Security Directory

B

Bayerische Staatsforsten AöR

baysf.de

65

Bayerische Staatsforsten AöR is a publicly owned forestry organization under the Free State of Bavaria, managing the entire Bavarian state forest with a focus on sustainable, integrative forest management. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content targeting citizens, forestry professionals, and environmental stakeholders. The organization offers a broad range of services including wood production, hunting, renewable energy, and nature conservation. Technically, the site is built on Drupal CMS, uses Matomo for analytics with user consent, and supports responsive design and accessibility. Security posture is strong with HTTPS enforced and cookie consent mechanisms, though explicit security headers and policies could be improved. Overall, the domain and WHOIS data align with the organization's government affiliation, supporting legitimacy and trust. No critical vulnerabilities or suspicious content were detected.

V

Verein Vertrauensstelle Kunst und Kultur

vertrauensstelle.at

48

The Verein Vertrauensstelle Kunst und Kultur operates as an independent trust center providing confidential, professional advice and support for individuals affected by abuse of power, harassment, and violence within the arts and culture sector in Austria. The organization also promotes sustainable cultural change through prevention initiatives. Their market position is that of a specialized non-profit entity serving a niche audience within the cultural sector. The website is well-structured, professionally designed, and fully accessible with clear navigation and mobile optimization. Technically, it is built on WordPress with modern plugins and privacy-conscious analytics (Matomo) implemented. Security posture is strong with HTTPS enforced and privacy policies aligned with GDPR requirements, although some security headers and explicit incident response contacts are missing. Overall, the domain registration and WHOIS data are consistent with the organization's claims, supporting legitimacy and trustworthiness.

S

sports4everybody

kitz-extremechallenge.com

49

The website www.kitz-extremechallenge.com represents the World Extreme Run Challenge (WERC), an extreme sports event organized by the non-profit association sports4everybody. The event is held on the famous Kitzbühel Streif ski slope and aims to challenge participants with an up-and-down mountain run. The business model is non-profit, focusing on community engagement and supporting Austrian sports talents. The website content is professionally presented in German, with clear navigation and relevant event information. The site is supported by multiple reputable partners and sponsors, enhancing its credibility. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and popular libraries such as jQuery and Owl Carousel. It employs Matomo analytics for user tracking with privacy considerations. The site is mobile-optimized and performs moderately well. However, no CMS or hosting provider details are explicitly detected. Security posture is good with HTTPS enforced and secure form handling, but lacks some security headers and incident response information. From a security and compliance perspective, the site includes a privacy policy and cookie consent mechanism compliant with GDPR. Contact information is clearly provided, but no terms of service or security policy documents are found. The WHOIS data for the domain is missing or unavailable, which raises concerns about domain legitimacy despite the professional website presence. No WAF or blocking mechanisms are detected, and the content is safe for general audiences. Overall, the website is a credible and professional platform for the WERC event but should address WHOIS transparency and enhance security headers and policies to improve trust and compliance.

M

Medicproof GmbH

medicproof.de

10

Medicproof GmbH operates as a specialized medical service provider for private health insurance in Germany, focusing on the creation of medical expert assessments and care evaluations. The company processes a high volume of reports daily from its Cologne headquarters, serving insured individuals, medical professionals, and caregivers. Their services include care level assessments, caregiver training programs, and expert evaluations, positioning them as a key player in the private health insurance healthcare sector. The website is built on TYPO3 CMS and uses modern frontend technologies, providing a professional and user-friendly experience with good mobile optimization and clear navigation. Security posture is solid with HTTPS, cookie consent, and secure forms, though there is room for improvement in publishing explicit security policies and incident response details. The site integrates analytics and marketing tools such as Matomo, Mouseflow, and Facebook Pixel with GDPR-compliant consent mechanisms. WHOIS data aligns well with the business claims, showing consistent domain registration and no suspicious patterns. Overall, the website is trustworthy, professional, and compliant with privacy regulations, supporting Medicproof's market position as a reputable healthcare service provider.

V

Verband der Privaten Krankenversicherung e.V.

pkv.de

57

The Verband der Privaten Krankenversicherung e.V. is a prominent German association representing private health and nursing insurance providers and their insured members. The website serves as an information and advocacy platform, targeting private insured individuals, insurers, policymakers, and media. It offers news, policy positions, educational content, and links to subsidiary organizations. Technically, the site is built on TYPO3 CMS, uses Bootstrap for styling, and integrates Matomo for analytics, reflecting a moderate level of digital maturity. The presence of embedded YouTube videos and social media integration indicates active engagement with audiences. Security-wise, the site uses HTTPS and privacy-respecting analytics but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. Overall, the site is professional, trustworthy, and safe for general audiences, with a solid business credibility and moderate technical implementation.

D

Deutsche Krankenhausgesellschaft e. V.

dkgev.de

65

The Deutsche Krankenhausgesellschaft e. V. (DKG) is a prominent German hospital federation dedicated to representing hospital interests and influencing healthcare policy. The website serves as an information hub for healthcare professionals, policymakers, and the public, offering position papers, event information, and advocacy content. The organization operates as a non-profit entity with a strong market position in Germany's healthcare sector. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as jQuery and Slick Carousel for UI components. It implements GDPR-compliant cookie consent mechanisms and uses Matomo for analytics, indicating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site enforces HTTPS and employs cookie consent tools but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious content were detected. WHOIS data aligns with the organization's German identity, reinforcing legitimacy. Overall, the website is professional, secure, and compliant with privacy regulations, supporting the organization's mission effectively. Strategic improvements in security headers and transparency around security policies could further enhance trust and resilience.

