Security Directory

I

Ingenta

ingenta.com

61

Ingenta is a UK-based company specializing in business publishing software and publishing technology solutions. Their offerings include intellectual property systems, rights and royalty management, and content publishing platforms, targeting media companies, publishers, and content creators globally. The company positions itself as a world-leading provider with a strong focus on configurable software and professional services to support complex business environments. Technically, the website is built on WordPress with modern JavaScript libraries and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and SEO-friendly, though some accessibility features could be improved. Security-wise, the site enforces HTTPS and uses reCAPTCHA for forms but lacks explicit security headers and a visible cookie consent mechanism. WHOIS data is unavailable, which slightly impacts trust but the professional web presence and contact information support legitimacy. Overall, Ingenta presents a credible and professional digital footprint with room for enhanced security and privacy compliance.

D

DT - Výhybkárna a strojírna, a.s.

dtvs.cz

48

DT - Výhybkárna a strojírna, a.s. is a traditional Czech manufacturer specializing in the development, construction, production, assembly, and regeneration of railway and tramway switch components. With decades of experience, the company serves both domestic and international markets, including metro systems. Their business model focuses on manufacturing and servicing railway infrastructure components, supported by a subsidiary in Slovakia. The website reflects a professional and consistent brand image targeting transportation infrastructure clients. Technically, the website employs a moderately modern technology stack including Bootstrap, jQuery, and Google services such as Analytics and reCAPTCHA. The site is mobile-optimized and includes a comprehensive cookie consent mechanism ensuring GDPR compliance. Performance is moderate with room for improvement in accessibility and security headers. From a security perspective, the site uses HTTPS and implements Google reCAPTCHA for form protection. However, it lacks explicit security headers and does not provide visible incident response or security policy information. The WHOIS data is unavailable, likely due to privacy protection, but the website content and contact details support legitimacy. No critical vulnerabilities or suspicious patterns were detected. Overall, the website presents a trustworthy and professional digital presence suitable for its industry. Strategic improvements in security headers, updated libraries, and enhanced accessibility would further strengthen its posture.

K

Objevujte a relaxujte na Vysočině - korunavysociny.cz

korunavysociny.cz

55

The website www.korunavysociny.cz serves as a regional tourism portal promoting the Vysočina region in the Czech Republic. It provides information on tourist destinations, thematic trips, accommodation, events, and an experience card aimed at visitors and tourists interested in exploring the region. The site is built on the xartCMS platform and integrates common JavaScript libraries such as jQuery, MooTools, and Google Tag Manager for analytics and tracking. The content is primarily in Czech with Google Translate support for multiple languages, enhancing accessibility for international visitors. The website design is professional with good navigation and mobile optimization, supporting a positive user experience. From a technical perspective, the site uses HTTPS ensuring encrypted communication, but lacks important security headers that could enhance protection against common web vulnerabilities. The absence of privacy, cookie, and terms of service policies indicates gaps in compliance with data protection regulations such as GDPR. No explicit contact emails or phone numbers are visible, which may affect user trust and business credibility. Social media presence is established on Instagram, Facebook, and Threads, supporting community engagement. Security-wise, no critical vulnerabilities or exposed sensitive data were detected, but the missing WHOIS registration data raises concerns about domain transparency and legitimacy. This lack of WHOIS information could be due to privacy protection or registry issues, which reduces the overall trust score. The website does not appear to be blocked by any WAF or security challenge, allowing full content access. Overall, the website is a functional and informative regional tourism resource with good content quality and technical implementation. However, it requires improvements in privacy compliance, security headers, and transparency of domain registration to enhance trustworthiness and regulatory adherence.

S

Státní fond dopravní infrastruktury (SFDI)

ceskobezbarier.cz

43

The website 'Česko bez bariér' is operated by the Státní fond dopravní infrastruktury (SFDI), a Czech government fund focused on financing projects that remove barriers in public spaces to improve accessibility and safety. The site provides information about funding programs, supported projects, and consultation services for municipalities and other entities. The content is professionally presented, with clear navigation and a focus on public infrastructure improvements. Technically, the site uses a combination of legacy and modern web technologies including jQuery, Bootstrap, and Owl Carousel, with Google Analytics integrated for visitor tracking. Security posture is adequate with HTTPS enforced and a cookie consent mechanism implemented, though some improvements are recommended such as updating libraries and adding security headers. The absence of WHOIS data limits domain registration trust analysis, but the website's consistent government branding and contact details support its legitimacy. Overall, the site is a reliable resource for its target audience, though privacy policy documentation and enhanced security practices would strengthen compliance and trust.

S

STUDIOELF

studioelf.at

44

STUDIOELF is a small creative agency based in Tirol, Austria, specializing in graphic design, web design, and branding services. The company targets businesses seeking to enhance their visual communication and brand identity, offering handcrafted and original design solutions. Their market position is regional with a strong local client portfolio and a professional online presence. Technically, the website is built on TYPO3 CMS and leverages modern web technologies such as jQuery, Bootstrap, and GSAP, providing a good user experience with multimedia content and responsive design. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and incident response information. The absence of WHOIS data is a notable gap, slightly impacting trust but not undermining the overall legitimacy given the professional site content. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the website demonstrates a mature digital presence with room for security enhancements.

Hotel pro kočky Trubská is a specialized hospitality service provider offering premium boarding and care for cats in the Czech Republic. Established in 2008, the business targets cat owners seeking luxury accommodation with features such as temperature-controlled rooms, secured balconies, veterinary care, and online webcam monitoring. The website reflects a small local business with clear contact information and a focused service offering. Technically, the site uses common web technologies including jQuery, Bootstrap, and Google Analytics, hosted likely via WEDOS, a Czech hosting provider. The site is moderately optimized for performance and mobile use but lacks advanced accessibility features. Security posture is basic, with HTTPS usage implied but missing explicit security headers and advanced protections on forms. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is functional and trustworthy but would benefit from enhanced security and compliance measures.

