technically, the website is built on WordPress with Elementor, leveraging modern web technologies and privacy-conscious analytics tools like Matomo. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital presence. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, the WHOIS data for the domain is missing, which raises concerns about domain registration transparency and legitimacy. This discrepancy between the professional website and missing domain registration data suggests a need for further verification. Overall, the site presents a low risk but would benefit from improved domain registration transparency and enhanced security headers. Strategic recommendations include implementing comprehensive security headers, publishing a security policy and incident response contacts, and verifying domain registration details to enhance trust.

PILA MARTINICE s.r.o., operating under the brand MARTINICE GROUP, is a Czech company specializing in turnkey wooden buildings including family houses, halls, roofs, and photovoltaic installations. With over 20 years of experience since 1997, the company positions itself as a reliable regional manufacturer and construction service provider offering high precision and a 25-year warranty on their wooden construction systems. Their target audience includes individuals and businesses seeking quality wooden buildings with modern technology and flexible project options. Technically, the website is built on a custom CMS (IPO CMS) and uses modern JavaScript libraries such as jQuery, Google Tag Manager, Facebook Pixel, and Matomo for analytics. The site is mobile-optimized and employs HTTPS with reCAPTCHA for form security. However, it lacks some security headers and a published privacy policy, which are areas for improvement. From a security perspective, the site demonstrates good practices like HTTPS enforcement and cookie consent mechanisms but lacks explicit security policies, incident response contacts, and vulnerability disclosure information. The absence of WHOIS data for the domain is a notable concern, impacting the overall trustworthiness assessment. Overall, the website is professional, content-rich, and trustworthy from a business perspective but would benefit from enhanced transparency in privacy and security policies and improved domain registration visibility.

H

Hub3E by Linkpart

hub3e.com

10

Hub3E by Linkpart is a specialized software platform designed for apprenticeship training centers (CFA) and educational institutions in France. It offers a comprehensive solution to centralize candidate management, automate administrative tasks, and optimize placement processes. The platform leverages AI for intelligent matching and provides real-time performance dashboards, enhancing operational efficiency for its users. The website is professionally designed using WordPress with Elementor and Yoast SEO, indicating a mature digital presence. Analytics are implemented via Matomo and Google Analytics, balancing tracking with privacy considerations. Security posture is good with HTTPS enforced, though explicit security headers and privacy policies are lacking. WHOIS data is missing, which slightly reduces trust but the professional presentation and client testimonials support legitimacy. Overall, Hub3E presents as a credible and specialized SaaS provider in the education technology sector.

B

buff.rocks GmbH

weihnachtsmarkt-magdeburg.de

45

The website www.weihnachtsmarkt-magdeburg.de serves as the official online presence for the Magdeburger Weihnachtsmarkt, a prominent seasonal Christmas market event in Magdeburg, Germany. It provides visitors with detailed information about the event dates, attractions, and highlights such as the Riesenrad and the Magdeburger Lichterwelt. The site targets a broad audience including families and tourists interested in cultural and festive experiences. The business model centers on event promotion and tourism enhancement within the hospitality sector. Technically, the site is built on TYPO3 CMS, leveraging modern JavaScript libraries and Matomo for analytics, with GDPR-compliant cookie consent implemented via Klaro. The site is mobile-optimized and well-structured, offering a good user experience with clear navigation and relevant content.

L

Luthers Hochzeit

lutherhochzeit.de

48

Luthers Hochzeit is a cultural event website dedicated to promoting a historic city festival in Lutherstadt Wittenberg, Germany. The festival celebrates the medieval heritage and the Reformation anniversary, targeting tourists and history enthusiasts. The website is well-branded and consistent with its regional cultural focus, providing relevant event information and engaging visitors with multimedia content. Technically, the site is built on Craft CMS and uses modern JavaScript libraries such as Splide.js for sliders, with Matomo analytics for visitor tracking. The site is mobile-optimized and includes accessibility features, though some improvements could be made. Security-wise, the website enforces HTTPS, uses security headers, and implements CSRF protection in forms. Cookie consent is properly managed, reflecting GDPR compliance. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent, which could be improved to enhance trust and compliance. Overall, the website is professional, secure, and trustworthy for its purpose, with a moderate to good digital maturity level.