T

talentsconnect

job-shop.com

66

talentsconnect is a German-based HR technology company specializing in software and consulting services that optimize recruiting and employee retention for medium to large enterprises. Their product suite includes innovative recruiting platforms like JobShop, retention tools such as Internal JobShop and Preboarding, and AI-driven conversational recruiting solutions. The company positions itself as a strategic partner helping HR teams transform from cost centers to profit centers through data-driven talent acquisition and retention strategies. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support.

I

Institut für ökologische Wirtschaftsforschung

ioew.de

48

The Institut für ökologische Wirtschaftsforschung (IÖW) is a leading German research institute specializing in sustainability and ecological economic research. It provides strategies and actionable insights for sustainable economic practices, targeting academics, policymakers, and civil society. The website reflects a mature digital presence with comprehensive content, including news, publications, and project information. The institute maintains a strong market position in sustainability research with a medium-sized organizational footprint. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries like jQuery and SlickNav for navigation, and uses Matomo for privacy-conscious analytics. Cookie consent mechanisms are implemented in compliance with GDPR, enhancing user privacy. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and session management cookies properly configured. However, explicit security headers and published security policies are absent, representing areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with the business, supporting legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its audience effectively. Strategic enhancements in security transparency and contact information visibility could further strengthen trust and compliance.

V

Verein LICHT INS DUNKEL

lichtinsdunkel.org

56

Licht ins Dunkel is a well-established Austrian non-profit organization dedicated to promoting social inclusion and supporting families and individuals with disabilities. With over 50 years of history, the organization operates primarily through charitable donations and project funding to foster societal cohesion and provide immediate financial assistance. The website reflects a professional and trustworthy presence, featuring comprehensive content and clear navigation tailored to its target audience of vulnerable groups and supporting entities in Austria. Technically, the site is built on WordPress with modern JavaScript frameworks and privacy-conscious analytics, ensuring a good user experience across devices. Security posture is solid with HTTPS and privacy-respecting analytics, though improvements can be made by enabling DNSSEC, adding security headers, and implementing cookie consent mechanisms. Overall, the domain registration and WHOIS data align well with the organization's legitimacy and long-standing presence.

M

Ministerium für Wirtschaft, Arbeit und Tourismus Baden-Württemberg

gut-ausgebildet.de

57

gut-ausgebildet.de is an official educational and vocational training information portal supported by the Ministry of Economy, Labor and Tourism Baden-Württemberg. It serves as a comprehensive resource for students, trainees, parents, and educators in the Baden-Württemberg region, providing detailed information on apprenticeship opportunities, career guidance, and related initiatives such as Praktikumswoche and AzubiCardBW. The platform is well-positioned as a trusted government-backed source with strong partnerships across regional economic and labor organizations. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including Bootstrap and Matomo analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience. The use of no-cookie YouTube embeds and a clear cookie consent mechanism reflects a commitment to privacy compliance. From a security perspective, the site enforces HTTPS and implements cookie consent but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data aligns with the website's official nature, showing consistent domain registration without privacy protection, supporting legitimacy. Overall, gut-ausgebildet.de presents a secure, professional, and trustworthy platform with excellent content quality and strong business credibility. Strategic improvements could include enhancing HTTP security headers and publishing explicit security and incident response policies to further strengthen security posture and user trust.

The website www.vr-media-online.de serves as a financial information portal primarily targeting customers of German cooperative banks under the DZ BANK group umbrella. It provides access to the Börsenkompass content, gated by a residency and customer verification form. The site is built on Adobe Experience Manager and integrates Usercentrics for cookie consent and Matomo for analytics, reflecting a moderate level of digital maturity. However, the content quality is basic, with minimal visible business information and no explicit privacy or terms of service pages on the analyzed page. Security posture is moderate, with consent-based tracking but lacking visible security headers or detailed policies. Overall, the site appears legitimate and consistent with DZ BANK branding but would benefit from enhanced transparency and security documentation.

wunu webLab OG is a small Austrian digital agency specializing in tailored digital experiences that combine design, technology, and strategy. Their core services include app development, web solutions, and creative design, targeting startups and businesses seeking innovative digital products. The company maintains a professional online presence with clear branding, comprehensive privacy and cookie policies, and accessible contact information. Technically, the website leverages modern JavaScript frameworks such as Nuxt.js and Vue.js, and employs Matomo for privacy-conscious analytics. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response information are not published. Overall, the website reflects a mature digital infrastructure and a trustworthy business model.

R

Revive.Digital

revive.digital

70

Revive.Digital is a well-established digital marketing agency based in Essex, UK, offering a comprehensive suite of services including SEO, PPC, web design, creative branding, and bespoke software development. The company positions itself as one of the largest agencies in the Southeast UK with over 15 years of experience and a team of more than 30 in-house experts. Their client base exceeds 200 businesses, emphasizing local and nationwide reach. Technically, the website employs modern web technologies such as Matomo analytics, Google Tag Manager, and popular JavaScript libraries, ensuring a responsive and user-friendly experience. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and published security policies. The WHOIS data is privacy protected, which is typical for this business type and does not raise immediate concerns. Overall, the website is professional, trustworthy, and compliant with GDPR and cookie regulations.

