Security Directory

S

Sparkassen- und Giroverband Hessen-Thüringen (SGVHT)

finanzen-mit-daniel-jung.de

47

The website 'finanzen-mit-daniel-jung.de' is an educational platform focused on financial literacy, primarily targeting students and educators in the Hessen and Thüringen regions of Germany. It is operated under the auspices of the Sparkassen- und Giroverband Hessen-Thüringen, a reputable financial association. The site offers a series of well-structured, easy-to-understand videos and learning materials to enhance financial knowledge. The partnership with Sparkassen and the inclusion of the Sparkassen-SchulService platform reinforce its credibility and regional relevance. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Tag Manager and Matomo for analytics, alongside a GDPR-compliant cookie consent mechanism. The site is hosted on servers indicated by the nameservers 'your-server.de' and related domains, suggesting a professional hosting environment. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some improvements in accessibility and security headers could be made. From a security perspective, the site uses HTTPS with strong SSL configuration and implements cookie consent for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and terms of service are comprehensive and clearly presented, with a designated data protection officer contact provided. The site does not employ a vulnerability disclosure policy, which could be considered for future enhancement. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. It effectively serves its educational mission with professional content and transparent governance. Strategic recommendations include enhancing HTTP security headers, formalizing a vulnerability disclosure process, and improving accessibility features to further strengthen the site's security and user experience.

S

Stiftung Edith Maryon

maryon.ch

42

Stiftung Edith Maryon is a Swiss non-profit foundation focused on securing land and real estate for social, cultural, educational, and agricultural projects. The organization operates primarily in Switzerland and offers services including project development, legacy consulting, housing assistance, and cultural promotion. Their market position is niche, targeting community-oriented and socially responsible real estate initiatives. The website is built on WordPress with a modern tech stack including Yoast SEO and Matomo analytics, reflecting a moderate to good level of digital maturity. Security posture is adequate with HTTPS and secure forms, but could be improved by adding security headers and a cookie consent mechanism. Overall, the site is professional, trustworthy, and compliant with GDPR, though some privacy compliance aspects could be enhanced.

À

À la lyonnaise

alalyonnaise.fr

61

À la lyonnaise is a French lifestyle media company focusing on the city of Lyon, offering content related to food, shopping, cultural discoveries, and leisure activities. The website serves as a digital platform complementing their print magazine editions, targeting residents and visitors interested in Lyon's local culture and lifestyle. Their market position is that of a niche local media outlet with a consistent brand presence and active social media engagement. Technically, the website employs modern JavaScript libraries, Matomo and Google Analytics for tracking, and uses HTTPS with cookie consent mechanisms, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and cookie consent but lacks explicit security headers and public security policies, suggesting room for improvement in security posture. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though it could enhance transparency around terms of service and incident response. Strategic recommendations include implementing security headers, publishing security policies, and improving SEO and accessibility compliance.

Z

Zammad

zammad.org

69

Zammad.org is the community website for Zammad, an open source web-based help desk and ticketing system. The site provides downloads for multiple operating systems and promotes free self-hosted installation. The business model centers on open source community engagement with a sister commercial site (zammad.com) for extended offerings. The website is well-structured, with clear navigation and professional design, targeting organizations seeking open source support solutions. Technically, the site uses modern JavaScript libraries such as jQuery and Prism.js, and employs Matomo for privacy-focused analytics. The site is hosted under a reputable registrar and uses HTTPS with a clientTransferProhibited domain status, indicating good domain security practices. However, the site lacks visible security headers and cookie consent mechanisms, which are recommended for enhanced security and compliance. No contact emails or phone numbers are listed on the homepage, which may impact user trust and support accessibility.

C

Centro para el Desarrollo Tecnológico Industrial (CDTI)

cdti.es

63

CDTI is a Spanish government agency dedicated to promoting technological development and innovation among Spanish companies. It acts as a key national funding and support body for R&D projects, international cooperation, and innovation financing. The website reflects a mature digital presence with comprehensive content targeting entrepreneurs, companies, and research entities in Spain. The site is well-structured, professionally designed, and provides clear navigation and access to services and information. Technically, it is built on Drupal 9 with modern libraries and includes privacy-conscious analytics via Matomo and a consent manager (Klaro). Security posture is strong with HTTPS, security headers, and no evident vulnerabilities. Privacy compliance is well addressed with clear policies and consent mechanisms. Business credibility is high, supported by official domain registration and alignment with government entities. Overall, the site is trustworthy and serves its public mission effectively.

Burgergemeinde Bern is a municipal government entity serving the city and canton of Bern, Switzerland. It provides a broad range of social, cultural, environmental, educational, and scientific services aimed at improving the quality of life for its residents. The website reflects a well-established public institution with clear communication of its mission and services, supported by active social media channels and event listings. Technically, the site is built on the Plone CMS platform, leveraging modern JavaScript libraries and a responsive design that supports good user experience across devices. Security posture is solid with HTTPS enforced and CSRF protections in place, though some improvements in security headers and incident response transparency are recommended. Privacy compliance is good with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a notable gap. Overall, the website is professional, trustworthy, and aligned with the expectations for a government organization.

