Security Directory

I

IHK Hessen innovativ GbR

ihk-hessen-innovativ.de

52

IHK Hessen innovativ GbR is a regional service organization affiliated with the Industrie- und Handelskammern (IHK) in Hessen, Germany. The company provides free and paid consulting services, webinars, seminars, and networking opportunities to support innovation and business development for founders, professionals, and executives in Hessen. Their market position is that of a trusted regional innovation partner with a strong focus on digital transformation and business growth. The website is professionally designed, well-structured, and optimized for mobile devices, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries, Matomo analytics for privacy-conscious tracking, and a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the website is trustworthy, professional, and well-aligned with its business purpose.

P

pixelegg Informatik & Design GmbH

pixelegg.de

11

pixelegg Informatik & Design GmbH is a well-established German digital agency specializing in TYPO3 CMS solutions, SEO, e-commerce, and marketing automation. Founded in 1998 and based in Mannheim, the company serves a broad range of clients including SMEs, public institutions, and marketing teams across Germany. Their offerings include enterprise-grade TYPO3 projects, local and regional SEO, product information management, and privacy-conscious analytics using Matomo. The website reflects a mature digital infrastructure with a modern tech stack and a strong focus on digital transformation and measurable business outcomes. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and policies could be improved. Overall, the site demonstrates high professionalism, excellent content quality, and strong business credibility.

L

Landeshauptstadt Mainz

gutenberg.de

57

The website gutenberg.de is an official cultural microsite dedicated to Johannes Gutenberg, hosted under the Landeshauptstadt Mainz domain. It serves as an educational and informational platform providing historical content about Gutenberg's life, his invention of movable type printing, and related cultural institutions such as the Gutenberg Museum. The site targets a general audience interested in history and culture, with a focus on accessibility and multilingual support. The business model is non-commercial, focusing on public cultural outreach and education. Technically, the site is built on the Sitepark Information Enterprise Server CMS with a technology stack including jQuery, Modernizr, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and performs moderately well. It uses HTTPS and a cookie consent banner, demonstrating good privacy compliance. However, explicit security headers and incident response information are not present. From a security perspective, the site shows good practices such as HTTPS enforcement and no visible vulnerabilities or exposed sensitive data. The use of Matomo analytics aligns with GDPR compliance. The absence of explicit security policies or contact points for incident response is a minor gap. Overall, the domain registration and WHOIS data are consistent with a legitimate government cultural site, supporting a high trust level. The overall risk is low, with recommendations to enhance security headers, provide explicit security policies, and keep libraries updated. The site is safe, professional, and trustworthy, serving its cultural and educational mission effectively.

S

stadt wien marketing gmbh

bewegungfindetstadt.at

51

Mein SportPlatz is a well-established initiative supported by the city marketing company of Vienna, focused on promoting sports and physical activity among residents. The website serves as a comprehensive resource for sports opportunities, events, and courses in Vienna, targeting a broad audience of all ages and skill levels. It leverages a modern WordPress infrastructure with reputable plugins and analytics tools, ensuring good technical maturity and SEO optimization. The site demonstrates strong GDPR compliance with a clear cookie consent mechanism and links to comprehensive privacy policies hosted on the official city marketing domain. Security posture is solid with HTTPS and privacy plugins, though explicit security policies and headers could be improved. Overall, the website is trustworthy, professional, and serves its community-oriented mission effectively.

S

Servizio nazionale «Abusi nel contesto ecclesiale»

abusi-catt-info.ch

10

The website 'abusi-catt-info.ch' is a Swiss institutional platform dedicated to scientific research and reprocessing of sexual abuse cases within the Roman Catholic Church in Switzerland. It is supported by major Swiss Catholic organizations such as the CVS, RKZ, and KOVOS. The site provides detailed information on ongoing research projects, support services for victims, and national measures to combat abuse. The target audience includes victims, researchers, church members, and the general Swiss public interested in this sensitive topic. The business model is non-profit and institutional, focusing on transparency, education, and victim support. Technically, the website employs modern web technologies including SVG graphics, web fonts, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized with good SEO practices and clear navigation. However, no major CMS or hosting provider information is evident. Performance is moderate, and accessibility is basic but functional. From a security perspective, the site uses HTTPS with good SSL configuration and does not expose sensitive data or vulnerable libraries. However, it lacks explicit security headers and does not publicly disclose a security policy or incident response plan. Privacy compliance is strong with a clear privacy policy and cookie policy, though no explicit cookie consent mechanism is present. Contact information is transparent and professional, enhancing trust. Overall, the website presents a low-risk profile with a high trustworthiness rating. Strategic recommendations include implementing security headers, publishing security policies, and adding cookie consent mechanisms to further enhance compliance and security posture.