G

Gemeinde Zell ZH

zell.ch

40

The website www.zell.ch serves as the official digital presence of the Gemeinde Zell ZH, a small Swiss municipality. It provides comprehensive information about the community, including local governance, services, events, and economic activities. The site targets local residents, businesses, and visitors seeking municipal information or services. The business model is centered on public service delivery and community engagement, positioning the municipality as a trusted local authority. Technically, the website employs a modern CMS platform (i-web CMS) with a clean HTML5 and CSS3 implementation, leveraging JavaScript modules and Matomo analytics for visitor insights. The site is mobile-optimized and accessible, with good SEO practices and structured navigation. Performance is moderate, with no critical technical debt observed. From a security perspective, the site enforces HTTPS and uses secure login forms. However, it lacks explicit security headers and does not publish a dedicated security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is addressed with a clear privacy and cookie policy, including user consent for analytics. Overall, the website is a well-maintained, trustworthy municipal portal with a strong focus on community service. Strategic improvements in security policy transparency and header implementation could further enhance its security posture and user trust.

G

Gemeinde Wila

wila.ch

46

Gemeinde Wila operates as a local government entity providing administrative and community services to residents of Wila, Switzerland. The website serves as an information hub and service portal, offering access to online administrative functions, news, events, and official communications. The site targets local citizens and stakeholders seeking municipal information and services. Technically, the site is built on the Swiss eGovernment CMS GOViS, leveraging modern JavaScript libraries such as jQuery and Font Awesome for UI elements, and employs Matomo for privacy-conscious analytics tracking. The website demonstrates good mobile responsiveness, accessibility, and SEO practices, ensuring a positive user experience. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms compliant with GDPR, though it lacks explicit security policies or incident response disclosures. Overall, the site is trustworthy, professionally maintained, and aligned with the expectations for a municipal government portal.

E

Else Kröner-Fresenius-Stiftung

ekfs.de

54

Else Kröner-Fresenius-Stiftung (EKFS) is a well-established German non-profit foundation founded in 1983, dedicated to funding medical research and supporting humanitarian projects. The website clearly communicates the foundation's mission, funding opportunities, and recent news, targeting medical researchers and humanitarian stakeholders. The organization maintains a professional online presence with comprehensive content and clear navigation, supporting its credibility and outreach efforts. Technically, the website is built on Drupal 10, leveraging modern web technologies including Matomo for privacy-conscious analytics and AddToAny for social sharing. The site is mobile-optimized, accessible, and performs moderately well. Hosting appears stable with consistent domain and DNS configurations. From a security perspective, the site enforces HTTPS, implements cookie consent mechanisms aligned with GDPR, and respects user privacy by disabling tracking cookies unless consented. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policy documentation and incident response contacts, which are recommended for enhanced trust and compliance. Overall, EKFS demonstrates a strong digital maturity and trustworthy online presence suitable for its non-profit healthcare sector role. Strategic improvements in security transparency and formal policies would further strengthen its posture.

Deine Wege is a German-language website operated under the auspices of the Deutscher Verkehrssicherheitsrat (DVR), focusing on promoting safe mobility in corporate and public sectors. The platform offers a variety of services including prevention planning, consulting, seminars, safety trainings, campaigns, and a media/material portal. The website is well-branded with consistent use of logos from reputable German traffic safety and insurance organizations, indicating a strong market position within the transportation safety sector. The target audience primarily includes businesses and organizations interested in traffic safety and mobility management. Technically, the site is built on TYPO3 CMS and uses Matomo for analytics with privacy-conscious configurations such as disabled cookies and a clear cookie consent mechanism. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content.

A

AVC Schweiz

avc-ch.org

55

AVC Schweiz is an established international non-profit organization founded in 2009, dedicated to supporting persecuted Christians and people in need worldwide. The organization operates in over sixty countries and engages local partners to deliver humanitarian aid, advocacy, and community support. Their website reflects a professional and consistent brand presence, offering multilingual content, event information, donation options, and volunteer opportunities. Technically, the site is built on Joomla CMS with modern frameworks like Bootstrap and integrates Matomo for analytics, ensuring a moderate to good performance and mobile optimization. Security posture is adequate with HTTPS enforced and CSRF protections in forms, but lacks advanced security headers and DNSSEC. Privacy compliance is basic with privacy and cookie policies present but no active consent mechanism. Overall, AVC Schweiz demonstrates a credible and trustworthy online presence aligned with its mission.

A

ASKÖ - Tirol (Arbeitsgemeinschaft für Sport und Körperkultur in Österreich, Landesverband Tirol)

askoe-fit.at

62

ASKÖ Tirol is a regional sports organization in Austria offering a wide range of sports courses, workshops, and health promotion services targeted at individuals and companies in Tirol. Their website demonstrates a mature digital presence with comprehensive content, clear navigation, and professional design. The technical infrastructure leverages modern web technologies including Alpine.js, Tailwind CSS, and Matomo analytics, hosted by a local provider with good performance and mobile optimization. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with a detailed GDPR-compliant privacy policy and terms of service. Overall, the website reflects a trustworthy and credible organization with transparent contact information and legal disclosures.

I

Internetkonzepte.at GmbH

internetkonzepte.at

46

Internetkonzepte.at GmbH is a small Austrian technology company specializing in custom web and software development, content management systems, hosting, and related IT services. With over 20 years of experience and numerous client references, the company holds a solid market position in the Austrian and German-speaking business sectors. Their website reflects a professional and consistent brand image, targeting businesses seeking tailored internet solutions. The company emphasizes security and support, with a 24/7 support offering and a strong partnership with their hosting provider myNET.at. Technically, the website employs a modern tech stack including jQuery, Font Awesome, and Matomo analytics, running on a proprietary CMS developed by the company. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is strong with HTTPS and no visible vulnerabilities, but lacks some advanced security headers and formal policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the security posture is good, with no detected vulnerabilities or blocking mechanisms. The WHOIS data confirms the legitimacy and consistency of the business registration. Strategic improvements include implementing cookie consent, publishing security and incident response policies, and adding security headers to enhance protection and compliance.