M

Ministerium für Ernährung, Ländlichen Raum und Verbraucherschutz Baden-Württemberg

efre-bw.de

62

The EFRE Baden-Württemberg website serves as the official regional government portal for the European Regional Development Fund (EFRE) in the German state of Baden-Württemberg. It provides comprehensive information on funding programs, project examples, current news, and guidance for applicants. The site targets a broad audience including citizens, businesses, and public institutions interested in regional development funding. The portal is well-positioned as a trusted government resource, supported by official branding and EU co-funding acknowledgments. Technically, the website employs a modern technology stack including jQuery, Matomo analytics, and custom CMS solutions tailored for Baden-Württemberg's government portals. It demonstrates good mobile optimization, accessibility compliance, and moderate performance. The hosting and DNS infrastructure aligns with regional academic and government networks, enhancing trustworthiness. From a security perspective, the site enforces HTTPS, uses captcha mechanisms to prevent automated abuse, and implements cookie consent in line with GDPR requirements. While no explicit security policy or incident response contacts are published, the site shows good baseline security hygiene with no visible vulnerabilities or exposed sensitive data. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include publishing a dedicated security policy, enhancing security headers, and providing incident response contacts to further strengthen trust and security maturity.

B

blue-community.ch

bluecommunity.ch

48

Blue Community is a Swiss non-profit organization dedicated to advocating for water as a human right and promoting sustainable water management practices. The website serves as a community platform for municipalities, educational institutions, technical enterprises, church communities, and companies to demonstrate responsibility locally and globally. The organization positions itself as a niche player in the environmental non-profit sector with a focus on water resource protection and international partnerships. Technically, the website is built on WordPress using modern Gutenberg blocks, enhanced with Matomo analytics and Mautic marketing automation tools. It employs a cookie consent mechanism compliant with GDPR, ensuring user privacy and transparency. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent best practices but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy and consistency with the organization's Swiss non-profit identity. Overall, the website presents a trustworthy, professional, and privacy-conscious platform with room for improvement in formal security documentation and incident response readiness.

E

Evangelisch-reformierte Kirchgemeinde Zürich

darum-kirche.ch

52

The website darum-kirche.ch represents the Evangelisch-reformierte Kirchgemeinde Zürich, a medium-sized non-profit religious organization serving the city of Zurich. It offers a broad range of spiritual, social, and cultural services aimed at fostering community, hope, and reconciliation. The site is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, it is built on WordPress with modern plugins such as Yoast SEO and Matomo Analytics, ensuring good SEO and privacy-conscious analytics. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies could be improved. The domain registration data aligns well with the organization's identity, supporting legitimacy and trustworthiness. Overall, the website effectively communicates its mission and services to its target audience while maintaining good technical and security standards.

The website reuse-rlp.de is a non-profit platform dedicated to promoting and facilitating the practice of reuse in the construction sector within Rheinland-Pfalz, Germany. It targets professionals and stakeholders interested in sustainable construction and reuse practices. The platform provides information about actors and buildings involved in reuse, as well as specialist information relevant to the sector. The site is well-branded and presents content in German with a clear and consistent design. Technically, the website is built using modern technologies such as SvelteKit and employs Matomo analytics with DoNotTrack enabled, reflecting a moderate level of digital maturity and privacy awareness. The site appears to be mobile-optimized and offers a good user experience with clear navigation. However, there is a lack of visible security headers and no explicit SSL configuration data was provided, which suggests room for improvement in security hardening. From a security perspective, the site does not expose sensitive data and uses privacy-conscious analytics, but it lacks critical compliance elements such as privacy and cookie policies, contact information for incident response, and vulnerability disclosure mechanisms. The WHOIS data indicates the domain is likely affiliated with an academic or regional institution, supporting its legitimacy. Overall, the security posture is moderate but could be enhanced by implementing standard security headers, privacy documentation, and contact channels. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include adding privacy and cookie policies to improve GDPR compliance, implementing security headers to harden the site, providing clear contact information for security incidents, and establishing a vulnerability disclosure policy. These steps will enhance trust, compliance, and security culture, supporting the platform's mission and user confidence.

The eMuseum website serves as the digital archive platform for the Museum für Gestaltung Zürich and the Archive of the Zurich University of the Arts (ZHdK). It provides extensive access to a large collection of design and art objects, positioning itself as the largest Swiss online database in this domain. The platform targets researchers, curators, designers, collectors, and the general public interested in design and art history. The business model is non-profit, focusing on cultural preservation and digital access rather than commercial activities. Technically, the website is built on a custom CMS leveraging the Apache Tapestry framework, with frontend technologies including Bootstrap, jQuery, OpenLayers, and Font Awesome. It employs Matomo for analytics and AddToAny for social sharing. The site is mobile-optimized with moderate performance and basic accessibility features. SEO optimization is basic, with room for improvement in structured data and meta tags. From a security perspective, the site enforces HTTPS and uses secure form tokens, but lacks several security headers and published policies such as privacy, cookie, and incident response. No vulnerabilities or malicious content were detected. The WHOIS data aligns well with the institutional identity, confirming legitimacy and trustworthiness. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance, improved security headers, and more transparent contact and incident response information to strengthen user trust and regulatory adherence.

S

Sparkassen-Finanzgruppe Hessen-Thüringen

sfg-ht.de

66

The Sparkassen-Finanzgruppe Hessen-Thüringen website represents a large regional financial services group operating in Germany's Hessen and Thüringen regions. The group offers a broad range of financial products and services including banking, insurance, building finance, and asset accumulation, supported by a workforce of over 19,900 employees. The website is professionally designed, consistent in branding, and targets a general audience including customers and potential employees. Technically, the site is built on Concrete CMS and leverages modern JavaScript libraries such as jQuery and Swiper.js, with media assets hosted on Cloudinary. It integrates Matomo for analytics and cookiefirst.com for GDPR-compliant cookie consent management, along with accessibility enhancements via eyeAble.js. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers and incident response information are absent. No privacy policy or terms of service pages were detected in the provided content, which is a compliance gap. Overall, the site is trustworthy, safe, and well-positioned in its market segment.

