Security Directory

Content Queen, operated by Ing. Veronika Honsová, is a specialized content marketing service provider based in the Czech Republic. The business focuses on delivering comprehensive content creation and strategy services including social media content, web content, copywriting, and workshops. The website presents a professional image with clear branding and client testimonials, positioning itself as a trusted niche player in the content marketing industry. Technically, the site uses modern web technologies such as Alpine.js and is hosted on websupport.cz, with moderate performance and good mobile optimization. Security posture is basic with HTTPS implied but lacks visible security headers and privacy compliance mechanisms. The absence of privacy and cookie policies represents a compliance gap. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

S

Sonardyne

sonardyne.com

62

Sonardyne is a well-established company specializing in underwater technology with over 50 years of experience. The company offers a broad range of products and services including underwater positioning, navigation, monitoring, communications, marine robotics, and custom engineering solutions primarily targeting energy, defense, and ocean science sectors. The website reflects a professional and comprehensive digital presence with clear branding and detailed content about their expertise and product offerings. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response contacts could be improved. The absence of WHOIS domain registration data is a notable transparency gap, but the overall business credibility remains high based on website content and corporate affiliations. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and improving contact information visibility to strengthen trust and compliance.

Z

Zeller + Gmelin

zeller-gmelin.de

48

Zeller+Gmelin is a well-established German family-owned manufacturing company specializing in high-quality lubricants, printing inks, and process chemicals. Founded in 1866, it holds a strong market position as a leader in industrial lubricants and related chemical products, emphasizing sustainability and innovation. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. Technically, it is built on WordPress with modern JavaScript frameworks and SEO tools, ensuring good performance and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site demonstrates high professionalism and trustworthiness, supporting the company's credibility and business operations.

F

Festival Musica

festivalmusica.fr

48

Festival Musica is an international contemporary music festival based in Strasbourg, France, founded in 2019. The organization focuses on cultural event programming, ticket sales, and community engagement through various media including podcasts and a magazine. The website reflects a professional and consistent brand presence with strong ties to regional and national cultural institutions. Technically, the site uses modern frontend technologies such as Alpine.js and Livewire, hosted by OVH, and integrates privacy-respecting analytics via Fathom. Security posture is good with HTTPS enforced and CSRF protections, though some security headers and explicit privacy mechanisms are missing. Contact is primarily via a web form, with no direct emails or phone numbers published. Overall, the site is trustworthy, well-designed, and serves a general audience interested in contemporary music and culture.

L

Lutherstadt Wittenberg Marketing GmbH

wittenberger-reformationsfest.de

47

The Wittenberger Reformationsfest website is a professionally designed and well-structured platform promoting the 2025 cultural festival in Wittenberg, Germany. It provides comprehensive event information, including schedules, locations, and highlights, targeting visitors interested in historical and religious celebrations. The site is managed by Lutherstadt Wittenberg Marketing GmbH, a small government-related marketing entity. Technically, the site uses modern web technologies including Craft CMS, Splide.js for sliders, and Alpine.js for interactivity, with good mobile optimization and accessibility features. Security posture is solid with HTTPS enforced, CSRF protection, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear policies and consent banners. Overall, the site is trustworthy, with verified contact details and active social media presence.

Z

Zukunftsregion JadeBay

zukunftsregion-jadebay.de

48

Zukunftsregion JadeBay is a regional government-backed initiative focused on fostering sustainable development, innovation, and digital transformation within the JadeBay region in Niedersachsen, Germany. The website serves as an informational platform highlighting funding opportunities, projects, news, and partnerships with local counties. The technical infrastructure leverages modern frontend technologies such as Alpine.js, GSAP, Swiper.js, and Font Awesome, hosted via Schlund Technologies. The site is mobile-optimized and presents a professional design with clear navigation. Security posture is adequate with HTTPS and a Content-Security-Policy header, though additional security headers and policies could enhance protection. Privacy compliance is limited, with no visible privacy or cookie policies, which is a notable gap. Overall, the site is trustworthy and serves its public sector mission effectively.

F

Festival Musica

festivalmusica.org

48

Festival Musica is an established international contemporary music festival based in Strasbourg, France, founded in 2019. It offers a rich program of events including concerts, podcasts, articles, and community engagement activities. The festival targets a general audience interested in contemporary music and cultural experiences. The website reflects a professional and consistent brand image supported by official cultural partners and regional sponsors. Technically, the site uses modern web technologies such as Alpine.js, Livewire, and Tailwind CSS, hosted by OVH, ensuring fast performance and excellent mobile optimization. Security practices include HTTPS enforcement and CSRF protection, though explicit cookie consent and privacy policy details could be improved. Overall, the site is trustworthy and well-maintained, with a strong social media presence and clear business legitimacy.

L

Linka bezpečí, z.s.

klublinkyvbezpeci.cz

50

Klub Linky v bezpečí is a Czech non-profit organization dedicated to supporting children and young people facing difficult life situations through a free, anonymous helpline service. Established since 1994, the organization has handled over 10 million calls and provides continuous 24/7 support. The website serves as a membership club platform to keep supporters informed about risks facing youth and offers detailed anonymized stories illustrating the impact of their work. The organization is well-positioned in the Czech non-profit sector with strong government and foundation partnerships.