Equitana Hotel Resort is a Czech Republic based wellness hotel and equestrian resort offering accommodation, spa, restaurant, and corporate event services. The website is professionally designed, mobile responsive, and provides clear navigation and contact information. The technical infrastructure relies on jQuery, Google Analytics, Facebook Pixel, and a proprietary CMS (IPO). Security posture is good with HTTPS and CAPTCHA usage, but lacks some security headers and explicit privacy policy documentation. The WHOIS data is unavailable publicly, indicating privacy protection, which is common and justified for this business type. Overall, the website presents a trustworthy and professional hospitality business with moderate digital maturity.

The website www.ceskyskokovypohar.cz represents the Asociace Český skokový pohár,o.s., an organizer and promoter of the largest Czech equestrian show jumping event series. The site provides comprehensive information about the competition schedule, results, online TV streaming, and rankings, targeting a general audience interested in equestrian sports. The business model focuses on event organization and community engagement within the Czech equestrian sports sector. Technically, the website uses a custom CMS (IPO by ANTEE s.r.o.) with a technology stack including jQuery, jQuery UI, Google reCAPTCHA, and Matomo analytics. The site is mobile responsive and employs HTTPS with good SSL configuration. However, some JavaScript libraries are outdated, and security headers are not detected, indicating room for improvement in security hardening. From a security perspective, the site demonstrates awareness of privacy through cookie consent and use of privacy-respecting analytics. However, the absence of a published privacy policy, terms of service, and WHOIS data limits full trust assessment. No critical vulnerabilities or adult content were detected, and the site appears safe for general audiences. Overall, the website is functional, professional, and serves its niche well but would benefit from enhanced transparency, updated security practices, and improved compliance documentation to strengthen trust and security posture.

K

Katholische Kirche

akademie-bistum-aachen.de

57

The Bischöfliche Akademie des Bistums Aachen is a well-established educational and cultural institution affiliated with the Catholic Church in Germany. It offers a broad range of workshops, seminars, and events focused on politics, society, theology, ethics, culture, and digital topics, targeting a diverse audience interested in societal discourse and faith-based dialogue. The institution also provides facilities for conferences and guest accommodations, supporting its educational mission. Technically, the website is built on the Alkacon Mercury CMS platform, employs modern web technologies, and integrates Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms but lacks publicly available security policies or incident response contacts, which could be improved. Overall, the domain registration and hosting align with the institution's identity, indicating legitimacy and trustworthiness.

D

Deutsches Studentenwerk

studentenwerke.de

64

The Deutsches Studentenwerk (DSW) website serves as the central portal for student services in Germany, offering comprehensive information on financing, housing, counseling, and cultural activities for students. The site targets students, educational institutions, and stakeholders within the German higher education system. The organization operates as a large non-profit entity with a strong market position in the education sector. Technically, the website is built on TYPO3 CMS with modern front-end technologies and is hosted behind Cloudflare for performance and security. Privacy compliance is demonstrated through the use of Cookiebot for cookie consent and Matomo for analytics, reflecting a privacy-conscious approach. However, explicit privacy policies and terms of service are not clearly found in the provided content, which could be improved. Security posture is good with HTTPS enforced, but additional security headers and a published security policy would enhance trust. Overall, the website is professional, accessible, and trustworthy, with moderate tracking and good user experience.

W

Westsächsische Hochschule Zwickau

fh-zwickau.de

68

Westsächsische Hochschule Zwickau is a regional German university of applied sciences offering a broad range of technical, economic, and life quality related academic programs. The institution targets students, prospective students, alumni, and international participants, providing comprehensive study options including bachelor, master, dual study programs, and extensive research activities. The website reflects a mature digital presence built on TYPO3 CMS, integrating modern JavaScript libraries and analytics tools such as Matomo. It demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though explicit security and incident response policies are not publicly detailed. WHOIS data aligns well with the institution's identity, reinforcing legitimacy. Overall, the site is professional, trustworthy, and well-suited for its educational mission.

I

IT2GO s.r.o.

it2go.cz

60

IT2GO s.r.o. is a Czech Republic-based small technology company specializing in IT solutions for church communities, including parish management systems and websites. Founded in 2020, the company emphasizes user-friendly software that bridges traditional and modern approaches for church organizations. Their market position is niche but well-defined, focusing on accessible church IT services. Technically, the website employs modern JavaScript libraries and analytics tools like Matomo, hosted behind Cloudflare for performance and security. The site is well-designed with good navigation and mobile optimization but lacks some advanced accessibility features. Security posture is adequate with HTTPS and Cloudflare protection, though missing security headers and anti-bot measures on forms are notable gaps. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in privacy compliance and security hardening would enhance trust and compliance.

