Security Directory

Ifjúsági Ház Debrecen is a small non-profit community center established in 2011 in Debrecen, Hungary, focused on providing cultural, leisure, and youth-oriented programs and services. The website serves as an information portal for events, room rentals, and community activities targeting children, youth, and young families. The business model revolves around community engagement and event hosting, supported by local partnerships. Technically, the site is built on WordPress with a moderate tech stack including jQuery and several plugins for galleries and news tickers. The site is mobile-optimized and uses HTTPS, but lacks advanced security headers and cookie consent mechanisms. Security posture is adequate but could be improved with formal policies and enhanced headers. Overall, the website is professional, trustworthy, and content-rich for its target audience, with clear contact information and consistent branding. The domain age and WHOIS data align well with the business history, supporting legitimacy.

M

Médiacentrum Debrecen Kft.

dehir.hu

47

Dehir.hu is a well-established regional news portal serving Debrecen and Hajdú-Bihar county in Hungary, operated by Médiacentrum Debrecen Kft. The website offers comprehensive local news coverage, including culture, sports, economy, and lifestyle, supported by multimedia content such as video and photo galleries and live TV streaming. It holds a strong market position as a trusted regional media source with a consistent brand presence and active social media engagement. Technically, the site employs a modern tech stack including jQuery, Bootstrap, Font Awesome, and various JavaScript libraries for UI and media handling. The platform appears to be a custom CMS with moderate performance and good mobile optimization. SEO and accessibility are adequately addressed, though some improvements are possible. From a security perspective, the site uses HTTPS and secure login modals but lacks visible security headers and explicit cookie consent mechanisms, which are important for GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. The domain's WHOIS data is consistent with the business history, supporting legitimacy. Overall, Dehir.hu presents a professional, content-rich, and trustworthy regional news platform with room for improvement in privacy compliance and security hardening to enhance user trust and regulatory adherence.

AKSD Kft. is a Hungarian waste management company based in Debrecen, providing services such as waste collection, bulk waste removal, cemetery maintenance, public area upkeep, hazardous waste transportation, and container rental. The website targets local residents and businesses, positioning itself as a regional essential service provider in transportation and energy sectors. The business model focuses on municipal and commercial waste management and related public services. The website content is professionally presented with consistent branding and relevant service descriptions, although it lacks comprehensive privacy and security disclosures.

D

Debreceni Vagyonkezelő Zrt.

dvrt.hu

43

Debreceni Vagyonkezelő Zrt. is a municipal asset management holding company based in Debrecen, Hungary, actively contributing to the city's development as a regional center. The company manages multiple subsidiaries providing public services and urban development projects, focusing on financial stability and sustainable growth. The website reflects a professional digital presence built on WordPress with modern accessibility features and SEO optimizations. Security posture is strong with HTTPS and security headers properly configured, though cookie consent mechanisms and incident response contacts are absent. Overall, the site demonstrates a mature and trustworthy online representation of a government-affiliated entity.

E

EHI Geprüfter Online-Shop

ehi-siegel.de

47

EHI Geprüfter Online-Shop operates as a certification provider specializing in e-commerce, offering seals, authentic customer reviews, and secure legal texts to promote safe and fair online shopping experiences. The website targets German online retailers and businesses seeking to enhance trust and compliance. Technically, the site is built on WordPress with the Divi theme, leveraging modern web technologies and privacy-conscious analytics via Matomo with disabled cookies. Security posture is solid with HTTPS and no evident vulnerabilities, though security headers and explicit privacy compliance measures are lacking. Overall, the site presents a professional and trustworthy front but would benefit from enhanced privacy disclosures and contact transparency.

P

PENNY Magyarország

penny.hu

58

PENNY Magyarország operates as a retail grocery business in Hungary, providing consumer goods through its website. The site is built using modern web technologies such as Vue.js and Google Fonts, indicating a moderate level of digital maturity. However, the website lacks visible privacy and cookie policies, which are critical for GDPR compliance, and does not expose security headers or advanced security configurations. The absence of explicit contact information and security policies suggests areas for improvement in transparency and user trust. Overall, the website is functional and accessible but requires enhancements in privacy compliance and security posture to meet industry best practices.

