Security Directory

IG Rottaler Ernte is a small regional non-profit organization focused on promoting high-quality regional food products and cultural heritage in the Rottal area of Switzerland. The organization primarily operates through the annual Rottaler Erntefest event and ongoing projects to support local producers and regional specialties. The website content is primarily informational, targeting local consumers and enthusiasts of regional foods. Technically, the website is built with basic HTML, CSS, and JavaScript without modern frameworks or CMS, showing moderate performance and basic mobile optimization. Security posture is minimal with no detected security headers or privacy policies, indicating room for improvement in compliance and protection. Overall, the website is trustworthy but lacks advanced security and privacy features.

T

tchncs

tchncs.de

59

tchncs.de is a small, individual-operated platform based in Germany that provides a curated collection of open-source software services. The website hosts and links to various federated social media instances, collaboration tools, chat platforms, blogging, development, and gaming services. It operates on a donation-funded, ad-free model, targeting users interested in privacy-respecting and decentralized technology solutions. The platform emphasizes community and open-source values, positioning itself as a niche provider in the federated software ecosystem. Technically, the website uses standard web technologies including jQuery and SVG graphics, with hosting inferred to be through INWX based on nameservers. The site is moderately optimized for performance and mobile devices, with a clear and consistent branding approach. SEO and accessibility are basic but functional. Analytics are implemented via a privacy-friendly service (Plausible Analytics), indicating a focus on minimal user tracking. From a security perspective, the site uses HTTPS (assumed from URL scheme and modern practices), but lacks explicit security headers and published security policies. No incident response or vulnerability disclosure information is available, which could be improved to enhance trust and compliance. The WHOIS data is consistent with the website's claims, showing legitimate registration without privacy protection, appropriate for an individual operator. Overall, tchncs.de presents a trustworthy and well-maintained platform for open-source and federated services, with room for improvement in security policies and privacy compliance mechanisms. Strategic recommendations include implementing security headers, publishing incident response contacts, and adding cookie consent to align with GDPR best practices.

S

Spoon

spoonagency.no

63

Spoon is a Norwegian creative and strategic communications agency established in 1998, offering a broad range of services including strategy, concept development, design, content marketing, video production, and employer branding. The company positions itself as an expert in authentic, creative, and insight-driven communication, targeting businesses and organizations seeking to enhance their brand presence and engagement. The website reflects a mature digital presence with professional design, structured data, and integration of marketing and analytics tools such as HubSpot and Google Tag Manager. Technically, the site is built on WordPress with modern JavaScript libraries and demonstrates good mobile optimization and SEO practices. Security posture is strong with HTTPS enabled and use of nonce attributes in scripts, though some security headers are not explicitly detected. Privacy compliance is partial, with a cookie policy and consent mechanism present but lacking a dedicated privacy policy or terms of service pages. Contact information is primarily via a contact form, with no explicit emails or phone numbers found. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

L

Lund Humphries

lundhumphries.com

10

Lund Humphries is a specialized publisher and retailer of illustrated books focusing on art, architecture, and design, targeting professionals and specialists. The company has a long-standing history dating back to 1939 and maintains a professional online presence through a Shopify-based e-commerce platform. The website is well-designed, mobile-optimized, and includes comprehensive privacy and cookie policies compliant with GDPR standards. Technically, the site leverages modern web technologies and integrates analytics and marketing tools such as Google Tag Manager and Mailchimp. Security practices are robust, with HTTPS enforced, security headers present, and CAPTCHA protection on forms. However, the absence of WHOIS domain registration data raises some concerns about domain legitimacy, although the website content and branding strongly suggest a legitimate business. Contact information is primarily via web forms, with no explicit company emails or phone numbers found in the HTML.

P

Petr&Co

petrand.co

49

Petr&Co is a small creative or digital agency website primarily showcasing video content embedded from Vimeo. The site has a minimalistic design with limited textual content and navigation linking to 'work' and 'more' pages. The business description and detailed services are not explicitly provided, making it difficult to ascertain the full scope of their offerings or market position. The target audience appears to be clients or professionals interested in creative digital work. Technically, the site uses modern JavaScript frameworks such as Turbolinks and integrates Google Analytics for tracking. The embedded Vimeo player indicates a focus on multimedia content delivery. Security posture is weak due to the absence of security headers, privacy policies, and contact information. No explicit compliance or incident response policies are present. Overall, the site is functional and visually appealing but lacks critical security and compliance features, which could impact trust and regulatory adherence.

D

Das Gebäudeprogramm

ilprogrammaedifici.ch

69

Das Gebäudeprogramm is an official Swiss government-backed initiative aimed at promoting energy efficiency and renewable energy investments in buildings. The website provides comprehensive information about funding opportunities, supported measures, and procedural guidance for applicants. It targets homeowners, builders, and renovators across Switzerland, offering multilingual support in German, French, and Italian. The program is a key pillar of Swiss energy and climate policy, supported by federal and cantonal authorities. Technically, the website employs modern web standards, uses Matomo for privacy-conscious analytics, and is well-optimized for mobile and accessibility. Security posture is strong with HTTPS and security headers, though it lacks explicit incident response or vulnerability disclosure pages. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is professional, trustworthy, and serves as a reliable resource for energy efficiency funding in Switzerland.

