Security Directory

M

Městská sportovní zařízení Benešov, s.r.o.

mszbenesov.cz

54

Městská sportovní zařízení Benešov, s.r.o. operates a municipal sports and recreational facility network in Benešov, Czech Republic. The company offers a variety of services including a winter stadium, swimming pools and wellness centers, football and nohejbal courts, workout and skatepark areas, a climbing wall, a swimming school, a hotel, and summer day camps. The website is professionally designed, targeting local residents, families, schools, and sports enthusiasts. It serves as an information and booking platform for their facilities and services. Technically, the website is built on WordPress and uses modern JavaScript libraries such as Splide.js for sliders and Leaflet.js for maps. The site is mobile-optimized and performs moderately well, with good SEO practices and basic accessibility features. The hosting provider is not explicitly identified, but HTTPS is enforced, ensuring secure communication. From a security perspective, the site uses HTTPS and obfuscates email addresses to reduce spam. However, it lacks visible security headers and does not display privacy or cookie policies, which are important for GDPR compliance. No forms or analytics scripts were detected on the homepage, indicating minimal data collection. The WHOIS data is unavailable or privacy protected, which is common for such entities and does not raise immediate concerns given the professional presentation and contact transparency. Overall, the website presents a trustworthy and professional image with room for improvement in privacy compliance and security header implementation. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and publishing incident response contacts to enhance trust and compliance.

Fotbalunas.cz is a well-established Czech media platform focused on amateur football, providing news, photo galleries, match tips, and community discussions. Owned by KPK sport s.r.o. since 2014, it holds a strong position in the Czech amateur football community with a medium-sized operation and consistent branding. The website leverages modern web technologies and integrates multiple advertising and tracking services to monetize its content. While the site is mobile-optimized and offers good user experience, it lacks explicit privacy and cookie consent mechanisms, which impacts GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and publishing security policies. Overall, the domain registration and website content align well, indicating a legitimate and trustworthy entity.

Sport Černošice operates as a local community sports facility portal providing information and reservation services for sports venues in Černošice, Czech Republic. The website is managed by WEBHOUSE, s.r.o., a Czech company specializing in web design and CMS solutions. The site targets local residents and sports enthusiasts, offering news, contact details, and links to reservation systems. The business model focuses on information dissemination and facility management support rather than direct commercial transactions. Technically, the website uses the vismo CMS platform with standard web technologies including HTML5, CSS, and JavaScript, supplemented by Google Translate for multilingual support. The site demonstrates moderate performance and basic mobile optimization but lacks advanced accessibility features. Security posture is moderate with HTTPS usage implied but no visible security headers or explicit security policies published. Privacy compliance is basic with presence of privacy and cookie policies but no active consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and trustworthy for its intended local audience but could benefit from improved security and privacy practices.

V

Vectron Systems AG

bonvito.net

67

bonVito is a German-based multichannel marketing platform operated by Vectron Systems AG, specializing in customer loyalty, e-payment, online table reservations, and live reporting solutions primarily for retail and hospitality sectors. The platform integrates with Vectron's POS systems, offering a comprehensive suite of marketing tools such as coupons, digital stamp cards, and direct discounts. The website is professionally designed, mobile-optimized, and provides a clear navigation structure, reflecting a mature digital presence. Technically, the site is built on TYPO3 CMS and leverages modern marketing and analytics technologies including Google Tag Manager, Facebook Pixel, and Cookiebot for GDPR-compliant cookie consent management. Security posture is generally good with HTTPS enforced and no exposed sensitive data, though the absence of explicit security headers and vulnerability disclosure mechanisms suggests room for improvement. The WHOIS data is notably absent, raising concerns about domain registration transparency, but the overall business credibility is supported by the professional website and parent company association. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing clearer contact and legal information to strengthen trust and compliance.

E

Erhvervsstyrelsen

regelforum.dk

48

Regelforum.dk is the official website of a Danish government advisory forum established in 2019 under the Danish Business Authority (Erhvervsstyrelsen). The forum consists of 21 members representing a broad cross-section of Denmark and focuses on recommending simpler regulatory frameworks for businesses, both at national and EU levels. The website provides comprehensive information about the forum's activities, recommendations, and news updates, targeting Danish businesses and government stakeholders. The site is professionally designed, mobile-optimized, and uses Drupal CMS with clear navigation and consistent branding. From a technical perspective, the website employs modern web technologies including Drupal, JavaScript, and CSS, with SVG logos and responsive design. It includes a cookie consent mechanism and uses Piwik Pro for analytics, indicating a moderate level of digital maturity. However, some security best practices such as DNSSEC and security headers are not enabled or visible, suggesting room for improvement in security hardening. Security posture is adequate with no visible vulnerabilities or exposed sensitive data, but lacks explicit security policies or incident response contacts. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, the website is trustworthy and professional, reflecting its government affiliation and purpose. Strategically, the site should enhance security by enabling DNSSEC, implementing security headers, and publishing a vulnerability disclosure or security policy. These steps will improve trust and resilience against cyber threats while maintaining compliance and user confidence.

E

Erhvervsstyrelsen

nemhandel.dk

66

Nemhandel.dk is a Danish government-operated platform managed by Erhvervsstyrelsen (Danish Business Authority) that facilitates electronic invoicing and e-commerce document exchange primarily for public sector entities and businesses in Denmark. The platform enjoys a strong market position with over 67,000 registered recipients and processes over 31 million e-commerce documents annually, reflecting high adoption and trust within its target audience. The website is well-branded, consistent, and professionally designed, supporting a good user experience and accessibility. Technically, the site is built on Drupal CMS with modern web technologies, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, although some security headers and DNSSEC are missing. Privacy compliance is strong, with clear privacy and cookie policies aligned with GDPR requirements. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration is consistent with the official government entity, enhancing legitimacy and trust.

