Security Directory

S

SK Chase®

skchase.com

56

SK Chase® is a UK-based company specializing in providing an all-in-one e-commerce platform tailored for luxury hotels and hospitality businesses to manage and sell gift vouchers, event tickets, and retail items. The company has a long-standing presence since 2003 and positions itself as a niche provider with dedicated services to drive growth for its clients. The website reflects a professional and consistent brand image with clear business focus and good content quality. Technically, the site is built on WordPress using the Divi theme, enhanced with SEO and marketing tools such as Yoast SEO, Pardot, Google Tag Manager, and Matomo Analytics. Hosting and DNS are managed via Cloudflare, ensuring reliable performance and security. Security posture is adequate with HTTPS enforced and domain registration protections in place; however, improvements are recommended such as enabling DNSSEC and adding security headers. Privacy compliance is basic but includes a cookie policy with consent mechanisms. Contact information is primarily via forms and newsletter signups, with no explicit emails or phone numbers visible. Overall, the site is trustworthy and professionally maintained but could benefit from enhanced security and compliance transparency.

I

it4sport GmbH

it4sport.de

55

IT4SPORT GmbH is a specialized IT solutions provider focused on software and digital services for sports associations and clubs in Germany. The company offers a range of products including the PHOENIX association management system, TYPO3-based website solutions, and mobile sports apps. With over 20 years of experience and more than 100 partnerships, IT4SPORT holds a strong market position in the sports technology sector. The website reflects a professional and consistent brand image aligned with its parent company, TRICEPT AG. Technically, the site is built on TYPO3 CMS and uses Matomo for analytics, indicating a modern and privacy-conscious infrastructure. Security posture is moderate with room for improvement in security headers and published policies. Privacy compliance is basic with a cookie consent mechanism but lacks explicit privacy and terms of service pages. Overall, the website is well-structured, mobile-optimized, and trustworthy, targeting sports organizations and related entities.

H

Handelshof

handelshof.de

57

Handelshof operates as a regional wholesaler specializing in Cash & Carry and delivery wholesale services for gastronomy, hospitality, large consumers, trade, and commercial sectors in Germany. The website presents a professional and business-oriented platform powered by TYPO3 CMS, indicating a mature technical infrastructure. The use of privacy-friendly analytics (Matomo) and a comprehensive cookie consent mechanism (Cookiebot) reflects a commitment to privacy compliance, although the absence of a published privacy policy and terms of service suggests room for improvement in transparency and compliance documentation. Security posture is moderate with HTTPS enforced but lacks visible security headers and incident response contacts. Overall, the website is functional and professional but would benefit from enhanced compliance and security disclosures.

F

fidentity AG

fidentity.ch

70

fidentity AG is a Swiss-based technology company specializing in certified digital identification and electronic signature solutions tailored primarily for banks, financial institutions, and regulated industries. The company offers modular products such as IDENT for identity verification, SIGN for legally valid digital signatures, and ONBOARD for onboarding processes, positioning itself as a trusted provider with strong compliance and certification credentials. Their market position is reinforced by partnerships with reputable banks and government entities, and certifications from KPMG and adherence to Swiss and European regulations such as ZertES and eIDAS. Technically, the website is built on modern frameworks like Astro and TailwindCSS, with strong mobile optimization and performance. The infrastructure leverages Swiss hosting partners and integrates advanced analytics and marketing tools while maintaining privacy compliance. Security posture is robust, featuring HTTPS, penetration testing, bug bounty programs, and compliance with GDPR and FINMA guidelines. Overall, the website and business demonstrate high professionalism, trustworthiness, and a mature digital presence.

T

Tennis-Verband Berlin-Brandenburg e.V.

tvbb.de

58

The Tennis-Verband Berlin-Brandenburg e.V. website serves as the official online presence of the regional tennis association for Berlin and Brandenburg, Germany. It provides information and services related to tennis events, membership, and regional tennis activities. The site is built on Joomla CMS and incorporates modern web technologies such as Bootstrap and jQuery, with analytics powered by Matomo and GDPR-compliant cookie consent managed by Usercentrics. The website is accessible without any WAF or security blocking mechanisms, indicating good availability and user access. However, the absence of explicit privacy policy and terms of service pages suggests room for improvement in compliance documentation. Security posture is moderate with HTTPS enforced and CSRF tokens present, but lacks explicit security headers and incident response information. Overall, the site is professional and functional, targeting tennis players and clubs in the region.

B

BDVT Akademie

bdvt-akademie.de

51

BDVT Akademie is a reputable German educational institution specializing in licensed training, coaching, and certification services. With a history tied to the BDVT Verband spanning over 60 years, the Akademie offers a range of professional development programs and certifications aimed at coaches, trainers, and consultants. The website is built on the Weblication CMS platform and integrates modern tracking and analytics tools such as Facebook Pixel and Matomo, with appropriate consent mechanisms in place. While the site lacks explicit contact details in the analyzed content, it maintains GDPR-compliant privacy and cookie policies. The domain registration appears consistent with the business's operational history, supporting its legitimacy.