D

Das Gebäudeprogramm

leprogrammebatiments.ch

69

Das Gebäudeprogramm is an official Swiss government initiative supporting energy-efficient building and renovation projects. The website provides comprehensive information on funding opportunities, energy-saving measures, and application procedures targeted at homeowners and builders in Switzerland. It is well-positioned as a key pillar in Swiss energy and climate policy, backed by federal and cantonal authorities. The digital infrastructure is modern and secure, employing HTTPS and security headers, with Matomo analytics for user tracking. The site offers a professional user experience with clear navigation and multilingual support. Security posture is strong, though improvements could be made in cookie consent and incident response transparency. Overall, the website is trustworthy, compliant with GDPR, and serves its public service mission effectively.

DHL is a globally recognized leader in logistics and international shipping services, offering a wide range of courier, transport, and supply chain solutions. The Finnish localized website reflects this global positioning with professional content tailored to business and individual customers in Finland. The site leverages Adobe Experience Manager as its CMS and integrates Adobe Analytics for user tracking, complemented by a OneTrust cookie consent mechanism to address privacy compliance. While the website is well-structured, mobile-optimized, and professionally branded, explicit privacy and terms of service documents were not found in the provided content, which is a compliance gap. The WHOIS data for the domain www.dhl.com is unavailable or restricted, limiting the ability to verify domain registration details, but the website's content and branding strongly indicate legitimacy. Security posture is moderate with HTTPS implied but no explicit security headers detected. Overall, the site is professional and trustworthy but could improve transparency and security practices.

The website gmd-tg.ch currently serves as a default hosting start page provided by TRINTEC Hosting, indicating that the domain is hosted by TRINTEC and redirects users to the main site trintec.ch. The business focus appears to be web hosting services, targeting a general audience primarily in Switzerland. The site content is minimal, with no privacy, cookie, or terms of service policies present, and limited contact information consisting of an email and physical address. Technically, the site uses basic HTML and CSS without modern frameworks or CMS, and lacks mobile optimization and accessibility features. Security posture is weak due to absence of HTTPS and security headers, and no incident response or vulnerability disclosure information is provided.

S

Stolz WEB GmbH

stolzweb.ch

47

Stolz WEB GmbH is a Swiss-based small technology company specializing in custom web development, online shops, and web applications. Founded in 2012, the company offers tailored software solutions including their proprietary CMS 'Simpli', targeting designers, agencies, and businesses seeking bespoke digital solutions. The website reflects a professional and consistent brand image with clear service descriptions and customer testimonials, positioning Stolz WEB as a reliable niche player in the Swiss web development market. Technically, the site employs modern web technologies such as HTML5, CSS, JavaScript, PHP, and Bootstrap, with a moderate performance profile and good mobile optimization. Analytics are implemented using Google Analytics with IP anonymization and Matomo, indicating some privacy awareness. Security posture is adequate with HTTPS enabled but lacks standard security headers and explicit security policies. Contact information is comprehensive and clearly presented, though privacy and terms policies are missing. Overall, the website is trustworthy and professional but could improve in privacy compliance and security best practices.

B

Basler Kantonalbank

baslerkantonalbank.ch

76

Basler Kantonalbank is a well-established regional Swiss bank providing a broad range of financial services to private customers. The website targets private clients with offerings including accounts, cards, investment advisory, mortgages, and pension planning. The bank maintains a professional online presence with consistent branding and a clear navigation structure. Technically, the website uses modern web technologies and implements cookie consent via OneTrust, ensuring compliance with basic privacy standards. Security posture is strong with HTTPS enforced and good SSL configuration, although explicit security headers and incident response information are not publicly available. Overall, the website reflects a mature digital infrastructure suitable for a large financial institution, with room for improvement in transparency around privacy policies and security disclosures.

P

PRÜM-Türenwerk GmbH

pruem-digital.de

57

PRÜM-Türenwerk GmbH operates a comprehensive digital platform focused on door manufacturing and related digital services. The website offers a wide range of digital tools, brochures, videos, and live demos tailored for dealers, architects, craftsmen, and end customers, reflecting a strong commitment to digital transformation within the manufacturing sector. The company is positioned as an established medium-sized manufacturer in Germany with a clear focus on integrating digital marketing and product information management into its business model. Technically, the website employs modern web technologies including HTML5, JavaScript, and integrates multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, and a consent management platform (Usercentrics). The site is mobile-optimized and provides a rich user experience with clear navigation and professional design. Security-wise, the site uses HTTPS with secure cookie flags and consent management but lacks explicit security headers and a public security policy or incident response information. Privacy compliance is strong with a comprehensive GDPR-compliant privacy policy and clear data protection officer contact details. Overall, the website demonstrates a mature digital presence with good security posture and privacy compliance, supporting the company's business credibility and trustworthiness.

S

SN-Verlag Hamburg

snfachpresse.de

46

SN-Verlag Hamburg is a specialized B2B publishing company focusing on niche trade and craft sectors, particularly in interior decoration, textiles, and the food industry. The company operates multiple specialized trade magazines, online portals, and organizes digital trade fairs, positioning itself as a key media player in its market segment. The website content is professional and well-structured, targeting industry professionals and businesses. Technically, the site uses standard web technologies with PHP-driven CSS and Matomo analytics for privacy-conscious user tracking. The site is bilingual, enhancing accessibility for German and English speakers. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. Privacy compliance is basic, with a privacy policy linked but no cookie banner or GDPR-specific disclosures visible. Overall, the site is trustworthy and credible but could improve in privacy and security transparency.