S

Service national Abus dans le contexte ecclésial

abus-cath-info.ch

50

The website 'abus-cath-info.ch' serves as a national initiative focused on scientific research and treatment of sexual abuse within the Catholic Church in Switzerland. It is supported by major Swiss Catholic organizations including the CES, RKZ, and KOVOS, positioning it as a credible and authoritative source on this sensitive topic. The site provides resources for victims, updates on research projects, and information on church measures to address abuse. The target audience includes victims, researchers, church authorities, and the general public concerned with this issue. Technically, the website employs modern web standards with HTML5, CSS3, and JavaScript, and uses Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, though no explicit CMS or hosting provider is identified. Performance is moderate with good navigation and professional design. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks visible advanced security headers and does not provide explicit security policies or incident response contacts. Privacy compliance is adequate with a privacy policy present, but no cookie consent mechanism is detected. No forms collecting personal data are found on the homepage. Overall, the website is trustworthy, professionally maintained, and fulfills its mission effectively. Strategic recommendations include implementing cookie consent, publishing security and incident response policies, and enhancing security headers to improve compliance and security posture.

S

SEFE Energy UK

sefe-energy.co.uk

60

SEFE Energy UK is a reputable business energy supplier operating primarily in the UK market, offering a broad range of gas, electricity, and renewable energy products tailored to business customers. The company is part of the larger SEFE Group, which has a strong European presence and a focus on decarbonisation and sustainable energy solutions. Their website reflects a professional and modern digital presence with comprehensive content, clear navigation, and strong branding consistency. Technically, the site leverages modern web technologies including Umbraco CMS, Vue.js components, and integrates multiple analytics and marketing tools with user consent mechanisms. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response information are not publicly disclosed. The domain WHOIS data is unavailable due to a registry error indicating the domain name is invalid, which is a concern for domain legitimacy but the website content and business information are credible and consistent with a legitimate energy supplier. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with minor penalties for WHOIS inconsistencies and missing security policy disclosures.

N

Nationale Dienststelle Missbrauch im kirchlichen Kontext

missbrauch-kath-info.ch

49

The website www.missbrauch-kath-info.ch serves as a dedicated platform for the scientific research and transparent processing of sexual abuse cases within the Catholic Church in Switzerland. It is a non-profit initiative backed by major Swiss Catholic organizations such as the Schweizer Bischofskonferenz (SBK), Römisch-Katholische Zentralkonferenz (RKZ), and Katholische Ordensgemeinschaften der Schweiz (KOVOS). The site provides information on ongoing research projects, church measures, support for victims, and updates on the state of processing abuse cases. The target audience includes victims, church authorities, researchers, and the general public interested in this sensitive topic. The business model is non-commercial, focusing on social responsibility and transparency.

S

Streck Transportges. mbH | Streck Transport AG

streck-transport.com

10

Streck Transport operates as a transportation and logistics service provider with presence in Germany and Switzerland. The website acts as a portal linking to their regional sites, targeting business clients seeking transport solutions. The company appears to be a medium-sized regional player in the transportation sector. Technically, the website is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates Matomo analytics configured for privacy compliance. The site is mobile optimized and well-structured, providing a professional user experience. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers and detailed security policies are absent. WHOIS data is missing or unavailable, which slightly reduces domain trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, but could improve transparency and security documentation.

H

hajk

hajk.ch

73

hajk.ch is a Swiss e-commerce retailer specializing in outdoor equipment, clothing, and camping gear, officially affiliated with the Pfadibewegung Schweiz (Swiss scouting movement). The website targets outdoor enthusiasts and scouts in Switzerland, offering high-quality and sustainable products. The business model is retail-focused, leveraging a Magento-based platform with a modern Hyvä frontend theme. The site demonstrates a good level of digital maturity with integrated analytics, cookie consent, and user tracking mechanisms. Security posture is solid with HTTPS, CSRF protections, and deferred script loading, though explicit privacy and terms policies are not found in the provided content. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

F

Freizeit- und Kulturzentrum Neue Schmiede

neue-schmiede.de

40

Neue Schmiede is a well-established non-profit leisure and cultural center located in Bethel, Bielefeld, Germany. It offers a broad range of inclusive services including gastronomy, cultural events, event spaces, leisure and travel programs, and employment opportunities for people with disabilities. The organization is affiliated with the v. Bodelschwinghsche Stiftungen Bethel, enhancing its credibility and community integration. The website reflects a strong commitment to accessibility and inclusion, supported by dedicated accessibility widgets and partnerships with recognized social organizations.

