Security Directory

W

WeNet Group S.A.

biznesfinder.pl

52

BiznesFinder.pl is a Polish business directory and advisory platform operated by WeNet Group S.A., targeting entrepreneurs and business owners seeking company information and practical business advice. The website offers a searchable database of companies, business guides, and advertising opportunities, positioning itself as a niche resource within the Polish business ecosystem. Technically, the site employs modern web technologies including Bootstrap, jQuery, Google Fonts, and HubSpot integrations, ensuring a responsive and user-friendly experience. Security-wise, the site uses HTTPS and Google reCAPTCHA v3 to protect forms, but lacks some advanced HTTP security headers and explicit security policies. Privacy and cookie policies are present and GDPR compliant, reflecting good privacy practices. Overall, the site is professional and trustworthy, though WHOIS data is unavailable due to registry restrictions, which is common for .pl domains. The site is not blocked by any WAF or security challenge, allowing full content access and analysis.

K

K-TEL Communications GmbH

ktel.cloud

43

K-TEL Communications GmbH is a medium-sized telecommunications company based in Germany, operating since 2016. The company provides telecommunications services and a cloud-based dashboard platform for customer account management. Their website serves primarily as a login portal for their cloud services, targeting business and individual customers in the German market. The company maintains a professional online presence with consistent branding and active social media channels. Technically, the website uses common web technologies such as jQuery, FontAwesome, and Leaflet.js for mapping features, hosted on infrastructure linked to their registrar and DNS providers. The site is mobile-optimized and provides a user-friendly experience with clear navigation and relevant content.

S

Stadtwerke Münster

netzplan-muenster.de

49

Netzplan Münster is an interactive public transportation network map and journey planner service provided by Stadtwerke Münster, the municipal utility company. The website targets residents and visitors of Münster, Germany, offering detailed transit information, downloadable network plans, and mobility services. The platform leverages modern web technologies including AngularJS and Leaflet for map rendering and user interaction. The site is well-branded, consistent, and professionally designed with good user experience and mobile optimization. Security posture is solid with HTTPS, security headers, and CSRF protection, though explicit security policies and incident response contacts are not published. Privacy compliance is basic, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and serves its public transportation information purpose effectively.

V

Verein für Konsumenteninformation (VKI)

konsument.at

67

KONSUMENT is a reputable Austrian consumer information magazine operated by the non-profit Verein für Konsumenteninformation (VKI). The website offers comprehensive consumer protection content, product tests, reports, and premium subscription services. It targets Austrian consumers seeking reliable and independent information. Technically, the site is built on Drupal CMS with modern libraries such as Bootstrap and FontAwesome, and uses Matomo analytics for privacy-conscious tracking. The site is mobile optimized, accessible, and professionally designed with clear navigation and premium content offerings. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. WHOIS data is unavailable due to quota limits, but the domain appears legitimate and privacy protection is justified. Overall, the site demonstrates high trustworthiness and professionalism.

D

Deutsche Bundesstiftung Umwelt

dbu.de

56

The Deutsche Bundesstiftung Umwelt (DBU) is a prominent German environmental foundation focused on funding innovative and sustainable projects primarily targeting the medium-sized business sector. Established in 1990, DBU has a strong market position as one of Europe's largest environmental foundations, offering project funding, scholarships, and fellowships. The website reflects this mission with comprehensive content, clear navigation, and a professional design that supports its credibility and outreach. Technically, the website is built on WordPress with modern JavaScript libraries and multilingual support via WPML. Hosting is managed through Deutsche Telekom's name servers, indicating a reliable infrastructure. The site is mobile-optimized and performs moderately well, with good SEO and accessibility features. Analytics are handled via Plausible, a privacy-focused service, indicating a moderate user tracking level with good privacy compliance. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security or incident response policies, which are areas for improvement. No vulnerabilities or suspicious activities were detected. Privacy compliance is generally good, with a comprehensive privacy policy present, but the absence of a cookie consent mechanism is a minor gap. Overall, the DBU website is a trustworthy, professional, and well-maintained platform that effectively supports the foundation's mission. Strategic enhancements in security policies and privacy mechanisms would further strengthen its posture and user trust.

T

TIPADA-Shop

tipada-shop.de

55

TIPADA-Shop is a German-based e-commerce retailer specializing in plush toys, school articles, and gift items targeting families, children, and animal lovers. The website presents a professional and consistent brand image with a clear focus on providing themed gift ideas and accessories. The business model centers on online retail with free shipping offers and fast delivery from Germany, positioning itself as a niche player in the gift and toy market. The site integrates modern marketing and analytics tools such as Google Analytics 4, Google Ads, and Brevo, while maintaining GDPR compliance through a comprehensive consent management system. Technical infrastructure is based on the JTL Shop system, hosted on netcup servers, and employs standard web technologies including jQuery and Bootstrap.

D

D'Filmakademie

dfilmakademie.lu

52

D'Filmakademie is a Luxembourg-based film academy dedicated to promoting cinema and audiovisual arts within the country. It organizes key cultural events such as the Lëtzebuerger Filmpräis, supports film professionals, and fosters community engagement through various activities and membership programs. The organization holds a significant position in Luxembourg's cultural landscape, supported by official sponsors including the Chamber of Commerce Luxembourg, CNA, and FilmFund Luxembourg. Technically, the website is built on WordPress, utilizing modern plugins and frameworks such as WPBakery Page Builder, Smart Slider 3, and Contact Form 7. It employs standard web technologies including jQuery, Tailwind CSS, and integrates Google Analytics and Tag Manager for analytics. Hosting is provided by OVH, a reputable provider. The site is mobile-optimized with good SEO practices and a professional design. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and publicly available security policies or incident response documentation. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the hosting provider and shows no suspicious patterns, supporting the legitimacy of the domain. Overall, the website demonstrates a strong commitment to privacy compliance and user experience, with clear contact information and trust indicators. Strategic improvements include enhancing security headers, publishing security policies, and adding vulnerability disclosure mechanisms to further strengthen the security posture.