B

Bundesagentur für Arbeit

arbeitsagentur.de

73

The Bundesagentur für Arbeit website serves as the official digital portal for Germany's federal employment agency, providing comprehensive services including job search, unemployment benefits, career counseling, and support for families, people with disabilities, and immigrants. The site is well-positioned as a national government entity with a large enterprise scale, offering a broad range of public services to citizens and businesses alike. The content is professionally curated, accessible, and highly relevant to its target audience. Technically, the website employs modern web technologies such as React and Next.js, ensuring fast performance and excellent mobile optimization. The use of Matomo analytics reflects a commitment to privacy-conscious user tracking. The site is hosted on German infrastructure with secure HTTPS enforcement and demonstrates good SEO and accessibility practices. From a security perspective, the site benefits from ISO 27001 certification, indicating a mature information security management system. Security best practices are observed, including secure communication channels and cookie consent mechanisms. However, explicit incident response and vulnerability disclosure policies are not publicly available, representing an area for improvement. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include publishing clear security incident response information, adding a security.txt file, and enhancing transparency around security contacts to further strengthen trust and security culture.

V

Verband der Metall- und Elektro-Unternehmen Hessen (HESSENMETALL)

hessenmetall.de

51

HESSENMETALL is a prominent industry association representing employers in the metal, electrical, and IT sectors in Hessen, Germany. The organization provides comprehensive services including labor relations, legal advice, workforce development, digital transformation support, and innovation facilitation. It holds a strong market position as a leading regional network for over 200,000 employment relationships in the region's M+E industry. The website reflects a professional and well-structured digital presence with member portals and extensive content tailored to its audience of employers and industry stakeholders. Technically, the site is built on the Contao CMS platform, utilizing modern JavaScript libraries such as jQuery and Swiper.js, and integrates analytics tools like Matomo and Google Tag Manager. Accessibility features are enhanced by the inclusion of eyeAble tools. The site is mobile-optimized and demonstrates good SEO practices with proper metadata and structured navigation. From a security perspective, the website enforces HTTPS and employs secure login forms with CSRF tokens. While explicit security headers are not fully visible in the HTML, the overall SSL configuration is good. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place, aligning with GDPR requirements. Overall, the website presents a low-risk profile with a high degree of professionalism and trustworthiness. Strategic recommendations include enhancing security headers, increasing transparency around incident response contacts, and maintaining up-to-date CMS and third-party components to mitigate potential vulnerabilities.

C

corosys technologies GmbH

corosys.com

45

corosys technologies GmbH is a German-based industrial company specializing in the development and delivery of complete process systems and engineering plants for the beverage, chemical, pharmaceutical, and food industries. The company operates through multiple subsidiaries, each focusing on specific sectors such as beverage technology, chemical and pharma technology, food technology, and filtration consulting. Their market position is that of a specialized B2B engineering and manufacturing provider with a strong focus on process technology solutions. The website reflects a professional and consistent brand image targeting industrial clients in Germany and possibly broader European markets. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, and FontAwesome, with analytics powered by Matomo and security features such as Cloudflare Turnstile captcha for form protection. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms, indicating a mature digital presence. Security posture is adequate with best practices observed in form protection and privacy compliance, though there is room for improvement in publishing explicit security policies and enhancing HTTP security headers. The WHOIS data is notably missing or inaccessible, which raises questions about domain registration legitimacy; however, the website content and contact information appear legitimate and professional. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with a moderate security posture and good business credibility.

G

GROOVE im GOP Artistical-Theater Essen

groove-show.de

50

The website groove-show.de serves as an informational and ticket reservation platform for the GROOVE Artistical-Theater in Essen, Germany. It targets general audiences interested in live theatrical performances, positioning itself as a niche entertainment provider. The site is built using the Framer platform and hosted on Hetzner servers, employing modern web technologies including Google Tag Manager and Matomo for analytics. While the site demonstrates good design quality, mobile optimization, and SEO practices, it lacks critical compliance documents such as privacy and terms of service policies. Security posture is moderate with HTTPS enabled but missing key security headers and incident response information. Overall, the site is functional and professional but would benefit from enhanced compliance and security measures.

H

HACON

hafas.de

65

HACON is a medium-sized company specializing in digital mobility solutions, offering platforms and systems for Mobility as a Service, ticketing, operator business products, and transport planning. As a part of Siemens Mobility since 2017, HACON holds a strong market position in the transportation technology sector. The website reflects a professional and consistent brand image, targeting mobility service providers and transport operators. Technically, the site is built on TYPO3 CMS, employs modern JavaScript, and integrates Cookiebot for GDPR-compliant cookie consent, alongside Matomo for privacy-friendly analytics. Security posture is solid with HTTPS and consent mechanisms, though security headers and explicit incident response policies are absent. Overall, the site is trustworthy, well-structured, and compliant with privacy regulations, supporting HACON's business credibility and digital maturity.

