Security Directory

D

Dynamic

dynamicauth.com

74

Dynamic is a fintech and crypto-focused company providing wallet infrastructure solutions including authentication, smart wallets, and secure key management via a flexible SDK. Positioned as an enterprise-grade provider, Dynamic supports multi-chain coverage and third-party wallets, targeting fintech companies, crypto businesses, and stablecoin platforms. The company recently became part of Fireblocks, enhancing its market position. The website demonstrates a mature technical infrastructure with modern web technologies, strong design quality, and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and contact information are lacking. Overall, the site is professional and trustworthy with room for improvement in privacy and security transparency.

G

GlücksSpirale

gluecksspirale.de

60

GlücksSpirale is a well-established German lottery organization offering various lottery ticket options with significant prizes, including immediate and long-term monthly winnings. The business model integrates social responsibility by funding welfare, monument restoration, and sports projects, positioning itself as a socially conscious lottery provider. The website reflects a mature digital presence with modern technologies such as React and Next.js, hosted on reliable infrastructure including Amazon S3 and Deutsche Telekom DNS servers. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is evident through cookie consent mechanisms and a comprehensive privacy policy. Overall, the site demonstrates high trustworthiness and professionalism suitable for its regulated gambling industry context.

W

Whistleblowing Experte

whistleblowing-experte.de

55

Whistleblowing Experte operates a specialized digital whistleblower reporting and compliance management platform targeted primarily at small and medium-sized enterprises (KMU) in Germany. The company offers a comprehensive compliance tool integrated with qualified legal support and an ombudsperson network, positioning itself as a niche provider in the compliance and whistleblowing sector. The website is professionally designed using the Contao CMS, with modern web technologies and responsive design ensuring good user experience across devices. The technical infrastructure is hosted by Timme Hosting and includes Google Tag Manager for analytics. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and explicit incident response policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and functional but would benefit from enhanced privacy and security disclosures.

U

Uplift Founders

upliftfounders.com

59

Uplift Founders is a specialized coaching service focused on empowering startup founders to scale their businesses faster by addressing both the inner psychological aspects and the outer strategic business challenges. Founded in 2023 and based in Germany, the company targets seed-stage founders approaching Series A funding as well as bootstrapped founders with significant traction. Their offerings include a proprietary Founder Audit, shift sessions, a Clarity Program for bi-weekly coaching, and an intensive Series A Co-Pilot mode for hands-on support. The website is professionally designed, mobile-optimized, and rich in content, including detailed FAQs and client testimonials, which enhance trust and credibility. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, and Swiper.js for UI components, alongside Matomo for privacy-conscious analytics. The domain is registered with a reputable registrar and secured with HTTPS, although DNSSEC is not enabled. No major security vulnerabilities or exposed sensitive data were detected. However, the site lacks some security headers and a cookie consent mechanism, which are recommended for enhanced compliance and security. Overall, the security posture is solid but could be improved by implementing additional HTTP security headers, enabling DNSSEC, and publishing formal security and incident response policies. The business credibility is high due to transparent contact information, professional content, and consistent branding. No adult or questionable content is present, making the site safe for general audiences.

R

rabbitAI

rabbitai.de

59

rabbitAI is a specialized technology company providing high-precision training data and ground truth solutions for computer vision engineers and AI developers. Their offerings focus on device-specific ground truth data capture and augmentation to accelerate AI algorithm development, particularly in 3D perception, XR, and in-cabin sensing applications. The company positions itself as a reliable partner for enhancing AI reliability and safety through superior training data. Technically, the website is hosted on AWS infrastructure, uses modern web technologies including HTML5, CSS3, JavaScript, and employs Matomo analytics with privacy-conscious configurations. The site is well-designed, mobile-optimized, and SEO-friendly, providing a professional user experience. However, some technical improvements such as adding security headers and explicit cookie consent mechanisms could enhance security and compliance. From a security perspective, the site enforces HTTPS and avoids cookie tracking, indicating a good baseline security posture. No critical vulnerabilities or exposed sensitive data were detected. The absence of a security policy, incident response contacts, or vulnerability disclosure mechanisms suggests room for maturity in security governance. Overall, rabbitAI presents a trustworthy and professional online presence with a strong focus on AI training data solutions. Strategic improvements in privacy compliance and security best practices would further strengthen their digital maturity and trustworthiness.

K

Kinder Praxis & Klinik

kinder-und-klinik.de

52

Kinder Praxis & Klinik is a specialized pediatric dental practice and clinic located in Böblingen, Germany, focusing on dental care for children and teenagers. The practice emphasizes creating a child-friendly, anxiety-free environment with a comprehensive range of dental services including prophylaxis, caries treatment, milk tooth crowns, and oral surgery. The website presents a professional and well-structured digital presence with detailed service descriptions and a strong focus on patient comfort and education. Technically, the site uses modern web technologies including HTML5, CSS3, JavaScript, and Matomo analytics, hosted on a reputable DNS provider. Security posture is good with HTTPS enforced and no visible vulnerabilities, though cookie consent and explicit security policies are lacking. Overall, the site is trustworthy and professionally maintained, serving a local healthcare niche effectively.