SN-Verlag Hamburg operates as a small German publishing company providing digital access to various specialized press and magazine titles through a login portal. The website serves as a gateway for subscribers or readers to access content from multiple publications, each represented by distinct logos and secured behind login forms. The business model focuses on subscription-based digital publishing targeting a niche audience interested in specialized media content. The company was founded around 2015, consistent with the domain registration date, and operates primarily within the German media sector. Technically, the website employs basic HTML5 and CSS with server-side PHP forms for login functionality. The site is hosted by IONOS SE, a reputable hosting provider, and uses responsive design techniques to accommodate mobile devices, although mobile optimization and accessibility are basic. No modern CMS or advanced frameworks are detected, and the site lacks analytics or tracking technologies, indicating a minimalistic technical infrastructure. From a security perspective, the website lacks HTTPS enforcement visible in the HTML content and does not implement common security headers, which reduces its security posture. There is no visible cookie consent mechanism or comprehensive privacy policy, which may impact GDPR compliance. The absence of contact information and incident response channels further limits the site's security transparency. However, the domain registration is consistent and stable, with no suspicious patterns detected, supporting the legitimacy of the business. Overall, the website presents a basic but functional digital publishing portal with room for improvement in security, privacy compliance, and user engagement features. Strategic enhancements in HTTPS implementation, privacy mechanisms, and contact transparency would strengthen trust and compliance.

S

Systemantics

systemantics.net

49

Systemantics is a specialized web development company focusing on CMS implementation and website creation primarily for clients in the arts, culture, architecture, education, museums, and theater sectors. Their extensive portfolio demonstrates a strong market position within these niche industries, collaborating with various designers and agencies to deliver tailored digital solutions. The company operates primarily in Germany and targets organizations seeking professional and accessible web presence. Technically, the website employs modern JavaScript frameworks and CMS platforms such as Hylex and Wordpress, with Matomo analytics for user tracking. The site is well-designed, mobile-optimized, and accessible, reflecting a mature digital infrastructure. Security posture is generally good with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. WHOIS data is unavailable or protected, which slightly impacts trust but is mitigated by the professional site content and clear contact information. Overall, Systemantics presents a credible and professional business with room to enhance privacy compliance and security transparency.

S

SN-Verlag Michael Steinert

holzforummagazin.de

54

Holz-Forum Magazin is a specialized German media publication focusing on daily news and developments in the wood industry and construction sectors. Operated by SN-Verlag Michael Steinert, it offers digital news, magazine issues, subscriptions, and advertising services targeting professionals in these industries. The website demonstrates a consistent brand presence and provides comprehensive contact information for editorial, advertising, and reader services. Technically, the site employs modern web standards with HTTPS, uses Matomo for privacy-conscious analytics, and integrates a newsletter subscription service via Rapidmail. However, it lacks a visible cookie consent mechanism and security headers, which are areas for improvement. The security posture is generally good with no visible vulnerabilities or exposed sensitive data. Overall, the site is professional, trustworthy, and well-positioned within its niche market.

M

Musikbüro Basel

musikbuerobasel.ch

64

Musikbüro Basel is a regional non-profit organization dedicated to promoting pop music and supporting the music community in the Basel region of Switzerland. The organization offers various funding programs, workshops, infrastructure support, and networking opportunities to musicians, bands, clubs, and event organizers. Their website reflects a clear focus on community engagement and cultural support, positioning them as a key player in the local music scene. Technically, the website is built on Magnolia CMS and uses modern web technologies including HTML5, CSS, and JavaScript. It integrates Google Analytics with IP anonymization and provides a cookie consent mechanism, indicating a moderate level of digital maturity and privacy awareness. The site is mobile-optimized and offers good navigation and content relevance. From a security perspective, the site uses HTTPS with a good SSL configuration and anonymizes user IPs in analytics. However, it lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected, suggesting a solid but improvable security posture. Overall, the website is trustworthy, professional, and compliant with basic privacy regulations such as GDPR. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure could further enhance their security and compliance stance.

The website novamatrix.de is a small, German-language blog focused on philosophy, branded as 'Mindblown: a blog about philosophy.' It operates on the WordPress platform using the default 'twentytwentythree' theme with minimal content and no evident business or commercial activity. The site lacks essential business contact information, privacy policies, and terms of service, indicating a personal or hobbyist nature rather than a commercial enterprise. Technically, the site uses modern web standards and is mobile-optimized with good accessibility features, but it lacks advanced SEO and security headers. HTTPS is enabled, providing a secure connection. Security posture is basic with no detected vulnerabilities but missing security best practices such as security headers and incident response information. Overall, the site is safe with no adult or questionable content detected.

