Security Directory

R

Regens Wagner Burgkunstadt

regens-wagner-burgkunstadt.de

49

Regens Wagner Burgkunstadt is a medium-sized non-profit organization based in Germany that provides comprehensive social services for people with disabilities. Their offerings include housing, education, employment, open help, leisure activities, day care, accompanying services, care, and pastoral care. The website reflects a well-structured and professionally maintained digital presence, leveraging auctores CMS and common web technologies such as jQuery and Bootstrap. The site is mobile-optimized and accessible, with clear navigation and relevant content for its target audience. From a security perspective, the website employs HTTPS with good SSL configuration and includes CSRF tokens in forms, indicating attention to basic security practices. However, it lacks several important security headers and does not provide explicit incident response or vulnerability disclosure information. Privacy compliance is supported by a comprehensive GDPR-aligned privacy policy, though no explicit cookie consent mechanism is observed. Contact information is clearly presented, including phone numbers and a company email address, enhancing business credibility. Overall, the website is trustworthy and safe, with no adult or explicit content detected. The domain registration data aligns well with the website's content and business purpose, supporting legitimacy. Strategic improvements in security headers, incident response transparency, and cookie consent would further enhance the site's security posture and compliance. The organization maintains active social media channels on Facebook, YouTube, and Instagram, supporting community engagement and outreach.

B

Basilika Vierzehnheiligen

vierzehnheiligen.de

59

Basilika Vierzehnheiligen is a religious and cultural institution located in Bad Staffelstein, Germany. The website serves as an official portal providing comprehensive information about church services, events, visitor information, and historical context. It targets pilgrims, local community members, and visitors interested in the basilica and its activities. The business model is non-profit, focusing on cultural and religious service provision. The site maintains a strong regional presence as a religious landmark with a consistent and professional brand image. Technically, the website is built on the Alkacon Mercury CMS platform, utilizing JavaScript, Matomo analytics for privacy-conscious tracking, and OpenStreetMap for location services. The site is mobile-optimized, accessible, and moderately performant. It integrates accessibility features and provides a cookie consent mechanism compliant with GDPR. From a security perspective, the site enforces HTTPS and employs cookie consent for external content. However, it lacks explicit security policy documentation and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with the website's legitimacy. Overall, the site demonstrates a good security posture with room for improvement in transparency and security policy publication. The overall risk assessment is low, with recommendations to enhance security documentation, implement security headers, and publish incident response information to strengthen trust and compliance.

The website steinach-rodach-main.de serves as the official online presence of the Catholic parish Schwürbitz, located in the Lichtenfels-Obermain pastoral area in Germany. It provides parishioners and visitors with comprehensive information about church services, community events, staff, and sacraments. The site targets local community members and those interested in parish activities, operating as a non-profit religious community service platform. The content is well-organized, professionally presented, and primarily in German, reflecting its local audience focus. Technically, the website employs a modern technology stack including Bootstrap for responsive design, jQuery, Font Awesome, and specialized plugins like FancyBox and Revolution Slider for enhanced user experience. It uses FlexiWeb CMS inferred from AJAX glossary features and is hosted on servers associated with internet1.de. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance characteristics. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA for bot protection, and implements a cookie consent mechanism compliant with GDPR. Matomo analytics is used with anonymous tracking fallback to respect user privacy. However, some security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and could be improved. No vulnerabilities or exposed sensitive data were found in the analyzed content. Overall, the website demonstrates a solid security posture and good privacy compliance, with clear contact information and trust indicators such as official email addresses and imprint pages. The domain registration details align with the website content, indicating legitimacy and trustworthiness. Strategic recommendations include enhancing security headers, ensuring CSRF protection on forms, and publishing a dedicated security policy to further strengthen trust and compliance.

The website for Kath. Pfarramt St. Kilian serves as the official online presence of the Catholic parish in Bad Staffelstein, Germany. It provides parishioners and visitors with comprehensive information about church services, sacraments, community groups, staff, events, and contact details. The site is positioned as a local religious community portal under the Archdiocese of Bamberg, targeting local residents and church members. The business model is non-profit, focusing on community engagement and religious service information. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Font Awesome, and specialized plugins like Revolution Slider and JWPlayer. It uses Matomo analytics with privacy-conscious configurations and Google reCAPTCHA for bot protection. The site is mobile optimized and uses a CMS likely based on FlexiWeb, with hosting provided by internet1.de. Performance is moderate with good SEO and basic accessibility features. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism. While some security headers are not explicitly detected, the site follows best practices such as anonymized analytics fallback and bot protection. No vulnerabilities or exposed sensitive data were found. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It effectively serves its community purpose with clear contact information and consistent branding. Strategic recommendations include enhancing security headers, publishing security policies, and adding a vulnerability disclosure channel to strengthen security posture and trust.

E

Evangelisch-Lutherische Kirche in Bayern

vernetzte-kirche.de

44

Vernetzte Kirche & Intranet is a specialized IT department within the Evangelisch-Lutherische Kirche in Bayern, focusing on developing the church's intranet and supporting digital presence for church communities in Bavaria. Their offerings include sample websites, event calendars, training, and individual web projects, targeting church institutions and members. The website is professionally designed using Drupal 10, with good mobile optimization and accessibility. Privacy compliance is well addressed with a clear privacy policy and cookie consent management. Security posture is solid with HTTPS and anti-bot measures, though some security headers and policies could be improved. Overall, the site reflects a trustworthy and professional governmental/non-profit entity with a clear mission and audience.