B

Bundesstadt Bonn

bonn-macht-mit.de

55

Bonn-macht-mit.de is the official citizen participation portal for the city of Bonn, Germany. It provides a platform for residents to engage in local government decisions, participate in surveys, and stay informed about events and initiatives. The website is well-branded with official city logos and offers comprehensive information about ongoing participatory projects, targeting a broad audience including youth. Technically, the site is built on Drupal 10, uses Matomo for privacy-respecting analytics, and incorporates modern web technologies such as Font Awesome and CookiesJSR for cookie management. The site is mobile-optimized and accessible, with clear navigation and professional design. Security-wise, the site enforces HTTPS, respects Do Not Track settings, and implements cookie consent mechanisms, though it lacks some advanced security headers and a published security policy. Overall, the domain registration data aligns well with the website content and hosting, indicating legitimacy and trustworthiness.

blaueQuelle Kommunikationsgesellschaft mbH is a small, professional advertising agency based in Germany, serving primarily the Göttingen and Kassel regions. The company offers a comprehensive range of services including web design, SEO, Google Ads management, print advertising, corporate design, and marketing workshops. Their market position is strengthened by memberships in local business organizations, indicating a trusted regional presence. The website reflects a clear business focus on helping clients improve their online visibility and branding through integrated marketing solutions. Technically, the website is built on the ProcessWire CMS platform and utilizes Matomo analytics with privacy-conscious settings such as disabled cookies and Do Not Track enabled. The site is mobile-optimized and demonstrates good SEO practices with proper meta tags and structured navigation. Hosting is managed via INWX, a reputable provider, and HTTPS is enforced, ensuring secure communications. From a security perspective, the site benefits from HTTPS and privacy-aware analytics but lacks visible security headers and a cookie consent mechanism, which are recommended for GDPR compliance. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, showing a consistent and legitimate domain registration without privacy protection, appropriate for this business type. Overall, the website presents a professional and trustworthy digital presence with moderate technical sophistication and a good security posture. Strategic improvements in security headers and cookie consent would enhance compliance and user trust further.

A

Allgemeiner Deutscher Fahrrad-Club e. V. (ADFC)

adfc.de

65

The Allgemeiner Deutscher Fahrrad-Club e. V. (ADFC) operates as a large non-profit organization advocating for cycling and sustainable transportation in Germany. With over 240,000 members, it holds a strong market position as the world's largest cycling interest group. The website serves as a comprehensive platform offering membership services, advocacy information, event announcements, and educational content focused on cycling safety and infrastructure. The target audience includes cyclists, policymakers, and environmentally conscious individuals in Germany. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including Matomo analytics and Facebook Pixel for tracking with user consent. The site is well-optimized for mobile devices, accessible, and SEO-friendly, reflecting a mature digital infrastructure. The presence of cookie consent mechanisms and a detailed privacy policy indicates good privacy compliance. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent for tracking scripts. However, explicit security headers like Content-Security-Policy are not evident, and no formal security policy or incident response contacts are published. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional, trustworthy, and well-maintained, supporting the organization's mission effectively. The domain WHOIS data is minimal but consistent with the organization's legitimacy. Strategic recommendations include enhancing security headers, publishing a security policy, and considering a vulnerability disclosure program to further strengthen security posture.

L

Landessportbund Berlin

lsb-berlin.de

44

Landessportbund Berlin is a well-established non-profit organization dedicated to promoting sports and community engagement within Berlin. The website serves as a comprehensive portal offering information on sports programs, funding, training, and child protection initiatives. It targets sports clubs, athletes, and the general Berlin population, positioning itself as a key regional sports authority. The site is professionally designed with clear navigation and strong branding consistency, reflecting its authoritative market position. Technically, the website is built on TYPO3 CMS with modern frameworks like Bootstrap and integrates accessibility tools such as eyeAble. Hosting is provided by Claranet, ensuring reliable infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices. Analytics are handled via Matomo with privacy-conscious configurations, including cookie consent and cookie disabling options. From a security perspective, the site enforces HTTPS, employs standard security headers, and avoids exposing sensitive data. However, it lacks explicit incident response contacts and a security.txt file, which are recommended for enhanced security posture. No vulnerabilities or suspicious patterns were detected. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanisms in place. Overall, the website presents a low-risk profile with a solid security foundation and good compliance practices. Strategic improvements include publishing incident response information and security.txt, enhancing transparency on data retention, and continuous monitoring of third-party scripts.

H

Hamburger Sportbund e.V.

hamburger-sportbund.de

41

Hamburger Sportbund e.V. is a prominent non-profit organization serving as the largest sports community in Hamburg, Germany. The website provides comprehensive information about their services including education, club consulting, seminars, and community engagement. Their target audience primarily includes sports clubs, associations, and sports enthusiasts within Hamburg. The organization maintains a professional online presence with clear branding and consistent messaging. Technically, the website is built on Joomla CMS with modern UIkit framework and integrates privacy-conscious tools like Matomo analytics and a robust cookie consent mechanism. The site is mobile-optimized and accessible, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and privacy compliance, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is trustworthy, well-maintained, and aligned with GDPR requirements.

S

Sozialverband Deutschland e.V.

sovd-kaufhaus.de

55

The Sozialverband Deutschland e.V. (SoVD) Landesverband Niedersachsen operates as a regional non-profit social advocacy organization focused on informing and supporting citizens regarding social policy and social law in Germany. Their website serves as an informational portal with services including consultation, publications, and digital tools. The SoVD Shop is currently under maintenance, indicating ongoing updates to their e-commerce capabilities. The organization maintains a solid market position within the non-profit sector in Germany, targeting a broad audience interested in social welfare and policy. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as Bootstrap, jQuery, and various JavaScript libraries for enhanced user experience and accessibility. The site is mobile-optimized and includes a cookie consent mechanism compliant with GDPR. Analytics are handled via Matomo, and user interaction is supported by the Userlike chatbot. Hosting appears stable with domain nameservers consistent with the organization's infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks explicit security headers and published security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear policies and consent mechanisms. However, the absence of a terms of service page and vulnerability disclosure policy suggests areas for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations, though it could benefit from enhanced security documentation and transparency. The current AI score reflects a good balance of content quality, technical implementation, security posture, and privacy compliance, with room for strategic enhancements.