S

Stackbox GmbH

stackbox.co

71

Stackbox GmbH is a specialized software solutions and consulting company focused on the eMobility sector, primarily serving businesses in energy and transportation. The company offers tailored services including business process design, IT solution architecture, system integrations, and operations support. Their market position is strengthened by a decade of experience and notable clients such as IONITY and Hubject. The website reflects a professional and consistent brand image with clear communication of services and team expertise. Technically, the website employs modern frameworks like Bootstrap and integrates analytics tools such as Amplitude with session replay capabilities, indicating a mature digital infrastructure. The site is mobile-optimized and well-structured, though some accessibility features could be enhanced. Performance is moderate with good SEO practices. From a security perspective, the site uses HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or sensitive data exposures were detected. Privacy compliance is strong with a comprehensive GDPR-aligned privacy policy. Overall, the website presents a low-risk profile with strong business credibility and good privacy practices. Strategic improvements in security headers, incident response transparency, and accessibility would further enhance trust and compliance.

Südtiroler Gemeindenverband Genossenschaft is a regional government cooperative representing municipalities and district communities in South Tyrol, Italy. The organization provides a variety of administrative, informational, and digital services to its members and the public, including GIS mapping, event coordination, and digital communication platforms. The website is professionally designed, well-structured, and targets local government officials and residents. It maintains a consistent brand presence and offers comprehensive contact and service information. Technically, the website is built on ASP.NET Web Forms with a mix of legacy and modern JavaScript libraries such as jQuery and Leaflet. It employs HTTPS with good SSL configuration and integrates Matomo analytics with user consent mechanisms. Accessibility and mobile optimization are well addressed, and the site includes privacy and cookie policies compliant with GDPR. Security posture is solid with HTTPS enforcement and no obvious vulnerabilities in the frontend code. However, some security headers are missing, and the jQuery version is outdated, which could pose risks. The absence of explicit security policies or incident response contacts is a gap. WHOIS data is missing or unavailable, which slightly reduces trust but does not contradict the legitimacy suggested by the website content and affiliations. Overall, the site is trustworthy, secure, and professionally maintained, serving an essential government function. Strategic improvements in security headers, updated libraries, and transparency in domain registration would enhance trust and security further.

V

Vertikale

vertikale.it

41

Vertikale is a well-established climbing center located in Brixen, Italy, founded in 2012. The business offers a variety of climbing and bouldering courses, private lessons, kids programs, summer camps, and bar services, targeting families, youth, and adult climbing enthusiasts. The website is professionally designed using WordPress with Elementor and WooCommerce, providing a user-friendly experience with good SEO and mobile optimization. Social media integration and structured data enhance its digital presence. Security posture is solid with HTTPS and DNSSEC enabled, though additional security headers and formal policies could improve resilience. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the site reflects a credible, transparent, and customer-focused business with a moderate to high level of digital maturity.

GEM2GO is a digital platform operated by RIS GmbH, providing modern communication solutions for municipalities, cities, and regions primarily in German-speaking countries. The platform offers apps, websites, and digital signage to facilitate barrier-free, GDPR-compliant citizen communication. With over 1,400 municipalities as clients and more than one million app downloads, GEM2GO holds a strong market position in the government digital communication sector. The website is professionally designed, mobile-optimized, and accessible, reflecting a mature digital presence. Technically, the site uses a RIS CMS backend with jQuery, FontAwesome, and Matomo analytics for tracking. It integrates Google Maps API and supports accessibility features aligned with WCAG 2.2 AA standards. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though additional security headers could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is justified given the business nature. The domain is actively maintained with recent updates. Social media presence is robust across Facebook, Instagram, YouTube, LinkedIn, and TikTok, supporting community engagement. Privacy and cookie policies are comprehensive and GDPR compliant. Overall, GEM2GO demonstrates a strong, trustworthy digital platform for government communication with good security and privacy practices. Strategic improvements in security headers and incident response transparency could further strengthen its posture.

C

City of Albuquerque

cabq.gov

62

The City of Albuquerque's official website serves as a comprehensive portal for residents, businesses, and visitors to access municipal services, city leadership information, community resources, and event details. The site is well-positioned as the authoritative source for city-related information and services, reflecting a large government entity's digital presence. Technically, the website is built on the Plone CMS platform, leveraging modern web technologies and integrating multiple analytics and tracking tools such as Google Analytics, CrazyEgg, and Monsido. The site demonstrates good performance, mobile optimization, and accessibility features, ensuring a positive user experience. Security-wise, the website enforces HTTPS, employs standard security headers, and avoids exposing sensitive data, although it lacks publicly available security policies or incident response information. The WHOIS data is incomplete, likely due to .gov domain privacy policies, but the domain's .gov TLD and content strongly indicate legitimacy. Overall, the website is professional, trustworthy, and serves its public sector mission effectively.