O

OstWestfalenLippe GmbH

ostwestfalen-lippe.de

59

OstWestfalenLippe GmbH is a regional development agency focused on promoting the OstWestfalenLippe region in North Rhine-Westphalia, Germany. The organization supports sustainable transformation, economic growth, education, and cultural initiatives, positioning itself as a key regional stakeholder. The website reflects a mature digital presence built on TYPO3 CMS, with modern design and good mobile optimization. Security posture is solid with HTTPS and spam-protected emails, though some advanced security headers and cookie consent mechanisms are missing. Overall, the site is professional, trustworthy, and well-aligned with the organization's mission.

The website 'Sicher in meiner Region - Regio Protect UVT' is operated by the Deutscher Verkehrssicherheitsrat and focuses on providing regional traffic safety information and educational content about accident hotspots in Germany. It targets young drivers and the general public interested in traffic safety, offering interactive maps and videos for self-learning. The platform is positioned as a niche educational resource supported by reputable German traffic safety organizations. Technically, the site uses standard web technologies including HTML5, CSS3, JavaScript, SVG for interactive maps, and Matomo for privacy-conscious analytics. The site is mobile optimized and provides a clear navigation structure, although accessibility features are basic. Performance is moderate with no major technical issues detected. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms aligned with GDPR. However, it lacks explicit security headers and formal security or incident response policies. No vulnerabilities or exposed sensitive data were found. The absence of a terms of service and vulnerability disclosure policy are areas for improvement. Overall, the website is trustworthy, professional, and compliant with privacy regulations, serving its educational mission effectively. Strategic recommendations include enhancing security headers, publishing security policies, improving accessibility, and adding terms of service to strengthen compliance and user trust.

O

OstWestfalenLippe GmbH

startklar-owl.de

60

OstWestfalenLippe GmbH operates a professional and well-structured website promoting the startklar Businessplan-Wettbewerb, a biennial business plan competition aimed at supporting startups and entrepreneurs in the Ostwestfalen-Lippe region of Germany. The competition offers workshops, mentoring, and prizes to foster innovation and regional economic development. The website is built on TYPO3 CMS, uses Matomo for analytics, and demonstrates good SEO and mobile optimization. Contact information is clearly provided with anti-spam measures. Security posture is adequate with HTTPS and obfuscated emails, though improvements in security headers and cookie consent mechanisms are recommended. The domain WHOIS data aligns with the website's regional and organizational claims, indicating legitimacy and consistency. Overall, the site reflects a credible, government-affiliated entity focused on regional startup support.

B

BIPEM GmbH & Co. KG

reinert-baerchen.com

10

Bärchen.de is the official website for the Bärchen brand, owned by BIPEM GmbH & Co. KG, offering child-friendly food products such as sausages and fruit spreads. The site targets families with children, providing product information, recipes, nutrition advice, and creative activities. The brand has a strong market presence in Germany with over 27 years of history. Technically, the website is built on WordPress with a modern tech stack including jQuery, WPML for multilingual support, and integrates analytics and marketing tools like Matomo, Facebook Pixel, and Pinterest Tag. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is good with HTTPS enforced and privacy-respecting analytics, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-optimized for its audience.

I

IGT – Institut für Gebäudetechnologie GmbH

igt-institut.de

55

IGT – Institut für Gebäudetechnologie GmbH is an independent German institute specializing in consulting, training, and lectures focused on modern building technology, smart buildings, energy efficiency, and e-mobility. The company targets professionals and organizations seeking expertise in these areas, offering tailored services including inhouse and web-based training. Their market position is that of a niche expert institute with a clear focus on innovative building solutions. Technically, the website is built on WordPress 6.2.8, utilizing Bootstrap for responsive design and common plugins such as Contact Form 7 and Matomo for privacy-conscious analytics. Hosting is provided by rzone.de, a German hosting provider, and the site employs HTTPS with a good SSL configuration. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features and solid SEO practices. From a security perspective, the site enforces HTTPS and includes a GDPR-compliant cookie consent banner. However, no explicit security headers were detected in the provided data, and there is no published security policy or incident response contact. The use of Matomo analytics indicates a privacy-aware approach. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could improve its security posture by implementing additional HTTP security headers and publishing security-related policies. The business information is clear and consistent with the domain registration data, supporting a legitimacy score of 80 out of 100.

H

Hochschulbibliothekszentrum des Landes Nordrhein-Westfalen (hbz)

hbz-nrw.de

10

The Hochschulbibliothekszentrum des Landes Nordrhein-Westfalen (hbz) is a key regional institution supporting library processes and services across academic institutions in North Rhine-Westphalia, Germany. Their website provides comprehensive information about their products, projects, literature search services, and publications, targeting libraries, researchers, and students. The organization is positioned as an essential service provider in the education sector with a medium-sized operational scale and a founding date consistent with the domain registration. Technically, the website is built on the Plone CMS platform, utilizing modern web technologies such as jQuery, Leaflet.js, and FontAwesome. It is mobile-optimized, accessible, and integrates Matomo analytics for privacy-conscious user tracking. The site is served over HTTPS with no detected blocking or WAF interference, indicating good digital maturity. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and does not publish a dedicated security policy or incident response contacts. Privacy compliance is well addressed with clear privacy and cookie policies, including a consent mechanism. Contact information is available but no direct email addresses are listed in the HTML content. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements include adding security headers, publishing a security policy, and implementing a vulnerability disclosure mechanism to enhance security posture and transparency.