S

Sozialverband Deutschland e.V.

sovd-verwaltung.de

55

The website www.sovd-nds.de represents the Landesverband Niedersachsen branch of the Sozialverband Deutschland e.V., a non-profit social advocacy organization focused on social welfare, rights, and support services in Lower Saxony, Germany. The site provides comprehensive information about social counseling, campaigns, digital tools, and membership services, targeting members and interested individuals in the social sector. The organization maintains a clear market position as a regional branch of a national social association, offering valuable services such as online calculators, social policy updates, and member support. Technically, the website is built on TYPO3 CMS with modern frameworks like Bootstrap and jQuery, ensuring good mobile optimization, accessibility, and SEO. The site uses HTTPS and implements a detailed cookie consent mechanism with categories for essential, marketing, and chatbot cookies, reflecting good privacy compliance. Security posture is solid with no visible vulnerabilities or exposed sensitive data, though explicit security policies and vulnerability disclosure mechanisms are absent. Overall, the website is professional, trustworthy, and well-maintained, with active social media presence and partner integrations. Recommendations include publishing explicit security and incident response policies and enhancing security headers for improved protection.

T

Team Deutschland

teamdeutschland.de

43

Team Deutschland operates an official website dedicated to supporting and promoting German Olympic athletes and events. The platform provides news, event information, athlete profiles, multimedia content including podcasts and videos, and an online merchandise shop. It is supported by the German Federal Ministry of the Interior and the German Olympic Sports Confederation, indicating strong governmental and institutional backing. The website targets sports fans, supporters, and the general public interested in Olympic sports and Team Deutschland activities. Technically, the site is built on TYPO3 CMS and uses modern web technologies such as Bootstrap Icons, Swiper.js, and Matomo Analytics, ensuring a responsive and engaging user experience. Privacy and cookie policies are comprehensive and GDPR compliant, with explicit consent mechanisms implemented. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit incident response contacts are missing. Overall, the site is professional, trustworthy, and well-branded, serving as a reliable information and engagement hub for Olympic sports in Germany.

W

Wägelwiesen Alters- und Pflegezentrum AG

waegelwiesen.ch

52

Wägelwiesen Alters- und Pflegezentrum AG is a regional healthcare provider specializing in eldercare services including long-term care, dementia care, and day/night care centers in Wallisellen, Switzerland. The organization also offers housing, bistro hospitality services, and employment opportunities, positioning itself as a comprehensive community care center. The website is professionally designed, content-rich, and targets elderly residents, their families, and healthcare professionals. The business model focuses on providing quality care and community engagement with a strong local presence. Technically, the website is built on the Contao CMS platform, utilizing modern JavaScript libraries such as jQuery, slick.js, and typed.js, with Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced and cookie consent implemented, but lacks some advanced security headers and explicit incident response policies. Security evaluation shows no critical vulnerabilities or exposed sensitive data. The use of privacy protection in WHOIS is justified given the healthcare nature of the business. The site demonstrates compliance with GDPR through privacy and cookie policies. Overall, the website is trustworthy, professional, and secure, suitable for its healthcare audience. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and improving visible anti-bot measures on forms to further strengthen security and compliance.

N

NOVA Studios

novastudios.no

62

NOVA Studios is a Norwegian company specializing in centrally located meeting and conference venues, strategically positioned between Oslo and Oslo Lufthavn Gardermoen. The company offers modern facilities, quality catering, and flexible event solutions, targeting corporate clients and event organizers. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the site is built on WordPress with Elementor, integrating modern tools such as Vimeo for video content, Google reCAPTCHA for bot protection, and Matomo for analytics. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. Privacy compliance is strong with a comprehensive GDPR-compliant privacy policy and cookie management. Overall, the domain registration and website content are consistent and legitimate, supporting a trustworthy business presence.

N

NOVA Spektrum

novatalks.no

62

NOVA Talks is a Norwegian event platform organized by NOVA Spektrum, focusing on societal issues, leadership, and networking. The website presents upcoming events with notable speakers and provides ticket purchasing options. The platform targets professionals and leaders in the Lillestrøm region, offering inspiration and insight through curated talks. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and analytics tools like Matomo and Microsoft Clarity. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-positioned for its niche event market.

N

NOVA Spektrum

novaspektrumdesign.no

59

NOVA Spektrum is a Norwegian company specializing in exhibition architecture and stand design, providing world-class exhibition solutions and project management services. Established in 2019, the company positions itself as a leading professional environment in Norway for exhibition and stand solutions, targeting businesses and organizations requiring expert exhibition services. The website is built on WordPress using Elementor, indicating a modern and flexible digital infrastructure. The site includes privacy and cookie policies with a consent mechanism, reflecting good GDPR compliance. Security posture is solid with HTTPS enabled and no exposed sensitive data, though some security headers could be improved. Overall, the website is professional, well-branded, and trustworthy, with moderate analytics tracking and a clear business focus.