I

International Association of Insurance Supervisors

iaisweb.org

72

The International Association of Insurance Supervisors (IAIS) is a globally recognized voluntary membership organization comprising insurance supervisors and regulators from over 200 jurisdictions. Established in 1994, it serves as the global standard-setting body for insurance supervision, aiming to promote effective, consistent supervision to ensure fair, safe, and stable insurance markets worldwide. The IAIS provides key services including standard setting, capacity building, implementation assessments, and financial stability monitoring, positioning itself as a leader in the insurance regulatory space. Technically, the IAIS website is built on a modern WordPress CMS platform utilizing Elementor and Revolution Slider for content presentation. It employs Google reCAPTCHA for form security and Matomo for privacy-conscious analytics. The site is well-optimized for mobile devices, features good SEO practices, and maintains a professional design and user experience. From a security perspective, the website enforces HTTPS with a strong SSL configuration and uses reCAPTCHA to protect forms. While explicit security headers are not fully evident, no vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are comprehensive and GDPR compliant, though the site lacks a published security policy or incident response contact details. Overall, the IAIS website demonstrates a high level of professionalism, security, and compliance appropriate for an international regulatory organization. The lack of WHOIS data is mitigated by the site's strong trust indicators and consistent branding. Strategic recommendations include enhancing security headers, publishing security policies, and improving accessibility compliance to further strengthen the site's security posture and user trust.

F

FUN CONNECTION | Bergsportschule

func.at

39

Fun Connection is a small regional mountain sports school based in Tirol, Austria, specializing in adventure activities such as canyoning, climbing, high ropes courses, biking, freeride, and school and corporate events. The website is professionally designed using WordPress and WooCommerce, supporting multilingual content and providing clear contact information and social media presence. The technical infrastructure includes modern plugins and analytics tools like Matomo, with HTTPS enforced and cookie consent implemented, reflecting good privacy compliance. Security posture is moderate with room for improvement in security headers and regular plugin updates. Overall, the website presents a trustworthy and professional business with a clear focus on outdoor adventure tourism.

The website dolne-rakusko.info serves as an official regional tourism portal for Lower Austria, targeting Slovak-speaking tourists interested in cultural, wine, and travel experiences near Vienna. It offers travel packages, tips, and event information, positioning itself as a trusted source for regional tourism. The site employs modern web technologies including Cookiebot for cookie consent management, Matomo and Google Tag Manager for analytics, and Cloudflare for hosting and security. The technical infrastructure is moderately performant and mobile-optimized, with good SEO and accessibility basics. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are absent. WHOIS data is privacy protected, which is typical for such portals, and no suspicious patterns were detected. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though it could improve transparency by publishing terms of service and security policies.

Wirtshauskultur Niederösterreich is a regional cultural organization promoting approximately 200 inns and traditional restaurants in Lower Austria. The website serves as a comprehensive portal for visitors and locals interested in regional cuisine, offering listings, guides, recipes, and voucher sales. The organization positions itself as a key promoter of local gastronomy culture with a strong regional identity and consistent branding. Technically, the website employs modern JavaScript frameworks, SVG maps, and integrates privacy-respecting analytics tools such as Matomo and Google Tag Manager with DoNotTrack compliance. Cookie consent is managed via Cookiebot, ensuring GDPR compliance. Security posture is good with HTTPS enforced and privacy best practices observed, though some security headers could be improved. Contact information is clearly provided, enhancing trust and credibility. No adult or questionable content is present, making the site safe for general audiences.

P

Paddle

paddle.be

45

Paddle is a well-established CMS platform provider founded in 2003, specializing in flexible and secure content management solutions primarily for governments, public sector organizations, hospitals, and non-profits. The company offers its CMS as both Platform-as-a-Service and Software-as-a-Service, with a strong emphasis on accessibility, security, and ease of use. Their market position is supported by a significant user base and numerous modules and integrations, reflecting a mature and scalable product offering. The website content is professionally crafted, multilingual, and includes customer testimonials and support options, enhancing trust and credibility. Technically, the website leverages Drupal CMS and integrates multiple modern analytics and marketing tools such as Google Analytics, Matomo, Hotjar, and Facebook Pixel, all implemented with asynchronous loading and consent mechanisms to respect user privacy. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some security headers are not explicitly detected. The SSL configuration is good, ensuring secure communications. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks publicly visible security policies, incident response contacts, or vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms a consistent and legitimate domain registration dating back to 2003, reinforcing the trustworthiness of the business. Overall, Paddle's website reflects a professional, secure, and privacy-conscious digital presence suitable for its target sectors. Strategic improvements could include publishing explicit security policies, incident response contacts, and vulnerability disclosure information to further enhance security posture and compliance.

E

EcoWerf

ecowerf.be

35

EcoWerf is a well-established Belgian public waste management organization operating since 2003. The website provides comprehensive information about their waste collection, recycling, composting, and sustainability services targeted at residents and municipalities. The site is built on Drupal CMS with a modern, responsive design and good accessibility and SEO practices. Social media integration and a cookie consent mechanism demonstrate digital maturity and GDPR compliance. Security posture is solid with HTTPS and secure forms, though explicit security headers and vulnerability disclosure policies are absent. Overall, the website reflects a trustworthy and professional public service entity with a strong focus on environmental sustainability.