P

Parlement de Wallonie

parlement-wallonie.be

48

The website parlement-wallonie.be serves as the official portal for the Walloon Parliament, providing parliamentarians with access to dossiers, agendas, and related resources. It is a government entity website targeting regional legislators and officials in Belgium. The site uses a basic technical infrastructure including Bootstrap, jQuery 1.11.0, and Google Analytics for tracking. AJAX is employed for dynamic content loading, enhancing user experience but with limited mobile optimization and accessibility features. Security posture is moderate but weakened by the use of outdated JavaScript libraries and absence of visible security headers or privacy policies. No contact information or compliance documentation is present on the main page, which reduces transparency and privacy compliance. Overall, the site is functional but would benefit from modernization and enhanced security and privacy practices.

V

VICTOR Bozar Café

victorbozarcafe.be

50

VICTOR Bozar Café is a small hospitality business located in Brussels, Belgium, offering café and restaurant services with a strong emphasis on art and architecture, integrated within the Bozar arts center. The website provides detailed information about the café, its menu, event spaces, and contact details, targeting visitors to the cultural center and local clientele. Technically, the website uses a modern JavaScript stack including jQuery, Owl Carousel, and Google Maps API, with integration of the Zenchef booking system. The site is mobile optimized and presents a professional design with clear navigation. Security posture is moderate; HTTPS is used but no advanced security headers or privacy policies are present, indicating room for improvement in compliance and security best practices. The WHOIS data for the domain is not publicly available due to restrictions, limiting domain trust verification. Overall, the website is functional, professional, and safe for general audiences, but lacks some compliance and security features.

F

FERRING Slovakia s.r.o.

ferring.sk

54

FERRING Slovakia s.r.o. operates as a specialized biopharmaceutical company focusing on reproductive medicine, maternal health, gastroenterology, and urology. The company positions itself as a leader in these healthcare sectors, providing innovative therapeutic solutions and supporting families and patients. The website reflects a professional and consistent brand image with clear business descriptions and contact information. Technically, the site uses a custom CMS with modern JavaScript libraries such as jQuery, Swiper.js, and Google Maps API, hosted by HostCreators. The site is mobile-optimized and performs moderately well. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security policies and incident response contacts. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

A

Alida, spol. s r.o.

prima-receptar.cz

53

Príma receptář.cz is a Czech internet hobby magazine operated by Alida, spol. s r.o., established since 2010. The website offers content focused on gardening, cooking, animals, and lifestyle topics, targeting a general Czech-speaking audience interested in hobby and lifestyle subjects. It maintains a strong social media presence and monetizes primarily through advertising. The site uses WordPress CMS with several plugins for SEO, event management, and popular posts, supported by advertising and tracking technologies including Google Analytics, Gemius, and Didomi for consent management. The technical infrastructure is modern but uses some older libraries like jQuery 1.12.4, which may pose minor security risks. Security posture is adequate with HTTPS and basic security headers, but lacks advanced headers and explicit security policies. Privacy compliance is partially addressed via cookie consent but lacks a visible privacy policy or terms of service. Overall, the website is professional, trustworthy, and well-positioned in its niche, though it could improve security and compliance documentation.

VECTOR TUB GmbH operates the VECTOR Training® website, providing specialized training, practical internships, and qualification examinations in nondestructive testing (NDT) methods according to recognized standards such as DIN EN ISO 9712, SNT-TC-1A, and ASME B&PV Code. The company targets professionals and organizations seeking certification and qualification in various NDT techniques. The website is professionally designed, content-rich, and well-structured, reflecting a mature digital presence with good mobile optimization and accessibility. Technical infrastructure is based on Contao CMS with modern JavaScript libraries enhancing user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response disclosures are recommended. The WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy, but the overall business credibility is supported by certifications, partnerships, and active content. Strategic recommendations include enhancing security headers, publishing a security policy, and verifying domain registration details to improve trust.

U

Ubytovanie, ubytovací portál, ubytovacie zariadenia | UbytujSa.sk

ubytujsa.sk

47

UbytujSa.sk is a Slovak online accommodation portal offering a wide range of lodging options including hotels, guesthouses, apartments, chalets, and more across Slovakia. The platform targets tourists and travelers seeking accommodation tailored to various preferences and locations within Slovakia. It provides search functionalities by city, region, thematic stays, and user reviews, positioning itself as a comprehensive regional hospitality service provider. Technically, the website is built on Drupal 7 CMS, enhanced with modern JavaScript libraries such as Vue.js and Axios, and integrates Google Analytics with privacy-conscious settings. The site is mobile-optimized with a clear navigation structure and good content relevance. Security-wise, the site enforces HTTPS and cookie consent mechanisms but lacks advanced security headers and explicit privacy or terms of service documentation. The domain uses privacy protection in WHOIS, which slightly reduces transparency but is common for such portals. Overall, the website is functional, moderately secure, and compliant with basic privacy requirements, serving its business purpose effectively.

A

AkeVino.sk

akevino.sk

46

AkeVino.sk is a Slovak online wine retailer established in 2009, offering a curated selection of wines directly sourced from winemakers. The business emphasizes fast delivery within 24 hours, free shipping, and exclusive promotional packages, targeting mature wine consumers primarily in Slovakia. The website is built on a modern Drupal 10 platform with commerce capabilities, ensuring a robust e-commerce experience. The technical infrastructure includes popular libraries and frameworks such as jQuery and Bootstrap, hosted likely by Active24, a known hosting provider in the region. Security posture is solid with HTTPS and DNSSEC enabled, complemented by GDPR-compliant cookie consent mechanisms and privacy policies. However, explicit security headers and incident response information are not published, representing areas for improvement. Overall, the site presents a professional and trustworthy e-commerce platform with moderate user tracking and good privacy compliance.