N

Nor-Shipping

nor-shipping.com

64

Nor-Shipping is a well-established maritime exhibition organizer with a domain registered since 2003, indicating a long-standing presence in the maritime industry. The website focuses on promoting the 2027 event, providing exhibitor and ticketing information, and leveraging modern web technologies such as WordPress with Elementor, Cloudflare CDN, and multiple analytics and tracking pixels. The technical infrastructure is solid, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and domain transfer protections, but could be improved by enabling DNSSEC and publishing explicit security policies. Privacy compliance is partial, with a cookie policy and consent mechanism present but no visible privacy or terms of service pages. Overall, the website is professional and trustworthy, targeting maritime industry professionals and exhibitors.

L

Lillestrøm Lobby

lillestromlobby.no

53

Lillestrøm Lobby is a hospitality venue established in 2022 in Norway, offering modern cuisine with a focus on local community engagement and sustainability. The business operates as a restaurant and event space, providing services such as dining, conferences, private parties, and gift cards. The website is built on WordPress using Elementor, featuring a modern design with good mobile optimization and clear navigation. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security policies and incident response contacts are absent. Analytics tools including Matomo, Google Analytics, and Microsoft Clarity are used with proper consent management. Overall, the website reflects a professional and trustworthy local hospitality business with consistent branding and good privacy compliance.

N

NorSIS

norsis.no

72

NorSIS is a Norwegian non-profit organization dedicated to information security awareness and support, aiming to ensure a safe digital everyday life for all. The website positions NorSIS as a national center for information security, providing threat information, preventive advice, and assistance to victims of online crime. Technically, the site is built on WordPress with modern tools such as Yoast SEO, Matomo analytics for privacy-conscious tracking, and Cookiebot for GDPR-compliant cookie consent. The security posture is solid with HTTPS enforced and privacy-friendly analytics, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-optimized for its audience, with no blocking or WAF interference detected.

S

Sparebankstiftelsen DNB

sparebankstiftelsen.no

59

Sparebankstiftelsen DNB is a well-established philanthropic foundation in Norway, founded in 2002, that supports a wide range of community and cultural initiatives primarily benefiting children and youth. The foundation leverages dividends from its significant shareholding in DNB to fund grants and projects across art, culture, sports, nature, and local community development. The website reflects a mature digital presence with clear navigation, multilingual support, and a focus on transparency through comprehensive privacy and cookie policies. Technically, the site is built on WordPress with modern plugins and frameworks such as React and Matomo Analytics, indicating a commitment to privacy and user experience. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is professional, trustworthy, and aligned with GDPR requirements.

S

Store norske leksikon

snl.no

61

Store norske leksikon is a well-established Norwegian online encyclopedia owned by major Norwegian universities and non-profit organizations. It offers a comprehensive collection of over 300,000 expert-written articles and serves as Norway's largest research dissemination platform with millions of monthly users. The website is professionally designed, mobile-optimized, and provides rich, relevant content for a general audience. Technically, the site uses modern web technologies including asynchronous JavaScript, web fonts, and analytics tools such as Matomo and Google Tag Manager, ensuring good performance and SEO optimization. Security posture is strong with HTTPS enforcement and CSRF protections, though formal security policies and incident response contacts are not publicly disclosed. Privacy and cookie policies are present and GDPR compliant. Overall, the site is trustworthy, safe, and authoritative in its domain.

N

NOVA Spektrum

novaspektrum.no

59

NOVA Spektrum is a Norwegian event venue and exhibition space established in 2019, offering services such as hosting exhibitions, concerts, and other events. The website targets a general audience including visitors, exhibitors, and organizers, positioning itself as a regional hub for events in Norway. The business model revolves around venue rental and event facilitation, supported by a network of related domains indicating a broader ecosystem of services. Technically, the website is built on WordPress using Elementor, with integrations such as Matomo for analytics and Complianz for GDPR compliance, reflecting a moderate level of digital maturity. The site is mobile optimized and features a cookie consent mechanism, demonstrating awareness of privacy regulations. Security posture is generally good with HTTPS enforced and no obvious vulnerabilities detected, though the absence of security headers and explicit incident response contacts suggests room for improvement. Overall, the website is professional and trustworthy, with clear branding and consistent content quality. Strategic recommendations include enhancing security headers, publishing terms of service, and providing clearer contact information to improve user trust and compliance.

T

teuto.net Netzdienste GmbH

teuto.net

72

teuto.net Netzdienste GmbH is a German-based IT service provider specializing in Kubernetes, cloud, and hosting solutions. Founded in 1996, the company offers a broad portfolio including managed Kubernetes, bare-metal hosting, private and public cloud services, consulting, and data science platforms. Their market position is that of a specialized regional provider with a strong focus on modern container orchestration and cloud infrastructure technologies. The website reflects a professional and consistent brand image targeting businesses and IT professionals seeking advanced infrastructure solutions. Technically, the website is built on WordPress with the Divi theme, leveraging modern SEO and analytics tools such as Yoast SEO, Matomo, and Google Tag Manager. Hosting and DNS are managed via InterNetX GmbH and Cloudflare respectively, ensuring good performance and security. The site is mobile-optimized and accessible with good SEO practices. From a security perspective, the site uses HTTPS with a good SSL configuration and employs clientTransferProhibited status on the domain to prevent unauthorized transfers. While security headers are not explicitly detected, the site uses reCAPTCHA and cookie consent mechanisms, indicating awareness of security and privacy best practices. No critical vulnerabilities or exposed sensitive data were found. However, enabling DNSSEC and additional security headers would enhance the security posture. Overall, the website and domain demonstrate a high level of trustworthiness and professionalism. The business is compliant with GDPR, provides clear contact information, and maintains transparency in domain registration. The risk profile is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing DNS security, publishing a formal security policy, and continuous monitoring of third-party components.