C

Churchpool GmbH

churchpool.com

58

Churchpool GmbH operates a digital platform focused on religious communities, offering a mobile app that connects local and global faith groups. The website presents a well-structured, multilingual interface emphasizing community engagement features such as news, groups, chat, and event management. The business targets church members and religious organizations primarily in Germany, positioning itself as a niche community app provider. Technically, the site uses standard web technologies including Bootstrap and jQuery, with moderate performance and good mobile optimization. However, there is no evidence of advanced CMS or hosting details. Security posture is limited by lack of visible HTTPS enforcement and missing security headers, which should be addressed to improve trust and compliance. Privacy and cookie policies are present, indicating awareness of GDPR requirements, but no explicit incident response or security policy pages are found. WHOIS data is unavailable, reducing domain trustworthiness, though the website content and footer copyright suggest a legitimate small business entity. Overall, the site is functional and professional but would benefit from enhanced security measures and transparency.

V

Vernetzte Kirche

evangelische-termine.de

51

Evangelische Termine is a specialized event calendar platform serving the Evangelical Lutheran Church community in Bavaria, Germany. It offers a searchable calendar of church-related events, location-based event discovery, and user login functionality for event submissions. The platform is supported by the Vernetzte Kirche organization and promotes mobile applications for iPhone and Android to enhance accessibility. The website content is well-structured, professionally designed, and consistent with its non-profit religious mission. Technically, the site uses a modern tech stack including Bootstrap 5, jQuery, and FontAwesome, hosted on a provider associated with the domain's nameservers. The site is mobile optimized and provides basic accessibility features. However, there is room for improvement in SEO and security headers implementation. The login form uses secure POST methods, but no advanced security policies or vulnerability disclosures are present. From a security perspective, the site shows a moderate security posture with no visible critical vulnerabilities or exposed sensitive data. The absence of security headers and cookie consent mechanisms are notable gaps. Privacy compliance is partially met with a privacy policy page but lacks cookie consent and detailed GDPR indicators. The domain WHOIS data aligns well with the website's purpose and shows no suspicious patterns, supporting a high legitimacy score. Overall, Evangelische Termine is a trustworthy, well-maintained platform with a clear community focus. Strategic improvements in security headers, privacy compliance, and transparency around incident response would enhance its security posture and user trust.

The website represents the Catholic Deanery of Bayreuth, a regional religious institution providing comprehensive information about church services, community institutions, counseling centers, and news relevant to the local Catholic community. It serves as an official communication platform under the Archdiocese of Bamberg, targeting residents and parishioners in Bayreuth and surrounding areas. The site is well-structured with clear navigation and a professional design consistent with its religious and community-oriented mission. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and Matomo analytics, hosted on a German provider with secure HTTPS connections. Privacy compliance is well addressed through a detailed cookie consent mechanism and a comprehensive privacy policy in German, aligned with GDPR requirements. Security posture is good with HTTPS and bot protection via Google reCAPTCHA, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected, and the site maintains high trustworthiness through official contact information and partner links.

S

Schlosskirchenmusik Bayreuth

schlosskirchenmusik-bayreuth.de

60

Schlosskirchenmusik Bayreuth is a small non-profit organization dedicated to church music at the Schlosskirche in Bayreuth, Germany. It organizes liturgical music, concerts, and provides training for part-time church musicians. The website reflects a well-structured community-focused entity with clear contact information and event listings. Technically, the site uses the Alkacon Mercury CMS, integrates Matomo for privacy-conscious analytics, and includes accessibility features via the EyeAble plugin. The site is hosted on German infrastructure with HTTPS enforced, ensuring secure communications. Security posture is good but could be enhanced with additional HTTP security headers and formal security policies. Privacy compliance is strong with a clear cookie consent mechanism and a comprehensive privacy policy. Overall, the site presents a trustworthy and professional image suitable for its community and non-profit mission.

T

TelefonSeelsorge Ostoberfranken

telefonseelsorge-ostoberfranken.de

47

TelefonSeelsorge Ostoberfranken is a well-established non-profit organization founded in 1969, providing free crisis counseling services primarily via telephone, online, and local in-person support. The website serves as an informational and access portal for these services, targeting individuals in emotional or psychological distress within the Ostoberfranken region of Germany. The organization is supported financially by the Seelsorge-Stiftung Oberfranken, enhancing its credibility and trustworthiness. Technically, the website is built on Drupal 9, leveraging Bootstrap and FontAwesome for responsive and accessible design. Hosting is provided by hosteurope.de, a reputable provider. The site is mobile-optimized and offers a clear navigation structure, although some SEO and accessibility features could be improved. No advanced analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent mechanisms, which are recommended for compliance with EU regulations. No incident response or security policies are published, and no vulnerability disclosure information is available. The WHOIS data shows a domain age consistent with the organization's founding date, supporting legitimacy, though registrant details are minimal. Overall, the website is professional, trustworthy, and serves its non-profit mission effectively. Strategic improvements in security headers, privacy compliance, and transparency around security policies would enhance its posture and user trust.