H

Hansestadt Lüneburg

hansestadt-lueneburg.de

59

Hansestadt Lüneburg operates an official municipal website providing comprehensive information and services to its citizens and visitors. The site covers a broad range of topics including local government, administration, climate protection, culture, and public services. It serves as a primary communication channel for the city, offering news, event information, and access to online administrative services via a dedicated service portal. The website targets residents, local businesses, and tourists, positioning itself as a trusted and authoritative source for city-related information. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, enhanced with modern JavaScript libraries such as jQuery, Alpine.js, and Mapbox GL for interactive maps. Accessibility is a priority, demonstrated by the integration of Eye-Able tools. The site is mobile-optimized and employs standard SEO practices including structured data (JSON-LD) and Open Graph metadata. Hosting appears stable with dedicated name servers, and HTTPS is enforced ensuring secure communications. From a security perspective, the website demonstrates good practices including HTTPS, cookie consent mechanisms, and no visible sensitive data exposure. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure information, which are recommended for enhanced transparency and trust. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the provided content. Overall, the website is professional, secure, and compliant with GDPR requirements, providing a positive user experience and reliable business credibility. Strategic recommendations include publishing a security policy, incident response details, and a vulnerability disclosure framework to further strengthen security posture and user trust.

B

Blumark

blumarktax.com

71

Blumark is a small accounting and tax services firm based in Troy, Michigan, providing tax preparation, bookkeeping, and accounting services to individuals and businesses. The website reflects a professional and consistent brand presence with comprehensive legal documents such as privacy policy and terms of service embedded in modals. The technical infrastructure leverages modern web technologies including Laravel Livewire, Alpine.js, Cloudflare DNS, and AWS S3 for asset hosting, with monitoring via New Relic. Security posture is solid with HTTPS enforced, domain locking, and reCAPTCHA integration, though explicit security policies and cookie consent mechanisms are absent. Overall, the site is well-structured, performant, and trustworthy, suitable for its target audience.

M

město Šenov

mesto-senov.cz

49

město Šenov operates an official municipal website providing residents and visitors with up-to-date news, official notices, and practical information about city life, community events, and services. The website is positioned as a trusted source of local government information and serves a primarily Czech-speaking audience. The business model is public service with a focus on transparency and citizen engagement. The site is small in scale but professionally maintained with consistent branding and trust signals such as official domain and social media presence. Technically, the site is built on WordPress using Oxygen Builder and Yoast SEO, with modern JavaScript libraries like Alpine.js enhancing interactivity. Hosting is provided by a Czech hosting provider, ensuring regional consistency. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers and explicit security policies are absent. No critical vulnerabilities or privacy issues were detected. Overall, the site is reliable, secure, and compliant with GDPR cookie consent requirements.

E

ESC Olomouc

escolomouc.cz

46

ESC Olomouc operates as a modern equestrian center in the Czech Republic, specializing in hosting show jumping and dressage competitions. The website positions the center as the most exclusive equestrian venue in the country, targeting equestrian sports enthusiasts and competitors. Key services include event hosting, live streaming, and hospitality offerings such as a restaurant. The business is small-sized, founded in 2012, and maintains partnerships with local financial institutions and sports organizations. Technically, the website uses modern frontend technologies like Alpine.js and Swiper.js, with a responsive design and moderate performance. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. No forms or direct contact details are visible, which may impact user engagement and trust. Overall, the site is professional and content-rich but could enhance privacy compliance and security transparency.

C

CPI Property Group (CPIPG) Polska

cpipg.pl

53

CPI Property Group (CPIPG) Polska operates as a leading commercial real estate owner and manager in Poland, specializing in office and retail space leasing, property management, and ESG-compliant building modernization. The company manages a portfolio valued at approximately 2 billion euros, with over 800,000 square meters of commercial space, including office buildings in Warsaw and retail centers nationwide. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the site uses modern frameworks such as Alpine.js and Laravel Livewire, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies could be improved. The absence of WHOIS data for the domain introduces some uncertainty in domain legitimacy, but the overall business credibility and website professionalism mitigate this concern. Strategic recommendations include enhancing security headers, publishing incident response policies, and adding a vulnerability disclosure mechanism.

V

Vumedi

vumedi.com

61

Vumedi is a specialized video education platform designed for doctors and clinicians, offering over 50,000 peer-to-peer videos across 25 medical specialties. The platform is trusted by over 500,000 clinicians, including partnerships with 16 of the top 20 US hospitals, positioning it as a leading resource in medical education. The business model focuses on providing accessible, expert-driven medical content to improve patient care and support professional growth. Technically, the website employs modern JavaScript frameworks such as Alpine.js, integrates Google Tag Manager for analytics, and uses Sentry for error monitoring. The site is mobile-optimized, fast-loading, and well-structured for SEO and accessibility. Security posture is solid with HTTPS enforced and monitoring tools in place, though explicit security headers and incident response information are absent. Privacy and terms of service policies are comprehensive and publicly accessible, indicating a commitment to compliance. However, the lack of WHOIS data reduces transparency regarding domain ownership, which slightly impacts trust. Overall, Vumedi presents a professional, trustworthy, and technically mature platform with room for improvement in security disclosures and contact transparency.