S

Sonuç Bilişim El. Ev Al.Ser.Tic.Ltd.Şti.

faturago.com

50

Fatura Ödemex is a Turkish online platform specializing in utility bill inquiry and payment services, covering electricity, water, telephone, natural gas, internet, and TV bills. The platform targets individual and corporate customers in Turkey, offering a user-friendly interface with over 300 institutions supported. It operates as a representative of N Kolay Ödeme ve Elektronik Para Kuruluşu A.Ş., indicating a solid partnership and market presence. The website is well-branded, mobile-optimized, and provides social media engagement and mobile applications to enhance accessibility. Technically, the site is built on ASP.NET Web Forms with custom JavaScript and uses common libraries such as FontAwesome. The performance is moderate with good SEO and mobile responsiveness. Security is adequate with HTTPS and 3D secure payment mentions, but lacks some modern security headers and explicit incident response or vulnerability disclosure policies. Analytics usage is moderate with GetClicky tracking. Overall, the security posture is good but could be improved by implementing additional HTTP security headers, cookie consent mechanisms, and publishing security policies. The business credibility is high with clear contact information, user testimonials, and consistent branding. No suspicious or malicious content was detected, and the site is safe for general audiences.

S

Saferinternet.at

saferinternet.at

53

Saferinternet.at is a well-established Austrian initiative focused on promoting safe, competent, and responsible use of digital media primarily among children, youth, parents, and educators. The website serves as a comprehensive resource offering workshops, educational materials, social media guides, and events, supported by government and European Union funding. The presence of multiple official partner logos and a professional, well-structured website positions Saferinternet.at as a trusted authority in digital safety education within Austria. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as FontAwesome and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, providing a positive user experience. While HTTPS is enforced, explicit security headers are not evident in the HTML source, suggesting room for improvement in security hardening. From a security perspective, the site shows good practices including cookie consent mechanisms and no visible vulnerabilities or exposed sensitive data. However, the absence of detailed WHOIS data due to privacy protection limits domain registration transparency. Despite this, the strong governmental and EU affiliations, along with comprehensive content and professional presentation, support the site's legitimacy and trustworthiness. Overall, Saferinternet.at demonstrates a mature digital presence with a strong focus on education and safety, backed by credible partnerships. Strategic recommendations include enhancing security headers, publishing explicit security policies or incident response contacts, and maintaining regular audits of third-party scripts to further strengthen security posture.

F

Fondazione Cariverona

fondazionecariverona.org

68

Fondazione Cariverona is an Italian non-profit foundation dedicated to social, cultural, and economic development in several Italian regions including Verona, Vicenza, Belluno, Ancona, and Mantova. The website presents a professional and consistent digital presence built on WordPress, utilizing SEO and cookie compliance tools such as Yoast SEO and Iubenda. The technical infrastructure is modern and supports good mobile optimization and user experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though the absence of explicit security headers and privacy policy pages suggests room for improvement. WHOIS data is unavailable or protected, which is common for non-profits but reduces transparency. Overall, the website is trustworthy and well-positioned for its sector but would benefit from enhanced privacy and security disclosures.

1

1hebergement.com

1hebergement.com

64

1hebergement.com is a French web hosting provider established since 1999, offering a range of hosting services including shared hosting, VPS with cPanel, domain registration, and website building tools. The company targets French-speaking individuals and businesses seeking reliable, fast, and secure hosting solutions with local support. The website demonstrates a professional digital presence with good SEO, modern technologies such as WordPress and Bootstrap, and customer trust signals including testimonials and a satisfaction guarantee. However, the absence of WHOIS data raises questions about domain registration transparency. The site uses HTTPS and includes cookie consent mechanisms but lacks visible privacy and terms of service policies, which are important for compliance and trust. Security posture is solid with HTTPS and anti-spam measures, but could be improved by adding security headers and incident response information.

A

A-A-Hébergement

a-a-hebergement.com

61

A-A-Hébergement is a French web hosting and domain registration company offering a wide range of hosting solutions including shared hosting, VPS with cPanel/WHM, WordPress optimized hosting, and ASP.NET hosting with Plesk. The company emphasizes quality, reliability, and ease of use, targeting individuals and businesses seeking professional web hosting services. Their market position is supported by over 20 years of experience and a large customer base exceeding 680,000 hosted sites worldwide. The website features customer testimonials, a money-back guarantee, and a comprehensive service portfolio, reinforcing their credibility in the hosting market. Technically, the website is built on WordPress using popular plugins and frameworks such as Visual Composer, Slider Revolution, and Bootstrap. It employs modern web technologies including HTTPS with Let's Encrypt SSL certificates, Google Tag Manager, and Microsoft Clarity for analytics. The site is mobile optimized and provides a good user experience with clear navigation and professional design. However, some security best practices like HTTP security headers are not visibly implemented, representing an area for improvement. From a security perspective, the site benefits from HTTPS encryption, regular backups with RAID 10 SSD, and a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contacts is noted. The WHOIS data for the domain is missing, which reduces trustworthiness from a domain registration perspective, although the website content and customer reviews suggest a legitimate business. Overall, the website presents a professional and trustworthy front for a mid-sized hosting provider with solid technical infrastructure and compliance posture. Strategic recommendations include enhancing security headers, publishing explicit security policies, and resolving the WHOIS data gap to improve domain trust and transparency.