F

Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Bayreuth / BDKJ-Regionalverband Bayreuth

jugend-im-dekanat-bayreuth.de

60

The website represents the Fachstelle für katholische Kinder- und Jugendarbeit im Dekanat Bayreuth and the BDKJ-Regionalverband Bayreuth, focusing on youth pastoral work and church-related youth services in the Bayreuth region of Germany. It provides comprehensive information on events, youth programs, prevention of sexual violence, and support for volunteers. The site is affiliated with the Erzbistum Bamberg, indicating a strong institutional backing. Technically, the site is built on the Alkacon Mercury CMS platform, uses Matomo for analytics, and integrates accessibility tools such as Eye-Able, demonstrating a commitment to inclusivity and privacy. The website is well-structured, mobile-optimized, and GDPR compliant with clear cookie consent mechanisms. Security posture is good with HTTPS enforced, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site is trustworthy, professional, and serves its non-profit mission effectively.

Pfarrei St. Franziskus Eckersdorf is a small non-profit Catholic parish serving the local community in Eckersdorf, Germany. The website provides parishioners and visitors with information about church services, events, contact details, and parish groups. It is positioned as a local religious community hub with a focus on spiritual and community services. The site is well-branded, consistent, and offers good content quality tailored to its audience. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and Matomo analytics, hosted on internet1.de with proper HTTPS configuration. The site is mobile optimized and provides basic accessibility features. Security posture is good with HTTPS, cookie consent, and reCAPTCHA integration, though some security headers could be improved. Privacy compliance is strong with a clear cookie banner and privacy policy in German, aligned with GDPR requirements. Contact information is clearly presented with verified email and phone details. Overall, the website is trustworthy, professional, and suitable for its non-profit religious purpose.

The website st-hedwig-bayreuth.de represents the Catholic parish St. Hedwig Bayreuth, providing detailed information about religious services, community events, and pastoral activities. It serves a local audience in Bayreuth, Germany, focusing on parishioners and community members. The site is part of the Diocese of Bamberg's digital presence and offers resources such as event calendars, sacraments information, and kindergarten services. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and JW Player, hosted on servers associated with internet1.de. The site is mobile-optimized and includes accessibility features, though these could be enhanced further. Security-wise, HTTPS is enforced, and cookie consent mechanisms comply with GDPR, though some security headers could be improved. No critical vulnerabilities or suspicious patterns were detected. Overall, the site is professional, trustworthy, and well-aligned with its non-profit religious mission.

The website nepomuk-bayreuth.de serves as the official online presence for the Catholic parish offices of St. Johannes Nepomuk and Heilig Geist in Bayreuth, Germany. It provides parishioners and local community members with information about church services, events, staff, and contact details. The site is positioned as a local religious institution focused on community engagement and spiritual services. The business model is non-profit, serving the religious and social needs of its audience. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, Font Awesome, and specialized plugins such as Revolution Slider and JWPlayer. It uses a CMS likely based on FlexiWeb and is hosted on infrastructure associated with kirche-bamberg.de. The site is mobile-optimized and includes accessibility features, though these could be enhanced. Performance is moderate, with room for improvement in SEO and accessibility. From a security perspective, the site enforces HTTPS and uses a cookie consent banner with granular user controls. It integrates Google reCAPTCHA for bot protection and Matomo analytics with options for anonymous tracking, demonstrating a commitment to privacy compliance. However, it lacks advanced security headers like Content-Security-Policy and does not publish a security.txt or vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professional, with clear contact information and links to official Catholic organizations. It contains no adult or questionable content and is suitable for a general audience. Recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving SEO and accessibility to further strengthen its digital maturity and security posture.

F

For Future Bündnis

for-future-buendnis.de

59

For Future Bündnis is a German non-profit organization focused on climate protection activism, operating a network of over 50 local groups across Germany. The website serves as a hub for networking, event organization, and knowledge sharing, targeting individuals interested in climate activism. The organization holds a reputable position in the non-profit sector, evidenced by certifications such as the Phineo Wirkt-Siegel and support from the German Environment Agency (UBA). The business model centers on community engagement and empowerment rather than commercial activities. Technically, the website is built on WordPress using the Divi theme, enhanced with plugins for event management, cookie consent, and analytics. The infrastructure is modern and well-maintained, with good mobile optimization and SEO practices. Hosting is managed via UI-DNS, and the site employs HTTPS with strong SSL configuration, ensuring secure communications. Security posture is solid, with appropriate security headers, privacy-respecting analytics via Matomo, and a comprehensive cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy or incident response contact, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It effectively supports the organization's mission while maintaining a secure and user-friendly online presence. Strategic recommendations include publishing explicit security policies, enhancing accessibility, and considering a vulnerability disclosure policy to further strengthen security culture.