K

Komitéen for god Fondsledelse

godfondsledelse.dk

64

Komitéen for god Fondsledelse is a Danish government committee under Erhvervsstyrelsen focused on providing nineteen recommendations regarding foundation governance, including communication, board composition, and leadership remuneration. The website serves as an authoritative resource for foundation boards and stakeholders, offering guidance tools, annual reports, and news updates. The site is well-branded, professionally designed, and consistently maintained with clear contact information and official affiliation, positioning it as a trusted source in its niche. Technically, the website is built on Drupal CMS with modern web technologies such as SVG graphics and JavaScript. It is mobile-optimized and accessible, with good SEO practices and a cookie consent mechanism in place. Performance is moderate, and while HTTPS is enabled, some security headers and DNSSEC are missing, indicating room for security enhancements. From a security perspective, the site demonstrates basic best practices including HTTPS and cookie consent but lacks explicit security policies, incident response contacts, and advanced security headers. No vulnerabilities or suspicious content were detected. The domain registration is consistent with the website's government affiliation and business purpose, enhancing trustworthiness. Overall, the website is a reliable, professional, and secure platform for its intended audience, with recommendations to improve security headers and DNSSEC to further strengthen its posture.

D

Decentral Erhvervsfremme

eufonde.dk

59

EUfonde.dk is an official Danish government portal providing detailed information about EU funding programs available in Denmark for the 2021-2027 period. The site targets Danish citizens, businesses, and public sector stakeholders interested in regional development, social funds, green transition, and digitalization initiatives supported by the EU. It serves as a centralized informational hub with campaign highlights, news, and links to partner government sites. Technically, the site is built on Drupal CMS with modern web standards, good mobile optimization, and accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements like DNSSEC and security headers could enhance protection. The domain registration is consistent with the business purpose and timeline, indicating legitimacy. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

Mixmag.shop is an official e-commerce platform selling branded merchandise related to Mixmag, a recognized brand in global dance music culture. The website is professionally designed using the Shopify platform, featuring modern technologies and a good user experience optimized for mobile and desktop users. The store targets a global audience with a focus on UK and European customers, as indicated by currency and localization settings. The business model centers on retailing limited-edition apparel and accessories, leveraging Mixmag's brand recognition in the music and media industry. Technically, the site employs Shopify's Dawn theme, integrates Google Fonts, and uses tracking pixels for marketing and analytics. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing and DNSSEC is not enabled. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, the domain WHOIS data raises concerns due to a future creation date and geographic mismatch between registrant country and website target audience, which impacts business credibility. No direct contact information or terms of service pages were found, limiting transparency. Overall, the site is functional, secure, and professional but would benefit from improved domain legitimacy and enhanced transparency.

K

Kreis Dithmarschen

dithmarschen.de

58

Kreis Dithmarschen operates as a regional government authority in Germany, providing local government information and public services to residents and visitors. The website is built on TYPO3 CMS, a robust open-source content management system, and integrates modern tools such as Cookiebot for cookie consent management and digiAccess for accessibility enhancements. Multi-language support is provided via Google Translate, catering to a broader audience. The site demonstrates good content quality, professional design, and clear navigation, aligning with its government service mission. Security posture is adequate with HTTPS enforced and consent mechanisms in place, though there is room for improvement in security headers and explicit privacy documentation. Overall, the domain registration and hosting details are consistent with an official government entity, supporting the site's legitimacy.

S

STEINEL

steinel.de

60

STEINEL is a German manufacturing company specializing in sensor and lighting technology. The website presents a professional and consistent brand image focused on industrial and commercial customers. The technical infrastructure includes modern JavaScript tracking tools such as Google Tag Manager, hosted on German Telekom servers, indicating a stable hosting environment. However, the website lacks visible privacy and cookie policies, security policies, and contact information, which are critical for compliance and user trust. Security posture is minimal with no detected security headers or vulnerability disclosures. Overall, the website is functional and professional but requires improvements in privacy compliance and security transparency to enhance trust and regulatory adherence.

S

Signify Holding

signify.com

67

Signify Holding operates as a global leader in connected LED lighting products, systems, and services, serving both business and private customers. The company maintains a strong market position with a comprehensive portfolio including well-known brands such as Philips and Interact. The website reflects a mature digital presence with professional design, clear navigation, and targeted content for various customer segments including lighting professionals and system integrators. Technically, the site is built on Adobe Experience Manager, leveraging modern web technologies and performance optimization tools. Security posture is robust with HTTPS enforcement, security headers, and no visible vulnerabilities. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the website demonstrates high professionalism and trustworthiness, although the lack of WHOIS data slightly reduces domain registration transparency.