D

Département du Nord

lenord.fr

65

The Département du Nord operates an official government website providing comprehensive information about its policies, services, institutional structure, and news relevant to residents and stakeholders in the Nord department of France. The site serves as a central hub for public service information, cultural and tourism activities, and contact points for the department's administration. It maintains a strong market position as the authoritative source for regional government information. Technically, the website employs a modern tech stack including jQuery, Matomo analytics for privacy-conscious tracking, and Cloudflare for DNS and CDN services. The site is well-structured with good SEO practices, accessibility features, and mobile optimization, reflecting a mature digital infrastructure. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses secure external libraries but lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. No critical vulnerabilities or suspicious patterns were detected. The WHOIS data confirms domain legitimacy and consistency with the governmental nature of the site. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in privacy compliance and security headers would further enhance its posture.

G

Gallery Systems

emuseum.com

71

Gallery Systems is a specialized technology company providing online collections management software tailored for museums, galleries, and cultural institutions. Their platform enables digital asset management and sharing of collections, positioning them as a niche B2B software provider in the cultural heritage sector. The website reflects a professional digital presence with consistent branding and relevant content targeting institutional clients. Technically, the site is built on WordPress with modern marketing and analytics integrations such as Marketo and Cookiebot, indicating a mature digital marketing infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms, though the absence of explicit security headers and public WHOIS data suggests areas for improvement. Overall, the domain appears legitimate but lacks transparency in registration details, which slightly impacts trustworthiness.

T

Talents des Cités

talentsdescites.com

72

Talents des Cités is a French government-supported non-profit competition that annually rewards and supports young entrepreneurs and creators located in priority urban neighborhoods (QPV). The website is professionally designed using Drupal 11 and integrates modern web technologies and analytics tools such as Matomo and TagCommander. The site provides detailed information about the competition, its partners, laureates, and events, targeting entrepreneurs and stakeholders in the French entrepreneurial ecosystem. Security posture is good with HTTPS enabled and no exposed sensitive data, though security headers could be improved. Privacy compliance is basic with cookie consent implemented but no explicit privacy or terms pages found. WHOIS data is unavailable, which slightly reduces transparency but the website's professional presentation and government partnerships support its legitimacy.

C

Cap Créa

capcrea.com

68

Cap Créa is a French non-profit community dedicated to supporting entrepreneurs and business creators through a network of ambassadors. The website promotes entrepreneurial pride and the importance of accompaniment for successful business projects. Technically, the site is built on Drupal 11 with modern JavaScript libraries and is mobile optimized, offering a good user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some security headers and formal privacy documentation. The absence of WHOIS data for the domain is a notable concern, potentially impacting trust. Overall, the site is professional and trustworthy but would benefit from enhanced transparency and security documentation.

I

Innova Semplice SpA

cloud-care.it

67

Innova Semplice SpA operates as a leading Italian hub connecting consumers with providers in the utility, insurance, and financial sectors. Established in 2011, the company has positioned itself as a marketplace facilitating multi-channel interactions between demand and supply, supported by a network of subsidiaries specializing in brokerage and digital services. The website reflects a professional and consistent brand image, targeting both B2C and B2B audiences with clear service offerings and corporate governance transparency. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and standard tracking tools such as Google Tag Manager and Cookiebot for compliance and analytics. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response disclosures. Overall, the domain registration aligns well with the business claims, supporting legitimacy and trustworthiness.

B

Bundesverband Gebäudemodernisierung e.V.

bvgem.de

51

The Bundesverband Gebäudemodernisierung e.V. operates a professional German-language website focused on promoting affordable and rapid modernization of residential buildings, particularly single and two-family homes built before 1994. The association provides a network of certified modernization consultants, digital tools such as building quick checks and economic calculators, and educational seminars through its BVGeM-Akademie. The website positions itself as a national non-profit entity dedicated to energy efficiency and climate protection through building modernization. Technically, the website is built on WordPress with WooCommerce for e-commerce capabilities, using modern front-end technologies including Bootstrap, jQuery, and Swiper.js. Hosting appears to be provided by 1&1 IONOS, inferred from the nameservers. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate with no critical errors detected. From a security perspective, the site enforces HTTPS and uses secure login forms but lacks visible security headers and a vulnerability disclosure policy. No cookie consent mechanism was detected, which is a GDPR compliance gap. No contact information or incident response channels are explicitly provided, limiting transparency. No suspicious or vulnerable libraries were found in the HTML content. Overall, the website is trustworthy and professional with a solid business focus but could improve privacy compliance and security posture by implementing cookie consent, security headers, and incident response information. The domain WHOIS data aligns with the business profile, showing no suspicious patterns. The site is safe for general audiences with no adult or questionable content.

D

Deutscher Wildgehege-Verband e.V.

wildgehege-verband.de

10

The Deutscher Wildgehege-Verband e.V. is a German non-profit specialist association representing 175 members managing private, municipal, and state wildlife enclosures across Germany. It focuses on animal welfare, species conservation, and environmental education, serving approximately 18 million visitors annually. The organization is supported by a scientific advisory board and recognized by environmental foundations, positioning it as a reputable entity within its sector. Technically, the website is built on the DZIRCMS platform, uses standard web technologies, and is hosted on German servers. It features a cookie consent mechanism and maintains a good level of mobile optimization and SEO. Security-wise, the site enforces HTTPS but lacks advanced security headers and explicit security policies. No critical vulnerabilities or blocking mechanisms are detected, indicating a stable and trustworthy online presence. Overall, the website demonstrates good content quality, business credibility, and privacy compliance, suitable for its non-profit educational mission.