The website familiennamenbuch.ch is an academic and historical resource operated by the Stiftung Historisches Lexikon der Schweiz (HLS). It provides a searchable online database of Swiss family names and citizenship data from 1962, serving genealogists, historians, and researchers interested in Swiss heritage. The site is positioned as a trusted, authoritative reference with a non-commercial, educational mission. Technically, the site uses standard HTML, CSS, and JavaScript with Matomo analytics for visitor tracking. The design is basic but functional, with multilingual support and clear navigation. Security posture is moderate with HTTPS usage but lacks visible security headers and formal privacy or cookie policies. No incident response or vulnerability disclosure information is published. Overall, the site is safe, trustworthy, and well-aligned with its academic purpose, though improvements in privacy compliance and security best practices are recommended.

Ö

Österreichischer Turnerbund

oetb.at

55

The Österreichischer Turnerbund (ÖTB) is a well-established Austrian sports federation focused on promoting gymnastics and physical activity, especially among youth and community members. The website serves as an information hub for events, training courses, and publications, positioning the organization as a key player in Austria's non-profit sports sector. The digital infrastructure is built on WordPress with Elementor, leveraging modern web technologies and analytics tools like Matomo to monitor user engagement while maintaining GDPR compliance through a comprehensive privacy and cookie policy. Security posture is solid with HTTPS and reCAPTCHA protections, though there is room for improvement in security headers and incident response transparency. Overall, the site is professional, trustworthy, and well-optimized for its audience.

B

Bayerischer Turnverband e. V.

btv-turnen.de

47

Bayerischer Turnverband e. V. is a regional non-profit sports association focused on gymnastics, fitness, and health sports in Bavaria, Germany. The website serves as an information hub for educational programs, events, and youth activities, positioning itself as a key player in the regional sports education sector. The technical infrastructure includes modern JavaScript libraries such as Swiper.js and Fancybox, with privacy-conscious analytics via Matomo and a cookie consent mechanism from Consentmanager.net. The site is well-structured, mobile-optimized, and provides rich content relevant to its audience. Security posture is moderate with HTTPS implied but no explicit security headers detected. Privacy compliance is basic, lacking a visible privacy policy or terms of service. Overall, the domain appears legitimate and consistent with the organization's mission, though WHOIS data is minimal. Strategic improvements include publishing comprehensive privacy and security policies and enhancing security headers.

K

Kulturbüro Riehen

eigenundartig.ch

69

Riehen Events is a municipal cultural event platform operated by the Kulturbüro Riehen, providing comprehensive information about local cultural events, exhibitions, and community activities in Riehen, Switzerland. The website serves residents and visitors by offering event calendars, venue information, permit guidance, and cultural funding details. It supports event organizers with tools to submit events and promotes local culture effectively. Technically, the site is built on Drupal 10 with modern JavaScript libraries such as Alpine.js and Splide.js, ensuring a responsive and accessible user experience. The use of Matomo analytics with a cookie consent mechanism demonstrates a commitment to privacy and GDPR compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-aligned with its municipal purpose.

O

OWL Verkehr GmbH

teutoowl.de

57

OWL Verkehr GmbH operates as a regional public transportation service provider and information portal for the TeutoOWL network in Germany. The company offers a range of services including schedule information, ticket sales (such as Deutschlandticket, JobTickets, and SchülerTickets), subscription management, and mobility services like call-collect taxis and night buses. The website targets public transport users in the OWL region, providing comprehensive and accessible information to facilitate mobility. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as jQuery, Bootstrap, and FontAwesome. It employs Matomo analytics with a cookie consent mechanism, indicating a privacy-conscious approach. The site is hosted on infrastructure associated with DomainControl, uses HTTPS with strong SSL configuration, and demonstrates good mobile optimization and accessibility. From a security perspective, the website enforces HTTPS and uses privacy-friendly analytics. However, it lacks explicit security policy documentation and incident response contact details. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is limited but consistent with a legitimate regional transportation entity. Overall, the site maintains a good security posture with room for improvement in transparency and security headers. The overall risk assessment is low, with the website presenting a professional, trustworthy, and compliant digital presence. Strategic recommendations include publishing a security policy, adding incident response contacts, enhancing security headers, and maintaining regular security audits to sustain and improve the security posture.

O

OstWestfalenLippe GmbH

ostwestfalenlippe.de

58

OstWestfalenLippe GmbH is a regional development agency focused on promoting the OstWestfalenLippe region in North Rhine-Westphalia, Germany. The company supports sustainable transformation, workforce development, regional marketing, and innovation through various projects and events. The website is professionally designed, content-rich, and targets stakeholders including businesses, academia, government, and citizens of the region. Technically, the site uses TYPO3 CMS and Matomo analytics, indicating a modern and privacy-aware infrastructure. Security posture is good with HTTPS and spam-protected emails, though additional security headers and explicit policies could improve it. Overall, the website is trustworthy, well-maintained, and compliant with GDPR, though it lacks a cookie consent mechanism. Strategic recommendations include enhancing security headers, publishing security policies, and implementing cookie consent to improve compliance and trust.

E

eurobahn GmbH & Co. KG

eurobahn.de

51

eurobahn GmbH & Co. KG operates as a regional passenger rail transport provider serving parts of Lower Saxony, North Rhine-Westphalia, and the Netherlands. The company offers extensive rail connections, timetable information, ticketing services, and customer support, positioning itself as an important regional mobility player. The website reflects a professional and user-friendly digital presence with clear navigation, multilingual support, and comprehensive service information. Technically, the site is built on TYPO3 CMS, integrates Matomo analytics, and employs modern UI components ensuring good performance and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be enhanced. Overall, the site demonstrates strong business credibility, compliance with GDPR, and effective communication channels, supporting a trustworthy and professional brand image.