C

CURACON GmbH Wirtschaftsprüfungsgesellschaft

curacon.com

54

CURACON GmbH Wirtschaftsprüfungsgesellschaft is a well-established German auditing and consulting firm specializing in the healthcare, social economy, public sector, and church sectors. With over 500 employees across 14 locations and a client base exceeding 2,500, CURACON offers comprehensive services including auditing, corporate consulting, tax, and legal advice. The company is positioned among the top 20 auditing firms in Germany, supported by a strong brand and multiple subsidiaries that complement its service portfolio. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and integrating marketing and analytics tools such as HubSpot and Microsoft Clarity. The site is well-optimized for SEO, mobile-friendly, and provides a good user experience with clear navigation and professional design. Security practices include HTTPS enforcement and a robust cookie consent mechanism, although explicit security headers and a published security policy are absent. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy compliance is strong, with GDPR-aligned policies and consent management. The WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the website reflects a mature digital presence with high trustworthiness and professionalism. Strategic recommendations include enhancing security headers, publishing a formal security policy and incident response contacts, and continuous monitoring of third-party scripts to maintain security and compliance standards.

I

InnoCoding GmbH

innocoding.com

60

InnoCoding GmbH is a specialized digitalization and funding consultancy company based in Münster, Germany, focusing on medium-sized enterprises. Their services encompass web and app development, funding application support, and data science solutions. The company positions itself as a full-service provider with a strong emphasis on quality, transparency, and customer proximity. The website reflects a professional and modern digital presence, leveraging TYPO3 CMS and integrating advanced analytics and marketing tools such as Google Analytics, Matomo, and Microsoft Clarity. Security practices include HTTPS enforcement and cookie consent mechanisms, although some security headers could be improved. The absence of WHOIS registration data is a notable concern for domain legitimacy verification but does not detract from the professional appearance and trust signals on the website. Overall, InnoCoding GmbH presents a credible and trustworthy business with a solid technical infrastructure and compliance posture.

S

SALESDOCk s.r.o.

salesdock.com

68

SALESDOCk s.r.o. is a professional B2B sales consulting company specializing in building and optimizing sales departments for tech startups, scaleups, and large tech companies. Their market position is strong, supported by over 400 clients and positive testimonials, with key services including sales academies focused on prospecting, go-to-market strategies, sales processes, and value-based selling. The company operates primarily in the technology sector and is based in the Czech Republic. Technically, the website is built on Webflow CMS and integrates modern marketing and analytics tools such as Google Tag Manager, Microsoft Clarity, Pardot, and ZoomInfo pixels, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced, cookie consent mechanisms, and use of reCAPTCHA, though explicit security headers and policies could be improved. The WHOIS data is unavailable, which slightly reduces trust but the professional content and business registration details support legitimacy. Overall, the website is well-designed, user-friendly, and compliant with privacy regulations, making it a credible and trustworthy online presence for the company.

D

Digitální architekti

digitalniarchitekti.cz

58

Digitální architekti is a Czech Republic based small technology company specializing in professional data and web analytics services. Their website presents a professional image with consistent branding and clear messaging targeting businesses seeking to leverage data insights. The technical infrastructure is built on WordPress CMS with modern plugins and integrations such as Google Tag Manager and Cloudflare DNS, indicating a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and published policies. Overall, the website is well designed, mobile optimized, and SEO friendly, supporting a positive user experience and trustworthiness.

I

Institut Duhovka

duhovkainstitut.cz

59

Institut Duhovka operates the Duhovka Montessori Teacher Training Institute, providing internationally recognized AMS Montessori diploma programs and online courses focused on Early Childhood and Elementary education. The institute is positioned as a reputable educational provider with accreditations from AMS and MACTE, targeting educators, directors, and parents seeking Montessori certification. The website demonstrates a professional and consistent brand presence with comprehensive content and clear navigation. Technically, the site uses modern tracking and analytics tools such as Google Tag Manager and Facebook Pixel, with cookie consent mechanisms ensuring GDPR compliance. Security posture is generally strong with HTTPS enforced, though the absence of explicit security headers suggests room for improvement. The lack of WHOIS registrant data is a notable concern for domain legitimacy verification, but the overall trust signals from accreditations, testimonials, and contact transparency mitigate this risk. Strategic recommendations include enhancing security headers, publishing explicit security policies, and verifying domain registration details to strengthen trust and compliance.

D

Duhovka Group, a.s.

duhovka-prace.cz

52

Duhovka Group, a.s. operates a bilingual Czech-English Montessori educational system in Prague, offering services from preschool through gymnasium and teacher training. The website focuses on career opportunities within the group and presents a professional, well-structured digital presence. The organization is medium-sized with over 500 children enrolled and multiple subsidiary institutions. Technically, the site uses modern web technologies including jQuery, Google Tag Manager, and a comprehensive cookie consent mechanism, indicating a mature digital infrastructure. Security posture is moderate with good privacy compliance but lacks explicit security policies or incident response contacts. WHOIS data is unavailable, which slightly reduces domain trustworthiness, but the website content and business information are consistent and professional. Overall, the site is safe, well-optimized, and trustworthy for its target audience.