S

SCHMITZ-WILA GmbH

schmitz-wila.com

54

SCHMITZ-WILA GmbH is a German medium-sized manufacturing company specializing in advanced lighting solutions, including multifunctional linear light systems and LED technologies. The company targets architects, designers, and commercial clients, offering both products and project-based lighting solutions. Their website demonstrates a professional digital presence with detailed product information, project showcases, and customer engagement tools such as a product configurator and newsletter subscription. Technically, the site is built on TYPO3 CMS, leveraging modern JavaScript libraries and Google Tag Manager for analytics, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements could be made by enabling DNSSEC and adding security headers. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

K

KAISER GmbH & Co. KG

kaiser-elektro.de

65

KAISER GmbH & Co. KG operates a professional website focused on electrical installation products and systems, targeting business customers primarily in Germany and internationally. The company offers a broad portfolio including boxes, housings, cable glands, and specialized installation solutions emphasizing energy efficiency and fire protection. The website reflects a mature B2B business model with a consistent brand presence and a well-structured product catalog. Technically, the website is built on the Shopware e-commerce platform, utilizing modern web technologies such as JavaScript, CSS, and HTML5. It integrates third-party services like Signalize for marketing and eTracker for analytics, alongside Google reCAPTCHA for bot protection. The site is mobile-optimized with good SEO and basic accessibility features, hosted on servers associated with internet1.de. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. Security headers are likely present, and no critical vulnerabilities or exposed sensitive data were detected in the analyzed content. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent, representing areas for improvement. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic enhancements in security transparency and contact availability would further strengthen trust and operational resilience.

F

FABAS LUCE S.P.A.

fabasluce.it

53

Fabas Luce S.p.a. is an established Italian manufacturer specializing in decorative and technical lighting solutions, serving primarily specialized retailers and professional clients. The company offers a broad product portfolio including modular lighting systems, architectural lighting, and naval lighting, complemented by a commitment to sustainability through photovoltaic energy production. Their market position is supported by a long domain history dating back to 1999 and a professional digital presence. Technically, the website employs modern JavaScript frameworks and asynchronous loading techniques, integrating third-party services such as YouTube and Google Tag Manager for analytics and media. The site is mobile-optimized with good navigation and design quality, though some SEO and accessibility features could be enhanced. Hosting and CMS details are not explicitly identified. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks advanced security headers and DNSSEC. There is no visible cookie consent mechanism or comprehensive privacy policy addressing GDPR compliance, which represents a compliance gap. Incident response and security policies are not published, limiting transparency. Overall, the website is professional and trustworthy with moderate technical and security maturity. Strategic improvements in privacy compliance, security headers, and DNS security would enhance the security posture and regulatory adherence, reducing risk and improving user trust.

Ř

ŘÍHA

naholou.cz

47

The website 'Na holou' represents a small cultural theatre group based in the Czech Republic, active since at least 2005. It offers information about theatrical performances, photo and video galleries, and contact details primarily via email and Facebook. The business model appears to be focused on local cultural entertainment with a niche audience. Technically, the site is built using RapidWeaver CMS with common JavaScript libraries and Google Fonts, but lacks modern security and privacy features. The site uses HTTP URLs without HTTPS enforcement, lacks privacy and cookie policies, and does not implement security headers or secure forms. Overall, the security posture is weak, and privacy compliance is minimal. The domain age and WHOIS data support the legitimacy of the site as a long-standing small cultural entity. Strategic improvements in security, privacy compliance, and HTTPS adoption are recommended to enhance trust and protect visitors.

CLASIC CZ s.r.o. is a Czech manufacturing company specializing in industrial furnaces and related devices, with a well-established presence since 1998. Their website showcases a broad portfolio of furnace types and control systems, targeting industrial clients requiring specialized thermal equipment. The company appears to operate primarily in the manufacturing sector within the Czech Republic. Technically, the website is built using Nicepage CMS with standard web technologies such as HTML5, CSS3, JavaScript, and jQuery, and is hosted via a Czech hosting provider. The site is mobile-optimized and presents content clearly, though it lacks advanced SEO and accessibility features. Security posture is basic, with no evident security headers or published security policies, and no HTTPS status was determinable from the provided data. Privacy compliance is minimal, as no privacy or cookie policies are found. Overall, the website is functional and professional but would benefit from enhanced security and compliance measures.

A

Alkom Security, a.s.

alkom.cz

56

Alkom Security, a.s. is a Czech Republic-based company specializing in security and low-voltage systems, operating since 1991. The company positions itself as a market leader offering comprehensive security solutions including installation, remote monitoring, and servicing for residential, commercial, and high-risk clients. Their services also extend to data cabling and mechanical security consulting. The website reflects a mature business with consistent branding and detailed service descriptions, targeting both individual homeowners and institutional clients. Technically, the site is built on WordPress hosted on WordPress.com, utilizing Jetpack for security and analytics. The site is mobile-optimized with good SEO practices but lacks some advanced security headers and explicit cookie consent mechanisms. Security posture is solid with HTTPS and no visible vulnerabilities, though incident response and security policies are not explicitly published. Overall, the site is professional, trustworthy, and compliant with GDPR basics, though improvements in privacy and security transparency are recommended.

The website parkopedia.com is currently inaccessible due to an AWS WAF security verification challenge page that requires human CAPTCHA completion. This blocks access to the actual website content, preventing extraction of business, privacy, or contact information. The domain is registered with GoDaddy.com, LLC since 2007, indicating a mature and legitimate domain. Hosting appears to be on AWS infrastructure with AWS WAF protection in place. Due to the blocked content, no detailed analysis of the website's business model, services, or compliance posture is possible. The security posture is partially observable only in that AWS WAF is used to protect the site from automated access. Overall, the site is legitimate but inaccessible for detailed analysis at this time.