K

KAARISMA Recruitment GmbH

kaarisma.de

63

KAARISMA Recruitment GmbH is a specialized recruitment agency based in Berlin, focusing on headhunting and recruiting sales professionals for permanent positions. The company emphasizes harmony between candidates and their work environment, targeting both Fach- und Führungskräfte and companies seeking sales talent. Their market position is that of a niche, specialized recruitment service with a modern and professional online presence. Technically, the website is built on Kirby CMS, hosted on Hetzner infrastructure, and uses Matomo for analytics, indicating a moderate to advanced digital maturity. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers and explicit incident response policies are not evident. Overall, the website is professional, trustworthy, and compliant with GDPR, with clear privacy and cookie policies. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and expanding contact information visibility.

M

Manuel Deutsch

manuel-deutsch.de

53

Manuel Deutsch operates as a freelance web developer and web designer based in Stuttgart, Germany, offering professional web development, SEO, UX, and frontend services primarily to agencies and businesses in the Stuttgart and Ludwigsburg regions. The website showcases a strong portfolio of client projects and testimonials, positioning Manuel as a trusted partner for digital agencies and companies seeking high-quality, customized web solutions. Technically, the site leverages modern frameworks such as Vue.js and React, uses Kirby CMS for content management, and is hosted on netcup servers, indicating a mature and modern digital infrastructure. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the site lacks explicit security headers and formal privacy or cookie policies, which are areas for improvement. Overall, the website is professional, well-designed, and trustworthy, but could enhance compliance and security transparency to further strengthen its risk profile.

M

Mon magasin Vert

monmagasinvert.fr

69

Mon magasin Vert is a regional retail and e-commerce company specializing in gardening, pet supplies, and outdoor equipment, primarily serving the Brittany and Pays de la Loire regions in France. The website is built on a modern Magento platform with the Hyvä frontend theme, indicating a mature digital infrastructure. The company is part of the Eureden group, a known entity in the agricultural and retail sector. The site demonstrates good privacy compliance with clear cookie consent mechanisms and privacy policies in French, aligning with GDPR requirements. Security posture is strong with HTTPS enforced and security headers present, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

The website www.toughcoded.com is currently inactive and displays a Squarespace expired account placeholder page. There is no accessible business content, contact information, or policies available. The domain WHOIS query returned no registration data, indicating the domain is either unregistered or expired. Technically, the site uses Squarespace platform scripts but lacks any active content or security configurations. The security posture is minimal with no HTTPS or security headers detected. Overall, the site presents no trust or business credibility signals and is effectively non-operational.

C

Computer Sweden Recruitment

csrecruitment.se

10

Computer Sweden Recruitment is a specialized recruitment firm focusing on IT and technology sectors, operating under the umbrella of Foundry, a leading tech media and marketing company. The website presents a professional and modern digital presence, leveraging the Teamtailor platform for recruitment and candidate management. The site is well-structured, mobile-optimized, and includes essential features such as cookie consent and privacy policy, reflecting a good level of digital maturity. However, the absence of WHOIS data for the domain raises questions about domain registration status, which should be monitored for legitimacy. Security posture is generally strong with HTTPS and cookie management, but lacks explicit security policies and incident response contacts. Overall, the site is trustworthy and professional, serving its target audience effectively.

The analyzed domain currently serves a Chrome internal error page indicating that the website content is inaccessible or blocked. No meaningful business or contact information is available on the page. The site lacks privacy, cookie, and terms of service policies, and no external links or social media profiles are present. Technically, the page is a browser error page with embedded Chromium scripts and styles, not a functional website. Security posture is minimal with no visible HTTPS or security headers. WHOIS data is privacy protected or unavailable, limiting trust assessment. Overall, the domain appears non-functional or blocked, resulting in a very low trust and quality score.

C

Citybikes

citybikes.cz

58

Citybikes.cz is a Czech Republic-based e-commerce retailer specializing in urban bicycles, electric bikes, and related accessories. Established since 2006, the company targets urban cyclists, families, and seniors seeking sustainable and healthy transportation options. The website offers a broad catalog of products including folding bikes, children's bikes, and bike accessories, supported by repair and conversion services. Technically, the site is built on the Shoptet platform, leveraging common web technologies such as jQuery, Google Analytics, and Facebook Pixel for marketing and analytics. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. The absence of WHOIS data for the domain is a notable concern, impacting domain legitimacy trust scores. Overall, the website is professional and trustworthy from a user perspective but would benefit from enhanced transparency on domain registration and security policies.

E

Ekonomski institut, Zagreb

eizg.hr

57

Ekonomski institut, Zagreb is a well-established scientific institute specializing in applied economic research with a history spanning over 85 years. The organization provides valuable economic analyses, indices, publications, and educational events targeting researchers, policymakers, and economic professionals primarily in Croatia. The website reflects a professional and consistent brand image with a focus on delivering research outputs and facilitating knowledge dissemination through seminars and workshops. Technically, the site employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and Google Analytics for user tracking. It is mobile-optimized and offers a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and secure form submissions but lacks visible security headers and a cookie consent mechanism, which are recommended for enhanced compliance and protection. Overall, the domain registration and WHOIS data align well with the institute's profile, indicating a legitimate and trustworthy entity.