M

Mateřská škola Duhovka s.r.o.

duhovkaskolka.cz

52

Mateřská škola Duhovka s.r.o. operates a private Czech-English Montessori preschool and nursery in Prague, serving children aged 2 to 6 years. The institution emphasizes Montessori pedagogy with accredited teachers and bilingual education, positioning itself as a reputable provider in the early childhood education sector in Prague. The website reflects a professional and consistent brand image with comprehensive information about programs, staff, and educational philosophy. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, and Facebook Pixel, with a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response contacts could be improved. The absence of WHOIS data reduces domain trustworthiness but the overall business credibility remains high due to transparent contact details and positive user testimonials. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and adding terms of service for completeness.

D

DUHOVKA GROUP, a.s.

duhovkagroup.cz

52

Duhovka Group is a well-established Czech private educational organization founded in 2008, offering a comprehensive bilingual Montessori education system in Prague. Their services span from nurseries and kindergartens to elementary schools, an eight-year gymnasium, and a Montessori institute for teacher training. The website reflects a professional and consistent brand image with clear communication of their educational philosophy and offerings. Technically, the site employs modern web technologies including jQuery, Google Tag Manager, and cookie consent mechanisms, ensuring a good user experience and compliance with GDPR regulations. Security posture is moderate with HTTPS usage and cookie consent but lacks explicit security headers and detailed security policies. The absence of WHOIS data reduces domain transparency and trustworthiness, though the business presence and content quality mitigate this concern. Overall, the site is well-positioned in the education sector with strong digital maturity but could improve security and domain registration transparency.

D

Deutscher Landwirtschaftsverlag GmbH

dlv.de

67

Deutscher Landwirtschaftsverlag GmbH operates a comprehensive media platform focused on agriculture and forestry sectors in Germany. The website serves as a hub for their media brands, subscription services, events, and digital content. It targets professionals and enthusiasts in the agricultural and forestry industries, offering a broad portfolio of magazines, special issues, and digital media. Technically, the site is built on Drupal 10 with modern frontend technologies like Tailwind CSS and Swiper.js, ensuring good mobile optimization and user experience. Security posture is solid with HTTPS, cookie consent mechanisms, and no visible vulnerabilities, though explicit security headers could be improved. Privacy compliance is strong with clear GDPR-aligned policies and consent management. Overall, the site reflects a professional, trustworthy media company with a strong digital presence and good business credibility.

The website bydleni.com is a minimal placeholder page that directs users to bydleni.cz, likely related to housing or real estate services in the Czech Republic. The domain is well-established, created in 2002, and registered with a reputable registrar. However, the website itself lacks substantive content, metadata, or any business or contact information, indicating it is not a fully developed site but rather a redirect or landing page. From a technical perspective, the site shows no evidence of modern web technologies, frameworks, or CMS usage. There are no scripts, forms, or tracking mechanisms detected. The hosting provider is linked to the registrar, but no advanced security configurations such as DNSSEC or security headers are present. The site’s performance and mobile optimization cannot be fully assessed due to minimal content but are likely poor. Security posture is weak due to the absence of HTTPS confirmation in the provided data, lack of security headers, and no visible privacy or cookie policies. The domain registration is legitimate and consistent with the website’s minimal claims, but the lack of security best practices and compliance documentation is a concern. No vulnerabilities or malicious indicators were found, but the site’s minimalism limits comprehensive security evaluation. Overall, the website presents a low-risk profile due to its minimal content and lack of data collection but scores low on content quality, technical implementation, and privacy compliance. Strategic recommendations include enhancing website content, implementing HTTPS and security headers, publishing privacy and cookie policies, and providing clear contact and business information to improve trust and compliance.

S

Space X-Chimp

mycyberuniverse.com

69

My Cyber Universe is a specialized technology blog founded in 2013 by Arthur Gareginyan, focusing on web development, cybersecurity, and software engineering topics. The site serves a niche audience of developers and tech enthusiasts, providing educational content, tutorials, and insights. It is supported by the Space X-Chimp team, which also manages related digital properties and an online store. The website demonstrates a consistent brand identity and maintains active content updates, reflecting a stable presence in its niche. Technically, the website employs standard web technologies including HTML5, CSS3, JavaScript, and integrates third-party services such as Google Analytics, Google Adsense, and Disqus for comments. The site is well-structured with responsive design elements, good SEO practices, and moderate performance. However, it lacks some advanced security headers and a cookie consent mechanism, which are important for compliance and user trust. From a security perspective, the site uses HTTPS with a strong SSL configuration, and no obvious vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data for the domain is a notable anomaly that reduces overall trustworthiness, although the website content and business information appear legitimate. Privacy policies and terms of use are present and comprehensive, but cookie policy and incident response information are missing. Overall, the website presents a low-risk profile with good content quality and technical implementation but would benefit from improved privacy compliance and enhanced security headers. The lack of WHOIS transparency is a concern that should be addressed to improve trust and legitimacy perception.

H

hgs5 gmbh

menschenrechts-filmpreis.de

45

The Deutscher Menschenrechts Filmpreis website represents a small non-profit cultural organization focused on promoting human rights through film awards and educational activities. The site is built on TYPO3 CMS and hosted by Neuland Multimedia, featuring a modern and user-friendly design with good mobile optimization and clear navigation. Social media integration and membership in Wertebündnis Bayern enhance its trustworthiness and outreach. Security posture is moderate with cookie consent implemented but lacks advanced security headers and formal security policies. Privacy compliance is good with a clear privacy policy and cookie banner. Overall, the website is professional and trustworthy with room for improvement in security and transparency.