D

Dopravní podnik města Olomouce, a.s.

dpmo.cz

48

Dopravní podnik města Olomouce, a.s. (DPMO) is a well-established public transportation company operating in Olomouc, Czech Republic, providing urban bus and tram services including electronic ticketing and vehicle rental. The company is a medium-sized entity, part of the statutory city of Olomouc's group, with a domain registered since 1999, reflecting its long-standing presence in the market. The website offers comprehensive information for passengers, including schedules, ticketing options, and service updates, targeting local commuters and residents. Technically, the site uses a modern JavaScript stack with jQuery and related plugins, Google Tag Manager, and analytics tools, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers are missing. Privacy compliance is strong with a detailed privacy policy and cookie banner. Overall, the site is professional, trustworthy, and aligned with the company's business model and market position.

M

MDML s.r.o.

mdml.cz

42

MDML s.r.o. operates the public transportation system in Mariánské Lázně, Czech Republic, providing trolleybus and bus services with integrated electronic ticketing solutions including the Mariánka chip card and contactless payment options. The company positions itself as a local essential transportation provider with a focus on customer convenience and regional integration. Technically, the website is built on a traditional stack including jQuery, Bootstrap, and a proprietary CMS (ADENT CMS), offering a responsive and accessible user experience with clear navigation and relevant content. Security posture is moderate, with HTTPS assumed but lacking visible security headers and explicit security policies. Privacy compliance is well addressed with a cookie consent mechanism and a privacy policy document. The absence of WHOIS data limits domain legitimacy verification, but the website content and partner integrations support its authenticity. Overall, the site is professional and trustworthy for its intended audience.

C

Compagnia Italiana Oftalmologica S.c.a.r.l.

cioitalia.com

46

Compagnia Italiana Oftalmologica (C.I.O.) is a small-sized Italian company specializing in the distribution of ophthalmologic products and equipment. Established in 2003, the company operates primarily in the healthcare sector, targeting ophthalmologists and eye care professionals. Their website presents basic information about their services, brands, and distributors, with a focus on regional market presence in Italy. The business model centers on product distribution and brand representation within the ophthalmology field. Technically, the website uses a custom CMS with common JavaScript libraries such as jQuery, Modernizr, Bootstrap, and CKEditor. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. There is no evidence of modern frameworks or platforms, and no structured data markup is present. From a security perspective, the website lacks visible HTTPS enforcement confirmation and security headers, and DNSSEC is not enabled for the domain. No explicit security or incident response policies are published. Privacy compliance is minimal, with only a basic privacy policy PDF linked and no cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional but basic, with moderate trustworthiness and some security and privacy gaps. Strategic improvements in security posture, privacy compliance, and technical modernization would enhance the company's digital maturity and risk profile.

D

Dopravní podnik města České Budějovice, a.s.

dpmcb.cz

56

Dopravní podnik města České Budějovice, a.s. is the primary public transportation operator in České Budějovice, Czech Republic. The company provides a comprehensive range of services including operation of bus and trolleybus lines, ticket sales through various channels (mobile app, SMS, ticket machines), advertising opportunities within the transport system, vehicle repair and maintenance, and fuel sales. The website reflects a well-established business with a history of over 110 years, supported by references to EU funding and a broad service portfolio targeting local residents and visitors. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and slick carousel, with integration of analytics tools like Google Analytics, Facebook Pixel, and Smartlook. The site is mobile-optimized, accessible, and SEO-friendly, featuring a comprehensive cookie consent mechanism aligned with GDPR requirements. However, some security best practices such as HTTP security headers are not visibly implemented. From a security perspective, the site uses HTTPS and provides cookie consent with granular controls, but lacks explicit incident response contacts and a published security policy. The absence of WHOIS data limits domain registration trust assessment, though the website's content, social media presence, and official partnerships support its legitimacy. Overall, the website is professional, user-friendly, and compliant with privacy regulations, with moderate technical and security maturity. Strategic improvements in security headers, incident response transparency, and domain registration visibility would enhance trust and resilience.

E

select-language

eucerin-me.com

66

The website www.eucerin-me.com serves as a language selection landing page for the Eucerin brand targeting the Middle East region. It links to multiple regional Eucerin websites in various languages, indicating a global brand presence with localized content. The site uses modern tracking technologies such as Google Tag Manager and Hotjar, reflecting a moderate level of digital maturity. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. The website lacks visible privacy, cookie, and terms of service policies, which are critical for compliance and user trust. Security posture is limited due to missing security headers and unknown SSL configuration. Overall, the site appears functional and professionally designed but requires improvements in security, privacy compliance, and transparency to enhance trustworthiness.

F

Firstlead GmbH

adcell.com

63

ADCELL, operated by Firstlead GmbH since 2003, is a well-established affiliate marketing network targeting the German-speaking markets. It offers a comprehensive platform for publishers, advertisers, and agencies with over 2400 partner programs and a large active publisher base. The website demonstrates a professional and modern technical infrastructure, leveraging popular JavaScript libraries and frameworks, and is hosted behind Cloudflare DNS with HTTPS enforced. Security posture is strong with consent management implemented, though explicit privacy and terms of service policies are not clearly linked. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. Multiple industry awards and certifications enhance trust and credibility.