S

Sedo.com

onteam.de

71

Sedo.com operates as a well-established domain marketplace platform, offering domain sales, transfers, and brokerage services. The website analyzed is a sales landing page for the domain onteam.de, providing clear pricing, purchase options, and contact information. Sedo has a strong market position with over 26 years of experience and a high volume of domain transfers monthly, targeting domain buyers and sellers globally. The business model focuses on facilitating domain transactions with personal assistance and multiple payment methods. Technically, the site uses modern JavaScript modules, Cloudflare DNS, and HTTPS with good mobile optimization and moderate performance. Security posture is solid with HTTPS and domain transfer protection, though DNSSEC is not enabled and security headers are missing. Privacy compliance is basic with a cookie consent mechanism but no visible privacy or terms policies on this page. Overall, the site is professional, trustworthy, and safe for general audiences.

P

Paycover

paycover.be

55

Paycover is a specialized social secretariat operating in various sectors including transport, logistics, hospitality, construction, food, cleaning, moving, garage, and metal industries. The company offers tailored services adapted to the complex regulations specific to these sectors, targeting businesses active in these professional fields primarily in Belgium. The website is professionally designed using the Squarespace platform, featuring good mobile optimization and SEO practices. However, it lacks explicit contact information and comprehensive privacy or terms of service policies. Security posture is moderate with HTTPS enabled but missing key security headers and incident response information. WHOIS data is restricted, which reduces transparency but is common for privacy protection. Overall, the website presents a legitimate small business with room for improvement in security and compliance documentation.

A

AB Volvo

volvotrucks.be

68

Volvo Trucks Belgium operates as a market leader in the heavy truck manufacturing and transport solutions sector, providing reliable and environmentally conscious vehicles. The website is professionally designed, bilingual (Dutch and French), and targets transport industry professionals and customers in Belgium. The technical infrastructure is modern, leveraging Adobe Experience Manager CMS and Adobe marketing and analytics tools, indicating a mature digital presence. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers and explicit security policies are absent. Overall, the website reflects a legitimate and trustworthy business entity consistent with Volvo's global brand.

B

Bauhaus-Universität Weimar

bauhaus-kolloquium.de

44

The website www.bauhaus-kolloquium.de represents the XV International Bauhaus Colloquium, an academic event organized by Bauhaus-Universität Weimar. It serves as a platform for interdisciplinary research exchange in humanities, arts, and architecture, focusing on the politics of research. The event has a long-standing history dating back to 1976 and is positioned as a niche academic conference with a strong cultural and educational focus. Technically, the website is built on WordPress and hosted on university-managed DNS servers, indicating institutional support and reliability. The site demonstrates good content quality and mobile optimization but lacks advanced SEO and accessibility features. Performance is moderate, with no evident use of modern JavaScript frameworks or analytics tools. From a security perspective, the site uses HTTPS, ensuring encrypted communications. However, it lacks visible security headers and published security policies such as privacy, cookie, or incident response policies. No contact information or vulnerability disclosure mechanisms are provided, which could be improved to enhance trust and compliance. Overall, the website is safe, professional, and relevant to its academic audience but would benefit from enhanced privacy compliance and security best practices to improve its security posture and user trust.

Dieter Gölsdorf's website serves as a comprehensive personal and professional history archive focusing on guitar design and related music industry stories spanning from 1964 to the present. The site targets guitar enthusiasts and music professionals interested in the legacy and contributions of Dieter Gölsdorf, featuring detailed narratives, publications, and multimedia content. The business model appears to be centered on personal branding and historical documentation rather than direct commercial sales. Technically, the website employs a straightforward tech stack with jQuery and custom CSS, hosted on kasserver.com. The site is moderately optimized for performance and mobile use but lacks advanced CMS or modern frameworks. SEO and accessibility are basic but functional. No advanced analytics or tracking technologies are detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent mechanisms, which lowers its security posture and privacy compliance. No contact information or incident response channels are provided, limiting user trust and support capabilities. The site content is safe and suitable for general audiences, with no adult or explicit material. Overall, the website is a well-maintained personal archive with good content quality and moderate technical implementation. Security and privacy compliance improvements are recommended to enhance trust and user protection.

M

Museum Tinguely Basel

tinguely.ch

74

Museum Tinguely Basel is a cultural institution dedicated to the largest collection of kinetic works by Jean Tinguely. The museum offers a variety of services including exhibitions, events, guided tours, workshops, and digital multimedia content. It targets a broad audience including families, schools, and art enthusiasts, positioning itself as a leading museum in Basel, Switzerland. The website reflects a professional and well-structured digital presence with comprehensive event listings and visitor information. Technically, the site uses modern web technologies including JavaScript, CSS, Google Tag Manager, and Cookiebot for consent management, likely built on Adobe Experience Manager CMS. The site is mobile optimized, accessible, and SEO friendly. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though security headers could be improved and a formal security policy is absent. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy, professional, and well-maintained, supporting the museum's mission and visitor engagement.

Dissenter GmbH is a Swiss-based small technology company specializing in the creation of web applications, interactive exhibits, apps, and print design services. Founded in 2006 and currently led by experienced professionals, the company serves a diverse clientele including government entities and well-known corporations. Their service offerings span web design, app development, interactive POS solutions, and print media, positioning them as a niche provider in the digital and classical communication space. Technically, the website employs modern web technologies such as HTML5, CSS, JavaScript, and integrates Google Tag Manager for analytics. The site is well-designed, mobile-optimized, and provides clear navigation, though it lacks explicit privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS usage but missing explicit security headers and incident response information. Overall, the domain registration data aligns well with the company's claims, supporting legitimacy. Strategic improvements in privacy compliance and security headers would enhance trust and regulatory adherence.