H

HAMAG BICRO

hamagbicro.hr

47

HAMAG BICRO is a Croatian government agency dedicated to supporting small businesses and investments. The agency provides comprehensive assistance to entrepreneurs throughout all stages of business development, from idea research and development to commercialization and market placement. The website reflects a national-level institution with a focus on fostering economic growth and innovation in Croatia. Technically, the website is built on WordPress with SEO optimization plugins, indicating a moderate level of digital maturity. The site is accessible, mobile-optimized, and presents content in Croatian, targeting local entrepreneurs. Security posture shows room for improvement, with no detected security headers and missing privacy and cookie policies, which are critical for GDPR compliance. Overall, the domain registration and WHOIS data align well with the agency's profile, confirming legitimacy. Strategic recommendations include enhancing security headers, adding privacy and cookie policies with consent mechanisms, and publishing clear contact and incident response information to improve trust and compliance.

H

Hrvatski sabor

sabor.hr

60

Hrvatski sabor is the official legislative body of the Republic of Croatia, providing comprehensive information about parliamentary activities, legislative processes, and public services. The website serves citizens, government officials, media, and researchers by offering access to session schedules, legislative documents, press releases, and educational resources. It holds a strong market position as the authoritative source for Croatian parliamentary information. Technically, the website is built on Drupal 10, leveraging modern web technologies and ensuring good mobile optimization and accessibility, including an integrated accessibility widget. The hosting is managed by CARNET, a reputable Croatian academic and research network, ensuring reliable infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. While explicit security headers are not fully visible in the HTML, the overall posture is strong with no exposed sensitive data or vulnerable libraries detected. However, the site lacks a published security policy, incident response information, and vulnerability disclosure mechanisms, which are recommended for enhanced security maturity. Overall, Hrvatski sabor's website is professional, trustworthy, and compliant with privacy regulations, making it a reliable platform for public legislative information. Strategic improvements in security transparency and incident response readiness would further strengthen its security posture.

H

HŽ Putnički prijevoz

hzpp.hr

50

HŽ Putnički prijevoz is the Croatian national passenger rail transport company providing domestic and international train services. The website serves as an information and ticketing portal for passengers, offering travel schedules, ticket purchase options, and travel advisories. The company targets general public users traveling within Croatia and to European destinations by rail. The business model is that of a public transportation service provider with a large market presence as the national rail operator. Technically, the website employs modern web standards including HTTPS, Google Tag Manager, and reCAPTCHA for security and analytics. Accessibility features such as font size adjustment and dyslexia mode enhance user experience. However, the site lacks visible privacy and terms of service pages, and no direct contact information is found in the provided content. Security posture is good with HTTPS and bot protection but could be improved by adding security headers and explicit security policies. Overall, the domain and website appear legitimate and professionally maintained, consistent with a national transportation entity.

Z

Zagrebački holding d.o.o.

zgh.hr

54

Zagrebački holding d.o.o. is a large municipal holding company based in Zagreb, Croatia, managing a broad portfolio of public services including transportation, energy, waste management, and public markets. The company operates multiple subsidiaries that provide essential city infrastructure and services, positioning it as a key player in the local government sector. The website reflects this role with comprehensive information, clear navigation, and a professional design tailored to citizens, investors, and partners. Technically, the site uses modern JavaScript libraries, integrates Google Analytics and AddThis for tracking and sharing, and employs Mapbox for mapping services. The site is mobile-optimized and shows good SEO practices, though accessibility could be improved. Security-wise, the site enforces HTTPS and includes cookie consent mechanisms, but lacks some advanced security headers and a published security.txt file. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the domain's legitimacy and long-standing presence since 2007, consistent with the organization's profile. Overall, the website is trustworthy, well-maintained, and compliant with GDPR, serving its public service mission effectively.

R

Response trening akademija d.o.o.

krav-maga.hr

61

Krav-maga.hr is the official website of Response trening akademija d.o.o., a Croatian company specializing in Krav Maga self-defense training and related educational services. The company operates a network of over 30 training locations across Croatia, targeting a broad audience including adults, women, children, and teenagers. Their business model combines in-person training, online courses, and an e-commerce platform selling related apparel, equipment, and educational materials. The website reflects a well-established market position with a professional online presence and active social media engagement. Technically, the website employs modern web standards including HTTPS, Google reCAPTCHA for form security, and integrates with marketing and analytics tools such as Google Analytics, Facebook Pixel, and Mailchimp. Hosting is supported by Cloudflare DNS services, and the site uses custom CMS technology. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. From a security perspective, the site demonstrates good practices including encrypted connections, GDPR-compliant consent mechanisms, and secure form handling. However, some security headers are not explicitly detected and could be improved. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, krav-maga.hr is a trustworthy, professionally managed website with a solid security posture and compliance with privacy regulations. Strategic improvements in security headers and incident response transparency could further enhance its security maturity.