T

Teo via nadační fond

teovia.cz

58

Teo via nadační fond is a Czech non-profit foundation established in 2021, dedicated to supporting church congregations, parishes, and Christian organizations through sustainable financing and community support. The foundation aims to empower clergy by providing financial and organizational assistance, promoting active lay participation in church life. The website reflects a focused mission with clear content and a professional design tailored to its target audience of church communities and supporters. Technically, the site uses modern frontend technologies including jQuery, Bootstrap, and Matomo analytics, hosted under a Czech registrar consistent with its origin. Security posture is adequate with HTTPS and no visible vulnerabilities, though it lacks some security headers and formal privacy and cookie policies, which are compliance gaps. Overall, the domain registration and website content are consistent and trustworthy, supporting the foundation's legitimacy.

Ř

Římskokatolická farnost sv. Filipa a Jakuba Zlín

farnostzlin.cz

57

Římskokatolická farnost sv. Filipa a Jakuba Zlín is a well-established Roman Catholic parish serving the Zlín community in the Czech Republic. The website provides comprehensive information about religious services, sacraments, educational programs, community events, and pastoral care. It targets local parishioners and those interested in Catholic faith activities. The parish operates as a non-profit organization with a clear focus on community engagement and spiritual support. The domain has been active since 2006, reflecting a stable presence in the region. Technically, the website uses a modern tech stack including jQuery, Bootstrap, FontAwesome, and Google Fonts, supported by a custom CMS platform (IS OMNIA) tailored for church management. Hosting and DNS services are provided by Wedos and Cloudflare, ensuring good SSL configuration and moderate performance. The site is mobile-optimized and offers multimedia content including live streams and social media integration. From a security perspective, the site enforces HTTPS and uses Cloudflare DNS but lacks some advanced security headers and a cookie consent mechanism, which are important for GDPR compliance. No incident response or vulnerability disclosure information is published. Analytics are handled via Matomo, providing moderate user tracking with basic privacy compliance. Overall, the website is professional, trustworthy, and well-suited for its community role. However, improvements in privacy compliance and security policies are recommended to enhance user trust and regulatory adherence.

E

ERTICO - ITS Europe

itseuropeancongress.com

54

The website represents a professional and well-structured event platform for the 17th ITS European Congress 2026 in Istanbul, focusing on Intelligent Transport Systems and smart mobility. It targets industry professionals, exhibitors, speakers, and partners, providing comprehensive event information and participation opportunities. The technical infrastructure is based on Drupal CMS with modern JavaScript libraries and Matomo analytics, indicating a mature digital presence. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks explicit security headers and published privacy policies. The absence of WHOIS data for the domain raises concerns about domain legitimacy, though the website content and branding suggest a legitimate business operation. Overall, the site is safe, professional, and well-optimized for users, but would benefit from enhanced transparency and security documentation.

The Deutscher Bibliotheksverband e.V. is a prominent non-profit association representing over 2,000 members and more than 9,000 libraries across Germany. The organization focuses on strengthening libraries to ensure free access to media and information for all citizens. Their website reflects a mature digital presence with comprehensive content, including news, events, thematic areas, and educational offerings. Technically, the site employs modern web technologies such as React, Drupal CMS, Matomo analytics, and Google reCAPTCHA for security. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-optimized for users and search engines.

L

Landkreis Wesermarsch

landkreis-wesermarsch.de

49

Landkreis Wesermarsch operates as a regional government authority in Germany, providing a broad range of public services including administration, health, education, social welfare, environment, and cultural affairs. The website serves residents and visitors with comprehensive information and service portals, reflecting a well-established public sector entity. The site is positioned as an official government resource with a clear focus on accessibility and citizen engagement. Technically, the website is built on WordPress using the Avada theme and integrates several plugins for SEO, analytics (Matomo), cookie consent (Complianz), and content protection (Passster). The infrastructure supports modern web standards with responsive design and accessibility features, although hosting details are not explicitly disclosed. Performance is moderate with good SEO and accessibility optimizations. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place. However, some improvements are recommended such as implementing a Content-Security-Policy header, publishing a security.txt file, and providing incident response contact details. No critical vulnerabilities or exposures were detected in the visible content. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. It effectively supports the government’s mission to provide transparent and accessible services to its constituency.