I

International Association of Insurance Supervisors

iais.org

72

The International Association of Insurance Supervisors (IAIS) is a globally recognized voluntary membership organization comprising insurance supervisors and regulators from over 200 jurisdictions, representing 97% of the world's insurance premiums. Established in 1994, IAIS serves as the global standard-setting body for insurance supervision, developing principles, standards, and guidance to promote fair, safe, and stable insurance markets worldwide. The organization supports its members through capacity building, implementation assessments, and financial stability monitoring, positioning itself as a key player in global financial stability. Technically, the IAIS website is built on a modern WordPress CMS platform utilizing Elementor for page building, Revolution Slider for dynamic content display, and integrates Google reCAPTCHA for form security. The site employs Matomo analytics for user tracking and demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with a professional design and clear navigation enhancing user experience. From a security perspective, the website enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit security headers and dedicated security or incident response pages. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a strong commitment to user privacy. Overall, the IAIS website presents a professional, trustworthy, and content-rich platform suitable for its global supervisory audience. The main limitation is the absence of WHOIS data, which restricts domain registration trust analysis. However, the organization's global reputation and website quality mitigate this concern. Strategic recommendations include enhancing security headers, publishing explicit security policies, and verifying WHOIS data for improved trust.

G

Gstaad Saanenland Tourismus

gstaad.ch

55

The website www.gstaad.ch/sommer serves as the official tourism portal for the Gstaad holiday region in Switzerland, focusing on promoting summer activities, events, and travel planning. It targets tourists and visitors seeking comprehensive information about the region's offerings, including hiking, biking, cultural events, and accommodation options. The site is positioned as a regional destination marketing organization with a medium-sized operational scope. Technically, the website is built on TYPO3 CMS and leverages modern JavaScript modules, intersection observers, and font loading APIs to deliver a responsive and accessible user experience. It integrates analytics tools such as Matomo and Google Tag Manager with GDPR-compliant mechanisms and includes a chatbot for user engagement. Performance and mobile optimization are good, with clear navigation and SEO-friendly metadata. From a security perspective, the site enforces HTTPS and uses tracking scripts responsibly with consent mechanisms. However, it lacks explicit security headers and publicly available security policies or incident response contacts. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business purpose, indicating legitimacy. Overall, the website presents a professional and trustworthy tourism platform with room for improvement in privacy transparency and security documentation. Strategic recommendations include publishing comprehensive privacy and cookie policies, adding terms of service, and providing clear contact channels for security incidents to enhance user trust and compliance.

B

BDVT

bdvt.de

47

BDVT is a professional German association serving trainers, consultants, and coaches by providing membership services, networking opportunities, education, certification, and awards. The website is built on Weblication® CMS and hosted on German servers, reflecting a moderate level of digital maturity with good design and mobile optimization. Security posture is adequate with HTTPS and consent-based tracking but lacks published privacy policies and security headers. Overall, the site is trustworthy and professional but could improve compliance and security transparency.

Niederoesterreich.at is the official tourism and travel portal for the Lower Austria region, operated by Niederösterreich-Werbung GmbH. The website offers comprehensive travel information, accommodation booking, event calendars, and cultural and natural experience guides targeting tourists interested in exploring the region around Vienna. It holds a strong market position as a government-supported regional tourism authority with consistent branding and a professional online presence. Technically, the website employs modern web technologies including JavaScript, Matomo analytics with privacy-conscious configurations, and Google Tag Manager. The site is mobile-optimized and features good SEO practices, though some security headers could be improved. The site uses HTTPS with good SSL configuration, and disables cookies in analytics to enhance privacy. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and privacy-respecting analytics. However, it lacks a visible cookie consent mechanism and some security headers like Content-Security-Policy and X-Frame-Options are missing, which are recommended for enhanced protection. No vulnerabilities or suspicious activities were detected. Overall, the website is safe, professional, and trustworthy, with no adult or explicit content. The WHOIS data aligns well with the website's identity, confirming legitimacy. Strategic recommendations include implementing a cookie consent banner, adding missing security headers, and enhancing accessibility features to further improve compliance and security posture.

The website www.wieneralpen.at serves as a comprehensive regional tourism portal for the Wiener Alpen area in Lower Austria, Austria. It provides detailed information on hiking, cultural events, accommodation, and travel tips, targeting tourists interested in outdoor and cultural activities. The site is well-branded and consistent with regional tourism authorities, offering a good user experience with clear navigation and multilingual support. Technically, it employs modern web technologies including JavaScript frameworks, Vimeo video integration, Google Tag Manager, Matomo analytics with privacy-conscious configurations, and Cookiebot for cookie consent management. Security posture is strong with HTTPS enforced and privacy-respecting analytics, though explicit security policies and incident response contacts are not published. The site does not expose sensitive data or use vulnerable libraries. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the site is trustworthy, professional, and safe for general audiences.

M

Ministerium für Kultus, Jugend und Sport Baden-Württemberg

km-bw.de

67

The website km.baden-wuerttemberg.de is the official portal for the Ministry of Education, Youth and Sports of Baden-Württemberg, Germany. It serves as a comprehensive information hub for education policies, youth programs, sports initiatives, cultural affairs, and public services related to schooling and early childhood education in the region. The site targets citizens, students, parents, and educators within Baden-Württemberg, providing official government content and resources. The business model is public service and information dissemination as part of the regional government infrastructure. Technically, the site is built on TYPO3 CMS, a robust open-source content management system, and employs Matomo analytics with a user consent mechanism, reflecting a privacy-conscious approach. The site uses modern web technologies including responsive design, SVG icons, and asynchronous JavaScript loading. Hosting appears to be managed by Baden-Württemberg state infrastructure, ensuring reliability and compliance with government standards. From a security perspective, the site enforces HTTPS and uses cookie consent for analytics. While some standard security headers are present, there is room for improvement by adding additional headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the official nature of the site, showing consistent domain registration and name servers. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations such as GDPR. It provides a safe and accessible user experience with clear navigation and relevant content. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and adding a vulnerability disclosure mechanism to further strengthen trust and security posture.