G

GoDaddy Operating Company, LLC

klemmsecurity.com

71

The website is a domain sales landing page operated by GoDaddy Operating Company, LLC, offering the domain klemmsecurity.com for sale. It targets individuals and businesses interested in acquiring premium domains, providing options to buy outright or lease to own. The platform leverages GoDaddy's established domain aftermarket infrastructure and integrates partner services such as Afternic and Trustpilot for trust and transaction facilitation. The site is professionally designed with a focus on secure and straightforward domain transactions. Technically, it uses modern web frameworks including Next.js and JavaScript, hosted on GoDaddy's infrastructure, with basic SEO and accessibility features. Security posture is moderate with HTTPS implied and reCAPTCHA implemented, but lacks explicit security headers and detailed policies. Overall, the domain sales platform is credible and trustworthy, though WHOIS data for the parking subdomain is unavailable, which is typical for such sales platforms.

M

Microformats – building blocks for data-rich web pages

microformats.org

43

Microformats.org is a niche community-driven website focused on the promotion and education of microformats, a set of open data formats for marking up structured data on web pages. The site serves web developers and the IndieWeb community by providing specifications, blog posts, and resources related to microformats. It operates on a WordPress CMS hosted by Linode and has been active since 2005, indicating a mature presence in its domain. The content is technical and educational, targeting a specialized audience interested in semantic web technologies. From a technical perspective, the website uses a standard WordPress setup with JavaScript and CSS for frontend functionality. While the site is accessible and functional, it shows signs of moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. The site uses Google Analytics for tracking but lacks visible privacy and cookie policies, which may impact compliance with data protection regulations. Security-wise, the site enforces HTTPS but lacks important security headers such as Content-Security-Policy and HSTS. DNSSEC is not enabled for the domain. No contact or incident response information is provided, which limits transparency and readiness for security issues. The absence of privacy and cookie policies also indicates compliance gaps. Overall, the security posture is moderate but could benefit from enhancements. The overall risk assessment suggests the site is legitimate and trustworthy within its niche but should improve privacy compliance and security best practices to enhance user trust and regulatory adherence. Strategic recommendations include implementing security headers, enabling DNSSEC, publishing privacy and cookie policies, and providing clear contact and incident response information.

L

Land Mecklenburg-Vorpommern

ecohesionportal-mv.de

57

The eCohesion-Portal Mecklenburg-Vorpommern is a government-operated web platform designed to facilitate electronic communication and data exchange between funding recipients and regional authorities or intermediaries. It primarily supports the management of approved funding projects within the region, co-financed by the European Union through the European Regional Development Fund. The portal itself does not process data but serves as a communication interface, targeting regional stakeholders involved in funding processes. Technically, the website employs a modern front-end stack including Bootstrap 5.1.3, jQuery, and Popper.js, ensuring responsive design and usability. The site implements a Content-Security-Policy header with restrictive directives, although the use of 'unsafe-inline' and 'unsafe-eval' weakens its security posture. No analytics or tracking technologies are detected, aligning with privacy-conscious government standards. The site lacks a cookie consent mechanism, which is a minor compliance gap given GDPR requirements. From a security perspective, the portal benefits from HTTPS and partial security header implementation but could improve by tightening CSP rules and adding additional headers such as HSTS and X-Frame-Options. No vulnerabilities or exposed sensitive data were identified in the analyzed content. WHOIS data confirms domain legitimacy and consistency with the regional government entity. Overall, the portal presents a trustworthy, professional, and functional government service with moderate technical sophistication and a good security baseline. Strategic improvements in security headers and privacy compliance would enhance its posture and user trust.

F

Mit profil anmelden

foerderportal-efre-mv.de

60

The website is a government-operated login portal for managing funding applications and grants in the Mecklenburg-Vorpommern region of Germany. It provides a secure authentication mechanism via the 'profil' system, allowing users to access and manage their funding online. The portal is targeted at applicants and stakeholders involved in regional funding programs, serving as a digital gateway for government services. Technically, the site uses standard HTML5 and JavaScript with a simple, functional design focused on login functionality. The site is mobile responsive at a basic level and includes accessibility features such as keyboard navigation and password visibility toggling. However, SEO optimization is minimal, and no advanced frameworks or CMS platforms are detected. From a security perspective, the site uses HTTPS and a POST method for login forms, but lacks visible security headers and CSRF protections. No privacy or cookie policies are present, which is a compliance gap. The WHOIS data aligns with regional network infrastructure, supporting legitimacy. No WAF or blocking mechanisms are detected, indicating full accessibility. Overall, the site is functional and moderately secure but would benefit from enhanced security headers, privacy compliance improvements, and richer metadata. The risk level is moderate with no critical vulnerabilities detected.