S

Stadt Bielefeld

bielefeld.de

57

The website www.bielefeld.de is the official digital presence of the city of Bielefeld, Germany, serving as a comprehensive portal for municipal services, community information, city development, culture, and events. It targets residents, visitors, and businesses, providing a wide range of services including appointment scheduling, public announcements, and career opportunities. The site is well-positioned as the authoritative source for city-related information and services. Technically, the site is built on Drupal 10 with Bootstrap framework, hosted likely by Deutsche Telekom, and integrates privacy-conscious analytics via Matomo with cookies disabled and DoNotTrack respected. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms, and follows privacy best practices. However, it lacks explicit security policies or incident response information and could improve by adding additional security headers and a vulnerability disclosure policy. Overall, the security posture is solid but could be enhanced. The risk assessment is low given the official nature, absence of suspicious content, and good privacy compliance. Strategic recommendations include strengthening security headers, publishing security policies, and enhancing transparency around incident response and vulnerability disclosures.

C

Cimbergy

cimbergy.com

55

Cimbergy is a specialized service provider focused on wind and solar energy projects primarily in Schleswig-Holstein, Germany. The company offers tailored solutions including planning, implementation, and management of renewable energy parks. Their market position is regional with a clear focus on sustainable energy and citizen participation. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates privacy-compliant analytics and marketing tools such as Matomo and Facebook Pixel. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. The absence of WHOIS data raises some concerns about domain registration transparency, but the website itself appears legitimate and trustworthy. Overall, the site demonstrates a mature digital presence suitable for its business domain.

E

e-mobil BW GmbH

emobil-sw.de

61

e-mobil BW GmbH operates the Cluster Elektromobilität Süd-West, a regional network focused on advancing electromobility and digitalization in the energy and transportation sectors. The cluster facilitates collaboration among companies, research institutions, and stakeholders to accelerate innovation and market development in Baden-Württemberg and surrounding regions. Their services include project coordination, working groups, internationalization support, and educational initiatives, positioning them as a key player in the regional electromobility ecosystem. Technically, the website is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and Swiper.js, ensuring good mobile responsiveness and accessibility. The use of Matomo analytics reflects a privacy-conscious approach to user tracking. The site is well-structured, SEO-optimized, and provides a professional user experience with clear navigation and comprehensive content. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks explicit security policy documentation and incident response contact details, which are recommended for enhanced transparency and trust. No vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business identity, supporting legitimacy. Overall, the website demonstrates a strong business credibility and technical maturity with minor areas for improvement in security transparency and contact information. The risk profile is low, and the site effectively supports the cluster's mission and stakeholder engagement.

É

Éditions Finitude

finitude.fr

46

Éditions Finitude is a French literary publishing company presenting its catalog and publishing activities through a professionally designed WordPress website using the Divi theme. The site targets French-speaking readers and literary enthusiasts, offering book publishing services and literary content. The technical infrastructure includes WooCommerce for e-commerce and analytics tools such as Google Analytics and Matomo, indicating a moderate level of digital maturity. Security posture is good with HTTPS and security headers implemented, but lacks visible privacy and cookie policies, as well as contact information for security incidents. The absence of WHOIS data limits domain trust assessment, suggesting the domain may be new or privacy protected, which slightly reduces overall trust. Strategic recommendations include adding comprehensive privacy and cookie policies, improving contact transparency, and implementing a vulnerability disclosure mechanism to enhance security and compliance.

D

Direktoratet for forvaltning og økonomistyring (DFØ)

doffin.no

67

Doffin.no is an official Norwegian government website operated by the Direktoratet for forvaltning og økonomistyring (DFØ). It serves as a comprehensive database for public procurement announcements, enabling public sector entities and suppliers to access procurement data to improve transparency and decision-making. The platform holds a strong market position as the national official source for public procurement information in Norway, targeting government agencies and suppliers. The website is well-branded, consistent, and professionally designed with a focus on usability and accessibility. Technically, the site leverages modern web technologies including React and Matomo analytics, ensuring a responsive and accessible user experience. The site is served over HTTPS with appropriate security headers, reflecting a good security posture. However, it lacks visible cookie consent mechanisms and published security or incident response policies, which are areas for improvement to enhance privacy compliance and transparency. Security-wise, the platform demonstrates good practices such as HTTPS enforcement and no visible vulnerabilities or exposed sensitive data. The absence of a vulnerability disclosure policy and incident response contact reduces transparency but does not indicate immediate risk. Overall, the site is trustworthy and secure for its intended audience. The overall risk assessment is low, with recommendations focusing on improving privacy compliance by implementing cookie consent, publishing security policies, and adding terms of service. These steps will strengthen user trust and regulatory adherence while maintaining the platform's role as a critical government service.

B

Bullsgroup.com

bullsgroup.com

44

Bullsgroup.com is a content creation and editorial services website that emphasizes unique and engaging content, claiming a business history dating back to 1929. The website is built on WordPress using the Astra theme and incorporates SEO best practices via the Yoast SEO plugin. It employs Matomo analytics for user tracking and includes a cookie consent mechanism, indicating some level of privacy compliance. The technical infrastructure is modern and moderately optimized for performance and mobile devices. Security posture is adequate with HTTPS enabled and a valid domain registration, though improvements such as enabling DNSSEC and adding security headers are recommended. The absence of explicit privacy policies, terms of service, and contact information limits full compliance and trustworthiness assessment. Overall, the website presents a professional front with room for enhanced security and compliance documentation.