N

Niedersächsische Lotto-Sport-Stitung

stiftungsbericht.de

53

The website www.stiftungsbericht.de represents the Niedersächsische Lotto-Sport-Stiftung, a non-profit foundation established in 2009 by the Lower Saxony government through the merger of two prior foundations. The site primarily publishes annual foundation reports for public access, targeting a general audience interested in the foundation's activities and impact. The foundation holds a stable market position as a regional non-profit entity in Germany. Technically, the website employs modern web technologies including JavaScript ES modules, CSS, and the htmx framework, hosted on servers associated with kasserver.com. It uses Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. The site is mobile optimized with good SEO and accessibility basics, though some accessibility features could be improved. Security-wise, HTTPS is enforced with no visible sensitive data exposure, but lacks explicit security headers and formal security policies published on the site. No forms or contact details are present, limiting direct user engagement and incident response readiness. Overall, the site is professional and trustworthy but could enhance privacy and security transparency.

M

Mutualease

mutualease-cml.com

68

Mutualease is a French financial services brand specializing in leasing and financing professional equipment, operating under the Crédit Mutuel Leasing umbrella. The company targets a broad audience including constructors, distributors, private enterprises, and public sector actors, offering tailored leasing solutions such as credit-bail and operational leasing. The website is professionally designed, mobile-optimized, and provides comprehensive information about their services and commitments, including partnerships with reputable entities like the European Investment Fund. Technically, the site uses modern web technologies and integrates Piano Analytics for audience measurement, with a clear cookie consent mechanism ensuring GDPR compliance. Security posture is generally good with HTTPS enforced and a published vulnerability disclosure policy, though explicit security headers and incident response contacts are not visible. The absence of WHOIS data for the domain is a notable concern, suggesting possible registration anomalies, but the overall digital presence and branding indicate a legitimate business. Strategic recommendations include enhancing security headers, publishing explicit security policies, and resolving WHOIS inconsistencies to improve trust and compliance.

F

firma.de

firma.de

65

firma.de is a German-based digital platform specializing in company formation and business services, targeting entrepreneurs and startups. The website offers a comprehensive suite of services including various legal forms of company formation, bookkeeping, payroll, tax consulting, and legal advice. With over 25,000 firm foundations supported, firma.de holds a strong market position as a trusted partner for business founders in Germany. The platform emphasizes ease of use, transparency, and expert support throughout the business lifecycle. Technically, the website leverages modern web technologies such as Google Tag Manager, Stripe for payments, and AWS Cloudfront for content delivery, ensuring fast and responsive user experience across devices. Security posture is good with HTTPS enforced and secure third-party integrations, though there is room for improvement in security headers and incident response transparency. Privacy compliance is partially addressed with a comprehensive GDPR privacy policy but lacks a cookie consent mechanism. Overall, firma.de presents a professional, trustworthy, and user-friendly platform with a solid business model and digital maturity.

F

Feratel Medien Technologien GmbH

feratel.de

67

Feratel Medien Technologien GmbH is a medium-sized technology company specializing in comprehensive tourism marketing and data management solutions. The company operates multiple country-specific domains, indicating a strong international presence in the tourism sector. Their business model focuses on providing B2B software and services tailored to tourism marketing, upselling, service, data strategies, communication, and interfaces. The website content is professionally presented, targeting tourism industry stakeholders and marketing professionals. Technically, the site is built on TYPO3 CMS, integrates Cookiebot for GDPR-compliant cookie management, and uses Google Tag Manager and Facebook Pixel for analytics and marketing. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not found. Privacy compliance is well addressed with detailed cookie policies and consent mechanisms. Overall, the website is trustworthy, well-structured, and compliant with GDPR requirements.

F

Feratel

feratel.fr

67

Feratel is a medium-sized technology company specializing in providing comprehensive, customized tourism marketing and data management solutions. The company has a strong market presence in France and other European countries, supported by multiple regional domains and multilingual content. Their business model focuses on B2B services targeting tourism industry professionals and destination managers. The website is professionally designed, well-structured, and optimized for mobile devices, reflecting a mature digital infrastructure. Technically, the website is built on TYPO3 CMS and integrates modern cookie consent management via Cookiebot, ensuring GDPR compliance. The use of HTTPS and inclusion of detailed cookie categories demonstrate a commitment to privacy and security. However, some security headers are not explicitly detected, and no dedicated security or incident response pages are found, indicating room for improvement in security posture. The security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but the absence of WHOIS data limits full domain trust assessment. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and granular user consent options. Overall, the website and business appear legitimate and professional, with a good balance of content quality, technical implementation, and privacy compliance. Strategic recommendations include enhancing security headers, publishing explicit security policies, and providing clear contact information for incident response to further strengthen trust and security.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

familienplanung.de

65

familienplanung.de is an authoritative German government-backed health information portal operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG). It provides comprehensive, scientifically grounded information on pregnancy, childbirth, contraception, fertility, and related counseling services. The site targets pregnant women, couples planning families, and individuals facing pregnancy conflicts. The portal offers educational content, online tests, and access to counseling resources, positioning itself as a trusted public health resource in Germany. Technically, the website is built on TYPO3 CMS, uses Matomo analytics with strong privacy protections, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforcement and privacy-conscious analytics, though formal security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable source for family planning information.