S

Staatliche Ämter für Landwirtschaft und Umwelt Mecklenburg-Vorpommern

stalu-mv.de

61

The website www.stalu-mv.de serves as the official portal for the Staatliche Ämter für Landwirtschaft und Umwelt (State Offices for Agriculture and Environment) in Mecklenburg-Vorpommern, Germany. It provides information on regulatory enforcement, agricultural support, environmental protection, and related public services. The site targets citizens, agricultural businesses, and governmental stakeholders within the region. The business model is that of a public governmental agency delivering regulatory and support services. The website is well-structured, professionally designed, and consistent with government branding, offering good content relevance and navigation clarity. Technically, the site uses standard web technologies including HTML5, CSS, and JavaScript, hosted on official regional servers (mvnet.de). It appears to be built on a custom or proprietary CMS platform. The site is mobile-optimized and accessible, with moderate performance. SEO practices are adequately implemented, though no advanced frameworks or analytics services are detected. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, no explicit security headers or incident response policies are published, and no cookie consent mechanism is present, which are areas for improvement. The WHOIS data aligns well with the website's governmental purpose, indicating a legitimate and consistent domain registration. Overall, the website presents a low-risk profile with a solid business credibility and good content quality. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing security policies, and implementing security headers to strengthen the security posture.

The website www.filmbildung-brandenburg.de represents a small educational service provider, Stefan Röske, specializing in film and media education workshops and digital literacy. The business targets educators and learners interested in practical media applications such as podcasts, explainer videos, and digital tools. The website is built on WordPress and hosted likely on a German hosting provider, with a moderate performance and good mobile optimization. However, the site lacks critical privacy and cookie policies, and no direct contact emails or phone numbers are provided, only a contact form. Security posture is basic with HTTPS enabled but missing security headers and incident response information. WHOIS data is minimal and lacks registrant transparency, which slightly reduces trustworthiness. Overall, the site is professional and content-rich but would benefit from enhanced privacy compliance and security best practices.

S

Salesforce

salesforce-scrt.com

71

Salesforce is a leading global provider of CRM software and AI-powered customer engagement solutions, operating at enterprise scale. The company offers a unified platform integrating CRM, AI, data, and trust capabilities via its Einstein 1 Platform, targeting businesses seeking advanced customer relationship management and analytics. The website is professionally designed, localized for German users, and reflects Salesforce's market leadership and technological maturity. The technical infrastructure leverages modern JavaScript frameworks, cloud hosting, and advanced analytics tools, ensuring fast performance and excellent mobile optimization. Security posture is strong, with HTTPS enforced, comprehensive security headers, and published certifications including ISO 27001 and FedRAMP. Privacy compliance is robust, featuring GDPR-aligned policies and consent management via OneTrust. WHOIS data is unavailable due to privacy protection but the domain and website content strongly align with Salesforce's brand and legitimacy. Overall, the site demonstrates high professionalism, security, and compliance suitable for an enterprise SaaS leader.

D

Datenwerkbank

datenwerkbank.de

54

Datenwerkbank is a small, specialized web service provider based in Stuttgart, Germany, founded in 2024 by Manuel Deutsch, a freelance web developer with over 10 years of experience. The company focuses on website maintenance, support, and optimization services primarily for WordPress and Kirby CMS platforms, targeting agencies and medium-sized businesses. Their offerings include regular updates, backups, SEO optimization, hosting with green energy, and personalized support, delivered through clear service packages with transparent pricing. The website reflects a professional and trustworthy brand with strong customer references and a clean, responsive design. Technically, the website employs modern web standards including responsive images, SVG graphics, and privacy-conscious analytics via Matomo with cookies disabled. Hosting is provided by netcup, a reputable German provider, and the site uses HTTPS with canonical URLs for SEO. While the site lacks explicit security headers and a cookie consent mechanism, it demonstrates good privacy practices and GDPR compliance through its privacy policy and minimal tracking. From a security perspective, the site shows good practices such as regular backups and CMS updates included in service packages, but could improve by implementing security headers and publishing a security policy or incident response contact. No vulnerabilities or suspicious WHOIS patterns were detected, and the domain registration aligns with the business founding date, supporting legitimacy. Overall, Datenwerkbank presents a secure, professional, and privacy-aware web presence suitable for its target market. Strategic improvements in security headers and cookie consent would enhance compliance and trust further.

D

Deutsches Rotes Kreuz

drk-guestrow.de

48

The website www.drk-guestrow.de represents the Kreisverband Güstrow e.V. branch of the Deutsches Rotes Kreuz (German Red Cross), a well-established non-profit humanitarian organization. The site provides comprehensive information about their social services, community engagement, courses, and donation opportunities, targeting the general public, volunteers, and donors. The content is professionally presented with consistent branding and clear navigation, supporting a positive user experience. Technically, the site is built on TYPO3 CMS, employs modern web standards, and shows good mobile optimization and accessibility. Security posture is adequate with HTTPS assumed and cookie consent mechanisms in place, though explicit security headers and incident response policies are not published. WHOIS data confirms domain legitimacy and consistency with the organization's identity. Overall, the site is trustworthy, compliant with GDPR, and serves as an effective digital presence for the local DRK branch.