K

Kampanile

kampanile.de

41

Kampanile is a small creative communication agency based in Münster, Germany, specializing in strategy, corporate design, editorial design, web design, and audio-visual services. The agency targets clients who value sustainability, authenticity, and social engagement, with a strong focus on churches, associations, and educational institutions. Their website is built on TYPO3 CMS and uses Matomo for analytics, reflecting a moderate level of digital maturity and privacy awareness. The site is well-designed, mobile-optimized, and accessible, providing a professional user experience. Security posture is adequate with HTTPS assumed, but lacks advanced security headers and cookie consent mechanisms. No forms are present on the main page, reducing attack vectors. WHOIS data is minimal but consistent with the business location and hosting provider. Overall, the website is trustworthy and professionally maintained, though improvements in privacy compliance and security best practices are recommended.

I

Icam

icam.fr

55

Icam is a well-established French engineering school with multiple campuses across France and internationally. It offers a broad range of engineering education programs including initial engineering cycles, professional training, and specialized master's degrees. The institution maintains strong partnerships with industry and international universities, enhancing its market position and educational quality. Technically, the website is built on WordPress with modern analytics and consent management tools, reflecting a mature digital infrastructure. Security posture is good with HTTPS and consent mechanisms in place, though some HTTP security headers could be improved. Overall, the domain appears legitimate despite lack of public WHOIS data, consistent with privacy norms for .fr domains. The website is professional, accessible, and compliant with GDPR, supporting a high trust level.

A

Artefact

artefact-groupe.fr

62

Artefact is a well-established French technology group founded in 1991, operating primarily in digital agency services, datacenter hosting, and network operations. The company serves businesses and public sector clients, offering a comprehensive suite of IT and digital solutions through its three main subsidiaries: Artefact (digital agency), ArteOne (datacenter and IT services), and ArteWan (network operator). The website reflects a mature digital presence with professional design, clear navigation, and strong branding consistency. Technical infrastructure leverages WordPress CMS with modern frameworks like Yootheme and Uikit, and privacy-respecting analytics via Matomo. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit security policies are absent. WHOIS data is unavailable, which slightly impacts trust but is mitigated by the professional and transparent website content. Overall, Artefact presents as a credible and established player in the regional technology market.

A

ARTEFACT GROUPE

arteone.fr

63

Arteone is a regional datacenter and IT services provider based in Brive, France, operating under the Artefact Groupe umbrella. The company offers a comprehensive suite of IT infrastructure services including private cloud hosting, backup solutions, disaster recovery (PRA/PCA), and managed IT services. Arteone positions itself as a trusted regional leader with a strong focus on data security and proximity to its clients. The website reflects a mature digital presence with professional design, clear navigation, and detailed service descriptions. Technically, the site leverages WordPress CMS, UKit framework, and privacy-focused analytics via Matomo, indicating a modern and privacy-conscious infrastructure. Security posture is generally good with HTTPS and cookie consent mechanisms in place, though the absence of explicit security headers and lack of published security policies or incident response contacts suggest areas for improvement. The WHOIS data is unavailable, which slightly impacts trust but is mitigated by the professional and consistent business presentation. Overall, Arteone demonstrates a solid business and technical foundation with room to enhance security transparency and WHOIS data availability.

L

Lichterwelt Magdeburg – Eröffnung am 20. November 2025

lichterwelt-magdeburg.de

43

The website www.lichterwelt-magdeburg.de serves as the official online presence for the Lichterwelt Magdeburg, a large-scale public Christmas and winter lighting event in Magdeburg, Germany. The event features over a million LEDs illuminating the city with artistic light installations, free to the public from November 20, 2025, to February 2, 2026. The site targets local residents and tourists interested in cultural and festive events, providing event details, highlights, maps, and social media links. The business model focuses on event promotion and enhancing regional tourism appeal. Technically, the website is built on TYPO3 CMS, employing modern web standards including responsive design, optimized images, and JavaScript-based interactive elements such as countdown timers and image galleries. It integrates Matomo Analytics and Facebook Pixel for visitor tracking, alongside a GDPR-compliant cookie consent mechanism powered by Klaro. The site demonstrates good mobile optimization and SEO practices but lacks explicit security headers and detailed security or incident response policies. From a security perspective, the site uses HTTPS and implements cookie consent, indicating awareness of privacy regulations. However, no explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are present. No forms collecting personal data were detected, reducing immediate data protection risks. The WHOIS data shows a legitimate domain setup with UI-DNS name servers and no privacy protection masking, consistent with the event's public nature. Overall, the website is professionally designed and trustworthy, with moderate technical sophistication and good privacy compliance. The absence of contact emails or phone numbers is a minor limitation for direct communication. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and providing clearer contact information to improve trust and compliance.