L

Landeshauptstadt Mainz

mainz.de

68

Landeshauptstadt Mainz operates an official municipal government website providing comprehensive information and services related to city administration, politics, tourism, culture, and public events. The site targets residents, tourists, and businesses, offering multilingual support and various online services. The technical infrastructure is based on the Sitepark Information Enterprise Server CMS, utilizing modern JavaScript libraries such as jQuery and Modernizr, with Matomo analytics integrated for user tracking under GDPR-compliant consent mechanisms. Accessibility and mobile optimization are well implemented, reflecting a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response contacts are not evident. The WHOIS data aligns with the official city domain, confirming legitimacy and trustworthiness. Overall, the website demonstrates high professionalism, good security hygiene, and strong compliance with privacy regulations.

S

Stadtverwaltung Eschborn

eschborn.de

55

The website www.eschborn.de serves as the official municipal portal for the city administration of Eschborn, Germany. It provides a comprehensive range of online services and information targeted at citizens, businesses, and visitors. The site is well-branded and includes extensive accessibility features to support diverse user needs. The content is primarily in German with multi-language support available through an integrated accessibility tool. The business model is focused on public service delivery and community engagement, positioning the city government as a trusted local authority. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs modern web technologies including Bootstrap and jQuery. Analytics are managed via Matomo and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some performance optimizations could be considered. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data aligns with the official nature of the site, showing consistent domain registration and hosting. Overall, the website presents a professional and trustworthy digital presence for the Eschborn city administration. Strategic improvements in privacy policy publication, security header implementation, and incident response transparency would enhance compliance and security posture further.

M

Museum für Gestaltung Zürich

museum-gestaltung.ch

51

Museum für Gestaltung Zürich is a leading Swiss museum specializing in design and visual communication, operating across three locations in Zurich. It is affiliated with the Zurich University of the Arts and supported by prominent cultural and corporate entities. The museum offers exhibitions, educational programs, publications, and an online shop, targeting a broad audience including groups, schools, families, and accessible audiences. The website reflects a mature digital presence with modern technologies such as Nuxt.js and Vue.js, and integrates Matomo analytics for user tracking. Security posture is strong with HTTPS and security headers implemented, though there is room for improvement in privacy compliance with the addition of cookie consent mechanisms and explicit security policies. Overall, the site is professional, trustworthy, and well-optimized for performance and accessibility.

K

Kunst Raum Riehen

kunstraumriehen.ch

70

Kunst Raum Riehen is a publicly funded cultural institution serving as the official exhibition space for contemporary art in the municipality of Riehen, Switzerland. The website provides comprehensive information about current and upcoming exhibitions, events, and art mediation activities, targeting a general audience interested in culture and the arts. The institution operates with free public access and maintains active engagement through newsletters and social media channels. Technically, the website is built on Drupal 10, leveraging modern JavaScript frameworks such as Alpine.js and Splide.js for interactive components. It employs Matomo analytics with privacy-conscious settings and a cookie consent mechanism, reflecting a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. From a security perspective, the site enforces HTTPS, uses cookie consent, and avoids exposing sensitive data. However, it lacks explicit security policies and incident response contacts, and could improve by adding security headers and formal vulnerability disclosure mechanisms. Overall, the security posture is solid but could benefit from enhanced transparency and formal documentation. The domain registration aligns well with the website's municipal identity, showing no suspicious patterns and indicating high legitimacy. The website content is safe for general audiences, with no adult or questionable material. The overall risk is low, and the site demonstrates good compliance with privacy regulations such as GDPR.

B

Behinderten- und Rehabilitationssportverband Nordrhein-Westfalen e.V.

brsnw.de

53

Behinderten- und Rehabilitationssportverband Nordrhein-Westfalen e.V. (BRSNW) is a non-profit organization dedicated to enabling people with disabilities to participate in sports activities within the North Rhine-Westphalia region of Germany. The website serves as a comprehensive portal offering information about rehabilitation sports, inclusive sports programs, training, and support services for sports clubs and individuals. It holds a strong regional market position as a leading association in its sector. Technically, the website is built on the TYPO3 CMS platform, employs privacy-friendly Matomo analytics, and integrates a cookie consent mechanism compliant with GDPR. The site is well-structured, mobile-optimized, and accessible, reflecting a mature digital infrastructure. Security-wise, the site uses HTTPS and session management cookies but lacks explicit security headers and a published security policy or incident response contacts. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with room for improvement in security transparency and incident response readiness.

S

Staatskanzlei des Landes Nordrhein-Westfalen

sportland.nrw

67

Sportland.NRW is an official government platform operated by the Staatskanzlei des Landes Nordrhein-Westfalen, dedicated to promoting sports activities, events, and funding opportunities within the North Rhine-Westphalia region. The website serves a broad audience including sports fans, athletes, clubs, and event organizers, providing comprehensive information about sports in the region, upcoming events, and government initiatives. The platform maintains a strong market position as the authoritative source for sports-related information in NRW, supported by consistent branding and official government endorsements. Technically, the website is built on Drupal 10 CMS, leveraging modern frontend technologies such as Font Awesome 6 and Bootstrap components. It integrates Matomo for privacy-conscious analytics and implements a robust cookie consent mechanism compliant with GDPR. The site is mobile-optimized and accessible, with good SEO practices and clear navigation, contributing to an excellent user experience. From a security perspective, the site enforces HTTPS and employs cookie consent controls to manage tracking. While DNSSEC is not enabled, the domain registration is consistent and transparent, with no suspicious patterns detected. No critical vulnerabilities or exposed sensitive data were found in the content. However, additional security headers and a vulnerability disclosure policy could enhance the security posture. Overall, Sportland.NRW presents a trustworthy, professional, and well-maintained digital presence for government sports promotion. The risk profile is low, with strong compliance to privacy regulations and good technical implementation. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing a security.txt file to further improve security and transparency.