S

SEFE Energy

sefe-energy.fr

51

SEFE Energy is a professional natural gas supplier targeting businesses and professionals in France. It offers tailored energy contracts, energy transition services including carbon compensation and audits, and emphasizes customer service quality. The company is part of the larger SEFE Group, an international energy enterprise owned by the German federal government, with sister sites in the UK, Netherlands, and Germany. The website is well-structured, professionally designed, and provides comprehensive information about its offerings and corporate values. Technically, the site is built on Drupal 10 and integrates modern analytics and marketing tools such as Matomo, Google Tag Manager, and Hotjar, alongside a cookie consent mechanism via Axeptio. The site is mobile-optimized, accessible, and SEO-friendly, with no detected blocking or WAF interference. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. The WHOIS data is not publicly available due to AFNIC privacy policies, but the domain is active and updated recently, consistent with a legitimate business. Contact information is clear, including a company email and physical address. Privacy and cookie policies are present and GDPR compliant. No adult or questionable content is found, making the site safe for general audiences. Overall, SEFE Energy demonstrates a mature digital presence with strong business credibility and a solid security baseline, though it could enhance transparency around security policies and incident response.

S

SEFE Energy NL

sefe-energy.nl

66

SEFE Energy NL is a specialized energy supplier focused on providing business customers in the Netherlands with gas and electricity solutions, including green energy options. The company positions itself as a customer-centric and sustainability-conscious partner with over 12 years of experience. Their digital presence is modern and professional, leveraging Umbraco CMS, Vue.js, and multiple analytics and marketing tools to deliver a responsive and user-friendly website. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although some security headers could be improved. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, SEFE Energy NL demonstrates a mature digital infrastructure and a trustworthy market position in the energy sector.

H

Hydrogen Germany

hydrogen-germany.de

58

Hydrogen Germany is a leading German economic alliance focused on promoting clean energy through hydrogen technologies. The organization serves as a platform uniting companies and associations across the hydrogen value chain to accelerate Germany's transformation into a hydrogen economy. The website presents comprehensive information about hydrogen production, transport, and application, targeting industry stakeholders and policymakers. Technically, the site is built on WordPress, uses modern JavaScript libraries, and is hosted with Cloudflare DNS and CDN services, ensuring good performance and security. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms in place, although explicit security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, making it a credible source for hydrogen industry information in Germany.

S

STRÖER

stroeerdigitalgroup.de

70

STRÖER is a leading German media and advertising company specializing in digital advertising solutions across multiple channels including display, video, native, mobile, and programmatic advertising. The website demonstrates a strong market position with a comprehensive portfolio of services targeting advertisers seeking data-driven marketing strategies. Technically, the site is built on TYPO3 CMS, uses Matomo for analytics with privacy-conscious configurations, and employs Cookiebot for GDPR-compliant cookie consent management. The hosting and DNS are managed via Cloudflare, enhancing security and performance. Security posture is solid with HTTPS enforced and privacy compliance well implemented, though explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, trustworthy, and well-optimized for user experience and compliance.

O

Optigrün international AG

optigruen.de

53

Optigrün international AG is a well-established market leader in Europe specializing in innovative green roof and roofing solutions. The company offers a wide range of products and services including extensive and intensive green roofs, retention roofs, solar green roofs, and related consulting and training services. Their website is professionally designed, multilingual, and targets architects, planners, contractors, and property owners. The company emphasizes sustainability, urban development, and climate improvement. Technically, the website is built on TYPO3 CMS with modern frameworks like Bootstrap 5 and integrates privacy-respecting analytics tools such as Matomo. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. The WHOIS data aligns well with the business claims, showing consistency and legitimacy. Overall, the website demonstrates a mature digital presence with good privacy compliance and business credibility.

K

KS-ORIGINAL GMBH

ks-original.de

56

KS-ORIGINAL GMBH operates as a consortium of 21 medium-sized Kalksandstein (sand-lime brick) manufacturers in Germany, focusing on sustainable and durable architectural materials. The website serves as an information portal for products, services, and industry news, targeting architects, builders, and regional partners. The company maintains a professional online presence with a well-structured Drupal 10 CMS-based website, featuring modern design and mobile optimization. Technical infrastructure includes Bootstrap and Matomo analytics, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit privacy or cookie policies. No incident response or vulnerability disclosure information is publicly available, which could be improved to enhance trust and compliance. Overall, the site is trustworthy, professional, and aligned with its business sector, but could benefit from enhanced privacy and security transparency.

W

WSP

ws-pforzheim.de

51

WSP is a municipal economic development and city marketing organization serving the city of Pforzheim, Germany. The website presents a professional and well-structured digital presence using TYPO3 CMS, targeting businesses, entrepreneurs, residents, and tourists interested in the city's economic and cultural offerings. The site emphasizes strengthening Pforzheim's position as an attractive business location through administration, economic promotion, and marketing activities. Technically, the website employs modern technologies including jQuery, Matomo analytics with cookies disabled, and Klaro for cookie consent management, indicating a good level of digital maturity and privacy awareness. Security posture is solid with HTTPS enforced and no exposed sensitive data, though additional security headers and explicit policies could enhance protection. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is trustworthy, professional, and safe for general audiences.