E

Erzdiözese München und Freising

fachstelle-md.online

61

5.MD – Medien und Digitalität is a specialized office under the Archdiocese of Munich and Freising, focusing on media, digital transformation, and religious education. The website serves educators and religious professionals by providing media resources, educational publications, events, and digital tools. The organization operates as a non-profit entity within the religious and educational sectors in Germany. Technically, the website is built on Webflow CMS and employs modern JavaScript libraries for enhanced user experience, including Swiper and Splide for sliders, and Cookiebot for GDPR-compliant cookie management. Security is robust with HTTPS, security headers, and no visible vulnerabilities. Privacy policies and terms of service are clearly presented, reflecting good compliance with GDPR. The site links to reputable partners and maintains consistent branding and professional content quality.

AG FAKS Bayern is a non-profit educational association representing Bavarian Fachakademien for social pedagogy. The website serves as an information hub for students, educators, and professionals interested in social pedagogy education in Bavaria. It provides details about the association's board, educational programs, job postings, and a forum for members. The organization appears to be regionally focused with a clear mission to support Fachakademien in Bavaria. The website content is well-structured, professionally presented, and targets a general audience interested in education and social pedagogy.

M

Magazín pro ženy

magazinprozeny.cz

39

Magazín pro ženy is a Czech language online media publication focused on women's lifestyle topics including fashion, recipes, horoscopes, health, travel, and finance. The website targets women interested in modern trends and provides trend articles and general lifestyle content. The business operates as a small-scale media publisher with content dating back to 2020 and domain registration from 2019. The site uses WordPress CMS with popular plugins such as Yoast SEO and td-composer, indicating a moderate level of digital maturity and SEO optimization. Mobile responsiveness and structured data are implemented, enhancing user experience and search visibility. Security posture is moderate; HTTPS is implied but no explicit security headers or advanced protections on login forms are visible. Privacy and cookie policies are not found, indicating compliance gaps. Overall, the site is functional and professional but would benefit from enhanced security and privacy compliance measures.

S

Simply Finance

simplyfinance.cz

39

Simply Finance is a Czech online magazine focused on financial market analysis, banking sector trends, business advice, and new financial technologies. The website targets Czech-speaking individuals interested in finance and business, providing regularly updated content and guides. The business operates as a small media outlet with a niche focus in the finance sector. Technically, the site runs on WordPress with Elementor and uses modern web technologies including Google Fonts and several Penci plugins. The site is mobile optimized and has good SEO practices including structured data. Security posture is adequate with HTTPS and some security best practices, but lacks explicit security headers and vulnerability disclosure mechanisms. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is legitimate and professionally presented but would benefit from enhanced compliance and security transparency.

D

DENÍKY 24

deniky24.cz

41

DENÍKY 24 is a Czech online news and magazine platform launched in 2023, offering content in categories such as lifestyle, finance, housing, and advice. The site targets a general Czech-speaking audience interested in diverse topics. The business operates as a small media entity with a focus on content publishing. Technically, the website is built on WordPress using the Soledad theme and Elementor page builder, hosted by REG-WEDOS, a Czech registrar and hosting provider. The site employs modern web technologies including jQuery, Google Fonts, and Google Analytics for tracking. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, but lacks advanced security headers and formal privacy or cookie policies. No contact information or incident response details are provided, which limits trust and compliance indicators. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices.

P

PONATURE s.r.o.

shopkilpi.cz

58

Kilpi.cz is the official e-commerce website of the Kilpi brand, specializing in outdoor and sports apparel. The company operates both online and through physical stores in the Czech Republic, offering a wide range of products including jackets, pants, footwear, and accessories. The website targets outdoor enthusiasts and general consumers seeking quality sportswear. The business model is direct-to-consumer retail with a focus on customer loyalty and fast delivery. The brand is well-established with consistent branding and trust signals such as customer testimonials and physical store presence. Technically, the website employs a modern tech stack including JavaScript frameworks, Google Tag Manager, Microsoft Clarity, and other marketing and analytics tools. It uses AWS Cloudfront CDN for hosting and demonstrates good mobile optimization and SEO practices. The site is moderately performant with basic accessibility features. From a security perspective, the site enforces HTTPS and uses several third-party scripts for analytics and marketing. While some security headers are not explicitly detected, no critical vulnerabilities or exposed sensitive data were found. Privacy and cookie policies are present with consent mechanisms, indicating basic GDPR compliance. However, no explicit security or incident response policies were found. Overall, the website presents a low-risk profile with a legitimate business presence. The lack of WHOIS data is likely due to privacy protection, which is justified for this business type. Recommendations include enhancing security headers and publishing explicit security policies to improve trust and compliance.