S

Sharp Consumer PL

sharpconsumer.pl

50

Sharp Consumer PL is a regional consumer electronics brand website focused on the Polish market, offering product information, promotions, and award-winning product highlights primarily in TVs, audio, mobility, and smart home categories. The website is built on WordPress with modern web technologies and includes a cookie consent mechanism and Google Tag Manager for analytics. While the site uses HTTPS and shows good design and navigation, it lacks visible privacy policy and terms of service pages, and no direct contact information is found, which may impact user trust. WHOIS data is unavailable, likely due to privacy protection, which limits domain legitimacy verification but is common for commercial brand sites. Overall, the site presents a professional and trustworthy front for Sharp's consumer electronics in Poland.

S

Sharp Consumer IT

sharpconsumer.it

55

Sharp Consumer IT operates as a consumer electronics brand website focused on promoting and selling Sharp-branded TVs, audio equipment, mobility products, and smart home devices in Italy. The site highlights award-winning products such as the EISA 2025/2026 Soundbar System, indicating a strong market position in consumer electronics. The website is well-structured with multiple language and country-specific domains, targeting a broad European audience. Technically, the site is built on WordPress with modern performance optimizations including WP Rocket and Cloudinary for image delivery, and uses Google Tag Manager for analytics. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, but lacks some security headers and explicit security policies. Privacy compliance is weak due to absence of visible privacy and cookie policies or consent mechanisms. Overall, the site presents a professional and trustworthy front for Sharp's consumer electronics offerings in Italy.

S

Sharp Consumer FR

sharpconsumer.fr

52

Sharp Consumer FR is a consumer electronics brand website focused on audio equipment, televisions, mobility products such as e-bikes and electric scooters, and smart home devices. The site targets consumers in France and offers detailed product information and navigation for various product categories. The website is built on WordPress with modern technologies including jQuery, Alpine.js, and WP Rocket for performance optimization. It uses Google Tag Manager for analytics and tracking. The site is mobile-optimized and demonstrates good SEO practices with structured data and meta tags. Security posture is strong with HTTPS enabled and no obvious vulnerabilities, though some security headers could be improved. Privacy compliance is moderate with a cookie consent mechanism but no clearly linked privacy policy or terms of service pages. WHOIS data is unavailable, which limits domain trust verification. Overall, the site is professional and trustworthy but could improve transparency and contact availability.

S

Sharp Consumer UK

sharpconsumer.uk

53

Sharp Consumer UK operates a professional and well-branded website focused on consumer electronics including TVs, audio equipment, and mobility products such as e-scooters. The site highlights award-winning products and provides a rich user experience with modern technologies and good mobile optimization. However, the domain WHOIS data is unavailable due to a naming rules violation error, which raises questions about the domain registration legitimacy. The website lacks explicit privacy policy, terms of service, and contact information pages, which are important for compliance and trust. Security posture is generally good with HTTPS and no exposed sensitive data, but missing security headers and incident response information are areas for improvement.

S

Sharp Consumer

sharpconsumer.com

54

Sharp Consumer operates a professional and well-structured website focused on consumer electronics including TVs, audio equipment, mobility products, smart home devices, and home appliances. The brand is recognized with awards such as the EISA Soundbar System 2025-2026, indicating a strong market position in the European consumer electronics sector. The website targets consumers interested in high-quality electronics and home entertainment solutions. Technically, the site is built on WordPress with modern technologies like jQuery, Alpine.js, and performance optimizations via WP Rocket. It is mobile-optimized, fast, and SEO-friendly with proper meta tags and structured data. Security posture is strong with HTTPS enforced and multiple security headers present, though explicit privacy and terms of service pages are missing, which impacts compliance and user trust. No contact emails or phone numbers are directly available, limiting direct communication channels. Overall, the site is trustworthy and professional but could improve transparency and compliance documentation.

S

S.M.A.K.

smak.be

11

S.M.A.K. is a well-established contemporary art museum located in Ghent, Belgium, with a domain age dating back to 1999, reflecting its long-standing presence in the cultural sector. The website effectively showcases exhibitions, collections, events, and membership programs, targeting a diverse audience of art enthusiasts and the general public. The business model is non-profit and focused on cultural enrichment and accessibility. Technically, the site employs modern JavaScript frameworks and integrates multiple analytics and marketing tools, supported by a reputable hosting provider. The site is mobile-optimized, fast, and SEO-friendly, providing an excellent user experience. Security posture is strong with HTTPS and consent management, though there is room for improvement in publishing explicit security policies and incident response details. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, making it a reliable digital presence for the museum.