W

Winston's Wish

winstonswish.org

51

Winston's Wish is a UK-based non-profit charity dedicated to providing bereavement support for children and young people. Established in 2016, it holds a reputable position in the childhood bereavement support sector within the UK. The website serves as an informational and service platform, targeting families and professionals seeking support for grieving children. The organization leverages a WordPress-based digital infrastructure with multiple plugins to deliver content, forms, and e-commerce capabilities. The site integrates modern technologies such as hCaptcha for form security, Google Tag Manager, and Matomo for analytics, reflecting a moderate level of digital maturity. Security posture is solid with HTTPS enforced and form protection, though improvements could be made by enabling DNSSEC and adding security headers. Privacy compliance is partially addressed with cookie consent mechanisms, but lacks explicit privacy and terms of service documentation in the provided content. Overall, the website is professional, trustworthy, and well-aligned with its charitable mission.

Forschungsverbund Ecornet Berlin is a consortium of five ecological research institutes based in Berlin, focused on advancing social and ecological transformation towards a sustainable, climate-neutral urban society. The consortium leverages combined research expertise in social climate change, sustainable economy, and digitalization to support Berlin's leadership in innovative urban development. The website is professionally designed using TYPO3 CMS, with integrated cookie consent and Matomo analytics, reflecting a mature digital infrastructure. Security posture is strong with HTTPS and privacy compliance, though some security headers and policies could be enhanced. Overall, the site presents a trustworthy and credible research entity with clear contact information and active social media presence.

Ecornet is a German non-profit network of eight independent environmental and sustainability research institutes focused on shaping societal transformation towards sustainability. The website presents a professional and comprehensive digital presence, including detailed information about their mission, member institutes, events, and publications. The site is built on TYPO3 CMS and uses Matomo for privacy-conscious analytics. It features a robust cookie consent mechanism compliant with GDPR requirements. Security posture is good with HTTPS enforced and no visible vulnerabilities, although security headers could be improved. WHOIS data is unavailable due to EURid privacy policies, but the website's professionalism and transparency support its legitimacy. Overall, Ecornet demonstrates a mature digital infrastructure suitable for its research and advocacy mission.

W

Wein Wolf Gruppe

weinwolf.de

10

Wein Wolf Gruppe operates as a premium distributor and wholesaler specializing in wines, champagnes, and spirits, targeting business customers primarily in Germany. The website serves as a B2B webshop facilitating product distribution with a professional and consistent brand presence. The technical infrastructure leverages modern web technologies including Shopware CMS, Matomo analytics, and Usercentrics for cookie consent management, hosted on AWS infrastructure. The site is mobile optimized and provides essential features such as user login and account management with security measures like CSRF tokens. From a security perspective, the website enforces HTTPS and uses consent management platforms, but lacks visible security headers and published security policies or incident response contacts. No critical vulnerabilities or WAF blocking were detected. Privacy compliance is partial, with cookie consent but no visible privacy or terms of service pages in the provided content. The business credibility is strong given the professional presentation and alignment between domain registration and website content. Overall, the website presents a mature digital presence suitable for its B2B wholesale market, with room for improvement in privacy policy publication, security header implementation, and incident response transparency to enhance trust and compliance.

A

Arbeitgeberverband Gesamtmetall

gesamtmetall.de

51

Gesamtmetall is the leading employer association representing the metal and electrical industry in Germany, encompassing over 26,000 companies and nearly 3.9 million employees. The website serves as a comprehensive platform for industry news, policy updates, educational initiatives, and event information, targeting employers, policymakers, and industry stakeholders. Technically, the site is built on WordPress with modern plugins such as Gravity Forms and uses Matomo for privacy-conscious analytics. The site is well-structured, mobile-optimized, and accessible, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and implements cookie consent but lacks visible security headers and explicit security or privacy policy documents, which are recommended for compliance and trust. Overall, the website is professional, trustworthy, and content-rich, with room for improvement in privacy documentation and security hardening.

D

Die Arbeitgeber

arbeitgeber.de

54

Die Arbeitgeber is the leading national employers' association in Germany, representing the interests of German businesses and employers. The website serves as an information and advocacy platform focusing on labor market policies, employment issues, and employer-related topics. It targets employers, policymakers, and stakeholders in the German economy. The organization positions itself as a key player in shaping economic and labor policies in Germany. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO Premium for search optimization, LayerSlider for rich content presentation, and Borlabs Cookie for GDPR-compliant cookie management. Hosting is provided by Versatel, a reputable German hosting provider. The site uses Matomo analytics for user tracking with consent mechanisms, reflecting a moderate level of digital maturity. From a security perspective, the site employs HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is partially addressed through cookie consent, but explicit privacy and terms of service pages were not found in the provided data. Overall, the website is professional, trustworthy, and well-branded, with good content quality and user experience. However, improvements in security policy transparency, incident response information, and explicit privacy documentation would enhance its security posture and compliance standing.