A

AdgravityGroup S.L

neural.one

65

Neural.ONE is a small technology company based in Spain, operated by AdgravityGroup S.L, specializing in AI-powered marketing attribution solutions. Their website presents a professional and consistent brand image focused on delivering real-time marketing insights to optimize campaign ROI. The company targets marketing professionals and businesses seeking advanced attribution analytics. Technically, the website is built on the Squarespace platform, leveraging modern web technologies including Google reCAPTCHA for bot protection and Google Fonts for typography. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security posture is strong with HTTPS and HSTS enabled, though DNSSEC is not configured. Privacy compliance is basic, with a cookie policy and consent mechanism present but lacking a published privacy policy or terms of service. No direct contact information or incident response details are publicly available, which limits transparency. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

M

Město Milovice

mesto-milovice.cz

48

Město Milovice operates an official municipal website serving residents and visitors with comprehensive local government information, including news, public notices, contacts, and event calendars. The site is positioned as the authoritative source for municipal services in Milovice, Czech Republic, and targets local citizens and stakeholders. The business model is a government service portal focused on transparency and community engagement. Technically, the website uses a modern CMS platform (Vismo), employs HTTPS for secure communications, integrates Google reCAPTCHA for form security, and offers multilingual support via Google Translate. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers are missing. From a security perspective, the site maintains a solid posture with encrypted connections and anti-bot measures but lacks explicit incident response contacts and advanced security headers. No vulnerabilities or suspicious content were detected. Privacy compliance is basic but present, with GDPR-related information and cookie policy available. Overall, the website is trustworthy, professional, and well-maintained, with a strong legitimacy score based on domain age and WHOIS data. Strategic improvements could enhance security headers and incident response transparency to further strengthen trust and compliance.

O

Obec Nučice

nucice.eu

45

The website nucice.eu serves as the official digital presence of the municipality of Nučice in the Czech Republic. It provides residents and visitors with essential local government information, including official announcements, event calendars, public documents, and contact details. The site targets local citizens and stakeholders interested in municipal affairs and community events. The business model is that of a governmental public service portal, focusing on transparency and community engagement. The website maintains a consistent brand identity aligned with municipal standards and offers good content quality and navigation.

M

Město Rokycany

rokycany.cz

48

The website rokycany.cz serves as the official digital presence of the city of Rokycany, Czech Republic. It provides comprehensive information about municipal services, local news, cultural and sports events, public notices, and online services for residents and visitors. The site is well-established, with a domain age dating back to 1997, reflecting a mature and stable online presence. The content is primarily in Czech and targets local citizens, businesses, and tourists. The business model is centered on public administration and community engagement, offering transparent access to city governance and services. Technically, the website employs a proprietary CMS (vismo) common among Czech municipalities, leveraging modern web technologies such as HTML5, CSS3, JavaScript, Google reCAPTCHA for form security, and Google Translate for multilingual support. The site is mobile-optimized and features a clear navigation structure, although accessibility features are basic. Performance is moderate, with external dependencies on Google fonts and CDN-hosted libraries. From a security standpoint, the site uses HTTPS and integrates Google reCAPTCHA to protect forms from abuse. However, it lacks explicit security headers and a dedicated security or incident response policy page, which are areas for improvement. Privacy compliance is addressed with a privacy policy and cookie policy, but no active cookie consent mechanism is implemented. Contact information is clearly provided, enhancing trust and transparency. Overall, rokycany.cz is a trustworthy and professional municipal website with good content quality and business credibility. Strategic recommendations include enhancing security headers, implementing cookie consent mechanisms, and publishing detailed security and incident response policies to strengthen compliance and user trust.

H

Hopae sool

hopae.cz

54

Hopae.cz is a website dedicated to the Korean martial art Hopae Sool, providing detailed information about its history, training schedules, events, membership fees, and contact details primarily for the Czech Republic audience. The site targets martial arts enthusiasts and practitioners of all ages, offering training sessions, seminars, and membership management. The business operates as a small martial arts association founded in 2016, with a clear focus on community and education rather than commercial scale operations. Technically, the website employs standard web technologies including JavaScript, Google Analytics, and likely Bootstrap for UI components. The site is mobile responsive with good navigation and content structure, although some accessibility and SEO optimizations could be improved. Performance is moderate, and no CMS or hosting provider details are evident from the content. From a security perspective, the site uses HTTPS but lacks visible security headers and privacy/cookie policies, indicating gaps in compliance and security best practices. No WHOIS data was found, which reduces domain trustworthiness and raises questions about domain registration legitimacy. Contact information is clearly provided, enhancing business credibility. Overall, the site is safe with no adult or malicious content detected. Strategically, the site would benefit from implementing privacy and cookie policies with consent mechanisms, improving security headers, and verifying domain registration details to enhance trust and compliance. These improvements would strengthen the security posture and user trust while maintaining the site's educational and community focus.

M

Městský úřad Spálené Poříčí

spaleneporici.cz

50

The website spaleneporici.cz serves as the official digital presence of the municipal office of Spálené Poříčí, a town in the Czech Republic. It provides residents and visitors with comprehensive information about the town, including local news, official documents, event calendars, and tourism-related content. The site targets local citizens, tourists, and stakeholders interested in municipal services and community activities. The business model is government/public service oriented, focusing on transparency and community engagement. The domain is well-established since 2001, reinforcing its credibility and trustworthiness. Technically, the website employs a modern tech stack including HTML5, CSS, JavaScript, and integrates Google services such as Analytics, Tag Manager, reCAPTCHA, and Translate. It uses the vismo CMS platform, which is common for Czech municipal websites. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting and domain registration are consistent with Czech providers, supporting local presence. From a security perspective, the site enforces HTTPS, uses Google reCAPTCHA to protect forms, and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit published security policies, incident response contacts, and vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The security posture is solid but could be enhanced by adding security headers and formal policies. Overall, the website is a trustworthy, well-maintained municipal portal with good content quality and user experience. It demonstrates compliance with privacy regulations and employs standard security practices. Strategic improvements in transparency around security policies and incident handling would further strengthen its posture.