E

Eurométropole de Strasbourg

destination-meinau.eu

47

Destination Meinau is a public infrastructure project website managed by the Eurométropole de Strasbourg, focused on the renovation and expansion of the Meinau stadium. The site serves as an information hub for residents, visitors, and stakeholders, providing updates on construction progress and project details. The project is positioned as an ecological and community-oriented initiative with strong regional support. Technically, the website is built on WordPress, leveraging modern SEO and privacy tools such as Yoast SEO and Matomo analytics, hosted by OVH SAS. The site demonstrates good digital maturity with mobile optimization and GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are absent. Overall, the website is trustworthy, professional, and well-aligned with its public sector mission.

P

Planigy

planigy-par-es.fr

56

Planigy par ES is a commercial brand under the parent company ÉS Énergies Strasbourg S.A., specializing in renewable energy solutions focused on photovoltaic solar panels and electric vehicle charging infrastructure in the Alsace region of France. The company targets residential, professional, agricultural, and municipal customers, positioning itself as a trusted local expert with a strong track record of over 2500 installations since 2007. The website reflects a professional and modern digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site is built on WordPress with modern technologies including React components and Matomo analytics, optimized for mobile and SEO. Security posture is good with HTTPS and consent management implemented, though some security headers and explicit security policies are absent. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

A

Artefact

artefact.fr

66

Artefact is a well-established French technology group founded in 1991, specializing in digital agency services, datacenter hosting, IT services, and network operations. The company operates through three complementary business units: Artefact (digital agency), Arteone (datacenter and IT services), and Artewan (network operator). Their market position is strong regionally in the South-West of France, serving businesses and public sector clients with a comprehensive portfolio of digital and IT infrastructure solutions. The website reflects a professional and mature business with clear branding and client testimonials.

C

Collectivité européenne d'Alsace

bas-rhin.fr

68

The Collectivité européenne d'Alsace (CeA) is a regional government entity serving the Alsace region in France. The website provides comprehensive information about public services, social aid, cultural events, transport, environment, and citizen engagement initiatives. It targets residents, professionals, and associations within the region, positioning itself as the authoritative source for regional governance and services. The business model is governmental, focusing on public administration and community support. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with integration of FontAwesome icons and the OreJime library for cookie consent management. Matomo analytics is used for user tracking, indicating a moderate level of digital maturity. The site is mobile-optimized and accessible, with good SEO practices and structured data enhancing search engine visibility. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers such as Content-Security-Policy or X-Frame-Options, which could be improved. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical for government domains, and no suspicious patterns were found. Overall, the security posture is solid but could benefit from additional header configurations and a published security policy. The overall risk assessment is low, with a trustworthy and professional web presence that aligns with the organization's public service mission. Strategic recommendations include enhancing security headers, publishing a security policy or incident response contact, and adding a vulnerability disclosure mechanism to further strengthen trust and compliance.

F

Fondation ICAM

fondation-feron-vrau-icam.fr

53

The Fondation Feron-Vrau is a well-established non-profit foundation based in France, dedicated to supporting students of the Icam engineering school through financing honor loans and backing educational and campus development projects. With over 40 years of history, it plays a critical role in fostering solidarity and diversity within the Icam community. The website reflects a professional and consistent brand image, targeting students, alumni, donors, and educational partners. Technically, the site is built on WordPress with modern libraries and analytics tools, showing good digital maturity and mobile optimization. Security posture is strong with HTTPS and consent management, though some security headers and explicit policies could be enhanced. Overall, the foundation's online presence is trustworthy and compliant with GDPR, supporting its mission effectively.