Z

ZSUZSI Erdei Vasút Nonprofit Limited company

zsuzsivasut.hu

41

Zsuzsi Erdei Vasút Nonprofit Limited company operates a heritage forest railway in Debrecen, Hungary, providing scheduled rides primarily from May to September and additional booking options year-round. The company targets families, educators, tourists, and local businesses, positioning itself as a niche nonprofit transportation and tourism service provider. The website reflects this focus with clear information, booking options, and educational content. Technically, the site is built on WordPress with modern plugins for SEO, accessibility, and cookie compliance, delivering a good user experience with mobile optimization and structured data for enhanced search visibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are absent. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR cookie requirements, supporting the nonprofit's mission and community engagement.

Nemzeti Mobilfizetési Zrt. operates as a national mobile payment service provider in Hungary, likely affiliated with government services. The website serves as an informational and service portal primarily targeting Hungarian users and businesses involved in mobile payments and electronic toll collection. The business model centers on providing secure and efficient mobile payment solutions at a national scale. The website's market position is strong within Hungary as a trusted government-related entity offering essential payment services. Technically, the website employs modern web technologies including Google Fonts, Google Analytics, Google Tag Manager, and Cookiebot for cookie consent management. The presence of CSRF tokens and security headers indicates a reasonable security posture. The site is mobile-optimized and demonstrates good performance and accessibility basics, although some areas like privacy policy and terms of service documentation are missing or not easily discoverable. From a security perspective, the site uses HTTPS with good SSL configuration and implements standard security headers. Cookie consent is actively managed, supporting GDPR compliance. However, explicit privacy policies, security policies, and incident response information are absent, which could be improved to enhance transparency and compliance. No vulnerabilities or suspicious activities were detected in the analyzed content. Overall, the website is professional, trustworthy, and serves its business purpose effectively. Strategic recommendations include publishing comprehensive privacy and terms of service documents, adding a security policy and incident response contact, and implementing a security.txt file for vulnerability disclosure. These steps would improve compliance, user trust, and security posture.

R

Recisio

recisio.com

64

Recisio is a medium-sized company specializing in designing, creating, and maintaining large-scale digital applications and websites for the music industry, targeting performers, teachers, musicians, and music lovers. Their mission is to spread happiness through music, serving approximately one million users monthly across 10 languages. The company operates under the KaraFun Group umbrella, indicating a solid market position with established partnerships and affiliate programs. Technically, the website employs modern web technologies such as JavaScript and CountUp.js, with good mobile optimization and SEO practices, though accessibility features are basic. Security posture is moderate with HTTPS implied but lacking visible security headers and explicit privacy or cookie policies, which impacts compliance and trust. The absence of WHOIS data for the domain is a significant concern, reducing domain legitimacy and transparency. Overall, the website is professional and content-rich but requires improvements in security, privacy compliance, and domain registration transparency.

The website ex1tp.com appears to be a minimal online presence for a business related to exit popup services, indicated by the site title and displayed text. The content is very limited, with no detailed business description, policies, or multiple contact methods. The domain is relatively new, registered in 2022, and uses Cloudflare for DNS and CDN services. The technical infrastructure is basic but includes modern elements such as Google Fonts and mobile optimization. Security posture is minimal with no detected security headers or privacy policies, and DNSSEC is not enabled. There is no evidence of active WAF blocking or security challenges, allowing full access to the site content. Overall, the site lacks comprehensive compliance and trust indicators, which limits its credibility and security maturity.