B

Bpifrance

entrepreneuriat-quartiers-2030.fr

67

The website 'Quartiers 2030' is a government-backed initiative operated by Bpifrance to support entrepreneurship in priority neighborhoods (QPV) in France. It provides a comprehensive program including detection, financing, accompaniment, and acceleration of entrepreneurs, aiming to foster economic inclusion and job creation. The site is well-branded, professionally designed, and integrates multiple partner organizations and government entities, reflecting a strong institutional backing. Technically, the site is built on Drupal 10 with modern JavaScript libraries and CSS frameworks, ensuring a responsive and accessible user experience. It employs HTTPS and basic security measures but could improve with explicit security headers and incident response disclosures. Privacy and cookie policies are present and GDPR compliant, with consent mechanisms implemented. Security posture is solid with no critical vulnerabilities detected, but the absence of a security.txt and incident response contacts suggests room for improvement. The domain registration is recent but consistent with the program's launch timeline and shows no suspicious patterns. Overall, the website presents a trustworthy, professional, and well-maintained digital presence for a public entrepreneurship support program, with recommendations to enhance security transparency and incident readiness.

E

Equus Software

equusoft.com

69

Equus Software is a technology company specializing in cloud-based global mobility solutions designed to support international talent and workforce mobility programs. Their website reflects a professional B2B SaaS business model targeting organizations managing global workforce mobility. The company appears to have been founded in 2016, with a medium-sized operational scale. The website is built on WordPress using the Astra theme and integrates multiple marketing and analytics tools such as HubSpot, Google Analytics, and LinkedIn Insight Tag, indicating a mature digital marketing strategy. Technically, the website demonstrates good implementation with HTTPS enabled, cookie consent mechanisms integrated with Google Consent Mode, and a responsive design optimized for mobile devices. However, there is room for improvement in security headers and explicit privacy and terms of service documentation. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content and branding are consistent and professional. From a security perspective, the site employs standard best practices like HTTPS and cookie consent but lacks visible security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected in the analysis. Overall, the website presents a moderate security posture with recommendations to enhance transparency and compliance. The overall risk assessment suggests the site is generally trustworthy but would benefit from improved domain registration transparency, comprehensive privacy documentation, and enhanced security headers. Strategic recommendations include publishing clear privacy and terms policies, adding security.txt files, and improving contact information visibility to strengthen trust and compliance.

A

Agysoft

agysoft.fr

60

Agysoft is a French company specializing in software solutions for public procurement management, operating since 1989 and part of the Ach@t Solutions group. The company offers the Marco software suite, which provides legal compliance, efficiency, and assistance services tailored to public sector buyers. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting public sector procurement professionals. Technically, the site is built on Drupal 8 with modern libraries and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. The absence of WHOIS data reduces domain trustworthiness but does not detract from the professional business presentation. Overall, Agysoft demonstrates a strong market position in its niche with a well-maintained digital footprint.

L

LGBTI Pathways

lgbtipathways.org

51

LGBTI Pathways is a recently established (2023) global non-profit initiative focused on improving funding and resources for LGBTI communities worldwide. The project operates through regional surveys and analyses, engaging activists, donors, and governments to align funding with community needs. The website is built on WordPress with modern plugins and technologies, providing a professional and accessible user experience. Security posture is good with HTTPS and cookie consent mechanisms, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and GDPR-aligned cookie consent. Business credibility is supported by clear organizational information and transparent domain registration. Overall, the website presents a trustworthy and professional front for the LGBTI Pathways project.

Bezirksgemeinschaft Vinschgau is the official regional government body serving the Vinschgau district in South Tyrol, Italy. The website provides comprehensive information about regional administration, social services, environmental management, and regional development initiatives. It targets residents and stakeholders within the district, offering public services and community engagement through news, events, and online services. The organization holds a stable market position as a government entity with a medium-sized operational scope. Technically, the website is built on the GEM2GO platform using ASP.NET WebForms and incorporates legacy JavaScript libraries such as jQuery 1.7.2 alongside modern tools like Slick Carousel and FontAwesome. The site is mobile-optimized, accessible, and performs moderately well. It employs Matomo analytics with privacy-conscious configurations and provides a cookie consent mechanism aligned with GDPR requirements. From a security perspective, the site enforces HTTPS and uses session cookies securely. However, it lacks explicit security headers like CSP and X-Frame-Options, and the use of outdated JavaScript libraries could pose risks. No incident response or vulnerability disclosure policies are published, which could be improved to enhance security posture. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic recommendations include updating JavaScript libraries, implementing comprehensive security headers, and publishing security policies to strengthen trust and resilience.

Stadt Sterzing operates as the official municipal government website for the city of Sterzing in South Tyrol, Italy. It provides a broad range of public services, news, event information, and administrative resources to its citizens and visitors. The site is well-positioned as a regional government portal, offering digital services such as the GEM2GO app for mobile access and citizen engagement. The website targets local residents and stakeholders interested in municipal affairs and community services. Technically, the website is built on a custom ASP.NET CMS platform, leveraging Bootstrap Italia for responsive design and FontAwesome for icons. It integrates Matomo analytics for user tracking with privacy considerations, and includes accessibility features such as visual assistance tools. The site demonstrates good mobile optimization and SEO practices, ensuring usability across devices. From a security perspective, the website enforces HTTPS and employs session cookies for state management. While explicit security headers are not fully evident, the site maintains a good security posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place, aligning with GDPR requirements. Overall, the website presents a trustworthy and professional digital presence for the municipal government. The lack of public WHOIS data is consistent with privacy protection norms for .eu domains and does not detract from the site's legitimacy. Strategic recommendations include enhancing security headers and publishing a formal security policy to further strengthen trust and compliance.