F

Flamant

flamant.com

39

Flamant is a well-established retail and e-commerce business specializing in luxury home furniture, décor, textiles, paint, and gifts. With a history spanning approximately 45 years, the company targets consumers seeking high-quality and elegant home living solutions. The website reflects a professional and consistent brand image, supporting multiple languages and offering a rich catalog of products and inspiration content. Technically, the site employs modern JavaScript frameworks, tracking tools, and content delivery networks, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit privacy policies are missing. The absence of WHOIS data for the domain raises concerns about domain registration transparency, which slightly impacts trustworthiness. Overall, Flamant presents a credible and professional online presence with room for improvement in privacy and security disclosures.

RainPharma is a small Finnish company specializing in natural health and wellness products, including supplements, skin care, and aromatherapy. The website is built on the Shopify platform and employs modern JavaScript libraries and marketing tools such as Visual Website Optimizer and Cookiebot for consent management. The domain is well-established since 2009, consistent with the company's founding year, and is registered with Cloudflare, indicating stable hosting and DNS management. Security posture is adequate with HTTPS enabled and clientTransferProhibited domain status, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Contact information is not readily found on the analyzed page, which may impact user trust. Overall, the website presents a professional and consistent brand image focused on natural wellness products.

RoFa Sport is a specialized bicycle retailer and service provider based in Graz, Austria, established in 2012. The company focuses on personalized bike sales, bike fitting, leasing options, and workshop services including repairs and setup. Their market position is that of a trusted local bike shop with a strong emphasis on customer service and quality products. The website reflects a professional and consistent brand image with clear contact information and active social media engagement. Technically, the site uses modern frontend technologies such as Alpine.js and Tailwind CSS, and integrates privacy-focused analytics and third-party widgets for social proof and customer engagement. Security posture is adequate with HTTPS enforced and secure form handling, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and well-maintained, suitable for its business purpose.

A

ABM Industries Inc.

abm.co.uk

74

ABM UK, represented by the website www.abm.co.uk, is a business specializing in facility management, engineering, and maintenance solutions. It operates as a subsidiary or regional branch of ABM Industries Inc., a large enterprise with a global presence. The website targets business clients seeking comprehensive facility and engineering services to improve safety, resilience, productivity, and sustainability. The company maintains a professional online presence with clear branding and structured data linking to social media platforms. Technically, the website is built on modern web technologies including Webflow CMS, Alpine.js, HubSpot marketing and analytics tools, Google Tag Manager, and OneTrust for cookie consent management. The site is mobile-optimized and implements standard SEO and accessibility features, though accessibility could be further enhanced. Performance is moderate with a good balance of modern scripts and user experience considerations. From a security perspective, the site enforces HTTPS, uses reCAPTCHA on forms, and has implemented cookie consent mechanisms compliant with GDPR. Security headers are present, contributing to a good security posture. However, the site lacks a dedicated security policy page, incident response contact information, and vulnerability disclosure mechanisms, which are recommended for improving transparency and trust. Overall, the website is trustworthy and professional with no indications of malicious activity or content safety concerns. The WHOIS data for the domain www.abm.co.uk is unavailable due to domain naming rules, suggesting it is a subdomain or alias rather than a standalone registered domain. This does not detract from the legitimacy of the business. Strategic recommendations include publishing security and incident response policies, enhancing accessibility, and maintaining regular security audits.

G

GPTCA AG

gptcatennis.org

58

The Global Professional Tennis Coach Association (GPTCA) is a Switzerland-based organization founded in 2012, dedicated to educating and supporting professional tennis coaches aiming to work at ATP Tour and women's pro tennis levels. The website serves as a global hub offering membership, educational courses, events, and resources tailored to tennis coaching professionals. It maintains partnerships with recognized entities such as ATP, ITIA, and Golden Set Analytics, enhancing its credibility and market position. Technically, the website employs a modern tech stack including Google Analytics, Google Tag Manager, Alpine.js, Swiper.js, and AOS for animations, hosted likely on home.pl infrastructure. The site is mobile-optimized with good SEO practices and a consistent branding approach. However, some accessibility features are basic, and performance is moderate. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers. There are no privacy or cookie policies published, representing compliance gaps. No incident response or vulnerability disclosure information is provided. The domain WHOIS data is consistent and legitimate, supporting trustworthiness. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, security headers, and incident response transparency to improve its security posture and regulatory adherence.

W

Westfälischer Turnerbund e.V.

nrw-landesturnfest.de

45

The website www.nrw-landesturnfest.de serves as the official online presence for the 5th NRW Landesturnfest 2026, a major gymnastics and sports event organized by the Westfälischer Turnerbund e.V. The site provides comprehensive event information, registration details, volunteer opportunities, and program highlights targeting sports enthusiasts and participants in the NRW region of Germany. The business model focuses on event organization and community engagement within the sports sector, positioning itself as a key regional event organizer. Technically, the website is built on the TYPO3 CMS platform, leveraging modern frontend technologies such as Alpine.js and Swiper.js for interactive elements. The site is mobile-optimized, well-structured, and employs a reputable cookie consent manager (CCM19) to ensure compliance with privacy regulations. Hosting appears to be managed via German-based nameservers, supporting regional data sovereignty. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with a clear privacy policy and cookie consent, though terms of service and vulnerability disclosure mechanisms are absent. Overall, the website demonstrates a good level of professionalism, technical maturity, and compliance suitable for its purpose. Recommendations include enhancing security headers, publishing security and incident response policies, and adding terms of service to improve trust and compliance further.