V

Home

vhu.de

44

The website www.vhu.de is a German-language site built on the Contao Open Source CMS platform. It integrates modern consent management tools such as Usercentrics and analytics platforms including Matomo and Google Tag Manager, indicating a moderate level of digital maturity. However, the site lacks visible privacy policies, terms of service, and explicit contact information, which limits its transparency and compliance posture. The technical infrastructure appears standard with no detected WAF or blocking mechanisms, and the site is accessible without security challenges. Security practices are basic, with no security headers detected and no vulnerability disclosure mechanisms in place. Overall, the site presents a moderate risk profile primarily due to missing compliance documentation and limited business information.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

bundeswaldinventur.de

45

The Bundeswaldinventur website is an authoritative German government-affiliated portal providing detailed forest inventory data and modeling for sustainable forest management. It serves forestry professionals, policymakers, researchers, and the public with comprehensive reports, seminars, and multimedia content. The site is well-branded and professionally maintained, reflecting its role as a trusted source of forestry information. Technically, it is built on TYPO3 CMS with modern JavaScript libraries and integrates Matomo analytics with privacy-conscious settings. Security posture is solid with HTTPS and no exposed sensitive data, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site demonstrates a mature digital presence with high trustworthiness and compliance with GDPR, supporting its mission to inform and guide forest-related policy and research in Germany.

K

kids-line

kids-line.at

53

kids-line is a non-profit organization providing free counseling services to children and teenagers aged 6 to 20 in Austria. The website offers multiple contact channels including a free phone number and chat/mail support, emphasizing accessibility and youth engagement. The service operates daily from 13 to 21 hours, focusing on listening and supporting young people in need. The website is professionally designed using WordPress with Elementor and Astra theme, ensuring a good user experience and mobile optimization. Privacy and cookie policies are implemented with GDPR compliance, supported by Usercentrics consent management. Security measures include HTTPS and standard security headers, with no critical vulnerabilities detected. Overall, kids-line presents a trustworthy and well-maintained digital presence aligned with its mission.

W

Wir für Kinderrechte

kinder-rechte.at

53

Wir für Kinderrechte is a small Austrian non-profit organization dedicated to advocating for children's rights. Their website provides educational resources and information targeted at parents, educators, and policymakers. The organization maintains a consistent brand presence and complies with GDPR regulations, including a comprehensive privacy policy and cookie consent mechanism. Technically, the website is built on WordPress using the Divi theme, with Matomo analytics for privacy-respecting user tracking. Security posture is good with HTTPS enforced and standard security headers present, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and safe for general audiences.

G

Gesundheit Österreich GmbH

toolbox-opferschutz.at

59

The website toolbox-opferschutz.at is operated by Gesundheit Österreich GmbH, a government-affiliated organization in Austria focused on health promotion and victim protection. It serves as a comprehensive resource for healthcare professionals, victim protection groups, and affected individuals, providing educational materials, legal information, and networking opportunities. The site is well-positioned as a national competence center in Austria for these topics. Technically, the website is built on Drupal 10, employs Matomo analytics for privacy-respecting user tracking, and is optimized for mobile devices with good accessibility and SEO practices. The performance is moderate, and the site uses HTTPS with a valid SSL configuration, ensuring secure communications. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and no visible sensitive data exposure. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. No vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professionally maintained, and serves an important public health and social function. Strategic improvements in security headers and privacy consent would further strengthen its security posture and compliance.

D

DEC112

dec112.at

45

DEC112 is a specialized Austrian initiative focused on developing modern, standardized, and accessible emergency call infrastructures based on NG112 standards. The organization operates core NG112 services and offers a text-based emergency call app, targeting telecommunications providers, emergency response organizations, and IoT developers. DEC112 holds a strong market position in Austria with government partnerships and international recognition through awards and participation in standards events. Technically, the website is built on WordPress with Elementor and optimized for accessibility and SEO, using modern technologies and open-source software. Security posture is good with HTTPS and no visible vulnerabilities, though it lacks explicit security policies and headers. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is professional, trustworthy, and well-positioned in its niche, but could improve transparency on privacy and security policies.