É

École d'Ingénieurs de PURPAN

purpan.fr

49

École d'Ingénieurs de PURPAN is a French engineering school specializing in future-oriented sectors such as agriculture, food, and environment. It serves students and professionals seeking engineering education and training in these fields. The institution holds a solid market position in France as a reputable educational entity with a focus on innovation and sustainability. The website reflects a professional and consistent brand image, targeting prospective students and academic partners. Technically, the site is built on WordPress with modern optimization plugins like WP Rocket and Yoast SEO, ensuring good performance and SEO readiness. Mobile optimization is good, though accessibility features could be improved. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, but lacks explicit security policies or incident response information. WHOIS data is unavailable, which slightly impacts trust but the overall site professionalism supports legitimacy. Privacy compliance is well addressed with GDPR-aligned policies and cookie management. Overall, the site is safe, professional, and well-suited for its educational purpose.

DERTICKETSERVICE.DE GmbH & Co. KG operates as a leading regional ticketing and live entertainment marketing service provider in North Rhine-Westphalia, Germany. With over 35 years of experience, the company offers tailored ticket software solutions, marketing support, and access to a network of regional ticket platforms such as kölnticket, bonnticket, and westticket. Their services target event organizers and end customers, focusing on maximizing event success through technology and marketing expertise. The website is professionally designed using TYPO3 CMS and integrates modern web technologies, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are absent. The WHOIS data is privacy protected, which is justified for this business type, but limits direct verification of registrant details. Overall, the site demonstrates high trustworthiness and business credibility with strong regional partnerships and professional content.

B

Biscuits, Gâteaux et Panifications de France

biscuitsgateauxpanifications.fr

34

Biscuits, Gâteaux et Panifications de France is a French industry syndicate representing companies involved in biscuits, cakes, and bakery products. The organization focuses on promoting the diversity of products, valorizing métiers and savoir-faire, and enhancing the French gourmet heritage. The website is professionally designed using WordPress and Elementor, with good SEO and mobile optimization. It integrates modern technologies such as Google Analytics and Mapbox for enhanced user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and explicit security policies are absent. The absence of WHOIS data limits domain trust verification, but the website's professional content and social media presence support its legitimacy. Overall, the site is a credible and well-maintained digital presence for the syndicate.

P

Postradali.com

postradali.com

45

Postradali.com is a Bulgarian website dedicated to providing information, comparison, and support services for victims of road traffic accidents and their families. The platform aggregates offers from associations, NGOs, and lawyers to help users find legal assistance and claim compensation. The site is focused on the Bulgarian market and is presented in Bulgarian language. Technically, the website is built on WordPress with several plugins for forms, ratings, and filtering. It uses Google Analytics and Adsense for tracking and monetization. However, the site lacks HTTPS, which is a critical security shortcoming. There is no visible security policy or incident response information, and contact details are limited to a web form. The domain is registered since 2015 with consistent data and local hosting, indicating legitimacy. Overall, the website serves a niche audience with relevant content but requires significant security improvements.

The Südtiroler Künstlerbund is a well-established cultural association based in Bolzano, Italy, founded in 1946. It serves as a platform for artists across multiple disciplines including visual arts, literature, music, and architecture. The organization promotes emerging talent through exhibitions, events, and partnerships with galleries and institutions both nationally and internationally. The website reflects a medium-sized non-profit entity with a clear focus on arts and culture, targeting artists and art enthusiasts. Technically, the website employs modern front-end technologies such as HTML5, CSS3, JavaScript, FontAwesome, and Swiper.js for interactive event displays. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, the CMS and hosting details are not discernible from the available data. From a security perspective, the site uses HTTPS with an excellent SSL configuration and implements a cookie consent mechanism indicating GDPR compliance awareness. However, it lacks visible security headers and formal security or incident response policies. No vulnerabilities or tracking analytics were detected, suggesting a minimal attack surface but also limited security transparency. Overall, the website is trustworthy and professional in its presentation and content, but the absence of WHOIS data and domain registration details introduces moderate uncertainty regarding domain legitimacy. Strategic improvements in security policies and transparency would enhance trust and compliance.

F

Fort Wayne LightFest

fwlightfest.org

67

Fort Wayne LightFest is a seasonal holiday event in Fort Wayne, Indiana, combining two major light shows: Blue Jacket's Fantasy of Lights and the Fort Wayne Zoo's Wild Lights, along with a Christmas Village featuring vendors and family activities. The website effectively communicates event details, ticketing options, schedules, and FAQs targeting families and local community members. Technically, the site uses modern frontend technologies including Tailwind CSS, Mantine UI, Mapbox GL JS, and FontAwesome, hosted behind Cloudflare with Squarespace as the registrar, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and domain protection flags, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional, trustworthy, and safe for general audiences, but would benefit from enhanced privacy and security disclosures.