W

Wolf-Technik GmbH

wolf-technik.com

42

Wolf-Technik GmbH is a medium-sized German company specializing in the planning, production, installation, and service of heating and cooling technology solutions, including Wärmepumpen and Kälteanlagen. The company has a strong regional presence in northern Germany with over 900 installed heat pump systems and a global distribution network for refrigeration units. Their website reflects a professional business model focused on B2B clients in the energy and industrial sectors. Technically, the website is built on the Weblication CMS platform using standard web technologies like jQuery and JavaScript. While the site has good content quality and navigation, it lacks modern security implementations such as HTTPS and DNSSEC, which impacts its security posture. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional but requires security and privacy improvements to meet modern standards.

H

Heinz Tesch GmbH & Co. KG

tesch-sylt.de

49

Heinz Tesch GmbH & Co. KG is a well-established installer company based on Sylt, Germany, specializing in heating, sanitary, ventilation, and electrical building technology. Founded in 1969, the company serves both private and commercial customers with a strong emphasis on quality, customer service, and modern technology solutions. The website reflects a mature digital presence with comprehensive service descriptions, customer engagement features, and a clear local market focus. Technically, the site is built on TYPO3 CMS, employs modern web technologies, and integrates Google Analytics and YouTube for marketing and engagement. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in incident response and security policy disclosures. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting the company's reputable market position.

S

S.A.T. Alternativtechnik

alternativtechnik.de

50

S.A.T. Alternativtechnik is a small German company specializing in the planning, installation, and maintenance of solar and alternative energy systems, including heating solutions. The company targets private and commercial customers seeking to reduce energy costs and increase energy independence. The website is professionally designed using WordPress with the Divi theme and includes structured data to enhance search engine visibility. Technical infrastructure includes Google Tag Manager and Rank Math SEO plugin, with Google Analytics present but disabled by default in the EU region to comply with privacy regulations. Security posture is moderate with HTTPS enforced and consent mode implemented, but lacks advanced security headers and published security policies. Overall, the website is accessible, trustworthy, and provides clear contact information, though it would benefit from enhanced privacy and security disclosures.

N

Netzwerkagentur Erneuerbare Energien Schleswig-Holstein

ee-sh.de

53

The website for Netzwerkagentur Erneuerbare Energien Schleswig-Holstein (EE.SH) serves as a regional network agency focused on supporting renewable energy initiatives in Schleswig-Holstein, Germany. It promotes regional value creation, innovation, and digital transformation for companies involved in renewable energy sectors such as wind, solar, bioenergy, and hydrogen. The site is built on the Weblication® CMS platform and hosted via DomainControl name servers, indicating a standard commercial hosting setup. The content is professionally presented with good design and navigation, targeting regional businesses and stakeholders in the energy sector. From a technical perspective, the website uses modern HTML5, CSS3, and JavaScript technologies with a responsive design optimized for mobile devices. However, no advanced frameworks or analytics tools were detected. The site lacks visible privacy and cookie policies, which is a compliance gap. No contact emails or phone numbers were explicitly found, though a physical address is provided in meta tags. Security posture is moderate but could be improved. There is no evidence of security headers or incident response contacts, and no vulnerability disclosure or security.txt files were found. The SSL configuration status is unknown from the provided data. The domain WHOIS data is minimal but does not indicate privacy protection or suspicious patterns, though registrant details are not fully available. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security best practices, and clearer contact information to improve trust and regulatory adherence.

W

Watt 2.0

wattzweipunktnull.de

57

Watt 2.0 is a German industry association focused on renewable energy, aiming to connect companies, academia, and policymakers to strengthen the renewable energy sector and promote sustainable solutions. The website presents a professional and consistent brand image with content primarily in German, targeting stakeholders in the energy sector. The business model is that of a trade association, providing networking and advocacy services within the renewable energy industry. Technically, the website uses modern web technologies with responsive design and good SEO practices, hosted on UI-DNS infrastructure. Security posture is moderate; while HTTPS is assumed, no explicit security headers or advanced policies are detected. Cookie consent mechanisms are implemented, but privacy and terms of service policies are missing, indicating room for compliance improvement. Overall, the site is accessible, safe, and professional but would benefit from enhanced transparency and security practices.

L

Landesverband Erneuerbare Energien Schleswig-Holstein e.V.

lee-sh.de

50

The Landesverband Erneuerbare Energien Schleswig-Holstein e.V. (LEE.SH) is a regional non-profit association dedicated to promoting renewable energy and sustainable climate protection in Schleswig-Holstein, Germany. The organization serves as a representative body for the renewable energy sector, providing advocacy, information, events, and member services to stakeholders and the public. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its regional audience. Technically, the site uses a custom CMS (Multifenster App), is hosted via Goneo, and employs Matomo analytics for privacy-conscious user tracking. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response visibility. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements.