Krajské sdružení NS MAS Středočeského kraje z.s. is a non-profit regional association that unites 29 local action groups within the Central Bohemia region of the Czech Republic. It serves as the largest regional network of such groups in the country, facilitating cooperation, organizing meetings, and sharing experiences among its members. The website provides information about the association's activities, events calendar, photo galleries, and contact details, targeting local groups and stakeholders in the region. Technically, the website is built on the IPO CMS platform, utilizing jQuery, jQuery UI, Owl Carousel, Google reCAPTCHA, and Matomo analytics for tracking. The site is mobile responsive and implements cookie consent mechanisms, indicating a moderate level of digital maturity. However, some JavaScript libraries are outdated, and security headers are not explicitly detected, suggesting room for technical improvements. From a security perspective, the site uses HTTPS and includes reCAPTCHA for form protection, but lacks visible security headers and explicit security or incident response policies. The absence of WHOIS data limits domain trust assessment, although the website content and contact information appear professional and legitimate. No vulnerabilities or malicious content were detected. Overall, the website presents a trustworthy and professional front for a regional non-profit association but would benefit from enhanced security practices, updated technical components, and improved transparency in domain registration and policies.

P

plehn media

website-tracking.com

54

Website Tracking is a specialized service provider focused on delivering GDPR-compliant website analytics and tracking solutions, primarily targeting website operators and marketers in Germany and Europe. The company emphasizes privacy, data protection, and compliance with EU regulations, offering services such as Matomo hosting and TYPO3 plugins. The website is built on TYPO3 CMS and integrates Matomo analytics with cookie-less tracking to enhance user privacy. The technical infrastructure is modern and well-implemented, with ISO 27001 certification and data storage exclusively in Germany, reinforcing trust and compliance. Security posture is solid, though improvements in security headers and incident response transparency are recommended. The absence of WHOIS registration data reduces domain trustworthiness, suggesting the need for verification of domain legitimacy. Overall, the website is professional, well-designed, and trustworthy, with a strong focus on privacy and compliance.

L

leanact GmbH

leanact.de

38

leanact GmbH is a German-based company specializing in software solutions for digital citizen participation and e-participation targeted at municipalities and public institutions. Founded in 2017, the company positions itself as a niche provider supporting efficient IT process implementation in local governments. The website reflects a professional and consistent brand image with clear contact information and a focus on privacy compliance. Technically, the site is built on WordPress with Elementor and uses Matomo for analytics, indicating a modern and privacy-conscious infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, leanact GmbH demonstrates a trustworthy and compliant online presence suitable for its government sector clientele.

I

Icam

icam-strasbourg.eu

56

Icam is a well-established French engineering school with multiple campuses across France and international partnerships. The institution offers a broad range of engineering education programs, including preparatory cycles, specialized engineering degrees, professional training, and international double degrees. The website reflects a mature digital presence with professional design, comprehensive content, and clear navigation tailored to prospective students, professionals, and partner companies. Technically, the site is built on WordPress with modern analytics and marketing integrations, including consent management compliant with GDPR. Security posture is strong with HTTPS enforced and secure form handling, though some security headers could be improved. The absence of WHOIS data is likely due to privacy protection, which is justified for this type of educational institution. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

A

Alsace Marchés Publics

alsacemarchespublics.eu

66

Alsace Marchés Publics is a regional government-affiliated platform providing comprehensive information and e-procurement services related to public contracts in the Alsace region of France. The website serves as a key resource for public sector buyers and suppliers, offering access to procurement announcements, contract details, news updates, and educational webinars. The platform supports transparency and efficiency in public procurement processes within the Haut-Rhin and Bas-Rhin departments. Technically, the website employs modern web technologies including React components for modals, Matomo for analytics, and structured data markup (JSON-LD) to enhance SEO and accessibility. The site is built on the Umbraco CMS platform and demonstrates good mobile optimization, accessibility, and performance characteristics. Cookie consent is managed via the Orejime framework, ensuring GDPR compliance. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks explicit HTTP security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is protected by EURid privacy policies, which is typical for domains under .eu TLD, and does not raise legitimacy concerns given the official nature of the site. Overall, Alsace Marchés Publics presents a professional, trustworthy, and well-maintained digital presence that effectively supports its public sector mission. Strategic improvements could include publishing detailed security and incident response policies, adding a terms of service page, and enhancing HTTP security headers to further strengthen security posture.