I

Institut F2I

institut-f2i.fr

59

Institut F2I is a private educational institution based in France specializing in post-baccalaureate education in information technology, digital technologies, and commerce. Founded in 2012, it offers courses from BAC to BAC+5 levels, including initial and alternating (work-study) programs. The institution targets students and professionals seeking specialized education in these sectors. The website reflects a focused educational business model with consistent branding and relevant content tailored to its audience. Technically, the website is built on WordPress CMS using modern libraries such as Bootstrap, jQuery, and Swiper, hosted by OVH. It employs Google Tag Manager and Google Analytics for tracking and marketing purposes, alongside reCAPTCHA for bot protection. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features. Security-wise, the website uses HTTPS with a good SSL configuration and some best practices like reCAPTCHA; however, it lacks security headers and published security policies. Privacy compliance is weak due to the absence of privacy and cookie policies despite the presence of cookie consent SDK. Overall, the website is professional and credible but requires improvements in privacy disclosures and security hardening to enhance trust and compliance.

Protected Planet is a globally recognized platform managed by UNEP-WCMC and IUCN, providing comprehensive and up-to-date data on protected areas and other effective area-based conservation measures. The website serves governments, NGOs, landowners, and communities by aggregating and disseminating critical conservation data, supported by an API and regular updates. Its market position is strong as a leading global resource in environmental conservation data. Technically, the website employs modern web technologies including Ruby on Rails, Mapbox GL JS for mapping, and analytics tools such as Google Analytics and Hotjar. The site is mobile-optimized with good SEO and accessibility basics, though some improvements could be made in accessibility and performance tuning. From a security perspective, the site enforces HTTPS, uses Content Security Policy, and includes CSRF tokens, reflecting a solid security posture. However, it lacks some recommended security headers and does not publicly disclose security policies or incident response contacts, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and content-rich with a high level of business credibility. The main risks relate to privacy compliance gaps and limited contact information. Strategic recommendations include publishing comprehensive privacy and security policies, expanding contact options, and enhancing security headers to further strengthen the security posture.

DERTICKETSERVICE.DE GmbH & Co. KG is a well-established regional ticketing service provider in North Rhine-Westphalia, Germany, with over 35 years of experience. Operating three main brands—kölnticket, bonnticket, and westticket—the company serves a broad spectrum of clients ranging from small venues to large arenas, managing more than 35,000 events annually. Their business model focuses on comprehensive ticketing solutions, project management, and contact center services tailored to the event industry in the region. Technically, the website is built on TYPO3 CMS with a Bootstrap framework, ensuring a modern and responsive design. The site incorporates standard web technologies including FontAwesome icons and Google Analytics with IP anonymization, alongside a cookie consent mechanism compliant with GDPR opt-out requirements. Hosting is inferred to be with NetCologne, consistent with the regional focus. Performance and SEO are moderate to good, with room for improvement in accessibility and security headers. From a security perspective, the site enforces HTTPS and uses cookie consent scripts to manage user privacy. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content and business claims, indicating legitimacy and consistency. Overall, the website presents a professional and trustworthy digital presence with good business credibility and privacy compliance. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance the security posture and user trust.

Š

Švandovo divadlo

svandovodivadlo.cz

49

Švandovo divadlo is a well-established cultural theatre institution based in Prague, offering theatrical performances, workshops, and cultural events. Supported by the city of Prague and the Prague 5 district, it serves a broad audience interested in drama and arts. The website reflects a professional and consistent brand presence with clear navigation and relevant content for visitors and patrons. Technically, the site uses modern web technologies including jQuery, FontAwesome, and CookieConsent.js, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforced and a comprehensive cookie consent mechanism, although some security headers could be added for enhanced protection. The absence of WHOIS data is due to CZ NIC policies or privacy protection, which is typical and justified for this type of entity. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information and social media links.

I

Instituto de Estudios Cajasol

institutocajasol.com

56

Instituto de Estudios Cajasol is a well-established business school based in Sevilla, Spain, offering professional master’s degrees, postgraduate courses, and corporate training primarily targeting professionals and students in Andalucía. The institution has a strong regional presence with a domain registered since 2006, reflecting its longevity and market position. The website is professionally designed, mobile-optimized, and rich in relevant content, supporting a positive user experience and strong SEO performance. Technically, the site leverages WordPress with popular plugins and integrates multiple marketing and analytics tools, including Google Tag Manager and Outbrain, indicating a mature digital marketing strategy. Security posture is good with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and some security headers are not explicitly detected. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms in place. Overall, the website demonstrates high business credibility and trustworthiness with clear contact information and consistent branding.

M

Museum Kampa

museumkampa.cz

44

Museum Kampa is a well-established modern art museum located in Prague, Czech Republic, focusing on Central European modern art and preserving the collection of Jan and Meda Mládková. The website reflects a professional and consistent brand presence with good content quality and user experience. Technically, the site is built on WordPress with modern plugins and frameworks, showing moderate performance and good mobile optimization. Security posture is strong with HTTPS enabled and no critical vulnerabilities detected, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive GDPR policy and cookie consent mechanism. Overall, the site is trustworthy and serves its audience effectively.

O

Objective Wealth

objectivewealthfp.com

63

Objective Wealth is a small financial advisory firm specializing in tax-conscious comprehensive financial planning and investment management. The website presents a professional image with clear descriptions of services including financial and retirement planning, investment management, tax planning and preparation, and small business retirement plans. The firm targets individuals and small businesses seeking personalized financial guidance. The website is built on a modern technical stack including jQuery, Bootstrap, FontAwesome, and uses Zephyr CMS. Tracking technologies such as Google Tag Manager and Facebook Pixel are implemented for analytics and marketing purposes. Security posture is moderate with HTTPS usage implied, but lacks visible security headers and explicit privacy or cookie policies, which are critical for compliance and trust. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy and reduces overall trust. No forms or direct contact information were found in the provided content, limiting user engagement options. Overall, the website is functional and professional but would benefit from enhanced security practices, privacy compliance, and verified domain registration information.