D

DEMISPORT

demisport.eu

56

DEMISPORT is a Slovak-based e-commerce business specializing in sports equipment and apparel for various sports including football, handball, tennis, basketball, and more. The company has established partnerships with national sports federations such as the Slovak Football Association and Slovak Handball Association, positioning itself as a trusted supplier for athletes, clubs, and schools. Their business model focuses on retail and wholesale sales, complemented by printing and branding services for sports teams. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information, supporting a positive user experience. Technically, the website is built on the Shoptet e-commerce platform and incorporates common web technologies including jQuery, Google Analytics, Google Tag Manager, and Facebook SDK. While the site performs moderately well and includes essential SEO and accessibility features, it uses an outdated version of jQuery (1.11.3), which poses a potential security risk. The site employs HTTPS and cookie consent mechanisms, demonstrating compliance with GDPR requirements, although explicit security headers and detailed security policies are not evident. From a security perspective, the website maintains a good baseline with HTTPS and no visible sensitive data exposure. However, the outdated JavaScript library and lack of comprehensive security headers suggest room for improvement. The absence of a public WHOIS record due to privacy protection is common for small businesses and does not raise immediate concerns. Overall, the site is safe, trustworthy, and compliant with privacy norms but would benefit from technical updates and enhanced security practices. Strategically, DEMISPORT should prioritize updating its JavaScript libraries, implementing robust security headers, and publishing clear terms of service and security policies to strengthen trust and compliance. These steps will enhance the security posture and support sustainable growth in the competitive sports retail market.

M

Mizuno EU

mizuno.com

65

Mizuno Europe operates an official regional e-commerce website targeting customers across the EMEA region, offering a wide range of sporting goods and apparel. The website is built on a modern e-commerce platform (Salesforce Commerce Cloud) and integrates advanced marketing and analytics tools such as Google Tag Manager and Visual Website Optimizer. The site demonstrates a professional design and consistent branding aligned with Mizuno's global presence. Technically, the site employs HTTPS with a Content Security Policy header, uses reCAPTCHA for bot mitigation, and loads various trusted external libraries to enhance user experience and security. However, the site lacks explicit privacy and cookie policies within the analyzed content, which may impact compliance and user trust. No contact information or security incident response details were found, limiting direct user support avenues. Overall, the site is secure, functional, and professionally maintained but could improve transparency and compliance documentation.

D

DampfAlarm - alles für guten Dampf

dampfalarm.de

46

DampfAlarm.de is a German e-commerce website specializing in vaping products including devices, e-liquids, and accessories. The site targets vaping enthusiasts and customers in Germany, operating as a niche online retailer. The website is built on a modern tech stack including jQuery, Bootstrap, and integrates third-party search services like Doofinder. Hosting is provided by Timme Hosting, a reputable German hosting provider. The site demonstrates good mobile optimization and accessibility features, including a dedicated accessibility tool, enhancing user experience for diverse audiences. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, though security headers are missing and privacy compliance documentation is absent. The WHOIS data is consistent and transparent, indicating a legitimate domain registration aligned with the business. Overall, the site is professional and functional but would benefit from improved privacy and security policy disclosures and enhanced SEO metadata. Strategic recommendations include adding comprehensive privacy and cookie policies, security headers, and clear contact information to improve trust and compliance.

B

Bauministerkonferenz

bauministerkonferenz.de

53

The Bauministerkonferenz website serves as an official governmental platform for coordinating housing and building policies among German federal states. It provides information about the conference's activities, including a welcome message from the Bavarian State Minister for Housing, Construction and Transport, who holds the chairmanship for 2024/25. The site targets government officials, policy makers, and stakeholders interested in housing policy. Technically, the site is built on legacy ASP.NET WebForms technology with Telerik UI components and uses older JavaScript libraries such as jQuery 1.12.2. While the site is functional and contains relevant content, it lacks modern technical optimizations and visible security headers. The cookie consent mechanism and privacy policy indicate GDPR compliance, but no terms of service or security policies are publicly available. No contact emails or phone numbers are explicitly provided on the analyzed page, limiting direct communication channels. Overall, the site is moderately professional and trustworthy as a government resource but would benefit from technical and security improvements.

L

Lebensmittelklarheit

lebensmittelklarheit.de

38

Lebensmittelklarheit is a German consumer information portal dedicated to providing clarity and transparency about food labeling. It is closely associated with the Verbraucherzentrale, a reputable consumer advice organization, positioning it as an authoritative source for consumers seeking to understand food product information and report misleading products. The website offers services such as question submission, product complaint reporting, surveys, and educational content, targeting German-speaking consumers interested in food safety and labeling clarity. Technically, the website is built on the Drupal CMS platform, utilizing modern web technologies including jQuery UI, Slick Carousel for content sliders, and Blazy for lazy loading images. It employs Matomo analytics for user tracking with privacy considerations. The site is mobile-optimized and accessible, with good SEO practices and structured data enhancing search engine visibility. From a security perspective, the site enforces HTTPS and uses asynchronous loading for analytics scripts, minimizing performance impact. While explicit security headers were not fully visible in the provided content, the overall SSL configuration is good, and no vulnerabilities or exposed sensitive data were detected. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant, reflecting a strong commitment to user privacy. Overall, Lebensmittelklarheit demonstrates a high level of professionalism, trustworthiness, and technical maturity. It serves as a valuable resource for consumers in Germany, with a solid security posture and compliance framework. Strategic recommendations include enhancing security headers, continuous auditing of third-party scripts, and ensuring robust form security to maintain and improve its security and compliance standing.