Wissenschaft aktuell is a German media company specializing in delivering up-to-date news and articles on science, research, and technology. Operated by Scientec Internet Applications + Media GmbH, the website targets a general audience interested in scientific developments, offering press agency services, newsletters, and RSS feeds. The site maintains a professional presentation with consistent branding and a clear focus on scientific content. Technically, the website uses a custom CMS (onTEAM), standard web technologies, and monetizes via Google Adsense and Google Funding Choices. While the site is accessible and uses HTTPS, it lacks advanced security headers and explicit security policies. Privacy compliance is basic with a cookie consent banner and a privacy policy page. No direct company contact emails or phone numbers are publicly listed, but a contact form is available. Overall, the site is trustworthy and well-positioned within its niche media segment.

IT-Atelier is a small engineering office based in Leipzig, Germany, specializing in IT coordination, consulting, and web-based software solutions primarily for businesses and public sector clients. The company emphasizes over two decades of experience since 2003, offering services including technical marketing and citizen participation platforms for municipalities. The website reflects a focused business model targeting IT management and public engagement solutions with a professional but basic online presence. Technically, the website uses legacy technologies such as jQuery 1.4.4 and basic CSS styling, hosted on SchlundTech servers. The site is mobile responsive at a basic level and contains no complex CMS or analytics integrations. Performance is moderate, with no advanced SEO or accessibility features detected. Security posture is limited, with no visible security headers and use of outdated JavaScript libraries posing potential risks. From a security perspective, the site lacks privacy and cookie policies, incident response contacts, and vulnerability disclosure mechanisms, indicating compliance gaps especially regarding GDPR. Contact information is clearly presented, but no forms or data collection reduce immediate privacy risks. The domain registration aligns well with the business claims, supporting legitimacy. Overall, the website is functional and trustworthy for its niche but requires improvements in security practices, privacy compliance, and modernization of technical components to enhance its risk posture and professional image.

P

Peter Frisch GmbH

frisch-homepage.de

8

Peter Frisch GmbH is a small local business based in München, Germany, with an online presence hosted on the Wix platform. The website provides basic contact information including a phone number and physical address but lacks detailed business descriptions or service listings. The technical infrastructure is standard for Wix-hosted sites, utilizing Wix's Thunderbolt framework and common web technologies such as JavaScript and JSON-LD for structured data. Mobile optimization appears adequate, but SEO and accessibility features are basic. Security posture is moderate with HTTPS implied but no explicit security headers or policies found. Privacy and cookie policies are absent, indicating potential compliance gaps. Overall, the site is functional but could benefit from enhanced content, security, and compliance features to improve trust and professionalism.

J

juris GmbH

landesrecht-mv.de

10

The website 'Landesrecht Mecklenburg-Vorpommern' is an official legal information portal operated by juris GmbH in cooperation with the Justice Ministry of Mecklenburg-Vorpommern, Germany. It provides free access to consolidated state laws, administrative regulations, and court decisions, targeting citizens and legal professionals. The business model focuses on public service and legal transparency, positioning itself as a trusted government resource. Technically, the site uses modern web technologies including React and Webpack, with a CMS platform (jportal) tailored for legal content management. The site is mobile-optimized and accessible, though performance is moderate. Security posture is adequate with HTTPS usage and no visible vulnerabilities, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and safe for general audiences.

L

Landesregierung Mecklenburg-Vorpommern

regierung-mv.de

10

The website www.regierung-mv.de is the official government portal for the state of Mecklenburg-Vorpommern, Germany. It serves as a comprehensive information hub for the state's government activities, ministries, press releases, and public services. The portal targets citizens, media, and stakeholders interested in regional governance and public affairs. It offers rich content including ministerial information, news, events, and accessibility features such as content in sign language and easy language. Technically, the site uses standard web technologies with a likely custom CMS, providing good mobile optimization and accessibility. Security-wise, it implements cookie consent mechanisms and uses HTTPS, but lacks explicit security headers and incident response information. The WHOIS data aligns with the official government entity, confirming legitimacy. Overall, the site is professional, trustworthy, and well-maintained, with room for improvement in security policy transparency and technical security headers.

T

Telia Company

teliacompany.com

76

Telia Company is a leading telecommunications provider operating primarily in the Nordic and Baltic regions. The company offers a broad range of connectivity and digital services targeting both consumer and enterprise customers. Their market position is strong, supported by a consistent brand presence and a focus on sustainability and corporate governance. The website reflects a mature digital presence with modern technologies and a professional design. The technical infrastructure is built on React and modern web standards, ensuring good performance and mobile optimization. Security posture is robust with HTTPS enforcement, security headers, and GDPR-compliant privacy and cookie policies. However, the absence of publicly available WHOIS data suggests privacy protection, which is common for large enterprises. Overall, the website and company demonstrate a high level of professionalism and trustworthiness.