D

DIGITALBROTHERS_

digitalbrothers.cz

43

DIGITALBROTHERS_ is a creative digital studio based in Prague, Czech Republic, specializing in brand identity, design, and web development services. Established in 2014, the company offers comprehensive solutions including logotype creation, corporate identity, UX design, and web design aimed at enhancing brand visibility and sales effectiveness. Their portfolio showcases diverse projects, reflecting a strong market presence in the creative digital agency sector. Technically, the website is built on modern web technologies including Webflow CMS, JavaScript, and integrates analytics tools such as Google Analytics and Smartlook, indicating a mature digital infrastructure. The site is mobile optimized and demonstrates good SEO practices, although accessibility features are basic. Security posture is moderate with HTTPS usage but lacks visible security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is professional and trustworthy but would benefit from enhanced compliance and security measures.

C

Chambre de commerce franco-tchèque

ccft-fcok.cz

57

The Chambre de commerce franco-tchèque is a professional bilateral chamber of commerce facilitating French-Czech business relations. It offers a comprehensive range of services including business development, market studies, recruitment, event organization, and membership benefits. The website is well-positioned as a trusted intermediary for companies seeking to expand or operate in the Czech Republic and France, serving a medium-sized business community with over 300 members. Technically, the site is built on TYPO3 CMS, employs modern analytics and consent management tools, and is hosted on a reliable infrastructure with HTTPS enforced. Security posture is solid with standard best practices, though some security headers could be improved and explicit security policies are absent. Privacy compliance is strong with clear cookie consent and GDPR-aligned privacy policies. The absence of WHOIS data is typical for CZ domains but slightly reduces trust; however, the professional presentation and external partner links support legitimacy. Overall, the site is a high-quality, secure, and privacy-conscious platform serving its business audience effectively.

B

British Chamber of Commerce Czech Republic

britishchamber.cz

46

The British Chamber of Commerce Czech Republic is a well-established non-profit organization dedicated to fostering business growth and trade between British, Czech, and international companies. It offers membership services, networking events, and specialized business programmes to support its members. The website reflects a professional and consistent brand image, targeting business professionals and companies interested in bilateral trade and networking opportunities. Technically, the site is built on WordPress with a modern tech stack including Google Analytics and reCAPTCHA, ensuring a secure and user-friendly experience. Security posture is solid with HTTPS and consent mechanisms, though there is room for improvement in security headers and published policies. The absence of WHOIS data slightly reduces trust but does not detract significantly from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining plugin security to further strengthen the site's security and compliance stance.

N

Nordic Chamber of Commerce in the Czech Republic

nordicchamber.cz

46

The Nordic Chamber of Commerce in the Czech Republic is a well-established organization founded in 2005 that serves as a platform connecting Nordic and Czech businesses. It promotes Nordic values such as transparency, sustainability, and innovation through events, membership benefits, and specialized programs like Diversity Awards and Mentoring Exchange. The website reflects a professional and consistent brand image targeting Nordic and Czech business communities. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, hosted on a Czech hosting provider, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and secure forms, though it lacks explicit security policies and cookie consent mechanisms. The domain WHOIS data aligns well with the website's claims, indicating legitimacy and trustworthiness. Overall, the site is a credible and professional business platform with room for improvement in privacy and security transparency.

AT&T is a leading telecommunications company in the United States, offering wireless, internet, and bundled services to consumers and businesses. The website reflects a mature digital presence with a focus on customer support, product offerings like the latest iPhone models, and account management. The company maintains a strong market position as a large enterprise with consistent branding and comprehensive service information. Technically, the site uses modern web technologies including React, Adobe Target for marketing, and Dynatrace for performance monitoring, ensuring a fast and mobile-optimized user experience. Security posture is strong with HTTPS enforcement and multiple security headers, though explicit security policies and incident response contacts are not publicly detailed. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-maintained, though WHOIS data is unavailable likely due to privacy protections. Strategic recommendations include publishing explicit security and incident response policies and adding vulnerability disclosure information to enhance transparency and trust.

A

Abillio

abill.io

61

Abillio is a Latvian-based technology company founded in 2020, offering a SaaS platform tailored for freelancers to manage invoicing, accounting, payments, and compliance reporting such as DAC7. The platform integrates API capabilities and targets online platforms and freelancers seeking streamlined financial operations. The website demonstrates a good level of digital maturity, leveraging WordPress CMS with modern marketing and analytics tools including Google Analytics, Hotjar, Intercom, and Facebook Pixel. The presence of a cookie consent mechanism indicates awareness of privacy regulations, although no explicit privacy policy or terms of service were detected in the provided content. Security posture is solid with HTTPS enforcement and domain transfer protection, but could be enhanced by enabling DNSSEC and publishing explicit security policies. Overall, the site is professional and trustworthy, with consistent branding and clear business focus.

A

AIESEC Česká republika

aiesec.cz

55

AIESEC Česká republika is a well-established non-profit youth organization focused on leadership development through international internships and volunteer programs. The website reflects a mature digital presence with a WordPress CMS, modern tracking and marketing tools, and a clear focus on youth engagement. The organization maintains strong partnerships with reputable companies and has a consistent brand identity. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data is due to privacy protection and does not detract from the organization's legitimacy. Overall, the site is professional, trustworthy, and serves its target audience effectively.