Lernwerk Hund Mensch is a small German dog training service provider offering a range of activities including individual coaching, workshops, and specialized training such as Ruhetraining. The website is built on the Jimdo CMS platform and hosted by Jimdo GmbH, leveraging their CDN and widget services. The digital infrastructure is modern and mobile-optimized, with basic accessibility and SEO features implemented. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit incident response policies are absent. The website content is professional, relevant, and trustworthy, targeting dog owners interested in training and leisure activities with their pets. Overall, the site presents a low-risk profile with no detected vulnerabilities or suspicious WHOIS data.

V

Verkehrsverbund Tirol

vvt.at

63

Verkehrsverbund Tirol (VVT) operates as the regional public transportation platform for Tirol, Austria, coordinating, planning, financing, and ordering public transit services. The website reflects a mature, well-established organization celebrating 30 years of service, offering a broad range of ticketing options and mobility services tailored to the regional audience. Their market position is strong within the regional transportation sector, supported by comprehensive service offerings and active community engagement through news and social media channels. Technically, the website employs modern JavaScript libraries, consent management tools like Cookiebot, and integrates Google Tag Manager and Hotjar for analytics, indicating a digitally mature infrastructure. Security posture is robust with HTTPS enforced and consent mechanisms in place, though some security headers could be further enhanced. Privacy compliance is well addressed with clear policies and user consent options. Overall, the site is professional, trustworthy, and user-friendly, serving its public service mission effectively.

The website aesopcanada.com serves as a login portal for Frontline Absence Management, a service focused on managing employee absences primarily within educational institutions. The business is positioned as an established provider in the education sector, with a domain age dating back to 2008, supporting its legitimacy. The site offers basic content focused on user authentication and links to corporate resources, reflecting a SaaS business model targeting educational organizations and their staff. Technically, the site employs legacy JavaScript libraries such as jQuery 1.2.6 and jQuery UI, hosted on infrastructure indicated by AWS DNS nameservers. While HTTPS is enforced and a Thawte SSL certificate is referenced, the site lacks modern security headers and uses outdated libraries, which may expose it to vulnerabilities. Performance and mobile optimization are basic, with limited SEO and accessibility features. From a security perspective, the site demonstrates some best practices like HTTPS and masked password inputs but lacks comprehensive security policies, incident response information, and cookie consent mechanisms. The WHOIS data aligns well with the business claims, showing consistent registration details and no privacy protection, enhancing trustworthiness. However, the absence of updated security controls and privacy compliance features suggests room for improvement. Overall, the website is functional and moderately trustworthy but would benefit from modernization of its technical stack, enhanced security headers, explicit privacy and cookie policies, and improved user experience to strengthen its security posture and compliance standing.

S

Stadt Aichach

aichach.de

59

The website www.aichach.de is the official digital presence of the city of Aichach, Germany. It serves as a comprehensive portal for residents, visitors, and businesses, offering detailed information about city administration, local services, cultural events, tourism, and community news. The site is well-structured with clear navigation and multiple service categories, reflecting a mature municipal digital infrastructure. The presence of accessibility tools like ReadSpeaker and EyeAble indicates a commitment to inclusivity. Technically, the site uses a variety of JavaScript libraries and the iKISS CMS platform, hosted on GoDaddy name servers, with HTTPS enabled and cookie consent mechanisms in place. Security posture is solid with no critical vulnerabilities detected, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

T

Team KULTUR.GEMEINSCHAFTEN bei der Kulturstiftung der Länder

kulturgemeinschaften.de

48

KULTUR.GEMEINSCHAFTEN is a German government-backed funding program aimed at supporting small and non-profit cultural institutions in developing digital content offerings. The program is administered by the Kulturstiftung der Länder and focuses on enabling cultural organizations to acquire production technology, receive expert project support, and build competencies in digital content production. The website presents a professional and consistent brand image, targeting cultural institutions across Germany. Technically, the site is built on WordPress, hosted on AWS infrastructure, and uses common JavaScript libraries and plugins such as jQuery and Slick Slider. While HTTPS is enforced and cookie consent is managed via Borlabs Cookie, the site lacks explicit privacy policy and terms of service pages, and security headers are not detected in the provided data. Analytics are implemented using Google Tag Manager, indicating moderate user tracking. Overall, the website is well-designed, content-rich, and trustworthy, but could improve its privacy and security posture by publishing comprehensive policies and implementing additional security headers.

A

AGIL Bamberg

agil-bamberg.de

62

AGIL Bamberg is a small, specialized tourism service provider offering city tours, museum pedagogical programs, and cultural events primarily in Bamberg and surrounding regions. The website is well-structured and targets a broad audience including adults, children, and individual guests. The business positions itself as a leading local operator with a focus on authentic cultural experiences. Technically, the site uses common JavaScript libraries such as jQuery and integrates Google Analytics and Tag Manager for tracking. The presence of a cookie consent banner and links to privacy and terms pages indicate a reasonable level of privacy compliance. Security posture is adequate with HTTPS enforced but lacks explicit security headers and incident response information. Overall, the website is professional, trustworthy, and safe for general audiences.

S

Stadt Lichtenfels

lichtenfels.de

60

The website www.lichtenfels.de serves as the official online portal for the city of Lichtenfels, Germany. It provides residents and visitors with comprehensive information about city administration, public services, local news, events, and urban planning. The site targets a general audience including local citizens and stakeholders interested in municipal affairs. The business model is that of a government municipal service platform, focusing on transparency and accessibility. The website is well-branded with consistent use of official logos and colors, and it integrates a robust accessibility tool to support users with disabilities.