G

Gesellschaft für Energie und Klimaschutz Schleswig-Holstein

eksh.org

54

Gesellschaft für Energie und Klimaschutz Schleswig-Holstein (EKSH) is a German non-profit organization dedicated to promoting projects in energy and climate protection. The organization supports scientific research, education, and community initiatives focused on sustainable mobility, renewable energy, sector coupling, and energy efficiency. EKSH positions itself as a regional leader in Schleswig-Holstein, providing approximately 2 million euros annually for pilot projects and programs. The website is professionally designed, well-structured, and provides comprehensive information about its themes, projects, and news updates. Technically, the site is built on TYPO3 CMS, uses HTTPS, and includes modern web technologies such as Google reCAPTCHA for form security. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. However, the WHOIS data for the domain is unavailable, which limits domain registration trust verification. Despite this, the website's content quality, contact transparency, and social media presence support its legitimacy.

T

TodaysWeb Ltda.

bloggtavlingen.se

54

The website bloggtavlingen.se operates as a niche Swedish platform organizing blog competitions with monetary prizes and premium service incentives. It targets bloggers and blog readers interested in participating in contests. The business model revolves around hosting competitions sponsored by various companies, with a small but engaged audience. The site content is well-structured and relevant, though some dated references suggest limited recent activity. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript, and integrates third-party services such as Google Analytics and social media widgets. The site is served over HTTPS, indicating a baseline security posture, but lacks advanced security headers and comprehensive privacy or cookie policies. Mobile optimization and accessibility are basic, with room for improvement. From a security perspective, the site shows no immediate vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies, as well as missing WHOIS domain registration data, reduce overall trustworthiness. The lack of clear contact information and incident response channels further limits security maturity. Overall, the site is functional and moderately professional but would benefit from enhanced privacy compliance, improved security practices, and better transparency regarding ownership and contact details to increase trust and compliance with regulations.

S

Stadtwerke Ahlen

stadtwerke-ahlen.de

62

Stadtwerke Ahlen is a regional utility provider based in Germany, offering essential services including electricity, gas, water supply, and electromobility solutions. The company positions itself as a trusted local energy supplier with a focus on sustainability and customer service, supported by recognized certifications and awards. Their digital presence is built on the Neos CMS platform with modern PHP frameworks, integrating privacy-conscious analytics and cookie consent management. The website is well-structured, mobile-optimized, and accessible, providing clear navigation and comprehensive service information. Security posture is strong with HTTPS enforcement and secure customer portals, though explicit security headers and incident response contacts could be improved. Overall, the domain registration and website content are consistent and trustworthy, reflecting a legitimate and professional business.

P

Pumpkin TD | Official website of the known Warcraft III Map

pumpkintd.com

52

Pumpkin TD is a fan-made custom tower defense map for Warcraft III, offering players a strategic and engaging gameplay experience. The website serves as the official hub for downloads, community engagement via Discord, and support through Patreon. It features rich multimedia content including video guides and changelogs, targeting Warcraft III players and tower defense enthusiasts. The business model is primarily community-driven with free distribution and optional supporter contributions. Technically, the website is built using modern web technologies including HTML5, CSS3, JavaScript, and integrates third-party services such as YouTube IFrame API, Google Tag Manager, and Redistats for analytics. The site is mobile-optimized, accessible, and performs well with fast loading times. However, it lacks some security headers and formal privacy or cookie policies. From a security perspective, the site enforces HTTPS and implements good practices such as ARIA labels and keyboard navigation support. No forms collect sensitive data, reducing risk exposure. However, the absence of privacy and cookie policies, security headers, and incident response contacts indicates areas for improvement. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the active and professional website presence. Overall, Pumpkin TD's website is a well-designed, content-rich platform with strong community engagement but requires enhancements in privacy compliance, security headers, and domain registration transparency to improve trust and security posture.

S

Sökmotoroptimering 24

sokmotoroptimering24.se

40

Sökmotoroptimering 24 is a Swedish SEO consultancy and informational website founded in 2011, providing SEO education, consulting, and affiliate marketing guidance primarily targeting Swedish businesses and individuals interested in improving their organic search presence. The website is built on WordPress, leveraging popular SEO and contact form plugins, hosted by Loopia AB, a reputable Swedish hosting provider. The site demonstrates good content quality, clear navigation, and mobile optimization, with a consistent brand presence and active social media links. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is legitimate, functional, and professionally presented but could improve in privacy and security policy transparency.

The website sandrawasserman.se currently serves a security challenge page that blocks direct access to its content, indicating the presence of a Web Application Firewall or similar security mechanism. The domain is registered through a Swedish registrar, BeebyteAB, with consistent WHOIS data and no privacy protection, suggesting legitimacy. However, the website's underlying technology is outdated, using Joomla 1.5 and WordPress 2.5 CMS versions, which are known to have multiple security vulnerabilities. No privacy, cookie, or terms of service policies are present, and no contact information or business details are visible, limiting the ability to assess the business comprehensively. The only external link is to bitninja.io, a security service provider, indicating some level of security awareness.

Q

Qred Bank AB

qred.se

64

Qred Bank AB is a specialized financial institution founded in 2015, focusing on providing financing solutions tailored for small and medium-sized enterprises across several European countries including Sweden, Finland, Denmark, Norway, Netherlands, Belgium, and Germany. Their core offerings include business loans, corporate credit cards with cashback benefits, and high-interest savings accounts. The company positions itself as a niche bank dedicated to supporting small business growth with fast and accessible financial products. The website reflects a mature digital presence with multi-language support and strong branding consistency. Technically, the website is built on the Webflow platform, integrated with HubSpot for marketing and customer engagement, and uses Google Tag Manager and Intellimize for analytics and optimization. The site is well-optimized for performance, mobile responsiveness, and SEO, with modern security headers and HTTPS enforced. Privacy compliance is robust, featuring cookie consent mechanisms and GDPR-aligned policies. From a security perspective, the site demonstrates good practices including secure transport, content security policies, and no visible vulnerabilities or exposed sensitive data. However, it lacks publicly available security policies or incident response contacts, which could be improved to enhance trust and transparency. The absence of WHOIS data for the exact subdomain www.qred.se suggests it may be a subdomain or alias, but the main domain qred.se is presumably registered and used. Overall, Qred Bank's website presents a professional, trustworthy, and user-friendly platform for SME financing. Strategic recommendations include publishing detailed security and incident response policies, implementing a vulnerability disclosure program, and continuing to monitor third-party scripts for security risks to maintain a strong security posture.