N

Naturpark Sternberger Seenland

naturpark-sternberger-seenland.de

52

Naturpark Sternberger Seenland operates as a regional nature park authority and tourism promoter in Mecklenburg-Vorpommern, Germany. The website provides comprehensive information about the park's natural features, events, and educational offerings, targeting nature enthusiasts, families, and tourists. The business model is non-profit, focusing on environmental education and regional promotion. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries like Leaflet for maps, and integrates Matomo for analytics, reflecting a mature digital infrastructure with good mobile optimization and accessibility. Security posture is solid with HTTPS and consent management in place, though security headers and explicit security policies could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though contact information is primarily via forms rather than direct emails or phone numbers.

N

Nationalparkamt Vorpommern

nationalpark-jasmund.de

49

Nationalpark Jasmund is a German national park website representing the smallest national park in Germany, renowned for its ancient beech forests designated as UNESCO World Heritage. The site serves as an informational and educational platform targeting nature enthusiasts, visitors, and volunteers, offering details on the park's natural features, events, and conservation efforts. The business operates within the government and non-profit sectors, focusing on environmental preservation and public engagement. Technically, the website is built on TYPO3 CMS, employs Matomo for analytics with user consent, and embeds multimedia content responsibly. Security posture is solid with HTTPS and consent mechanisms, though it lacks some advanced security headers and formal security policies. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with no detected adult or questionable content.

N

Nationalpark Vorpommersche Boddenlandschaft

nationalpark-vorpommersche-boddenlandschaft.de

49

The website www.nationalpark-vorpommersche-boddenlandschaft.de serves as the official digital presence for the Nationalpark Vorpommersche Boddenlandschaft, the third largest national park in Germany. It provides comprehensive information about the park's natural environment, history, visitor guidelines, events, and educational programs. The site targets nature enthusiasts, visitors, and educational groups, offering detailed content in German with English language support. The business model is primarily informational and educational, supported by government or non-profit funding, with a strong emphasis on conservation and public engagement. Technically, the website is built on TYPO3 CMS, a mature open-source content management system, and employs Matomo for analytics, ensuring privacy-conscious user tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. Security is adequate with HTTPS enforced and a consent management platform in place, though it lacks some advanced security headers and explicit security policies. From a security perspective, the site shows no signs of vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear privacy and cookie policies aligned with GDPR requirements. However, the absence of a published security policy or incident response contact is a minor gap. Overall, the domain registration data aligns well with the website content, indicating legitimacy and consistency. The overall risk profile is low, with recommendations focusing on enhancing security headers, publishing a security policy, and adding vulnerability disclosure mechanisms to further strengthen trust and resilience.

H

Heureka Group a. s.

dendopravyzdarma.sk

67

Heureka Group a. s. operates a comprehensive e-commerce service platform primarily serving Slovakia and the Czech Republic. The company offers advertising solutions, data analytics, affiliate programs, and marketplace services tailored for e-shops and brands. Their blog and webinar content demonstrate active engagement with their target audience, focusing on e-commerce growth and marketing strategies. Technically, the website employs modern tracking and consent management tools such as Google Tag Manager, Visual Website Optimizer, and Didomi, indicating a mature digital infrastructure. The site is well-structured, mobile-optimized, and maintains good SEO practices. Security-wise, the site enforces HTTPS and uses consent management but lacks explicit security headers and incident response contacts, which are recommended for improvement. The WHOIS data is privacy protected, a common practice for commercial entities, and the domain appears legitimate based on content and business consistency. Overall, the website presents a professional, trustworthy, and compliant digital presence with room for enhanced security transparency.

B

Basler Kantonalbank

bkb.ch

76

Basler Kantonalbank is a well-established Swiss cantonal bank providing a broad range of financial services to private customers, including banking accounts, investment advisory, mortgages, and pension planning. The website reflects a professional and consistent brand presence targeting private banking clients primarily in Switzerland. The technical infrastructure uses modern web technologies with a cookie consent mechanism implemented via OneTrust, ensuring basic privacy compliance. Security posture is adequate with HTTPS enforced, but lacks explicit security headers and published security policies. No blocking or WAF interference was detected, allowing full content access. Overall, the website demonstrates a mature digital presence suitable for a large financial institution.

The SYJMB Foundation website represents a small non-profit entity established around 2019, likely based in Switzerland. The site is built using modern web technologies such as Gatsby and React, indicating a moderate level of technical maturity. However, the content is minimal and lacks detailed business descriptions, contact information, or compliance documentation. Security posture is basic with no advanced headers or policies detected, and no privacy or cookie policies are published, which may expose the organization to compliance risks. Overall, the site is accessible and free from blocking mechanisms but would benefit from enhanced transparency and security measures.