H

Heyflow GmbH

heyflow.app

71

Heyflow GmbH operates a sophisticated SaaS platform focused on converting website visitors into qualified leads through interactive, no-code funnels and landing pages. The company targets lead generation marketers and businesses seeking to optimize paid marketing campaigns with a comprehensive solution that includes over 50 integrations, analytics, and customization options. Their market position is solid, supported by thousands of customers and positive reviews on major platforms like G2 and Capterra. Technically, Heyflow leverages modern web technologies including Eleventy for static site generation, Cloudflare for DNS and CDN, and Matomo alongside Google Analytics for data insights. The website is fast, mobile-optimized, and SEO-friendly, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS, employs clientTransferProhibited domain status, and integrates consent management via Usercentrics, although explicit security headers and a dedicated security policy page are absent. Overall, Heyflow demonstrates a strong security posture with room for improvement in transparency and incident response readiness. The business is credible, transparent, and compliant with GDPR, making it a trustworthy platform in the marketing technology space.

Transkribus is a mature AI-powered platform specializing in the transcription, recognition, and analysis of historical documents. Operated by the cooperative READ-COOP SCE, it serves a broad audience including researchers, archivists, and educational institutions. The platform offers advanced AI text recognition, custom model training, and collaborative tools, positioning itself as a leader in the niche of historical document digitization. Technically, the website leverages modern frameworks such as Next.js and React, with strong performance, mobile optimization, and accessibility. Security posture is robust with HTTPS, security headers, GDPR compliance, and consent management, although explicit security policies and incident response details are not publicly disclosed. Overall, the platform demonstrates high professionalism, trustworthiness, and a strong community-driven business model.

S

Stiftung für Begabtenförderung der Deutschen Landwirtschaft

stiftung-begabtenfoerderung-agrar.de

64

The Stiftung für Begabtenförderung der Deutschen Landwirtschaft is a German non-profit foundation dedicated to supporting talented individuals in the agricultural sector through funding and scholarships for professional development courses, seminars, and internships. The website clearly targets individuals working in or connected to agriculture who seek educational advancement. The foundation positions itself as a niche player focused on agricultural education and talent promotion within Germany. Technically, the website is built on WordPress using the Divi theme, with common plugins such as Complianz for GDPR cookie consent and Matomo for analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and published security policies or incident response information. Overall, the website is trustworthy and professional, though it could improve transparency around privacy policies and security disclosures.

T

Transparency International Deutschland e.V.

transparency.de

55

Transparency International Deutschland e.V. is a reputable non-profit organization dedicated to combating corruption across Germany. The website serves as a comprehensive platform for advocacy, public awareness, research publications, and community engagement. It targets a broad audience including civil society, policymakers, and the general public. The organization maintains a strong market position as a leading anti-corruption NGO in Germany, supported by consistent branding and professional content. Technically, the website is built on TYPO3 CMS with modern front-end frameworks like Bootstrap and FontAwesome. It employs Matomo for analytics, ensuring privacy-conscious data collection. The site is well-optimized for mobile devices, accessible, and SEO-friendly. Hosting appears stable with multiple authoritative nameservers. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. While some security headers are present, additional headers could enhance protection. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy and consistency with the organization's identity. Overall, the website demonstrates a high level of professionalism, security, and compliance, making it a trustworthy source for anti-corruption information. Strategic improvements in security headers and incident response transparency could further strengthen its posture.

K

KS-ORIGINAL GMBH

projekt-weiss.blog

52

KS-ORIGINAL GMBH operates the website projekt-weiss.blog, a professional German-language platform focused on promoting Kalksandstein (sand-lime brick) architecture and sustainable building projects. The site features project showcases, podcasts, and thematic content aimed at architects, builders, and construction professionals. The business positions itself as a niche leader in the Kalksandstein building materials sector, providing valuable content and engagement through multiple media formats. Technically, the site is built on Drupal 10 with modern web technologies, including lazy loading, responsive design, and integrated analytics via Matomo and Google Analytics. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response contacts are absent. The domain WHOIS data is privacy-protected, which is common and justified for business websites. Overall, the website is professional, trustworthy, and well-structured, serving its target audience effectively.

R

ROWE Mineralölwerk GmbH

rowe-oil.com

60

ROWE Mineralölwerk GmbH is a well-established German company specializing in the production and distribution of high-quality motor oils, gear oils, transmission oils, and lubricants for automotive and industrial applications. Founded in 1995, the company has built a strong international presence with a comprehensive product portfolio and a network of distributors. The website reflects a mature digital infrastructure with multi-language support, professional design, and clear navigation tailored to both industrial and private customers. Technically, the site employs modern technologies including Pimcore CMS, Matomo analytics, and Usercentrics for privacy compliance, ensuring a good user experience and adherence to GDPR standards. Security posture is robust with HTTPS enforcement and security headers, though some security policy documentation and incident response contacts are absent. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or registration issues, which slightly impacts the trustworthiness score. Overall, the website is professional, secure, and compliant, serving as a credible digital front for ROWE Mineralölwerk GmbH.