G

Gemeinde Schöftland

schoeftland.ch

59

The website www.schoeftland.ch serves as the official digital presence of the municipality of Schöftland in Switzerland. It provides residents and visitors with comprehensive information about the community, local politics, administration, events, and public services. The site features an online service portal (Online-Schalter), event calendars, news updates, and contact information, positioning itself as a key resource for local governance and citizen engagement. Technically, the website is built on the i-web CMS platform, utilizing modern web technologies such as ES modules, responsive CSS, and asynchronous JavaScript loading. It integrates Matomo analytics for visitor tracking while maintaining GDPR compliance through clear privacy and cookie policies. The site is mobile-optimized and accessible, with a clear navigation structure and professional design. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks explicit security headers and does not publicly disclose a security policy or incident response contacts. No vulnerabilities or suspicious domains were detected, and the WHOIS data aligns well with the municipal identity, indicating high legitimacy. Overall, the website demonstrates a solid balance of usability, compliance, and security suitable for a local government entity. Strategic improvements in security headers and incident response transparency would further enhance its security posture and trustworthiness.

H

Hotel Zofingen

hotel-zofingen.ch

61

Hotel Zofingen is a small hospitality business located in Switzerland, offering hotel accommodation, restaurant services, and event hosting. The website reflects a well-established regional hotel with a strong focus on guest experience and local partnerships. Technically, the site is built on WordPress with modern plugins and analytics tools, providing a responsive and user-friendly interface. Security measures include HTTPS, reCAPTCHA on forms, and a comprehensive cookie consent mechanism, though some security headers could be improved. Overall, the site demonstrates good digital maturity and compliance with privacy regulations. The business is credible with clear contact information and trust indicators such as Swiss Quality Hotel certification.

A

Agenda Culturel

agendaculturel.fr

61

Agenda Culturel is a French media platform specializing in aggregating cultural event information such as concerts, theater, festivals, and exhibitions across France. It serves both general audiences seeking cultural outings and professionals in the cultural sector who manage event programming. The platform offers a comprehensive event listing service, a professional announcement space, and a cultural news magazine, supported by a mobile application. Technically, the website leverages modern frameworks including Symfony UX and Stimulus JS, with integration of analytics and advertising services such as Matomo and Google Adsense. The site demonstrates good design, mobile optimization, and accessibility, with a strong focus on GDPR compliance through an embedded consent management platform. Security posture is solid with HTTPS and security headers in place, though explicit security policies and incident response contacts are not publicly disclosed. WHOIS data is unavailable, which slightly impacts trust but the overall professional presentation and compliance measures support legitimacy. Strategic recommendations include publishing security and incident response policies and enhancing direct contact information availability.

E

Einwohnerverein Gottlieben

einwohnerverein-gottlieben.ch

53

Einwohnerverein Gottlieben is a local non-profit community association based in Gottlieben, Switzerland. The website serves as an information hub for residents, providing news, event calendars, gardening group details, and general information about the community. The site targets local residents and community members, focusing on engagement and information dissemination. The business model is typical for a community association, relying on volunteer or membership support rather than commercial revenue streams. The website is well-branded and consistent with the organization's identity.

B

Bad Egelsee

bad-egelsee.ch

60

Bad Egelsee is a public family and sports swimming facility located in Kreuzlingen, Switzerland. It offers a variety of aquatic and wellness services including a 25-meter sport pool, family pools, sauna, and steam baths, targeting families, sports enthusiasts, and health-conscious visitors. The website is professionally designed with clear navigation and content relevant to its audience. Technically, the site uses modern JavaScript frameworks such as Alpine.js and integrates Matomo for privacy-focused analytics. The site is mobile optimized and includes a cookie consent mechanism, reflecting good privacy practices. Security posture is solid with HTTPS enforced, though it lacks some advanced security headers and formal security policies. Overall, the domain registration uses privacy protection, which is justified for this type of public leisure business. The site is trustworthy and well-maintained, with no indications of malicious activity or content blocking.

C

Convergence Media

convergencemedia.fr

57

Convergence Media is a French digital communication and marketing agency specializing in serving SMEs, artisans, independents, and liberal professions. With over 15 years of experience, the agency offers a comprehensive suite of services including digital strategy, SEO, social media management, editorial content, video production, and print media. Their market position is that of a trusted, client-focused agency with a multi-lever approach to enhancing client visibility and brand reputation. The website reflects a professional and consistent brand image with clear service offerings and client testimonials, indicating a solid reputation in their sector. Technically, the website is built on CMS Made Simple and leverages modern web technologies such as Bootstrap, jQuery, Vimeo API, and Matomo analytics. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is strong with HTTPS enforced and secure form handling, though some security headers are missing and no explicit security policy or incident response information is published. Overall, the security posture is good with no visible vulnerabilities or exposed sensitive data. Privacy compliance is mostly addressed with a clear privacy policy and GDPR references, but lacks a cookie consent mechanism. The WHOIS data is unavailable, which slightly reduces trust but the professional presentation and contact transparency mitigate concerns. Strategically, the agency should enhance security headers, implement cookie consent, and publish security and incident response policies to improve compliance and trust. Regular audits of third-party scripts and continued focus on privacy will further strengthen their security and compliance stance.