B

blackcrows

black-crows.com

73

Black Crows operates a professional e-commerce website specializing in skis and outerwear, targeting winter sports enthusiasts. The company presents a strong market position as a niche premium brand with a comprehensive product range including skis, poles, apparel, and accessories. The website is built on the Shopify platform, leveraging modern technologies such as Alpine.js and Tailwind CSS, and integrates multiple marketing and analytics tools including Google Tag Manager, Microsoft Clarity, and Klaviyo. The site demonstrates excellent design quality, mobile optimization, and user experience, with clear navigation and consistent branding. Security posture is strong with HTTPS enforcement, security headers, and secure payment integrations, although explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent mechanisms. WHOIS data aligns with the business claims, indicating legitimacy and transparency. Overall, the website is a secure, professional, and trustworthy platform for Black Crows' e-commerce operations.

H

H & R

h-r.com

10

H & R is a German manufacturing company specializing in automotive suspension components, leveraging technology transfer from international motorsport to develop innovative products for series vehicles. The website presents a professional and comprehensive digital presence with detailed product categories, service information, and multilingual support. The technical infrastructure is based on WordPress with modern JavaScript frameworks and SEO optimizations, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies are not evident. The absence of WHOIS registration data raises concerns about domain legitimacy, but the website content and branding indicate a credible business. Overall, the site is well-structured and trustworthy for its target audience.

F

Financial Market Authority Liechtenstein

fma-li.li

10

The Financial Market Authority Liechtenstein (FMA) operates as the national financial regulatory authority overseeing financial intermediaries, licensing, supervision, and regulation within Liechtenstein. The website serves as an authoritative source of regulatory information for financial institutions, intermediaries, and stakeholders in the financial sector. The content is well-organized, targeting professionals and entities involved in the financial market, with detailed sections on supervision, regulation, and financial centre activities. Technically, the website employs modern JavaScript frameworks such as Alpine.js and integrates Matomo analytics for privacy-conscious user tracking. Cookie consent is managed through a third-party service, indicating attention to privacy compliance. The site is mobile-optimized and demonstrates good navigation clarity and professional design quality. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data aligns with the website's claims, reinforcing legitimacy and trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements include publishing comprehensive privacy and security policies, enhancing security headers, and providing clear contact information for incident response and data protection officers.

D

Direktoratet for forvaltning og økonomistyring (DFØ)

anskaffelser.no

63

Anskaffelser.no is a Norwegian government portal managed by the Direktoratet for forvaltning og økonomistyring (DFØ), providing authoritative information, tools, and guidance on public procurement. The site targets public sector procurement professionals in Norway, offering comprehensive resources on regulations, sustainable procurement, and innovative purchasing practices. The website is well-branded, professionally designed, and consistent with government standards, reflecting a high level of trust and credibility. Technically, the site is built on Drupal 10 with modern JavaScript libraries, ensuring good performance, accessibility, and mobile optimization. Security posture is solid with HTTPS enforced and anti-bot measures on forms, though some security headers could be improved. Privacy compliance is adequate with links to comprehensive privacy policies on the parent organization’s site, but explicit cookie consent mechanisms are not evident. Overall, the site is a reliable and professional resource with a strong business credibility and moderate to high technical maturity.

H

hajk

hajk.ch

73

hajk.ch is a Swiss e-commerce retailer specializing in outdoor equipment, clothing, and camping gear, officially affiliated with the Pfadibewegung Schweiz (Swiss scouting movement). The website targets outdoor enthusiasts and scouts in Switzerland, offering high-quality and sustainable products. The business model is retail-focused, leveraging a Magento-based platform with a modern Hyvä frontend theme. The site demonstrates a good level of digital maturity with integrated analytics, cookie consent, and user tracking mechanisms. Security posture is solid with HTTPS, CSRF protections, and deferred script loading, though explicit privacy and terms policies are not found in the provided content. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

M

METALLART Treppen GmbH

metallart.com

55

METALLART Treppen GmbH is a specialized manufacturer of exclusive, high-quality sculptural staircases with a heritage of over 100 years. The company serves a global clientele including architects, builders, and private clients, offering custom design, manufacturing, and consulting services. Their market position is strong within the manufacturing sector for architectural staircases, supported by a professional website showcasing extensive project portfolios and client testimonials. Technically, the website is built on modern frameworks such as Astro and Alpine.js, hosted likely on Netlify, and incorporates privacy and analytics tools like Cookiebot and Google Tag Manager. Security posture is good with HTTPS enforced and secure forms, though some security headers are not evident and no explicit security policy is published. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency but does not detract significantly from the overall legitimacy given the comprehensive business information and social media presence. Overall, the website is professional, secure, and compliant with privacy regulations, making it a trustworthy digital presence for the company.