U

Unfallkasse Baden-Württemberg (UKBW)

ukbw.de

66

Unfallkasse Baden-Württemberg (UKBW) is a regional statutory accident insurance provider serving the Baden-Württemberg region in Germany. The organization focuses on workplace accident insurance, occupational health and safety, rehabilitation, and compensation services. The website is designed to serve employees and employers seeking information and support related to statutory accident insurance. The site uses TYPO3 CMS and integrates privacy-conscious tools such as Cookiebot for cookie consent and Matomo for analytics, indicating a mature digital infrastructure. The presence of a chatbot enhances user engagement and support. Security posture is solid with HTTPS and consent management, though some improvements in security headers and explicit policies could enhance trust. Overall, the website is professional, compliant with GDPR, and trustworthy, serving a government-related function with a clear target audience.

K

Kübler Sport GmbH

kuebler-sport.de

57

Kübler Sport GmbH operates a professional e-commerce website specializing in sports equipment and accessories primarily targeting schools, sports clubs, therapy centers, and studios in Germany. The website offers a broad catalog of over 13,000 products and emphasizes secure shopping experiences with Trusted Shops certification and free shipping above a certain order value. The business model is retail-focused with an online sales channel supported by individual consultation and planning services. The company positions itself as a trusted supplier in the German sports retail market.

S

stadt wien marketing gmbh

wien-event.at

56

Stadt Wien Marketing GmbH operates as a city marketing and event management company focused on Vienna, Austria. The company provides a range of services including event management, event consulting, communication, graphic design, production, and digital information systems. The website reflects a regional government-related entity with a clear market position as a leader in organizing and promoting city events. The target audience is broad, encompassing residents and visitors to Vienna. Technically, the website is built on WordPress using the Avada theme and Fusion Builder, integrating privacy-conscious analytics (Matomo) and Google reCAPTCHA for form security. The site is mobile optimized and SEO friendly, though some accessibility features are basic. Security posture is moderate with HTTPS enforced and form protection, but lacks advanced security headers and explicit security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy with room for security and compliance improvements.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

check-dein-spiel.de

65

The website www.check-dein-spiel.de is operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG), a German governmental public health institute focused on gambling addiction prevention and counseling. It provides comprehensive services including online and telephone counseling, self-assessment tests, and local help resources. The site is well-branded, professionally designed, and targets individuals affected by gambling addiction and their families. Technically, it is built on TYPO3 CMS and uses Matomo analytics configured for privacy compliance. Security posture is good with HTTPS and privacy-respecting analytics, though it lacks explicit security policies and some security headers. Overall, the site is trustworthy, safe, and compliant with GDPR requirements.

W

Wirtschaftsförderung Land Brandenburg GmbH

wfbb.de

62

Wirtschaftsförderung Land Brandenburg GmbH (WFBB) is a regional economic development agency focused on supporting investors, local companies, and innovative startups in Brandenburg, Germany. The website provides comprehensive information about their services including business promotion, cluster management, funding, and event organization. The target audience includes investors and businesses seeking economic development support in Brandenburg. Technically, the site is built on Drupal 10 with Matomo analytics, featuring good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though lacks explicit security policies or vulnerability disclosures. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

B

Bundeskriminalamt

polizei.de

62

The website www.polizei.de serves as the official portal for the German police, managed by the Bundeskriminalamt. It provides comprehensive access to police information across all German federal states and federal agencies, including links to their respective websites. The portal emphasizes accessibility with features such as sign language and easy language options, and maintains a professional and consistent branding aligned with government standards. The content is well-structured, relevant, and targeted at the general public seeking police-related information in Germany. Technically, the site is built on the Government Site Builder CMS, hosted likely by ITZBund, the federal IT service provider. It employs modern web technologies including responsive CSS, SVG interactive maps, and Matomo analytics with a privacy-respecting opt-in cookie consent mechanism. The site demonstrates good mobile optimization and accessibility compliance, ensuring usability for a wide audience. From a security perspective, the site enforces HTTPS and uses cookie consent for tracking. However, explicit security headers and a public security policy or incident response contacts are not evident. No forms or direct contact details are exposed on the homepage, reducing attack surface. The WHOIS data aligns with the official government entity, confirming legitimacy. No WAF or blocking mechanisms interfere with content access. Overall, the site presents a low-risk profile with strong privacy compliance and trustworthy business credibility. Strategic improvements could include publishing explicit security headers, adding a security.txt file for vulnerability disclosure, and providing clear incident response contacts to enhance transparency and security posture.

S

Stadt Pforzheim

pforzheimer-winterwelt.de

32

The website www.pforzheimer-winterwelt.de represents the Pforzheimer Winterwelt, a seasonal winter event organized by the city of Pforzheim, Germany. It offers winter sports activities such as ice skating and stockschießen, alongside culinary and entertainment experiences. The site targets local residents and visitors of all ages interested in winter leisure activities. The business model is event-driven, focusing on community engagement and tourism promotion. The website is well-branded with consistent messaging and partner endorsements, reflecting a strong local government affiliation. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies including jQuery and Matomo for privacy-conscious analytics. Hosting is provided by BelWü, a regional German hosting provider, ensuring local infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a clear navigation structure and good content quality. Cookie consent is managed via Klaro, supporting GDPR compliance. From a security perspective, the site enforces HTTPS and disables cookies in Matomo tracking by default, demonstrating good privacy practices. However, explicit security headers and incident response policies are not published, representing areas for improvement. No vulnerabilities or suspicious patterns were detected. The WHOIS data aligns with the website's local government nature and event timeline, supporting legitimacy. Overall, the website presents a trustworthy, professional, and user-friendly platform for promoting the Pforzheimer Winterwelt event. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and adding contact information to improve transparency and user trust.