Ż

Żywiec Zdrój

zywiec-zdroj.pl

62

Żywiec Zdrój is a well-established Polish bottled spring water brand, founded in 2000, offering a range of natural mineral water products sourced from the Żywiecki Park Krajobrazowy. The company emphasizes environmental sustainability and responsible business practices, supported by dedicated programs and partnerships. The website reflects a mature digital presence with comprehensive product information, sustainability initiatives, and legal compliance documents. Technically, the site is built on modern frameworks such as Next.js and React, ensuring fast performance and excellent mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, serving a general audience interested in healthy bottled water products.

N

NUTRICIA Polska sp. z o.o.

nutrikid.pl

62

The website sklep.posilkiwchorobie.pl/nutrikid is an e-commerce platform operated by NUTRICIA Polska sp. z o.o., specializing in medical nutrition products for children and patients with special dietary needs. The site offers detailed product information, downloadable labels, and multiple product variants, targeting caregivers and healthcare professionals. The business operates within the healthcare and e-commerce sectors in Poland, leveraging Nutricia's brand and product portfolio. Technically, the site uses a modern tech stack including AptusShop CMS, Google Tag Manager, Firebase, and Perfmaker for analytics and marketing. The site is well-structured, mobile-optimized, and includes accessibility features. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though security headers could be improved. Privacy policies and cookie policies are comprehensive and GDPR compliant. Contact information is clearly provided, enhancing business credibility. WHOIS data is unavailable for the subdomain, but the domain is consistent with the main brand and shows no suspicious patterns. Overall, the site demonstrates a professional, secure, and user-friendly platform for specialized medical nutrition e-commerce.

D

DANONE

jogurtdanone.pl

69

Danone Poland operates a comprehensive website focused on its yogurt and dairy product lines, reflecting the brand's global presence and commitment to nutrition and health. The site showcases a broad portfolio of products and related brands, targeting general consumers interested in dairy and plant-based nutrition. Technically, the website employs modern JavaScript libraries including jQuery and Bootstrap, integrates Google Tag Manager and New Relic for analytics and performance monitoring, and uses HTTPS to secure communications. However, explicit privacy and cookie policies are not found on the analyzed page, which is a compliance gap. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but the absence of security headers and incident response contact details suggests room for improvement. Overall, the website is professional, well-branded, and trustworthy, supporting Danone's market position as a leading food manufacturer.

N

Nutricia

dieta-ketogenna.pl

70

Dieta-ketogenna.pl is a professionally maintained website focused on providing educational content and support related to the ketogenic diet as a therapeutic method, primarily for treatment-resistant epilepsy and other medical conditions. The site is operated under the Nutricia brand, a recognized name in medical nutrition. The website offers comprehensive information, patient testimonials, and resources, targeting patients, caregivers, and healthcare professionals in Poland. Technically, the site is built on WordPress with modern JavaScript frameworks and integrates monitoring tools such as New Relic and Google Tag Manager, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The domain registration is consistent with the business profile, showing a stable and legitimate online presence. Overall, the site demonstrates a good balance of content quality, technical implementation, and privacy compliance, making it a trustworthy resource in its niche.

1

Strona Główna

1000dni.pl

68

1000dni.pl is a Polish informational website dedicated to child nutrition and development during the first three years of life. It provides educational content focused on pregnancy, breastfeeding, and complementary feeding, targeting parents and caregivers. The website is positioned as a niche resource in the child health and nutrition sector, operating on a content-driven business model. The site is relatively mature, with domain registration dating back to 2012, and is hosted by cyber_Folks S.A., a known hosting provider.

C

Czech Specials

czechspecials.cz

56

CzechSpecials.cz is a professionally designed website dedicated to promoting and certifying Czech gastronomy, including restaurants and confectioneries. The project aims to showcase authentic Czech culinary traditions with high quality and respect for both tradition and modern trends. The website serves as a platform for certified entities, recipes, culinary news, and events, targeting both domestic and international guests interested in Czech cuisine. Technically, the site uses modern web technologies including Kentico CMS, Bootstrap, jQuery, and integrates analytics via Google Tag Manager and Microsoft Application Insights. The site is mobile-optimized and provides a rich user experience with clear navigation and professional content. Security posture is moderate with HTTPS implied but lacks visible security headers and explicit privacy or cookie policies. WHOIS data is unavailable, which limits domain trust assessment, but the website's professional presentation suggests legitimacy. Overall, the site is safe, trustworthy, and focused on hospitality and culinary certification.

Děti Země is a Czech non-profit environmental organization focused on protecting nature and human living environments, emphasizing regional work and advocacy. The website serves as an informational platform presenting news, campaigns, and organizational programs. The technical infrastructure is basic, relying on traditional HTML, CSS, and JavaScript without modern CMS or frameworks, and lacks mobile optimization. Security posture is weak with no visible HTTPS enforcement or security headers, and privacy compliance is lacking due to absence of privacy and cookie policies. Contact information is limited to an email address and a Facebook page, reflecting a small-sized NGO profile. Overall, the website is functional but requires significant improvements in security, privacy compliance, and technical modernization to enhance trust and user experience.