I

IBK-Akademie

ibk-akademie.org

61

The IBK-Akademie website represents a specialized educational platform focused on cross-border cooperation and administrative training within the Bodensee region, targeting government and public sector professionals. The platform offers modular courses, networking opportunities, and knowledge exchange to enhance regional collaboration. The website is professionally designed, mobile-optimized, and provides clear navigation and contact options, including a contact form with CAPTCHA for spam prevention. Technically, the site uses modern web technologies and a Sitejet CMS, with Matomo analytics for user tracking. Security posture is solid with HTTPS and basic protections, though security headers are not explicitly detected. WHOIS data is unavailable or malformed, limiting domain registration transparency, but the website content and partner affiliations suggest legitimacy. Privacy and cookie policies are present and GDPR compliant. Overall, the site scores well on content quality, business credibility, and technical implementation, with recommendations to improve WHOIS transparency and security headers.

K

Kanton Schaffhausen

sh.ch

66

The website represents the official online presence of the Canton of Schaffhausen, Switzerland, providing a broad range of governmental information and e-services to residents, businesses, and visitors. It serves as a comprehensive portal for public administration, health, business, transport, and cultural services, positioning itself as a key digital interface for cantonal governance. The technical infrastructure is based on a custom CMS (KSD Backend) with integration of Piwik (Matomo) for analytics, indicating a moderate level of digital maturity with room for enhancement in security headers and privacy compliance. Security posture is solid with HTTPS enforced, but could benefit from additional HTTP security headers and clearer privacy policies. Overall, the site is professional, trustworthy, and well-branded, though it lacks explicit privacy and cookie policies which impacts compliance scoring. Strategic improvements in security and privacy transparency would enhance user trust and regulatory adherence.

E

Evangelisch Luther

luth-kirche.li

58

The website www.luth-kirche.li represents a small, local religious organization affiliated with the Evangelisch Luther church in Liechtenstein. The site is built using the Wix platform and serves primarily as an informational portal for community members and visitors interested in the church's activities. The content is basic and primarily in German, with no advanced business or e-commerce features detected. Technically, the site uses standard Wix scripts and styles, with moderate performance and good mobile optimization. Security posture is basic with HTTPS enabled but lacks important security headers and privacy policies. No contact information or incident response details are provided, limiting transparency and user trust. Overall, the site is legitimate and consistent with its stated purpose but would benefit from enhanced privacy compliance and security best practices.

D

Start | Dompfarrei Vaduz

dompfarrei.li

60

The website www.dompfarrei.li appears to represent a religious parish entity based in Liechtenstein. The site is built using the Wix platform, leveraging standard Wix scripts and hosting. The content is minimal and primarily in German, with no clear business or organizational details provided in the accessible HTML content. There is no evidence of privacy, cookie, or terms of service policies, nor any contact information or social media presence. Technically, the site uses Wix's infrastructure but lacks advanced SEO, accessibility, and security features. Security posture is basic with no detected security headers or incident response information. Overall, the site appears to be a small-scale, low-traffic informational site with limited digital maturity.

L

Liechtensteinische Landesverwaltung

gesetze.li

54

The website gesetze.li is an official government legal database operated by the Liechtensteinische Landesverwaltung, providing up-to-date consolidated legal texts and state treaties for the Principality of Liechtenstein. It serves legal professionals, government officials, and the general public interested in Liechtenstein law. The site offers comprehensive search capabilities including full text, titles, abbreviations, and legal reference numbers, with a focus on accuracy and official information dissemination. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with Matomo analytics integrated for user behavior tracking. The site is served over HTTPS with good SSL configuration, ensuring secure data transmission. The design is professional and consistent with government branding, optimized for mobile devices with basic accessibility features. From a security perspective, the site enforces HTTPS and secure form submissions but lacks advanced security headers and published security policies. There is no cookie consent mechanism despite the use of analytics, which may present minor privacy compliance gaps. No vulnerabilities or suspicious content were detected, and the domain registration aligns well with the official government entity, indicating high legitimacy. Overall, the website is a trustworthy and authoritative source for Liechtenstein legal information, with recommendations to enhance privacy compliance and security transparency to further strengthen user trust and regulatory adherence.

M

Město Sedlčany

mesto-sedlcany.cz

59

Město Sedlčany operates as the official municipal government website for the city of Sedlčany in the Czech Republic, providing residents and visitors with news, event information, public notices, and contact resources. The site targets local citizens and tourists, offering multilingual support and a range of municipal services. The business model is centered on public service and community engagement, positioning itself as a trusted local government authority. Technically, the website is built on the Public4u CMS platform, utilizing common web technologies such as jQuery and JavaScript. The site is moderately optimized for performance and mobile use, with basic accessibility features and good SEO practices. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks visible advanced security headers and explicit security policies. The absence of WHOIS data introduces some uncertainty regarding domain registration legitimacy, though the official nature of the content and domain suggests authenticity. Overall, the website is professional, trustworthy, and serves its intended audience effectively, with room for security and technical enhancements.