S

stadt wien marketing gmbh

stadtwienmarketing.at

10

stadt wien marketing gmbh operates as the official city marketing organization for Vienna, Austria, focusing on event creation, trendsetting, and enhancing the city's cultural life. The website presents a professional and consistent brand image, targeting a general audience interested in Vienna's events and tourism. Key services include event management, communication, graphic design, and digital information systems. The company is positioned as an essential government-related entity with a medium-sized operational scale, founded in 2018. Technically, the website is built on WordPress using the Avada theme and Fusion Builder framework, integrating modern technologies such as Google reCAPTCHA for bot protection and Matomo for privacy-conscious analytics. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enforced and reCAPTCHA implemented, though it lacks some advanced security headers and explicit incident response policies. Overall, the security posture is good with no visible vulnerabilities or exposed sensitive data. Privacy compliance is adequate with privacy and cookie policies present, though lacking explicit consent mechanisms. The domain WHOIS data aligns well with the business, indicating legitimacy and consistency. No suspicious or malicious indicators were found. Strategically, the website supports the organization's mission to promote Vienna's events and culture effectively, with room for improvement in security policies and privacy consent mechanisms to enhance trust and compliance.

S

Schwäbischer Turnerbund (STB) e.V.

turngala.de

47

TurnGala is a well-established annual gymnastics and acrobatics show organized by the Schwäbischer Turnerbund (STB) and Badischer Turnerbund in Germany. The event features international and regional artists performing a mix of gymnastics, acrobatics, dance, comedy, and entertainment, targeting families and sports enthusiasts across Baden-Württemberg. The website serves as a comprehensive platform for event information, ticket sales, news updates, and partner engagement. Technically, the site is built on TYPO3 CMS with modern frontend libraries such as Bootstrap and jQuery, and integrates Usercentrics for GDPR-compliant consent management and Matomo for analytics. The site is hosted on kundenserver.de and demonstrates moderate performance with good mobile optimization and SEO practices. Security-wise, HTTPS is enforced, and consent mechanisms are in place, though some security headers could be improved and no explicit security policy or incident response information is published. Overall, the domain registration and hosting details align well with the business, indicating legitimacy and trustworthiness.

S

Schwäbischer Turnerbund (STB) e.V.

sportkongress-stuttgart.de

52

The Sportkongress Stuttgart website represents a well-established sports event organized by the Schwäbischer Turnerbund (STB) e.V., targeting sports professionals and enthusiasts with educational workshops, lectures, and networking opportunities. The site positions itself as a leading event in the organized sports sector in Stuttgart, Germany, offering comprehensive content and professional branding. Technically, the website is built on TYPO3 CMS with modern frontend technologies including Bootstrap and jQuery, hosted on Hetzner servers. It employs GDPR-compliant cookie consent management via Usercentrics and uses Matomo for analytics, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and secure forms with reCAPTCHA, though some security headers and explicit security policies are missing. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with clear contact information and partner affiliations. The risk level is low, with recommendations focusing on enhancing security headers and publishing security policies to further strengthen trust and compliance.

S

Schwäbischer Turnerbund (STB) e.V.

kinderturn-kongress.de

50

The Kinderturn-Kongress website represents a specialized event platform focused on children's gymnastics, organized by the Schwäbischer Turnerbund (STB) e.V. The site provides event information, partner details, and resources for trainers and clubs involved in children's gymnastics in the Württemberg region of Germany. The business model centers on event organization and community support within the sports sector, targeting trainers and club representatives. The website is well-branded and consistent with its organizational partner STB, featuring clear contact channels and social media integration. Technically, the site is built on TYPO3 CMS with a modern tech stack including Bootstrap, jQuery, and ECharts for interactive content. Hosting is provided by Hetzner, a reputable German hosting provider. The site demonstrates good mobile optimization and SEO practices. Privacy compliance is robust, leveraging Usercentrics for consent management and Matomo for analytics with cookie consent enforcement. From a security perspective, the site uses HTTPS and integrates reCAPTCHA with consent requirements. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The overall security posture is good but could be improved by implementing security headers and publishing formal security policies. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It serves its niche audience effectively with clear communication and a solid technical foundation. Strategic improvements in security transparency and accessibility could further enhance its maturity and trustworthiness.

V

Verein zur Förderung der entwicklungspolitischen Publizistik e.V.

welt-sichten.org

50

Welt-Sichten is a German-language non-profit magazine focused on global development and ecumenical cooperation. It is published by the Verein zur Förderung der entwicklungspolitischen Publizistik e.V. and partners with reputable NGOs such as Brot für die Welt and Misereor. The website offers rich content including articles, newsletters, and partner network contributions, targeting readers interested in social justice and development issues. Technically, the site is built on Drupal 10, uses Matomo and Google Tag Manager for analytics, and implements a consent management platform for GDPR compliance. Security posture is strong with HTTPS, security headers, and secure forms, though no explicit security policy or incident response contacts are found. WHOIS data is unavailable due to privacy protection, which is justified for this type of organization. Overall, the site is professional, trustworthy, and well-maintained.