C

CURACON GmbH Wirtschaftsprüfungsgesellschaft

veratio.de

53

CURACON GmbH Wirtschaftsprüfungsgesellschaft operates the veratio website, specializing in financial bookkeeping services tailored for churches, religious institutions, orders, associations, and foundations. The company positions itself as a niche service provider with a strong focus on the non-profit and religious sectors in Germany. Their key offerings include financial accounting, payment processing, VAT pre-registrations, cost accounting, and cooperation on annual financial statements. The website is professionally designed, well-structured, and provides clear contact points including a named senior consultant. The presence of multiple office locations and partner organizations further strengthens their market position. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and integrating marketing and analytics tools such as HubSpot, Google Tag Manager, and Microsoft Clarity. The site includes a comprehensive consent management system ensuring GDPR compliance. Performance and mobile optimization are good, with accessibility features implemented. However, explicit security headers are not detected, and no dedicated security or incident response policies are published. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. The privacy and cookie policies are comprehensive and clearly linked. No vulnerability disclosure or security.txt files are present, which could be considered for future improvement. The domain WHOIS data aligns well with the business identity, supporting legitimacy and trustworthiness. Overall, the website demonstrates a mature digital presence with strong business credibility and good privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure mechanisms to further strengthen trust and security posture.

A

Audacia GmbH & Co. KG

audacia.de

50

Audacia GmbH & Co. KG is a specialized tax consultancy firm operating nationwide in Germany, focusing on the outpatient healthcare and social economy sectors including doctors, dentists, pharmacies, and care services. With over 35 years of experience and since 2023 part of the Curacon Unternehmensgruppe, Audacia offers comprehensive tax and business consulting services from practice founding to succession planning. The website is professionally designed using TYPO3 CMS, featuring good mobile optimization, accessibility, and SEO practices. Privacy compliance is strong with GDPR-aligned policies and a consent management system. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security policies and incident response contacts are not published. Overall, the site reflects a trustworthy and credible business presence with active social media engagement and clear business information.

V

viacur – Gesellschaft für Interim Management

viacur.de

52

viacur – Gesellschaft für Interim Management is a specialized interim management company focused on the healthcare and social economy sectors in Germany. Their business model centers on providing expert interim managers to help organizations manage projects, processes, and vacancies efficiently, especially during challenging phases. The company emphasizes quality through a rigorous selection process and ongoing training of their experts. The website is professionally designed, built on TYPO3 CMS, and includes a consent management system to comply with privacy regulations. Technical infrastructure appears modern and well-maintained, with no blocking or WAF detected, and the site uses HTTPS with good security practices. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the domain and website present a trustworthy and professional digital presence with moderate to high security posture.

S

Sanovis

sanovis.com

53

Sanovis is a specialized management consulting firm focused on IT strategy, IT management, digitalization, IT security, and data protection primarily serving the healthcare and social sectors in Germany and neighboring countries. The company positions itself as a leading and independent consultancy with a strong affiliation to the Curacon network, offering comprehensive services from strategy to implementation. The website is professionally designed using TYPO3 CMS, featuring good content quality, clear navigation, and mobile optimization. Privacy compliance is well addressed with a comprehensive privacy policy and an integrated consent management system. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers are missing. The WHOIS data is unavailable, which raises some concerns about domain registration transparency, but the overall business credibility remains high based on website content and contact information.

D

Diakonie Baden-Württemberg

ran-ans-leben.de

42

Diakonie Baden-Württemberg operates as a large non-profit organization focused on social services, volunteer programs, and career entry support in the Baden-Württemberg region of Germany. The website provides comprehensive information about voluntary social and ecological services (FSJ, BFD, FÖJ), education, and opportunities for engagement. It targets young people and individuals interested in social work and volunteering. The organization maintains a strong regional presence and is affiliated with the parent entity Diakonisches Werk Württemberg. Technically, the website is built on WordPress with modern plugins such as Borlabs Cookie for GDPR compliance and Autoptimize for performance optimization. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting appears to be managed via your-server.de, consistent with the domain's nameservers. Security posture is good with HTTPS enforced and cookie consent mechanisms in place. However, some recommended security headers are not explicitly detected and could be improved. No vulnerabilities or exposed sensitive data were found. Privacy compliance is strong, with clear privacy and cookie policies and consent management. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and well-aligned with its mission. Strategic recommendations include enhancing security headers, publishing a security policy, and considering a vulnerability disclosure mechanism to further strengthen security and trust.

F

futurum Diakonie Württemberg

futurum-diakonie.de

63

futurum Diakonie Württemberg operates as a creative future center within the Diakonie Württemberg network, focusing on social innovation, education, and networking. The organization offers workshops, training, and space rental services aimed at inspiring and enabling its members and partners to actively shape future challenges. The website reflects a medium-sized non-profit entity with consistent branding and a clear mission aligned with social welfare and innovation. Technically, the site is built on the Squarespace platform, leveraging modern web technologies and providing a good user experience with mobile optimization and moderate performance. Security posture is strong with HTTPS enforced, HSTS enabled, and use of Google reCAPTCHA to protect forms. However, the absence of explicit privacy policies, terms of service, and incident response information represents compliance gaps. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and formal security documentation.