B

Bundesamt für Familie und zivilgesellschaftliche Aufgaben

hilfetelefon.de

58

The website www.hilfetelefon.de is an official German government-supported platform operated by the Bundesamt für Familie und zivilgesellschaftliche Aufgaben. It provides a nationwide, free, and anonymous counseling service for women affected by violence, accessible 24/7 via phone (116 016) and online channels. The service targets women of all nationalities, including those with disabilities, as well as their relatives, friends, and professionals. The site is professionally designed with strong accessibility features including sign language and easy language options, supporting a broad and inclusive audience. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and is hosted with domainfactory for analytics services. The website employs HTTPS and cookie consent mechanisms aligned with GDPR requirements, ensuring user privacy and data protection. However, explicit security policies and incident response contacts are not found, and security headers are not evident, representing areas for improvement. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy standards.

E

ERF Medien

erf.de

70

ERF Medien is a German Christian media company providing news and engaging content focused on the Christian faith. The website targets German-speaking Christian communities and interested audiences, positioning itself as a niche media provider in this sector. The business model revolves around delivering faith-based media content through various digital channels. Technically, the website leverages modern technologies including Cloudflare for DNS and CDN, Cookiebot and Usercentrics for consent management, and Matomo and Google Analytics for user tracking and analytics. The use of Vue.js components indicates a modern frontend framework. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with clear cookie policies and GDPR adherence. No critical vulnerabilities or blocking mechanisms were detected, and the site content is safe for general audiences.

E

EHI Geprüfter Online-Shop

ehi-siegel.de

47

EHI Geprüfter Online-Shop operates as a certification provider specializing in e-commerce, offering seals, authentic customer reviews, and secure legal texts to promote safe and fair online shopping experiences. The website targets German online retailers and businesses seeking to enhance trust and compliance. Technically, the site is built on WordPress with the Divi theme, leveraging modern web technologies and privacy-conscious analytics via Matomo with disabled cookies. Security posture is solid with HTTPS and no evident vulnerabilities, though security headers and explicit privacy compliance measures are lacking. Overall, the site presents a professional and trustworthy front but would benefit from enhanced privacy disclosures and contact transparency.

E

ERF Medien

music-loft.ch

55

MUSIC Loft is a Swiss media platform under the ERF Medien group, focusing on deep and meaningful music and cultural conversations. The website promotes music through podcasts, events, and curated content, targeting a German-speaking audience interested in thoughtful media. The platform maintains a niche position in the media industry with a focus on music and cultural dialogue. Technically, the site is built on WordPress with modern frameworks like UIkit and uses JW Player for media playback. It integrates multiple analytics tools including Matomo and Plausible, balancing data collection with privacy compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is professional, well-branded, and trustworthy with no signs of malicious activity or adult content.

O

Opfernotruf

opfer-notruf.at

46

Opfernotruf is a government-backed non-profit initiative operated by WEISSER RING in Austria, providing support and counseling services to victims of crime and violence. The website offers multiple contact channels including a toll-free phone line, secure email forms, scheduled chat consultations, and immediate chat support, targeting victims and their families across Austria. The organization is positioned as a trusted official service with strong branding and government affiliation. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Matomo analytics, ensuring good SEO and user tracking capabilities. The site is mobile-optimized and uses HTTPS, providing a secure browsing experience. However, some improvements are needed in privacy compliance, such as implementing cookie consent mechanisms and publishing detailed privacy and security policies. From a security perspective, the site demonstrates good practices with HTTPS and secure contact forms but lacks visible security headers and public incident response information. No vulnerabilities or suspicious elements were detected in the content or external links. The absence of WHOIS data limits domain registration analysis, but the website's official nature and consistent branding support its legitimacy. Overall, Opfernotruf presents a professional, trustworthy, and secure platform for victim support in Austria, with recommendations to enhance privacy compliance and security transparency to further strengthen user trust and regulatory adherence.

M

Museum moderner Kunst Stiftung Ludwig Wien

mumok.at

74

Museum moderner Kunst Stiftung Ludwig Wien (mumok) is a prominent cultural institution in Austria, recognized as one of the largest modern art museums in Europe. The museum offers a wide range of services including exhibitions, guided tours, educational programs, a museum shop, cinema, and library services. It targets a broad audience including art enthusiasts, tourists, and the general public interested in modern and contemporary art. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support (German and English). The business operates as a non-profit entity with a strong cultural mission.

L

LOUPE

loupe.at

65

LOUPE is a specialized compliance management solution provider focusing on whistleblowing, anti-corruption, integrity management, and risk assessments. The company targets businesses needing to fulfill regulatory requirements such as the Corporate Sustainability Due Diligence Directive. Their market position is niche but professional, supported by ISO 27001 certification, indicating a strong commitment to information security. The website is well-designed, mobile-optimized, and uses modern technologies like Nuxt.js and Vue.js, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and a comprehensive cookie consent mechanism, although explicit incident response and vulnerability disclosure information are absent. Overall, the website and business present a trustworthy and professional image with moderate user tracking balanced by GDPR-compliant privacy practices.