The Internationale Gutenberg-Gesellschaft in Mainz e.V. is a well-established non-profit organization dedicated to the research and promotion of printing history and media development. Founded in 1901, it holds a significant position in the cultural and scientific community, particularly in Mainz, Germany. The society offers memberships with benefits such as access to the Gutenberg Museum, exclusive events, and the annual Gutenberg-Jahrbuch publication, targeting researchers, members, and enthusiasts of printing history. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and privacy-conscious Matomo analytics. The site is well-structured, mobile-optimized, and provides clear navigation and content relevant to its audience. Hosting appears stable with agency-managed nameservers. However, there is room for improvement in cookie consent mechanisms and security headers. From a security perspective, the site uses HTTPS and does not expose sensitive data. The absence of explicit cookie consent and security policies are notable gaps. No vulnerabilities or suspicious activities were detected. WHOIS data aligns well with the organization's identity and history, supporting legitimacy. Overall, the website presents a trustworthy, professional, and content-rich platform with moderate technical sophistication. Strategic improvements in privacy compliance and security posture would enhance user trust and regulatory adherence.

G

Gutenberg-Shop

gutenberg-shop.de

49

The Gutenberg-Shop is an e-commerce platform associated with the Gutenberg Museum in Mainz, Germany, specializing in exclusive gifts related to the art of printing and book painting. The website targets a general audience interested in cultural and artistic merchandise, offering products crafted using traditional techniques. The business operates in the retail sector with a niche focus on cultural and museum-related products. Technically, the site is built on a modern e-commerce platform (likely Shopware), uses HTTPS, and integrates Matomo analytics for privacy-conscious tracking. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security practices include CSRF protection and cookie consent mechanisms, though explicit privacy and terms of service pages are missing. Overall, the site demonstrates a moderate to good security posture with room for improvement in policy transparency and security headers. The domain registration data is minimal but consistent with the business profile, and no suspicious patterns were detected. The site is safe for general audiences with no adult or questionable content.

The website is an official microsite for the Gutenberg-Museum hosted under the city of Mainz's domain, representing a government cultural institution dedicated to the history of printing and Johannes Gutenberg. It offers museum exhibitions, a shop, and educational experiences, targeting a broad audience including tourists and culture enthusiasts. The site is professionally designed with good content quality and consistent branding, supporting both German and English languages. Technically, it uses a Sitepark CMS platform with a mix of legacy and modern JavaScript libraries, and is mobile optimized with accessibility features. Security posture is adequate with HTTPS and consent-based Matomo analytics, but lacks explicit privacy, cookie, and security policies on this page. WHOIS data confirms legitimacy and consistency with the official city domain. Overall, the site is trustworthy and well-positioned as a government cultural resource, though it could improve privacy disclosures and security headers.

M

Mission EineWelt

mission-einewelt.de

46

Mission EineWelt is a non-profit international partnership center affiliated with the Evangelical Lutheran Church in Bavaria. It focuses on fostering dialogue and cooperation with partner churches worldwide, promoting peace, justice, tolerance, and sustainability. The organization offers volunteer programs, educational campaigns, publishing, and fundraising activities, positioning itself as an important regional entity with international reach. The website reflects a mature digital presence built on WordPress with Elementor, integrating privacy-conscious analytics and consent management tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though incident response contact details could be improved. Overall, the site is professional, trustworthy, and well-aligned with the organization's mission.

F

Forschungsstätte der Evangelischen Studiengemeinschaft e.V.

fest-heidelberg.de

62

The Forschungsstätte der Evangelischen Studiengemeinschaft e.V. (FEST) is a well-established non-profit interdisciplinary research institute based in Heidelberg, Germany, founded in 1958. It is primarily funded by member organizations within the Evangelical Church community and conducts research, consulting, and publishes academic content. The website reflects a professional and consistent brand image targeting academic and church audiences. Technically, the site uses Edith CMS, jQuery, Bootstrap, and Matomo analytics, indicating a mature but somewhat traditional technology stack. Security posture is good with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and published privacy policies. WHOIS data confirms domain legitimacy and consistency with the organization's history. Overall, the site is trustworthy and professionally maintained but could improve transparency on privacy and security policies.

O

Observer

observer.at

72

Observer is Austria's leading media monitoring and brand intelligence company, established in 1896. The company offers comprehensive services including media monitoring across print, online, social media, and broadcast channels, media resonance analysis, market research, and brand intelligence tools. Their market position is strong, supported by a long history and partnerships with major brands. Technically, the website is built on WordPress with modern JavaScript libraries and SEO optimizations, providing a good user experience and mobile responsiveness. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms in place, though a dedicated security policy and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

K

Kelly Ges.m.b.H.

kellys.at

50

Kelly Ges.m.b.H. is a well-established Austrian snack manufacturer and retailer specializing in chips, popcorn, nuts, and other snack products. The company has a strong market position in Austria as a market leader and is part of the larger Intersnack Group. Their website reflects a mature digital presence with a comprehensive product catalog, engaging content such as recipes and party planning tools, and active social media integration. Technically, the site is built on TYPO3 CMS and uses Matomo for analytics, indicating a preference for open-source and privacy-conscious tools. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and cookie consent mechanisms could be improved. Overall, the website is professional, trustworthy, and well-aligned with the company's business objectives.