A

Astrom / Zimmer & Tereszkiewicz

azt.ch

62

Astrom / Zimmer & Tereszkiewicz is a small, specialized design and development studio based in Zurich, Switzerland. They focus on creating digital and analogue tools, interfaces, and data modeling solutions aimed at transforming information into knowledge. Their market position is niche, serving clients interested in archives, research, and data visualization projects. The website showcases a professional portfolio with multiple client projects and external references, indicating a credible and established presence in their field. Technically, the site uses modern web technologies including JavaScript and React, hosted likely on DigitalOcean, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and public security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

F

Frontify

brandmanual.ch

65

Frontify is a technology company specializing in brand management and digital asset management solutions. Their platform targets brand managers and marketing teams in enterprises, offering SaaS tools to maintain branding consistency and facilitate collaboration. The website analyzed is a login page for their platform, reflecting a professional and consistent brand image. Technically, the site uses modern web technologies including React and integrates third-party services such as Amplitude for analytics and Sentry for error tracking. The site is well optimized for performance and mobile devices, with a good user experience and clear navigation. Security posture is strong with HTTPS enforced, CSRF tokens, and password policies, though some security headers are missing and no public security or privacy policies are visible on this page. Overall, the site is trustworthy and professional but could improve transparency around privacy and security policies. The domain registration data aligns well with the business, showing legitimacy and consistency. No blocking or WAF mechanisms were detected, and no adult or questionable content is present.

P

PC CADDIE AG

pccaddie.de

56

PC CADDIE AG is a specialized software provider focused on golf club and golf course management solutions. The company positions itself as a market leader in the golf IT sector, offering a comprehensive suite of products including customer management, reception and proshop integration, golf course and school management, online booking and tournament management, and hosting services. Their target audience includes golf clubs, commercial golf facilities, golf associations, and tournament agencies primarily in German-speaking countries and Switzerland. The website is professionally designed, content-rich, and provides extensive customer references and testimonials, reinforcing its credibility and market position. Technically, the website is built on TYPO3 CMS and employs modern web technologies including JavaScript, CSS, and Google reCAPTCHA for form security. The presence of mobile app links for Android and iOS indicates a mature digital infrastructure. Hosting is managed via agenturserver nameservers, and the site uses HTTPS with good SSL configuration. Performance and mobile optimization are rated as moderate to good, with room for improvement in accessibility features. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, use of CAPTCHA, and no visible exposure of sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms like a security.txt file. Additional security headers could enhance protection. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, PC CADDIE AG presents a trustworthy and professional online presence with a solid business model and technical foundation. Strategic improvements in security transparency and accessibility could further strengthen their posture.

Stiftung Behindertensport Lenzerheide is a small Swiss non-profit foundation dedicated to supporting and promoting disabled sports in the Lenzerheide holiday region. The foundation organizes sporting and social events for people with disabilities and maintains a partnership with PluSport Behindertensport Schweiz, a national umbrella organization for disabled sports. The website is built on the Jimdo Creator CMS platform, hosted by Jimdo, and presents content primarily in German. It features a clean design with clear navigation and mobile responsiveness, though it lacks some compliance documents such as a privacy policy and terms of service. Security posture is moderate with HTTPS enforced and cookie consent implemented, but missing security headers and explicit contact information reduce the overall security and compliance score. The website content is safe and appropriate for a general audience, with no adult or questionable material detected.

E

enercity AG

enercity.de

71

enercity AG is a large, established German energy provider with a history dating back to 1825. The company offers a broad portfolio of energy-related services including electricity, gas, solar solutions, heating, water supply, telecommunications, and electromobility. It serves a wide audience including private customers, businesses, and municipalities primarily in Germany, with a strong regional focus on Hannover. The website reflects a mature digital presence with modern technologies such as React and Next.js, and implements GDPR-compliant consent management. Multiple industry awards and high customer ratings reinforce its market position and trustworthiness. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and incident response contacts are not publicly detailed. Overall, the website is professional, user-friendly, and compliant with privacy regulations, supporting enercity's reputation as a reliable energy partner.

TuS Glarum is a local German sports club offering a wide range of sports and fitness activities for all age groups, including gymnastics, ball sports, dance, and rehabilitation programs. The website serves as an information portal for members and the local community, providing schedules, news, and contact details. The club maintains an active presence on social media platforms such as Facebook and Instagram, enhancing community engagement. Technically, the website is built on the Clansphere CMS platform, utilizing standard web technologies including HTML, CSS, and JavaScript. It employs legacy components such as FCKeditor and Ajax scripts. The site is hosted via INWX nameservers, indicating a German hosting provider. Performance and mobile optimization are moderate, with basic accessibility and SEO features implemented. From a security perspective, the website lacks visible security headers and modern security policies. The use of an outdated editor and absence of cookie consent mechanisms highlight areas for improvement. The email address is obfuscated to reduce spam, but no explicit incident response or security policy pages are present. The domain WHOIS data is consistent and transparent, supporting the legitimacy of the site. Overall, the website is functional and trustworthy for its community sports purpose but would benefit from enhanced security measures, privacy compliance improvements, and modernization of technical components to reduce risk and improve user trust.

J

Jazzcampus / Hochschule für Musik Basel

jazzcampus.com

64

Jazzcampus is an educational institution specializing in jazz music education located in Basel, Switzerland. It operates as part of the Hochschule für Musik Basel under the Fachhochschule Nordwestschweiz FHNW umbrella. The website presents a professional and comprehensive digital presence, offering detailed information about study programs, music courses, events, and affiliated organizations. The site is well-structured, mobile-optimized, and integrates multimedia content such as Vimeo videos to enhance user engagement. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements in cookie consent and security headers are recommended. The absence of WHOIS data for the domain raises concerns about domain registration transparency, but the strong institutional affiliation and content quality support legitimacy. Overall, the site serves its educational mission effectively with a trustworthy and professional online presence.