F

Forchheim Erleben: Königsstadt Forchheim - das Tor zur Fränkischen Schweiz

forchheim-erleben.de

42

The website www.forchheim-erleben.de serves as the official tourism portal for the city of Forchheim and the surrounding Fränkische Schweiz region in Germany. It provides comprehensive information about local hotels, gastronomy, breweries, events, city tours, and brochures to assist visitors in planning their trips. The site targets tourists and visitors interested in cultural, culinary, and outdoor activities in the region. The business model focuses on regional tourism promotion and supporting local hospitality and retail sectors. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and incorporates modern web libraries such as jQuery, Slick Carousel, and FontAwesome Pro. It uses Google Analytics for visitor tracking and CookieFirst for cookie consent management, indicating a moderate level of digital maturity. The site appears to be mobile-optimized with a responsive design and provides a clear navigation structure. From a security perspective, the site uses HTTPS and anonymizes IP addresses in Google Analytics, but lacks visible security headers and published privacy or terms of service policies in the provided content. There is no evidence of a security.txt file or explicit incident response contacts. While no critical vulnerabilities or suspicious patterns were detected, the absence of some security best practices and compliance documentation suggests room for improvement. Overall, the website is a trustworthy and professional regional tourism portal with good content quality and user experience. However, enhancing privacy compliance, security headers, and providing clear contact and policy information would strengthen its security posture and user trust. Strategic recommendations include publishing comprehensive privacy and terms policies, implementing security headers, and establishing a vulnerability disclosure process.

ITAPA is a well-established Slovak technology conference platform operated by Information Technologies And Public Administration (APEL). It organizes major events focused on innovation, digitalization, and AI, serving technology professionals, government officials, and businesses. The website reflects a mature digital presence with professional design, clear navigation, and active content updates. Technically, it uses modern web technologies including Bootstrap, jQuery, Google Tag Manager, and CDN services to ensure performance and responsiveness. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. The domain registration aligns with the business claims, enhancing trustworthiness. Overall, ITAPA demonstrates a strong market position in Slovakia's technology event sector with good compliance and user engagement.

U

UzemnePlany.sk

uzemneplany.sk

39

UzemnePlany.sk is a specialized Slovak information portal dedicated to urban planning, territorial development, and related legislative and architectural topics. It serves a professional and public audience including architects, urban planners, local governments, and students. The portal offers extensive resources such as urban plans, articles, legal documents, and event information, positioning itself as the largest information source in Slovakia for this sector. Technically, the site uses a custom CMS with JavaScript libraries like jQuery and jQuery UI, providing moderate performance and basic mobile optimization. Security-wise, the site employs HTTPS but lacks advanced security headers and explicit security policies, which could be improved to enhance protection and compliance. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and professional but could benefit from enhanced security and privacy practices.

L

Landratsamt Bamberg

landkreis-bamberg.de

63

The Landkreis Bamberg website serves as the official digital portal for the regional government authority in Bamberg, Germany. It provides comprehensive information and services related to local politics, administration, citizen services, cultural events, tourism, and economic development. The site targets residents, local businesses, and visitors, offering a broad range of public sector services including online appointment scheduling and access to administrative forms. The website is professionally designed with consistent branding and clear navigation, supporting German language primarily with Google Translate integration for other languages. Technically, the site is built on the ikiss CMS platform, utilizing legacy but stable JavaScript libraries such as jQuery 1.10.2 and UI components like Flexslider and Highslide. The site demonstrates moderate performance and good mobile optimization, though some accessibility features are basic. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the website uses HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerability disclosure or security.txt files are present, indicating room for improvement in transparency and security maturity. The WHOIS data aligns with the website developer Advantic Systemhaus GmbH, supporting legitimacy though registrant details are minimal. Overall, the website is a trustworthy and professional government portal with good content quality and privacy compliance. Strategic enhancements in security policy publication, security headers, and incident response readiness would strengthen its security posture and user trust.

S

Stadtwerke Aschaffenburg

stwab.de

60

Stadtwerke Aschaffenburg is a regional municipal utility company providing a broad range of essential services including electricity, gas, water, district heating, public transport, parking, waste management, and leisure facilities. The website reflects a well-established business with a clear focus on serving residential and commercial customers in the Aschaffenburg region. Their digital presence includes a service portal, online shop, and mobile apps, indicating a moderate level of digital maturity. The site is built on a specialized CMS platform tailored for municipal utilities, with modern JavaScript libraries and accessibility features integrated. Security posture is solid with HTTPS enforced and a comprehensive cookie consent mechanism, though some security headers could be improved and formal security policies are not published. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting the company's credibility and customer engagement.

N

neusta destination one

et4.de

58

neusta destination one operates a specialized B2B tourism data management platform primarily targeting tourism industry professionals in Germany and related markets. The platform offers a framework for managing tourism experiences and related data, accessible via a secure login portal. The website content is primarily in German with multi-language support, reflecting a regional focus with potential international reach. The business maintains a professional online presence with clear contact information and links to privacy and terms documents, supporting trust and compliance. Technically, the platform is built on legacy ASP.NET WebForms technology with jQuery and CKEditor integrations, indicating a mature but somewhat dated infrastructure. While HTTPS is enforced and cookie consent mechanisms are in place, the use of outdated JavaScript libraries and absence of modern security headers highlight areas for improvement in security posture. The lack of WHOIS data limits domain trust assessment, but the overall website professionalism and contact transparency suggest a legitimate business. Strategic recommendations include updating technology stack components, enhancing security headers, and conducting security audits to mitigate vulnerabilities and improve compliance.