O

Overtracking

overtracking.com

63

Overtracking is a privacy-first web analytics platform launched in 2023, positioning itself as an easy-to-use alternative to Google Analytics with a focus on respecting user privacy by avoiding cookies. The company targets website owners and digital marketers who require accurate, GDPR-compliant analytics including heatmaps, real-time visitor tracking, and Core Web Vitals measurement. The business operates on a SaaS model with a free tier and paid plans based on monthly pageviews. Technically, the website is modern, fast, and mobile-optimized, leveraging Cloudflare DNS and custom JavaScript analytics scripts. Security posture is solid with HTTPS enforced and no exposed sensitive data, though DNSSEC is not enabled and security headers are missing. Privacy compliance is strong, with clear privacy policy and no cookie consent mechanism needed due to cookie-free tracking. Overall, the site is professional, trustworthy, and well-branded, though it lacks explicit security and incident response policies.

D

Debrecen Megyei Jogú Város Önkormányzata

debrecen.hu

62

The website www.debrecen.hu is the official online presence of the Municipality of Debrecen, Hungary. It serves as a comprehensive portal providing information and services for residents, tourists, and business stakeholders. The site offers access to local government services, tourism guides, business investment information, and public announcements, positioning itself as a key digital resource for the city. The target audience includes local citizens, visitors, and investors, reflecting a government service model focused on public administration and community engagement. Technically, the website employs a custom CMS with a technology stack that includes jQuery, jQuery UI, Google Fonts, and lazy loading libraries. It demonstrates good mobile optimization and accessibility features, although SEO optimization is basic. The site loads with moderate performance and uses multiple third-party analytics and marketing tools, all integrated with a clear cookie consent mechanism, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent in compliance with GDPR. However, it lacks publicly available security policies and incident response contacts, and security headers are not explicitly detected in the provided data. No vulnerabilities or exposed sensitive data were found in the content. The domain registration is consistent with the official municipality, enhancing trustworthiness. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its role as a government portal effectively. Strategic improvements could include publishing security policies, enhancing SEO, and adding incident response information to strengthen security posture and user trust.

E

European Handball Federation (EHF)

ehftv.com

66

EHFTV.com is the official streaming platform of the European Handball Federation, providing live and on-demand handball competition content to fans worldwide. The platform offers a subscription-based model with free registration, enabling personalized fan experiences. It holds a strong market position as the primary digital destination for EHF competitions, supported by consistent branding and comprehensive content offerings. Technically, the site leverages modern web technologies including Next.js, cloud CDN services, and integrates multiple analytics and marketing tools while maintaining good performance and mobile responsiveness. Security posture is solid with HTTPS enforcement and domain transfer protection, though DNSSEC is not enabled and no explicit security policy or incident response contacts are published. Privacy compliance is robust, with comprehensive policies and cookie consent mechanisms implemented via Iubenda. Overall, EHFTV.com demonstrates a mature digital presence with high trustworthiness and professional execution.

L

Look!

looklive.at

52

Look! is a German-language online media platform specializing in fashion, beauty, lifestyle, and related content primarily targeting German-speaking audiences in Austria. The website offers a variety of articles, news, and features across multiple lifestyle categories, supported by advertising revenue. The platform uses WordPress CMS with a professional Newspaper theme and integrates advertising and cookie consent plugins to manage monetization and privacy compliance. Technically, the site employs modern web technologies including jQuery, Google Fonts, and Google Tag Manager, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and some security plugins detected, though security headers could be improved. Privacy compliance is partial, with cookie consent present but no explicit privacy policy or terms of service found in the analyzed content. Contact information is not clearly provided, which may affect user trust. Overall, the site represents a small media outlet with consistent branding and good content quality but could enhance transparency and security practices.

L

liverelations gmbh

liverelations.at

48

liverelations gmbh operates a German-language website focused on corporate magazines and event organization, targeting corporate clients primarily in Austria. The website is built on WordPress using the Enfold theme and integrates modern web technologies such as Google Fonts, YouTube embeds, and Google reCAPTCHA for bot protection. While the site is functional and moderately optimized for mobile, it lacks explicit privacy and cookie policy pages, though a cookie consent mechanism is present. Security posture is adequate with HTTPS enforced and reCAPTCHA implemented, but missing security headers and absence of a published security policy reduce overall security maturity. No contact emails or phone numbers are directly visible on the homepage, which may impact user trust and compliance. Overall, the site is a small media business with basic digital maturity and moderate security and privacy compliance.