S

Stadtmagistrat Innsbruck

innsbruck.at

61

The website www.innsbruck.at serves as the official digital presence for the city of Innsbruck, Austria, encompassing municipal services, tourism promotion, and marketing activities. It targets residents, visitors, and businesses, providing authoritative information and links to related official sites. The business model is governmental and tourism-oriented, positioning itself as a trusted source for local information and services. Technically, the site is built on the Webflow platform, utilizing modern web technologies such as HTML5, CSS3, JavaScript, and jQuery. It integrates Matomo analytics for user tracking, reflecting a privacy-conscious approach. The site demonstrates good mobile optimization and user experience, though accessibility and SEO could be further enhanced. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and a cookie consent mechanism, which are important for GDPR compliance and security hardening. No incident response or security policy information is published, indicating room for improvement in transparency and preparedness. Overall, the website is professional, trustworthy, and well-aligned with its governmental role. Strategic improvements in privacy compliance and security practices would enhance its risk posture and user trust.

W

Werbehelden GmbH

werbehelden.com

55

Werbehelden GmbH is a small Austrian marketing agency specializing in below-the-line marketing, ambient media, promotions, and sampling campaigns. The company offers comprehensive 360-degree promotional services including concept creation, planning, execution, and documentation. Their market position is that of an established regional player with award-winning campaigns and a strong focus on experiential marketing. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content in German targeting business clients seeking direct marketing solutions. Technically, the site uses modern JavaScript libraries, Matomo and Google Analytics for tracking, and implements a detailed cookie consent mechanism with GDPR compliance. Security posture is good with HTTPS enforced and privacy-conscious analytics configurations, but lacks some HTTP security headers and a published security policy or incident response contacts. The WHOIS data is missing or inaccessible, which raises concerns about domain registration legitimacy despite the active and professional website presence. Overall, the site scores well on content quality, technical implementation, and privacy compliance but is slightly penalized for WHOIS inconsistencies and minor security header omissions.

Fenster zum Sonntag Talk is a Swiss Christian media website focused on TV talk shows broadcast on SRF channels. It provides viewers with insights into personal life stories and the role of faith. The site is professionally designed using WordPress and modern web technologies, with a consistent brand presence and good content quality. The technical infrastructure includes multiple analytics platforms and a cookie consent mechanism, reflecting a mature digital presence. Security posture is strong with HTTPS enforcement and security headers, though some compliance areas like terms of service and incident response policies could be improved. Overall, the site is trustworthy and well-maintained, serving a general audience interested in religious and social topics.

E

ERF Medien

lifechannel.ch

56

Life Channel is a Swiss-based Christian media broadcaster offering 24/7 radio programming, podcasts, music streaming, and news content focused on faith and constructive journalism. The website is professionally designed with consistent branding and targets German-speaking Christian audiences. Technically, it is built on WordPress with modern libraries and frameworks such as UIkit and JW Player, and integrates multiple analytics platforms including Matomo, Plausible, Google Tag Manager, and Facebook Pixel. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though advanced security headers and explicit security policies are absent. Overall, the site demonstrates good compliance with GDPR and provides clear privacy and cookie policies. The domain registration data aligns well with the website's claims, supporting legitimacy.

E

ERF Medien

radio-erf-plus.ch

51

ERF Medien Schweiz operates Radio ERF Plus, a Christian 24-hour radio station providing inspirational content for listeners in Switzerland. The website serves as a platform to promote the radio service, offer downloadable programming, newsletters, and facilitate donations to support broadcasting costs. The organization positions itself as a niche media provider focused on faith-based content with a clear target audience of Christian listeners. The business model is non-profit, relying on donations and community support. Technically, the website is built on WordPress with modern libraries and analytics tools, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS, cookie consent, and multiple tracking protections, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR regulations, reflecting a mature digital presence for a small media entity.

E

ERF Medien

erf-medien.ch

51

ERF Medien is a Swiss Christian media organization providing multimedia content including podcasts, articles, radio programs, and various services targeting a general audience interested in faith, society, and life questions. The website is professionally designed with consistent branding and offers a broad range of content and services, positioning it as an established player in the Swiss Christian media sector. Technically, the site is built on WordPress with modern frameworks like UIkit and integrates multiple analytics and marketing tools while maintaining GDPR compliance through a comprehensive cookie consent mechanism. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, although explicit security policies and incident response contacts are not published. Overall, the site is safe, trustworthy, and well-optimized for users, with clear navigation and good mobile responsiveness.