S

Spreewelten Lübbenau

spreewelten.de

48

The website spreewelten.de represents a hospitality business located in Germany, specifically focused on leisure and wellness services such as swimming with penguins, sauna experiences, and hotel accommodations in the Spreewald region. The site is primarily in German and targets general audiences interested in wellness tourism. The business model appears to be service-oriented hospitality with a niche attraction. Technically, the website uses standard web technologies including HTML5, CSS3, and JavaScript libraries like FontAwesome and Swiper. The site is moderately optimized for mobile and SEO but lacks advanced technical frameworks or CMS identification. Security-wise, the website lacks critical security headers, privacy and cookie policies, and active analytics tracking, indicating a low maturity level in security and privacy compliance. There are no signs of WAF or content blocking, and the site is accessible. Overall, the risk is moderate due to missing privacy and security best practices, but the business content is legitimate and safe for general audiences.

W

Weiterbildung Brandenburg

weiterbildung-brandenburg.de

63

Weiterbildung Brandenburg is a regional platform providing connected vocational training and continuing education advisory services for companies and employees in Brandenburg, Germany. It is supported by key regional partners including the Federal Employment Agency, the Brandenburg Economic Development Corporation, and the Brandenburg Future Center. The website offers free, independent, and practical advice on professional development, funding opportunities, and digitalization. It also provides a searchable portal for educational offerings and event information. The platform targets businesses and working individuals seeking to enhance their skills and qualifications.

S

Stadt Lindau

stadtlindau.de

57

Stadt Lindau operates as the official municipal government website for the city of Lindau (Bodensee), Germany. It provides comprehensive information and services to residents, tourists, and businesses, including administrative services, cultural events, tourism, and mobility information. The website is well-structured and professionally designed, targeting a broad audience including local citizens and visitors. The business model centers on public service and community engagement, positioning the city as a well-organized local government entity. Technically, the site uses a variety of JavaScript libraries and appears to be built on the IKISS CMS platform, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced, but lacks some modern security headers and explicit incident response information. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional, with clear contact information and no suspicious content detected.

Frauennotruf Leverkusen e.V. operates as a specialized non-profit organization providing counseling and support services to women and girls affected by sexualized violence. The organization offers free, confidential, and anonymous support via telephone and online channels, including legal advice and prevention programs. Their market position is local and focused on social support within Leverkusen, Germany. The website is multilingual, enhancing accessibility for diverse audiences. Technically, the site uses a modern frontend stack with Bootstrap and jQuery, hosted on a domain managed via GoDaddy nameservers. The site is mobile-optimized and accessible, with clear navigation and professional design. Security posture is good with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies are lacking. Overall, the site demonstrates a strong commitment to privacy and user safety, including an exit button for quick navigation away from the site. The domain registration appears legitimate and consistent with the organization's profile.

Frauenberatung 'Frauen-Zimmer' e.V. Burscheid is a specialized non-profit organization providing counseling and support services to women and girls affected by sexualized violence in the Rheinisch-Bergischer Kreis region of Germany. The organization offers a range of services including crisis intervention, accompaniment to authorities, online counseling, and self-defense courses. It operates with clear contact channels and donation mechanisms, supported by recognized partner organizations. Technically, the website employs a modern tech stack including jQuery, Bootstrap, and Font Awesome, ensuring a responsive and accessible user experience. The site is well-structured with clear navigation and basic SEO practices. Cookie consent and privacy policies are implemented, reflecting GDPR compliance. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent mechanisms. However, security headers are not explicitly detected, and no formal security or incident response policies are published. No vulnerabilities or exposed sensitive data were found. Overall, the website presents a trustworthy and professional front for a small non-profit organization. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party libraries to strengthen security posture further.

W

Wildwasser Bochum e.V.

wildwasserbochum.de

65

Wildwasser Bochum e.V. is a specialized non-profit counseling center based in Bochum, Germany, focused on supporting girls (from age 16) and women who have experienced sexualized violence. The organization offers confidential, anonymous, and low-threshold services including personal counseling, prevention, self-help facilitation, and legal accompaniment. The website is built on the Jimdo Creator CMS platform, hosted by Jimdo GmbH, and features a clear structure with German language content tailored to its target audience. Technical infrastructure includes integration of third-party widgets such as POWr.io and Google Maps, with a cookie consent mechanism compliant with GDPR standards. Security posture is adequate with HTTPS enforced, though security headers are not explicitly detected. No forms or email contacts are present on the main page, with contact primarily via phone and physical address. Overall, the website presents a professional and trustworthy digital presence for a small non-profit organization.

W

Wirtschaftsförderung Land Brandenburg GmbH

wdb-brandenburg.de

62

Wirtschaftsförderung Land Brandenburg GmbH operates a professional website focused on workforce development, training, and integration services in the Brandenburg region of Germany. The site offers comprehensive information and personalized consulting services to businesses and individuals seeking to enhance skills and qualifications. The organization positions itself as a regional government-related economic development agency with a strong emphasis on supporting local labor markets and educational initiatives. Technically, the website is built on Drupal 10 CMS with modern JavaScript libraries including jQuery UI and Blazy for image lazy loading. It employs Matomo analytics for privacy-conscious user tracking and features a responsive design with good accessibility and SEO practices. The site uses HTTPS with excellent SSL configuration, though security headers are not explicitly detected, indicating room for improvement. From a security perspective, the website demonstrates good privacy compliance with a clear privacy policy, cookie consent mechanisms, and no visible vulnerabilities or exposed sensitive data. However, it lacks a published security policy or incident response contact details. The WHOIS data shows standard domain registration with GoDaddy name servers, consistent with the business purpose, though registrant details are minimal. Overall, the website is trustworthy, professional, and well-maintained, serving its target audience effectively. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular vulnerability assessments to further strengthen the security posture.