R

Rheinischer Sparkassen- und Giroverband

rsgv.de

48

The Rheinischer Sparkassen- und Giroverband (RSGV) is a regional financial association based in Düsseldorf, Germany, representing 27 Sparkassen in the Rheinland region. It provides advisory services and represents the interests of its member savings banks, aligning with the Deutscher Sparkassen- und Giroverband. The website reflects a professional and consistent brand image, targeting financial institutions and the public. The business model focuses on regional financial collaboration and policy coordination. Technically, the site is built on TYPO3 CMS, uses Matomo for analytics, and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is solid with HTTPS enforced and no exposed sensitive data, though explicit security policies and incident response contacts are absent. WHOIS data confirms domain legitimacy and consistency with the organization's claims. Overall, the site is trustworthy and well-maintained, supporting the organization's credibility and digital presence.

H

Hessischer Turnverband e.V.

htv-online.de

62

Hessischer Turnverband e.V. (HTV) is a regional non-profit sports federation dedicated to gymnastics and related sports in Hessen, Germany. The organization provides a broad range of services including competitions, training and certification for trainers and volunteers, club consulting, and events. The website serves as an information hub for members, clubs, and sports enthusiasts, emphasizing education, child welfare, and community engagement. HTV holds a strong market position as the authoritative body for turn sports in Hessen, supported by partnerships with related organizations and events. Technically, the website is built on TYPO3 CMS with a modern frontend leveraging Bootstrap and jQuery. It employs Cookiebot for GDPR-compliant cookie consent management and Matomo for privacy-respecting analytics. The site is hosted on reliable infrastructure with good mobile optimization and accessibility features. SEO and metadata are well implemented, supporting discoverability and user experience. From a security perspective, the site enforces HTTPS and uses privacy-conscious analytics settings. While some standard security headers are not explicitly confirmed, no critical vulnerabilities or exposed sensitive data were detected. The privacy policy and cookie consent mechanisms are comprehensive and transparent, with clear contact details including a data protection officer. However, no explicit security policy or incident response information is published. Overall, HTV's website demonstrates a mature digital presence with strong compliance to privacy regulations and a solid security posture. The site effectively supports its business goals and community engagement while maintaining user trust. Strategic improvements in security headers and updating legacy libraries could further enhance its security and compliance standing.

L

Landessportbund Berlin

lsb-berlin.net

44

Landessportbund Berlin is a well-established non-profit organization dedicated to promoting and supporting sports activities and clubs in Berlin. The website serves as a comprehensive portal offering information on funding, training, programs, and child protection initiatives, targeting sports clubs, athletes, and the general public interested in sports. The organization holds a strong market position as a key regional sports umbrella body with extensive partnerships and community engagement. Technically, the website is built on TYPO3 CMS with modern frameworks like Bootstrap and Font Awesome, hosted by Claranet. It incorporates accessibility tools such as eyeAble and uses Matomo for privacy-conscious analytics. The site is mobile-optimized, well-structured, and performs moderately well, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR. While some security headers are not explicitly visible in the provided content, no critical vulnerabilities or exposed sensitive data were detected. The absence of a published vulnerability disclosure or incident response contacts suggests areas for improvement. Overall, the website is trustworthy, professional, and compliant with privacy regulations, presenting minimal risk. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing explicit incident response contacts to further strengthen security posture and trust.

L

Landessportbund Berlin e.V.

familiensportfest-berlin.de

42

The website familiensportfest-berlin.de represents the Landessportbund Berlin e.V., promoting the Familiensportfest Berlin, a family-oriented sports festival held across various districts in Berlin. The event aims to engage families and local communities in diverse sports activities, fostering health, inclusion, and community spirit. The organization holds a strong regional presence with partnerships across Berlin's sports federations and clubs. Technically, the site is built on TYPO3 CMS with modern frontend frameworks like Bootstrap and Font Awesome, integrating accessibility tools and Matomo analytics for privacy-conscious user tracking. Security posture is solid with HTTPS and some privacy measures, though explicit security headers and policies are absent. Contact information is comprehensive, supporting business credibility. Overall, the site is professional, accessible, and trustworthy, serving its community-focused mission effectively.

S

Sportjugend Berlin

sportjugend-berlin.de

46

Sportjugend Berlin is a well-established youth sports organization affiliated with the Landessportbund Berlin, focusing on youth social work, educational programs, youth travel, volunteer services, and youth engagement within Berlin. The organization targets youth, sports clubs, volunteers, educators, and families, providing a broad range of community and sports-related services. The website reflects a professional and consistent brand image, with clear contact information and a strong social media presence. Technically, the website is built on TYPO3 CMS with modern frontend technologies including Bootstrap 5 and Font Awesome 6. It is hosted on Microsoft Online infrastructure and incorporates accessibility tools such as eyeAble, demonstrating a commitment to inclusive design. The site performs moderately well with good mobile optimization and SEO practices. From a security perspective, the site uses HTTPS with a good SSL configuration and disables cookies in Matomo analytics to enhance privacy. However, it lacks some security headers and does not publish a security policy or incident response contacts, which are areas for improvement. Privacy compliance is generally good with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a minor gap. Overall, the website is trustworthy, professional, and serves its community effectively. Strategic improvements in security policies and privacy consent mechanisms would further strengthen its posture.