Brno na kole is a well-established non-profit organization dedicated to promoting cycling and improving cycling infrastructure in Brno, Czech Republic. The website serves as a hub for cycling maps, news, analyses, and community events, targeting local cyclists and urban mobility advocates. The organization has a clear market position as a local advocacy group with a strong community presence and active social media engagement. Technically, the website is built on WordPress using the Salient theme and WPBakery Page Builder, integrating modern JavaScript libraries such as jQuery and OpenLayers for map functionalities. Hosting is provided by Websupport, a reputable provider. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and solid SEO practices. From a security perspective, the site uses HTTPS with anonymized IP tracking in Google Analytics, but lacks important security headers and explicit privacy or cookie policies, which are compliance gaps. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy with consistent registration details and a domain age appropriate for the organization's history. Overall, the website is professional, trustworthy, and content-rich but would benefit from enhanced privacy compliance and security hardening to improve user trust and regulatory adherence.

Cyklojizdy.cz is a community-focused website dedicated to organizing and promoting cycling rides, primarily in Prague and other Czech cities. It serves as a platform for cycling enthusiasts and urban activists to share event information, galleries, and rules related to critical mass style rides. The site is small-scale and non-commercial, supported by local cycling organizations and partners. Technically, the website runs on WordPress with basic modern web technologies and moderate performance. It lacks advanced mobile optimization and accessibility features but provides clear navigation and relevant content for its audience. Security posture is moderate with HTTPS enabled but missing important security headers and privacy policies, indicating compliance gaps. The absence of WHOIS data reduces domain trustworthiness, though the website content and external partner links suggest legitimacy. Overall, the site is safe for general audiences and serves a niche community effectively.

MAS Karlštejnsko, z.ú. is a small, non-profit regional development agency based in the Czech Republic, established in 2008. The organization focuses on supporting municipalities, entrepreneurs, non-profit organizations, and private individuals within its region by providing consulting services, facilitating access to European and national grant programs, and managing projects aligned with local development strategies. The website reflects a professional and consistent brand presence with clear communication of its mission and services. Technically, the site is built on WordPress using modern technologies such as Bootstrap, jQuery, and Swiper.js, with SEO optimization via Yoast and analytics through Google Analytics and Tag Manager. The site is mobile-optimized and performs moderately well.

数美科技是一家专注于基于人工智能技术的在线业务风控和内容安全解决方案提供商，成立于2013年，市场占有率领先，服务全球客户。其产品矩阵涵盖智能内容检测、业务风控、AIGC风控等多个领域，支持多行业应用。技术架构现代，采用Next.js和Ant Design，托管于阿里云，性能优良且移动端优化出色。安全方面，网站启用HTTPS，未发现明显漏洞，但缺少部分安全头和隐私合规机制。整体业务信息透明，拥有多项权威认证和客户推荐，显示出较高的可信度和专业性。

The website www.circus-trap.org is currently inaccessible due to a Cloudflare Turnstile human verification challenge page that blocks direct content access. No meaningful business or contact information is available on the page, and the WHOIS data query returned a malformed response with no registrar, creation, or registrant details. This lack of accessible information severely limits the ability to assess the business, technical infrastructure, or security posture of the site. The presence of Cloudflare's security challenge indicates an intent to protect the site from automated access or attacks but also restricts external analysis. Overall, the site appears to be in a pre-access security check state with no visible content or policies.

Mondial Relay is a well-established parcel delivery service provider operating primarily in France and several other European countries. The company offers a dense network of Points Relais® and lockers for parcel pickup and drop-off, targeting both individual consumers and e-commerce merchants. The website reflects a professional and consistent brand presence with multilingual support and clear business focus on transportation and logistics services. Technically, the site uses Cloudflare DNS and includes Dynatrace monitoring scripts, indicating attention to performance and user experience. However, the absence of DNSSEC and security headers suggests room for improvement in security hardening. The website lacks visible privacy, cookie, and terms of service policies, which impacts privacy compliance scores. No contact emails or phone numbers are explicitly provided in the homepage HTML, limiting direct user contact options. Overall, the domain registration is consistent with the business claims, showing a long history and stable registration status. The site is accessible without WAF or security challenges, and content is safe for general audiences.

C

Crédit Mutuel Arkéa

cm-arkea.com

70

Crédit Mutuel Arkéa is a major French banking and insurance group composed of federations and numerous subsidiaries, serving a broad audience with financial and insurance products. The website reflects a professional and well-structured digital presence with good content quality and accessibility features. Technically, the site uses modern web technologies including Jalios CMS, Google Tag Manager, and a consent management platform, ensuring compliance with privacy regulations. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security headers are not detected and no direct contact or incident response information is visible. The absence of WHOIS data for the domain is a notable gap, reducing trust in domain legitimacy despite the professional appearance and branding consistency. Overall, the site is reliable for users seeking banking and insurance services but would benefit from enhanced transparency in security policies and contact information.

A

AXA Assurance et Banque

axa.fr

70

AXA Assurance et Banque is a major French insurance and banking group offering a wide range of products including auto, home, health insurance, savings, retirement plans, and banking services. The website targets both individual and professional customers in France, providing comprehensive product information and online services. The site demonstrates a high level of digital maturity with professional design, structured data, and extensive use of analytics and tracking technologies. Security posture is strong with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not clearly presented. Overall, the site is trustworthy and professionally maintained, consistent with AXA's global brand reputation.