P

PROJEKT PRO GmbH

projektpro.com

55

PROJEKT PRO GmbH operates a professional German-language website offering specialized software solutions for architects and engineers, focusing on project planning, controlling, time tracking, and cost calculation. The company positions itself as an experienced provider with over 30 years in the market and more than 24,000 users, emphasizing efficiency and project profitability. The website features comprehensive content including product features, customer testimonials, webinars, and case studies, reflecting a mature digital presence. Technically, the site is built on Drupal 10 with modern JavaScript libraries such as Alpine.js and Lottie Player, ensuring a responsive and accessible user experience. Integration with Google Tag Manager, Google Analytics, and Demodesk indicates a well-instrumented marketing and analytics setup. Cookie consent mechanisms comply with GDPR requirements, enhancing privacy compliance. Security posture is solid with HTTPS enforced and cookie consent implemented, though some standard security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and should be added for enhanced protection. No vulnerabilities or exposed sensitive data were found in the content. However, the WHOIS data is missing or indicates the domain is not registered, which is a significant anomaly that reduces trustworthiness. This discrepancy between an active professional website and absent domain registration data requires further investigation to confirm legitimacy. Overall, the website is professional, secure, and privacy-conscious, but the domain registration inconsistency is a critical risk factor that impacts business credibility and trust.

A

Arts Council England

artscouncil.org.uk

70

Arts Council England is the national development agency for creativity and culture in England, funded by the government and the National Lottery. The organization supports the arts, museums, and libraries by providing funding, research, and strategic guidance to foster cultural growth and accessibility. The website reflects a mature digital presence built on Drupal 10, incorporating modern JavaScript frameworks and consent management tools to ensure compliance and user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and well-optimized for accessibility and SEO, serving a broad audience including artists, cultural organizations, and the public.

F

First Sight AG

first-sight.ch

54

First Sight AG is a specialized ophthalmology practice located at Bahnhofplatz 9, Zurich, Switzerland, focusing on eye care for children and adults. The practice offers a range of services including pediatric eye examinations, amblyopia therapy, myopia management, and surgical interventions such as strabismus and cataract operations. The website is professionally designed with clear navigation, multilingual support (German and English), and comprehensive content tailored to patients seeking eye care services. Structured data and patient testimonials enhance trust and SEO performance. Technically, the site is built on WordPress with modern JavaScript frameworks and integrates Google Tag Manager for analytics. Security posture is good with HTTPS enforced, but lacks explicit security headers and a cookie consent mechanism, which are recommended for GDPR compliance. Contact information is clearly presented, reinforcing business credibility. Overall, the website reflects a mature digital presence suitable for a healthcare provider.

A

ARC Document Solutions, Inc.

e-arc.com

78

ARC Document Solutions, Inc. operates a professional website offering reprographics, digital printing, scanning, and document workflow solutions with a broad network of over 140 locations. The company targets businesses and enterprises requiring high-quality printing and document management services. The website demonstrates a mature digital presence with modern technologies such as WordPress, Alpine.js, and Google Tag Manager, ensuring good performance, SEO, and mobile responsiveness. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS data for the domain is a notable anomaly, suggesting either privacy protection or a data retrieval issue, which should be further investigated to confirm domain legitimacy. Overall, the website is professional, trustworthy, and well-optimized for its business purpose.

V

Verein LICHT INS DUNKEL

lichtinsdunkel.org

56

Licht ins Dunkel is a well-established Austrian non-profit organization dedicated to promoting social inclusion and supporting families and individuals with disabilities. With over 50 years of history, the organization operates primarily through charitable donations and project funding to foster societal cohesion and provide immediate financial assistance. The website reflects a professional and trustworthy presence, featuring comprehensive content and clear navigation tailored to its target audience of vulnerable groups and supporting entities in Austria. Technically, the site is built on WordPress with modern JavaScript frameworks and privacy-conscious analytics, ensuring a good user experience across devices. Security posture is solid with HTTPS and privacy-respecting analytics, though improvements can be made by enabling DNSSEC, adding security headers, and implementing cookie consent mechanisms. Overall, the domain registration and WHOIS data align well with the organization's legitimacy and long-standing presence.

A

Agrola Ladelösungen

ladeloesungen.ch

36

Agrola Ladelösungen is a Swiss-based company specializing in providing comprehensive charging solutions for electric vehicles. Their business model focuses on renting, operating, and monitoring charging stations, targeting tenants, property professionals, and fleet managers. The company positions itself as a niche provider in the energy and transportation sectors, offering tailored services for residential and commercial clients. The website reflects a professional and consistent brand image with clear navigation and relevant content, supporting their market presence since 2021. Technically, the website is built on WordPress using Elementor and several modern JavaScript libraries and plugins, indicating a mature digital infrastructure. The site is mobile-optimized and employs standard SEO practices, though performance is moderate. Analytics tools such as Google Analytics and LinkedIn Insight are integrated for user tracking and marketing purposes. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers and explicit security policies. No forms or sensitive data exposures were detected, but the absence of privacy and cookie policies represents a compliance gap, especially under GDPR. The WHOIS data aligns well with the business claims, supporting the domain's legitimacy. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