T

ThemeFreesia

themefreesia.com

58

ThemeFreesia is a small technology company specializing in the development and distribution of free and premium responsive WordPress themes and plugins. Their market position is focused on providing accessible, stylish, and functional WordPress solutions primarily targeting business owners, designers, and bloggers. The company offers a business model combining free themes with paid 'Plus' plugins to enhance functionality and support. The website demonstrates a good level of digital maturity with a WordPress CMS infrastructure, integration of modern technologies such as Google Analytics, reCAPTCHA, WooCommerce, and SEO optimization via Yoast. Hosting is provided by Bluehost with Cloudflare DNS services, ensuring reliable uptime and performance. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but lacks DNSSEC and explicit security headers. Privacy compliance is basic with a privacy policy and cookie consent banner present, though GDPR compliance is not explicitly indicated. Overall, the website is professional, trustworthy, and safe for general audiences, with room for improvement in security policies and technical hardening.

Études is a small architectural firm based in the Czech Republic, founded in 2018, focusing on innovative and sustainable architectural solutions. The company offers a range of services including renovation, restoration, consulting, project management, and digital engagement through an app and newsletter. The website is built on WordPress and hosted by a Czech hosting provider, reflecting a moderate level of technical maturity with good mobile optimization and accessibility. However, the site lacks critical privacy and security policies, contact information, and security headers, which impacts its overall security posture. No evidence of analytics or advertising tools was found, indicating minimal user tracking. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in privacy compliance, security best practices, and contact transparency are recommended to enhance trust and compliance.

I

Innenstadtmanagement Flensburg

flensburg.city

57

Flensburg.City is the official website for the Innenstadtmanagement Flensburg, a municipal entity responsible for managing and promoting the city center of Flensburg, Germany. The organization focuses on urban development projects, community engagement, and event management to enhance the attractiveness of the city center. The website targets residents and visitors interested in local projects and cultural events, providing information and opportunities to participate. Technically, the website is built on the TYPO3 CMS platform, a robust and widely used open-source content management system. The site employs modern web technologies including JavaScript and CSS, and is optimized for mobile devices with good accessibility and SEO practices. Analytics are handled via plausible.io, a privacy-conscious analytics service, indicating a commitment to user privacy. From a security perspective, the site uses HTTPS but lacks visible advanced security headers and does not provide a vulnerability disclosure or security.txt file. No forms or sensitive data collection points were detected on the main page, reducing attack surface. The WHOIS data is unavailable due to registry limitations, but the domain is active and consistent with the municipal branding, supporting legitimacy. Overall, the website presents a professional and trustworthy digital presence for a local government entity with moderate technical sophistication and a good privacy posture. Strategic improvements in security headers and cookie consent mechanisms would enhance compliance and security posture further.

N

NetzWerkstatt GmbH & Co. KG

flensburg.digital

55

The website is a government-operated citizen portal for Flensburg, Germany, designed to provide digital administrative services and accessibility features to its users. It is powered by TYPO3 CMS and integrates Matomo analytics with a clear cookie consent mechanism, reflecting a commitment to user privacy and accessibility. The portal targets local citizens, offering a range of accessibility adjustments to support users with disabilities, indicating a strong focus on inclusivity. Technically, the site employs modern web technologies and frameworks, including TYPO3 CMS and JavaScript-based accessibility tools. The site appears well-structured, mobile-optimized, and accessible, though some performance and security headers could be improved. The absence of explicit privacy policies and contact information slightly detracts from the overall compliance and trustworthiness. From a security perspective, the site uses HTTPS and cookie consent but lacks visible security headers and incident response contacts. The WHOIS data is unavailable due to privacy protection, which is justifiable given the governmental nature of the site. No vulnerabilities or suspicious patterns were detected, and the site does not appear to be blocked by any WAF or security mechanism. Overall, the site presents a professional and trustworthy digital government service with good accessibility and privacy practices but would benefit from enhanced transparency in privacy policies and security disclosures.

The website 'Buhlmann Port' presents a minimalistic virtual tour experience primarily in German. The business overview is limited to the virtual showroom concept with no detailed company information or services described. The site appears to target a general audience interested in virtual tours but lacks clear business model or market positioning details. Technically, the site uses basic HTML, CSS, and JavaScript with some preloading optimizations and mobile viewport settings, indicating moderate digital maturity. However, the absence of CMS or advanced frameworks suggests a simple infrastructure. Security posture is weak due to missing HTTPS confirmation, lack of security headers, and no visible privacy or cookie policies. The WHOIS data is notably absent, raising concerns about domain legitimacy and registration status. Overall, the site is functional but lacks critical trust and compliance elements, posing risks for user trust and regulatory adherence.

S

Skylark Energy Solutions

skylark-energy.com

56

Skylark Energy Solutions is a small, US-based company founded in 2024, specializing in providing consulting and product solutions to electric utilities, with a focus on grid-enhancing technologies and asset monitoring. The company offers expert consulting services and specialized hardware and software products to support reliable infrastructure in the energy sector. The website is professionally designed using Squarespace, featuring clear navigation and mobile optimization, but lacks detailed business contact information and formal privacy or security policies. Technically, the site uses modern web technologies and enforces HTTPS with HSTS, indicating good baseline security practices. However, the absence of additional security headers and privacy compliance features suggests room for improvement. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy and registration consistency. Overall, the website presents a credible business front but requires enhanced transparency and compliance documentation to improve trust and security posture.