H

Holzforschung Austria - Österreichische Gesellschaft für Holzforschung

holzforschung.at

51

Holzforschung Austria is a well-established Austrian research and testing institute specializing in the wood industry. Founded in 1948, it offers comprehensive services including research and development, product testing, certification, inspection, expert reports, and knowledge transfer through seminars and publications. The organization holds multiple accreditations and certifications, positioning itself as a trusted authority in the wood sector nationally and internationally. The website is professionally designed, content-rich, and provides clear navigation and contact options, targeting industry professionals and businesses. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and uses Matomo for privacy-conscious analytics. Security practices include session management and cookie consent, though explicit security headers and incident response policies are not evident. Overall, the site demonstrates a strong business presence with good privacy compliance and moderate security posture.

E

Exodream

exodream.com

53

Exodream is a small French digital agency specializing in web development, e-commerce solutions, SEO, and digital marketing services primarily serving the Alsace region including Colmar, Mulhouse, and Strasbourg. Founded in 2011, the company positions itself as a trusted regional partner with over a decade of experience and a focus on delivering modern, performant websites and digital strategies to boost client visibility and engagement. The website is professionally designed using Joomla CMS and integrates multiple analytics tools such as Google Analytics, Matomo, and Microsoft Clarity, reflecting a mature digital infrastructure. Security posture is adequate with HTTPS enabled and domain registration stable, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is well addressed with clear cookie consent and privacy policies. Overall, the site demonstrates a high level of business credibility and technical competence with room for enhanced security policies and incident response transparency.

Rouillé Bâtiment Environnement (RBE) is a specialized provider of industrial vehicle rental services with qualified pilot drivers, operating primarily in the Occitanie region of France. The company targets professionals in construction, public works, and materials trading sectors, offering flexible rental durations and outsourced transport solutions. The website reflects a professional and regionally focused business with a clear service offering and strong ties to its sister company, Transports Rouillé & Coulon. Technically, the website is built on CMS Made Simple and leverages modern web technologies including Bootstrap, jQuery, Google Fonts, and multimedia integrations such as YouTube and Vimeo. It uses HTTPS with valid SSL certificates and includes Matomo analytics for user tracking. However, some security best practices like HTTP security headers and cookie consent mechanisms are missing or not detected. From a security perspective, the site demonstrates good practices such as secure forms with reCAPTCHA and no visible sensitive data exposure. The absence of WHOIS domain registration data is a concern, reducing trust in domain legitimacy. No WAF or blocking mechanisms are detected, and the site is fully accessible. Overall, the website is professional and trustworthy in content and design but would benefit from improved transparency in domain registration and enhanced privacy compliance features.

C

Convergence Media

cvgmedia.fr

57

Convergence Media is a French digital communication agency specializing in integrated marketing services including SEO, social media, editorial content, video production, and print media. With approximately 15 years of experience, the agency targets SMEs, artisans, independents, and liberal professionals, positioning itself as a trusted partner for multi-channel digital visibility and brand development. The website reflects a professional and consistent brand image with comprehensive service offerings and client testimonials, indicating a solid market presence in the media sector. Technically, the website is built on CMS Made Simple and leverages modern web technologies such as Bootstrap, jQuery, and Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized with good SEO practices and a moderate performance profile. Security posture is generally good with HTTPS enforced and secure form handling, though the absence of security headers and explicit cookie consent mechanisms suggests room for improvement. The WHOIS data is unavailable, which slightly impacts trustworthiness but does not detract significantly from the overall legitimacy given the professional content and contact transparency. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, Convergence Media presents a credible and professional digital presence with strong business and technical foundations, though enhancements in security headers and privacy compliance would further strengthen its posture.

K

KIWI.KI GmbH

kiwi.ki

51

KIWI.KI GmbH is a German-based company specializing in digital access solutions tailored for the real estate and property management sectors. Their offerings include cloud-based portals, mobile applications, and hardware products that enable keyless entry and seamless access management. The company targets property owners, managers, and commercial clients seeking modern, secure, and flexible access control systems. Established in 2013, KIWI.KI GmbH has positioned itself as a niche provider with a consistent brand presence and a professional online platform. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for performance and mobile responsiveness. Security posture is solid with HTTPS and domain transfer protections, though some security headers could be enhanced. Privacy compliance is partially addressed with a cookie consent mechanism but lacks explicit privacy and terms of service documentation. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

R

Renault Trucks

renault-trucks.sk

69

Renault Trucks Slovakia operates as a key regional branch of the global Renault Trucks brand, offering a wide range of commercial vehicles and innovative transport solutions tailored for professionals in road transport. The website reflects a mature business with a strong market position in the transportation sector, providing both new and electric trucks as well as used vehicles. The digital infrastructure is built on Drupal CMS, enhanced with modern analytics and marketing tools such as Google Analytics, Matomo, HubSpot, and OneTrust for cookie consent management. The site is well-structured, mobile-optimized, and provides a professional user experience with clear navigation and multilingual support. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing comprehensive privacy policies, terms of service, and incident response information. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and trustworthy online presence.

R

Renault Trucks Srbija

renault-trucks.rs

68

Renault Trucks Srbija operates as a regional branch of the global Renault Trucks brand, providing a comprehensive range of commercial vehicles and transport solutions tailored to various industries such as distribution, construction, and long-distance transport. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support via hreflang tags. The technical infrastructure leverages Drupal CMS, integrates multiple analytics and marketing tools including Google Tag Manager, Matomo, and HubSpot, and employs a robust cookie consent mechanism via OneTrust, indicating awareness of privacy regulations. Security posture is solid with HTTPS enforced and no visible critical vulnerabilities, though improvements could be made by enabling DNSSEC and publishing explicit security policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.