The website represents ncm - Net Communication Management GmbH, a small Austrian technology company specializing in GDPR-compliant web analytics through their proprietary tool CheckEffect. The company has a strong market position in the Alpine region, offering privacy-focused analytics as an alternative to Google Analytics. The technical infrastructure is modern, leveraging Contao CMS, Bootstrap, and JavaScript libraries, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and consent mechanisms, though explicit security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting a positive business reputation.

N

NetIQ

euacupones.net

49

Euacupones.net is a Spanish-language coupon portal focused on providing discount codes and offers for popular US online stores. Operated by NetIQ, the site targets Spanish-speaking consumers interested in saving money through affiliate coupon links. The business model relies on affiliate marketing and daily updated coupon content. Technically, the site uses a custom-built platform with standard web technologies including HTML, CSS, JavaScript, and Google Tag Manager for analytics. The hosting and domain registration are managed by Gransy, s.r.o., a Czech registrar, with DNS servers located in the Czech Republic. Security posture is moderate with HTTPS enabled and CAPTCHA protections on forms, but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is functional, professionally designed, and trustworthy for its niche audience.

G

Grow

grow.me

54

Grow is a technology-driven platform focused on enabling readers to curate and save content from their favorite creators for free. The platform emphasizes ease of use with a single login for content bookmarking and subscription, targeting content consumers who value efficient content management. Affiliated with Mediavine, Grow benefits from established market presence and resources. Technically, the website is built on WordPress with modern JavaScript libraries and integrates advanced consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and consent-based tracking, though there is room for improvement in security headers and explicit security policies. Overall, the site is professional, privacy-conscious, and trustworthy, with no signs of malicious activity or content safety concerns.

L

Le Marathon Vert

lemarathonvert.org

57

Le Marathon Vert is an established regional marathon event organizer based in Rennes, Brittany, France. The website serves as the official portal for marathon-related information including race details, registration links, results, and sustainability initiatives. The organization targets runners and sports enthusiasts, providing a comprehensive digital presence with social media integration and volunteer coordination. The business model centers on event management and community engagement with a focus on environmental responsibility. Technically, the website employs a custom CMS and integrates modern tracking and analytics tools such as Google Analytics and Google Tag Manager with IP anonymization. Cookie consent is managed via tarteaucitron.js, reflecting a commitment to privacy compliance, although no explicit privacy policy page was found. The site is mobile-optimized and offers good navigation and content quality, though some security best practices like security headers and vulnerability disclosure policies are absent. From a security perspective, the site uses HTTPS and anonymizes user IPs in analytics, but lacks visible security headers and formal incident response contacts. WHOIS data is unavailable or protected, which is common for event sites, and does not raise immediate concerns. Overall, the site demonstrates a moderate to good security posture with room for improvement in transparency and policy disclosures. The overall risk is low, with recommendations to enhance security headers, publish privacy and terms policies, and establish vulnerability disclosure mechanisms to strengthen trust and compliance. The website is professional, trustworthy, and well-positioned within its niche, serving its audience effectively.

UPS is a globally recognized leader in shipping and logistics, providing comprehensive package tracking, shipping, billing, and supply chain solutions. The website reflects UPS's enterprise-level operations with a focus on business and individual customers seeking reliable global shipping services. The site is well-branded, professionally designed, and optimized for performance and accessibility. Technically, it leverages modern web technologies including Adobe Experience Manager, Akamai CDN, and advanced analytics and consent management tools, indicating a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, although explicit security policies and incident response contacts are not prominently published. The absence of WHOIS data suggests privacy protection, which is justified for a major global brand. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

S

Skybound

skybound.com

61

Skybound is a well-established entertainment company specializing in comics, games, TV, movies, and merchandise. The website showcases popular intellectual properties such as The Walking Dead and Invincible, targeting fans and consumers of entertainment media. The business model includes content creation, licensing, and direct merchandise sales. Technically, the site uses modern frameworks like SvelteKit and integrates advanced analytics and marketing tools such as Google Tag Manager, Amplitude, and Braze. The website is well-designed, mobile-optimized, and provides a professional user experience. Security posture is generally good with HTTPS enforced, but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. WHOIS data is missing, which raises some concerns about domain registration transparency. Overall, the site is credible and trustworthy but would benefit from enhanced privacy disclosures and security best practices.

B

BIG EVIL CORPORATION

bigevilcorporation.co.uk

58

BIG EVIL CORPORATION is a small UK-based independent videogame studio specializing in creating new games for retro consoles, particularly the SEGA Mega Drive and Genesis. Their business model focuses on niche market segments of retro gaming enthusiasts, offering original games developed using authentic 1990s SEGA development tools. The company maintains an active online presence with social media channels and a dedicated development blog, supporting community engagement and marketing efforts. Technically, the website is built on the 123-reg Website Builder platform, leveraging common web technologies such as JavaScript, jQuery, and Google Analytics for tracking. The site is hosted securely with HTTPS and uses CDN services for content delivery, though mobile optimization and accessibility are basic and could be improved.