Z

Zweckverband Lausitzer Seenland Brandenburg

senftenberger-see.de

45

Senftenberger-see.de is a professionally maintained tourism and hospitality website focused on the Senftenberger See region in Germany. It offers a variety of accommodation options including holiday homes, camping sites, hotel rooms, and unique tree houses, targeting families and leisure travelers. The site integrates an external booking platform for seamless reservations and provides comprehensive information about leisure activities, gastronomy, and events in the area. Technically, the website employs modern JavaScript libraries such as jQuery and Masonry, with responsive design and conditional loading of Google Maps respecting user privacy. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, though some security headers and explicit policies could be improved. The domain registration data aligns well with the business claims, enhancing trustworthiness. Overall, the site presents a reliable and user-friendly platform for regional tourism promotion.

Unna Marketing Gesellschaft für Veranstaltungen und Stadtmarketing mbH is a small local company specializing in event organization, city marketing, tourism, and economic promotion for the city of Unna, Germany. Their website provides comprehensive information about local events, fairs, markets, and the Stadthalle venue, targeting residents, visitors, and local businesses. The company maintains partnerships with local businesses and institutions, enhancing its community presence. Technically, the website is built on the Contao Open Source CMS platform and utilizes common JavaScript libraries and Google APIs for charts and maps. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. The presence of a cookie consent mechanism and privacy policy indicates attention to GDPR compliance, although terms of service and security policies are absent. From a security perspective, the site uses HTTPS and includes some privacy-focused tools but lacks explicit security headers and incident response information. No critical vulnerabilities or suspicious content were detected. The WHOIS data is limited but consistent with the business focus, supporting legitimacy. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include enhancing security headers, adding detailed security and incident response policies, improving mobile optimization, and expanding analytics and marketing transparency to strengthen digital maturity and compliance.

L

Leviceonline.sk

leviceonline.sk

50

Leviceonline.sk is a regional news and information portal serving the Levice district and surrounding areas in Slovakia. It provides a broad range of local content including news, sports, culture, classifieds, job offers, and event listings. The site leverages Joomla CMS and integrates multimedia content such as videos and photo galleries, supported by advertising revenue primarily through Google Adsense and eTarget. The target audience is local residents and visitors interested in regional updates and community events. The website maintains a consistent brand presence with active social media engagement, mainly on Facebook.

D

Dachverband der autonomen Frauenberatungsstellen NRW e.V.

frauenberatungsstellen-nrw.de

52

The website www.frauenberatungsstellen-nrw.de represents the Dachverband der autonomen Frauenberatungsstellen NRW e.V., a well-established non-profit umbrella organization supporting autonomous women's counseling centers in North Rhine-Westphalia, Germany. The organization provides comprehensive support, advocacy, and educational services aimed at empowering women and girls, promoting gender equality, and combating violence. The site reflects a strong regional presence with a clear mission and professional presentation. Technically, the website is built on Drupal 10, leveraging modern web technologies including jQuery, Matomo Analytics for privacy-conscious tracking, and lazy loading for performance optimization. The site is mobile-optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. Hosting details are limited but DNS points to vegasystems.de nameservers. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, security headers could be enhanced to improve protection. Privacy policies and cookie documentation are comprehensive and clearly accessible, demonstrating a commitment to data protection and user privacy. Overall, the website scores highly on content quality, technical implementation, security posture, privacy compliance, and business credibility. It serves its target audience effectively with trustworthy and relevant content. There are no indications of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers and considering a vulnerability disclosure policy to further strengthen security posture.

S

Stadtwerke Waltrop GmbH & Co. KG

stadtwerke-waltrop.de

46

Stadtwerke Waltrop GmbH & Co. KG is a regional municipal energy provider based in Waltrop, Germany, offering electricity and natural gas services with a focus on renewable energy sources. The company targets both private and business customers within the local area, providing a range of energy tariffs and an online customer portal for account management. The website reflects a solid market position as a trusted local utility with a customer-centric approach. Technically, the website is built on the TYPO3 CMS platform and incorporates common web technologies such as jQuery and Google Analytics. While the site is functional and moderately optimized for performance and SEO, it uses an outdated jQuery version which poses a security risk. The site includes basic accessibility and mobile optimization features but could benefit from modernization and enhanced security headers. From a security perspective, the site enforces HTTPS and uses CAPTCHA on contact forms to mitigate spam. Privacy and cookie policies are present and indicate GDPR compliance. However, the absence of explicit security policies, incident response contacts, and the use of outdated libraries reduce the overall security posture. No WAF or blocking mechanisms were detected, and no suspicious content or vulnerabilities were found in the visible content. Overall, the website is professional, trustworthy, and serves its business purpose well. Strategic improvements in security practices, technology updates, and enhanced privacy disclosures would strengthen the site’s compliance and resilience against threats.

L

Lausitzer Seenland

lausitzerseenland.de

48

Lausitzer Seenland is a regional tourism website promoting a young holiday region located between Dresden and Berlin in Germany. The site offers comprehensive information on outdoor activities such as cycling, skating, water sports, and cultural experiences, alongside accommodation and activity booking services. The business operates as a regional tourism authority, targeting families, tourists, and outdoor enthusiasts. The website is well-structured with clear navigation and good content quality, supporting a positive user experience. Technically, it employs modern JavaScript libraries like Swiper and jQuery UI, with responsive design and moderate performance. Security posture is adequate with HTTPS enforced and secure form handling, though it lacks some security headers and a cookie consent mechanism. Privacy compliance is supported by a comprehensive privacy policy and terms of service, but cookie consent is missing. The domain registration data is consistent and trustworthy, aligning with the website's regional focus. Overall, the site is professional, trustworthy, and suitable for general audiences seeking tourism information.