F

Fachverband Holzenergie (FVH) im Bundesverband Bioenergie e.V. (BBE) and Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

fachkongress-holzenergie.de

52

The Fachkongress Holzenergie website represents a well-established German industry event focused on wood energy and bioenergy. It serves as a key platform for knowledge exchange, networking, and showcasing innovations in sustainable energy derived from wood. The site is professionally designed, mobile-optimized, and provides comprehensive event information targeting a broad range of stakeholders from industry professionals to policymakers and scientists. The business model centers on event organization and industry networking, positioning itself as a leading national congress with a 25-year history. Technically, the website is built on the Concrete5 CMS with modern frontend frameworks such as Foundation and jQuery. It employs Matomo analytics configured for privacy compliance and includes a cookie consent mechanism. While the site uses HTTPS and disables cookies in analytics, it lacks explicit HTTP security headers and published security policies, indicating room for security posture improvement. From a security perspective, the site shows good baseline practices with HTTPS and cookie consent but does not publish incident response or vulnerability disclosure information. No critical vulnerabilities or suspicious elements were detected. The WHOIS data is minimal but consistent with the domain's purpose. Overall, the site is trustworthy and professional, with a strong focus on privacy and compliance. Strategically, the site should enhance its security headers, publish a security policy and incident response contacts, and consider adding a vulnerability disclosure mechanism to strengthen trust and security maturity.

M

Magazine Présences Grenoble

presences-grenoble.fr

54

Magazine Présences Grenoble is a regional economic media outlet affiliated with the Chamber of Commerce and Industry (CCI) Grenoble. It provides news, event information, business rankings, and resources primarily targeting business professionals, entrepreneurs, and economic stakeholders in the Grenoble region. The website is built on Drupal 10 and integrates modern technologies including Google APIs, YouTube API, Matomo analytics, and Google DoubleClick advertising. It features a professional design with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust assessment, but the website's affiliation with CCI Grenoble and professional presentation support its legitimacy. Overall, the site is a credible and valuable resource for its target audience.

H

HANDWERK BW

handwerk-bw.de

52

HANDWERK BW is the leading umbrella association representing craft and trade organizations in the Baden-Württemberg region of Germany. The organization provides advocacy, consulting, publications, and event services to support the local craft industry. The website is professionally designed using TYPO3 CMS and incorporates modern web technologies and privacy-conscious analytics via Matomo. It offers clear navigation, mobile optimization, and a comprehensive content structure targeting handcraft businesses and stakeholders in the region. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though formal security policies and incident response contacts are not published. Overall, the site reflects a mature digital presence aligned with the organization's mission and regional focus.

Ü

Übergang Schule-Beruf BW

uebergangschuleberuf-bw.de

49

The website 'Übergang Schule-Beruf BW' is a government-supported initiative aimed at facilitating the transition of youth from school to vocational training and employment in the Baden-Württemberg region of Germany. It provides structured programs such as career orientation, dual vocational preparation, and regional transition management to support young people, especially those with special needs. The site is professionally designed, well-structured, and targets educational institutions, youth, and regional stakeholders. Technically, it is built on TYPO3 CMS with modern responsive design elements and uses Matomo for privacy-conscious analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not publicly available. WHOIS data confirms domain legitimacy and consistency with the business purpose. Overall, the site is trustworthy, compliant with GDPR, and serves as a credible resource for its audience.

A

Atos SE

atos.net

77

Atos SE is a global enterprise specializing in digital transformation, AI, cloud infrastructure, cybersecurity, and consulting services. The company positions itself as a leader in technology solutions for mission-critical environments and sustainable digital innovation. Their website reflects a mature digital presence with comprehensive content, professional design, and clear navigation aimed at enterprise clients. Technically, the site is built on WordPress with modern SEO and analytics tools, demonstrating good digital maturity. Security posture is strong with HTTPS, cookie consent, and incident response resources, though some security headers and explicit vulnerability disclosure mechanisms could be improved. Overall, Atos presents a trustworthy and professional online presence consistent with its market position.

W

Wien Holding GmbH

wienholding.at

10

Wien Holding GmbH is a large municipal holding company based in Vienna, Austria, managing a diverse portfolio of subsidiaries and projects in real estate, culture, sports, logistics, and tourism. The website reflects a well-established organization with a strong market position in Vienna's urban development and cultural sectors. The company targets residents, business partners, cultural institutions, and job seekers, providing comprehensive information about its subsidiaries and activities. Technically, the website employs modern JavaScript libraries such as jQuery, Velocity.js, and Leaflet for interactive maps, alongside Matomo for analytics, indicating a mature digital infrastructure. The site is mobile-optimized with good SEO and accessibility features, although some accessibility improvements could be made. Security posture is solid with HTTPS enforced and privacy consent mechanisms in place, but lacks explicit security policy and incident response information. Overall, the website is professional, trustworthy, and content-rich, supporting Wien Holding's role as a key municipal entity.