A

ASKÖ - Tirol (Arbeitsgemeinschaft für Sport und Körperkultur in Österreich, Landesverband Tirol)

askoe-fit.at

62

ASKÖ Tirol is a regional sports organization in Austria offering a wide range of sports courses, workshops, and health promotion services targeted at individuals and companies in Tirol. Their website demonstrates a mature digital presence with comprehensive content, clear navigation, and professional design. The technical infrastructure leverages modern web technologies including Alpine.js, Tailwind CSS, and Matomo analytics, hosted by a local provider with good performance and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with a detailed GDPR-compliant privacy policy and terms of service. Overall, the website reflects a trustworthy and credible organization with transparent contact information and legal disclosures.

A

ASKÖ Tirol

askoe-vereine.at

59

ASKÖ Tirol operates a Vereinsdatenbank platform targeted at clubs and existing customers in the Tirol region of Austria. The website provides login and registration functionality for club data management. The business is positioned as a regional service provider supporting sports and club organizations. Technically, the site uses modern frontend technologies including Laravel Livewire, Alpine.js, and Tailwind CSS, delivering a responsive and user-friendly experience. Security posture is solid with HTTPS and CSRF protections, though security headers are not evident and could be improved. Privacy compliance is strong with clear cookie consent and GDPR-aligned policies. Overall, the website is professional, trustworthy, and well-suited for its audience, though WHOIS data unavailability limits full domain trust verification.

K

Kulturbüro Riehen

eigenundartig.ch

69

Riehen Events is a municipal cultural event platform operated by the Kulturbüro Riehen, providing comprehensive information about local cultural events, exhibitions, and community activities in Riehen, Switzerland. The website serves residents and visitors by offering event calendars, venue information, permit guidance, and cultural funding details. It supports event organizers with tools to submit events and promotes local culture effectively. Technically, the site is built on Drupal 10 with modern JavaScript libraries such as Alpine.js and Splide.js, ensuring a responsive and accessible user experience. The use of Matomo analytics with a cookie consent mechanism demonstrates a commitment to privacy and GDPR compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-aligned with its municipal purpose.

R

ROTTLER

rottler.de

69

ROTTLER is a German retail and service company specializing in optical and hearing products including eyeglasses, sunglasses, hearing aids, and contact lenses. The company operates both physical stores and an online shop, targeting end customers in Germany seeking vision and hearing solutions. The website is professionally designed, content-rich, and well-structured, providing comprehensive product information, offers, and appointment booking services. Technically, the site is built on the HubSpot CMS platform, leveraging modern JavaScript frameworks and marketing tools such as Google Tag Manager and Usercentrics for consent management. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response contacts are not published. Overall, the site demonstrates a mature digital presence with good privacy compliance and business credibility.

T

TMC Live GmbH

tmc-live.de

40

TMC Live GmbH is a German full-service event agency specializing in the conception, planning, and execution of B2B events including hybrid and digital formats. The company positions itself as a creative and reliable partner focused on sustainable and emotionally engaging event experiences. Their market presence is supported by a professional website showcasing extensive services, client testimonials, and references, indicating a solid reputation in the event management sector. Technically, the website uses modern frameworks such as Alpine.js and Swiper.js, is built on October CMS, and is hosted on agenturserver infrastructure. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not found. Overall, the website reflects a mature digital presence with strong business credibility and compliance with privacy regulations.

K

Kunst Raum Riehen

kunstraumriehen.ch

70

Kunst Raum Riehen is a publicly funded cultural institution serving as the official exhibition space for contemporary art in the municipality of Riehen, Switzerland. The website provides comprehensive information about current and upcoming exhibitions, events, and art mediation activities, targeting a general audience interested in culture and the arts. The institution operates with free public access and maintains active engagement through newsletters and social media channels. Technically, the website is built on Drupal 10, leveraging modern JavaScript frameworks such as Alpine.js and Splide.js for interactive components. It employs Matomo analytics with privacy-conscious settings and a cookie consent mechanism, reflecting a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. From a security perspective, the site enforces HTTPS, uses cookie consent, and avoids exposing sensitive data. However, it lacks explicit security policies and incident response contacts, and could improve by adding security headers and formal vulnerability disclosure mechanisms. Overall, the security posture is solid but could benefit from enhanced transparency and formal documentation. The domain registration aligns well with the website's municipal identity, showing no suspicious patterns and indicating high legitimacy. The website content is safe for general audiences, with no adult or questionable material. The overall risk is low, and the site demonstrates good compliance with privacy regulations such as GDPR.