B

Burgenland Tourismus GmbH

burgenland.info

47

Burgenland.info is the official tourism website for the Burgenland region in Austria, providing comprehensive travel information, cultural highlights, and leisure activities. The site targets tourists and visitors seeking detailed guidance on visiting Burgenland, positioning itself as a trusted regional tourism authority. The business model focuses on tourism promotion and visitor engagement through digital content and event information. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies including JavaScript, CSS, and HTML5. It integrates multiple marketing and analytics tools such as Cookiebot for consent management, Facebook Pixel for advertising, Google Tag Manager, and Matomo for analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers and incident response information are not evident, suggesting room for improvement in security posture transparency. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website presents a professional, trustworthy, and privacy-compliant digital presence for Burgenland tourism. The lack of WHOIS data limits domain registration insights, but the official nature and content quality support legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure channel to strengthen trust and security readiness.

B

Brigade des Flambeaux

flambeaux.ch

10

Brigade des Flambeaux is a well-established non-profit scouting organization based in the French-speaking region of Switzerland, with over 60 years of history. It focuses on youth development through scouting activities, leader training, and community events, supported by a network of regional and international scouting partners. The website reflects a professional and consistent brand image targeting youth, leaders, and volunteers. Technically, the site is built on WordPress with Elementor and uses privacy-conscious analytics (Matomo). While HTTPS is properly implemented, the site lacks some security headers and shows a minor plugin misconfiguration error. Privacy and cookie policies are present and GDPR compliant, but no terms of service or explicit security policies are published. Overall, the site is accessible, safe, and trustworthy with room for security and compliance improvements.

B

BIPEM GmbH & Co. KG

baerchen.de

58

Bärchen.de is a well-established German brand operated by BIPEM GmbH & Co. KG, specializing in child-friendly food products such as Bärchen-Wurst and fruit spreads. The website serves families with children by providing product information, recipes, nutrition advice, and creative activities. The brand has a strong market presence with over 27 years of history and maintains consistent branding and trust indicators including privacy policies and social media engagement. Technically, the site is built on WordPress with a moderate tech stack including jQuery, Matomo Analytics, Facebook Pixel, and Pinterest Tag. Hosting appears to be with Deutsche Telekom, supporting good performance and mobile optimization. Security posture is solid with HTTPS enforced and consent management implemented, though security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

R

Roundtable Human Rights in Tourism

humanrights-in-tourism.net

48

The Roundtable Human Rights in Tourism is a well-established non-profit association based in Germany, focused on promoting human rights within the tourism industry. It serves as a multi-stakeholder platform offering networking, training, impact assessments, and knowledge sharing to tourism companies and related stakeholders. The organization is recognized for its credibility and international reach, supporting companies in implementing human rights due diligence aligned with UN guidelines. Technically, the website is built on Drupal 10, uses Matomo for analytics, and incorporates modern front-end libraries, providing a good user experience with mobile optimization and accessibility. Security posture is solid with HTTPS enforced, though some security headers are missing and privacy compliance could be improved by adding explicit policies and consent mechanisms. The domain WHOIS data is missing or inaccessible, which is unusual and slightly reduces trust, but the professional content and clear contact information support legitimacy. Overall, the website is professional, content-rich, and trustworthy, serving an important role in the human rights and tourism sector.

S

Schwäbischer Turnerbund (STB) e.V.

stb.de

53

The Schwäbischer Turnerbund (STB) e.V. is a well-established non-profit sports federation based in Stuttgart, Germany, serving sports clubs, volunteers, and various age groups including children, youth, and seniors. The organization offers a broad range of services including education, event organization, fitness and health programs, and support for member clubs. Their market position is strong regionally within Baden-Württemberg, supported by a professional and content-rich website. The digital infrastructure is based on TYPO3 CMS with modern technologies and integrations such as Usercentrics for consent management and Matomo for analytics, hosted on a reputable provider (Hetzner).

G

GEDLICH Racing GmbH

gedlich-racing.com

54

GEDLICH Racing GmbH is a specialized motorsport event organizer based in Germany, offering a range of services including trackdays, race tests, Nordschleifentraining, coaching, and business events. The company targets motorsport enthusiasts from beginners to professionals and operates both in Germany and Southern Europe. The website demonstrates a mature digital presence with a professional design, clear navigation, and comprehensive content. Technically, the site is built on WordPress with modern libraries and plugins, hosted by IONOS SE, and employs privacy-conscious analytics tools like Matomo alongside Google Analytics and Meta Pixel. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some HTTP security headers could be improved. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

F

Financial Market Authority Liechtenstein

fma-li.li

10

The Financial Market Authority Liechtenstein (FMA) operates as the national financial regulatory authority overseeing financial intermediaries, licensing, supervision, and regulation within Liechtenstein. The website serves as an authoritative source of regulatory information for financial institutions, intermediaries, and stakeholders in the financial sector. The content is well-organized, targeting professionals and entities involved in the financial market, with detailed sections on supervision, regulation, and financial centre activities. Technically, the website employs modern JavaScript frameworks such as Alpine.js and integrates Matomo analytics for privacy-conscious user tracking. Cookie consent is managed through a third-party service, indicating attention to privacy compliance. The site is mobile-optimized and demonstrates good navigation clarity and professional design quality. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data aligns with the website's claims, reinforcing legitimacy and trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements include publishing comprehensive privacy and security policies, enhancing security headers, and providing clear contact information for incident response and data protection officers.