A

Api Restauration

api-restauration.com

65

Api Restauration is a French catering company emphasizing responsible cooking, culinary excellence, and corporate social responsibility. The website showcases their commitment to ethical practices, nutrition, training, and sustainable development within the hospitality sector. Their market position is that of an established large company with a strong focus on culinary talent and apprenticeship programs. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses privacy-conscious analytics tools such as Matomo alongside Google Analytics. The site is well-structured, mobile-optimized, and compliant with GDPR regulations, featuring a comprehensive cookie consent mechanism. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Overall, the site projects professionalism and trustworthiness with consistent branding and clear business focus.

C

Conseil National des Villes et Villages Fleuris (CNVVF)

villes-et-villages-fleuris.com

52

The website represents the Conseil National des Villes et Villages Fleuris (CNVVF), a well-established French national label promoting sustainable urban development and quality of life in municipalities. It supports nearly 4,700 communes with certification and expert guidance, emphasizing environmental preservation and citizen well-being. The site is professionally designed, mobile-optimized, and uses a modern technology stack including Bootstrap, jQuery, and various UI libraries. Security posture is adequate with HTTPS and reCAPTCHA, but lacks advanced security headers and published policies. Privacy compliance is basic with cookie consent but no explicit privacy policy page found. Overall, the domain is legitimate and stable, hosted by OVH with consistent WHOIS data.

P

Phototendance

phototendance.com

49

Phototendance is a French language website focused on photography trends or related content, built on WordPress using the Divi theme and several plugins. The site appears to target French-speaking photography enthusiasts or professionals, offering informational content without explicit business descriptions or commercial services. Technically, the site uses modern web technologies and SEO plugins but lacks visible security headers and privacy compliance documentation. The absence of WHOIS registration data raises concerns about domain legitimacy, although the website content is accessible and professional in design. Security posture is moderate but could be improved with better header configurations and documented policies. Overall, the site is functional and moderately trustworthy but lacks critical compliance and contact transparency.

S

SKIDATA

skidata.com

66

SKIDATA is a global enterprise specializing in intelligent access and parking solutions for sectors including transportation, sports, entertainment, and hospitality. Their website demonstrates a mature digital presence built on HubSpot CMS, featuring comprehensive product and segment information, customer testimonials, and a focus on integrated solutions via their SKIDATA Connect platform. The technical infrastructure is modern and includes standard marketing and analytics tools, with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and vulnerability disclosures are absent. The absence of WHOIS data for the domain www.skidata.com is a notable anomaly that impacts trust from a domain registration perspective but does not detract from the professional appearance and content quality of the website. Overall, the site is well-designed, user-friendly, and business credible, with moderate privacy compliance and room for improvement in transparency and security documentation.

B

BLOOM'UP

bloomup.net

51

Bloom'Up is a French accredited domain registrar specializing in the acquisition and resale of recently expired domain names with strong SEO potential. The company offers services such as dropcatching, backorder programming, immediate domain purchase, and auctions, targeting SEO professionals and digital marketers seeking to leverage domain authority and traffic. The website is professionally designed, mobile-optimized, and provides clear business information including contact details and accreditation by AFNIC, enhancing trustworthiness. Technically, the website employs modern front-end technologies including Bootstrap, FontAwesome, and Owl Carousel, ensuring a responsive and visually appealing user experience. While the site uses HTTPS and secure transfer codes for domains, it lacks visible security headers and cookie consent mechanisms, indicating room for improvement in security and privacy compliance. No analytics or tracking scripts were detected, suggesting minimal user tracking. From a security perspective, the site demonstrates a good baseline with HTTPS and secure domain transfer processes. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy or recent registration status. No critical vulnerabilities or exposed sensitive data were identified. The site would benefit from enhanced security headers, explicit incident response policies, and GDPR-compliant cookie consent. Overall, Bloom'Up presents a credible and professional business with a niche market focus. The main risk lies in the missing WHOIS data which impacts domain trustworthiness. Strategic recommendations include improving security headers, implementing cookie consent, and publishing detailed security and incident response policies to bolster compliance and user trust.

I

Inéolab

ineolab.fr

62

Inéolab is a specialized SEO and CRO agency based in Strasbourg, France, operating since 2010. The company offers comprehensive SEO services including audits, strategy development, content creation, technical optimization, and link building. Their market position is that of a trusted specialist agency with a strong focus on sustainable SEO practices and client engagement. Technically, the website is built on WordPress using modern themes and plugins, with good mobile optimization and SEO best practices implemented. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and well-structured, supporting a positive business and security profile.

A

ATX-DYNO LTD.

atx-dyno.com

55

ATX-DYNO LTD. is a Czech-based manufacturing company founded in 2015 specializing in precision metrological devices and control systems integration for automotive and agricultural machinery sectors. The company serves notable clients such as New Holland, John Deere, and Fendt, positioning itself as a niche player with customized dynamometer solutions. The website is professionally designed, mobile-optimized, and provides comprehensive contact information, including multiple physical locations and social media presence. Technically, the site uses modern frameworks like Bootstrap and integrates marketing and analytics tools such as Google Tag Manager and Pipedrive CRM forms. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies. WHOIS data is unavailable, which reduces domain trustworthiness, though website content and business information appear legitimate. Overall, the site scores well on content quality and business credibility but should improve privacy transparency and security practices.