A

Auto Centrum Lass GmbH

autocentrum-lass.de

67

Auto Centrum Lass GmbH is a medium-sized regional automobile dealership specializing in Toyota vehicles, serving customers primarily in Schleswig-Holstein, Germany. The company offers a comprehensive range of services including new and used car sales, financing options, vehicle servicing, test drives, and electric mobility solutions. Their market position is that of a trusted Toyota partner with a strong local presence. The website reflects a professional and consistent brand image with good content quality and clear navigation tailored to car buyers and service customers. Technically, the site is built on WordPress with Elementor and leverages modern web technologies such as Alpine.js and Swiper.js, hosted on INWX infrastructure. The site is mobile-optimized and implements structured data for SEO benefits. Security-wise, the website enforces HTTPS, uses security headers, and provides a cookie consent mechanism compliant with GDPR. However, it lacks explicit security policy and incident response information, which could be improved. Overall, the domain registration data aligns well with the website content, supporting the legitimacy of the business.

P

Pemerintah Dinas Lingkungan Hidup Plaju

dlhplaju.com

57

Dinas Lingkungan Hidup Plaju is a government environmental agency serving the Plaju region in Indonesia, focusing on environmental management, waste control, and pollution monitoring. The website presents a professional and consistent brand image with clear navigation and relevant content targeted at local residents and stakeholders. Technically, the site uses modern web technologies such as Laravel Livewire, Alpine.js, and Swiper.js, providing a responsive and moderately performant user experience. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and legitimate, but improvements in security and compliance documentation are recommended.

D

Dinas Lingkungan Hidup Bangko

dlhbangko.com

49

Dinas Lingkungan Hidup Bangko operates as a local government environmental agency in Bangko, Indonesia, focusing on environmental management, waste control, pollution prevention, and public service delivery. The website serves as an information portal for residents and stakeholders, offering news, service details, and public engagement forms. Technically, the site is built on a Laravel Livewire framework with modern JavaScript libraries such as Swiper.js and Alpine.js, providing a responsive and user-friendly experience. Security posture is moderate with HTTPS enforced and CSRF protection visible, but lacks comprehensive security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is functional and trustworthy for its government role but would benefit from enhanced security and privacy measures.

D

Dinas Lingkungan Hidup Pekanbaru

dlhpekanbaru.com

57

Dinas Lingkungan Hidup Pekanbaru is a government environmental agency dedicated to managing and preserving the environment in Pekanbaru, Indonesia. The website serves as an official portal providing information on environmental programs, public services such as permits, complaints, and supervision, and community engagement initiatives. The site targets local residents, government officials, and environmental stakeholders. Technically, the website employs modern frontend technologies including Laravel Livewire, Alpine.js, and Swiper.js, hosted with Cloudflare DNS and registered via NameCheap. The site is mobile responsive and offers a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and formal privacy or cookie policies. Overall, the site is trustworthy and safe for general audiences, reflecting its government affiliation and public service mission.

D

Dinas Lingkungan Hidup Marelan

dlhmarelan.com

57

Dinas Lingkungan Hidup Marelan operates as a government environmental agency focused on managing and preserving the environment in Marelan, Medan, Indonesia. The website serves as an official portal providing information about the agency's mission, services, news, and public engagement opportunities. The agency emphasizes environmental supervision, law enforcement, waste management, and community involvement. The domain is newly registered in 2024, consistent with the agency's founding year, and the website content aligns with the stated business purpose. Technically, the website uses modern web technologies including Laravel Livewire, Alpine.js, and Swiper.js, providing a responsive and user-friendly experience. The site is hosted with DNS managed by Cloudflare and registered via NameCheap. Performance is moderate with good mobile optimization, though accessibility and SEO could be improved. No major technical issues or blocking mechanisms were detected. From a security perspective, the site uses HTTPS and has domain transfer protection but lacks DNSSEC and security headers, which are recommended for enhanced protection. There is no visible privacy policy, cookie consent, or incident response information, indicating compliance gaps with privacy regulations such as GDPR. No forms collecting sensitive data were found on the homepage, reducing immediate risk exposure. Overall, the website is trustworthy and professional for a government agency but would benefit from improved privacy compliance and security hardening. Strategic recommendations include adding privacy and cookie policies, implementing security headers, enabling DNSSEC, and publishing incident response contacts to enhance trust and compliance.

D

Dinas Lingkungan Hidup Kabupaten Aceh Singkil

dlhsingkil.com

56

Dinas Lingkungan Hidup Kabupaten Aceh Singkil is a local government environmental agency responsible for managing environmental quality, waste management, pollution control, and public environmental services in Aceh Singkil Regency, Indonesia. The website serves as an official portal providing information, news, services, and contact details to residents and stakeholders. The business model is a government service provider with a focus on environmental stewardship and community engagement. Technically, the website is built using modern web technologies including Laravel Livewire, Alpine.js, and Swiper.js, hosted with domain registration via NameCheap and DNS managed by Cloudflare. The site is mobile optimized with good navigation and content structure, though some SEO and accessibility features could be improved. Performance is moderate with no major issues detected. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks important security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. No incident response or vulnerability disclosure information is provided. The site shows no signs of malicious activity or adult content, maintaining a safe environment for general audiences. Overall, the website is a credible and professional government portal with room for improvement in privacy compliance and security hardening. Strategic enhancements in these areas would strengthen trust and regulatory adherence.