W

Werbehelden GmbH

werbehelden.com

55

Werbehelden GmbH is a small Austrian marketing agency specializing in below-the-line marketing, ambient media, promotions, and sampling campaigns. The company offers comprehensive 360-degree promotional services including concept creation, planning, execution, and documentation. Their market position is that of an established regional player with award-winning campaigns and a strong focus on experiential marketing. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content in German targeting business clients seeking direct marketing solutions. Technically, the site uses modern JavaScript libraries, Matomo and Google Analytics for tracking, and implements a detailed cookie consent mechanism with GDPR compliance. Security posture is good with HTTPS enforced and privacy-conscious analytics configurations, but lacks some HTTP security headers and a published security policy or incident response contacts. The WHOIS data is missing or inaccessible, which raises concerns about domain registration legitimacy despite the active and professional website presence. Overall, the site scores well on content quality, technical implementation, and privacy compliance but is slightly penalized for WHOIS inconsistencies and minor security header omissions.

W

Wiener Kaiserwiesn

kaiserwiesn.at

58

Wiener Kaiserwiesn is a well-established event organizer hosting the annual Oktoberfest-style festival in Vienna, Austria. The website provides comprehensive information about the event, including schedules, ticket sales, partner acknowledgments, and multimedia content. The business targets local and international visitors interested in traditional and party music festivals. Technically, the website is built on WordPress with a modern theme and plugins, supporting multilingual content and SEO best practices. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies are absent. Overall, the site is professional, trustworthy, and well-maintained, supporting a medium-sized hospitality business.

Tagstream is a German-language technology service provider specializing in digital channel acceleration and digital transformation for businesses. Their offerings focus on process management, business integration, and measurable marketing and sales results. The website is built on WordPress with common plugins and integrates marketing tools such as Mailchimp and Payrexx for payments. The site is professionally designed, mobile-optimized, and includes GDPR-compliant privacy and cookie policies. However, no direct company contact emails or phone numbers are provided, only a contact form. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy despite the active and professional website presence. Security posture is moderate with HTTPS enabled but lacks security headers and published security policies. Overall, the site is functional and trustworthy for business visitors but would benefit from improved transparency and security practices.

M

Meinplatz

meinplatz.ch

36

Meinplatz.ch is an online platform dedicated to providing current offers in housing, work, and day structure for adult people with disabilities in Switzerland. It serves as a centralized resource for institutions offering these services and includes information about advisory centers for personalized support. The platform targets a niche audience within the disability support sector and positions itself as a trusted resource in this domain. Technically, the website leverages modern web technologies such as SvelteKit, Google Fonts, and Google Tag Manager, ensuring a responsive and accessible user experience. Security measures include HTTPS enforcement and standard security headers, contributing to a good security posture. However, the absence of visible privacy and cookie policies, as well as lack of explicit contact information, indicates compliance gaps that should be addressed to enhance trust and regulatory adherence. Overall, the website is professional and functional but would benefit from improved privacy compliance and clearer contact channels.

G

Google LLC

crashlytics.com

72

Firebase Crashlytics is a product offered by Google LLC, providing real-time crash reporting and app stability monitoring for mobile applications across multiple platforms including iOS, Android, Flutter, and Unity. Positioned as part of the Firebase suite, it targets app developers seeking to improve app quality and user experience by quickly identifying and prioritizing crash issues. The website reflects Google's strong market position in cloud services and developer tools, offering a comprehensive and professional digital presence with excellent content quality and user experience. The technical infrastructure leverages Google's cloud hosting, modern web technologies, and integrates Google Fonts, Analytics, and Material Icons, ensuring fast performance, mobile optimization, and accessibility. The site is built on a custom Google framework, ensuring consistency and scalability. Security is robust with HTTPS, strict security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies, including GDPR considerations and consent mechanisms. However, direct contact information and explicit security policies such as incident response or vulnerability disclosure are not prominently available on the product page. The domain ownership and WHOIS data confirm the legitimacy and trustworthiness of the site, fully consistent with Google's corporate identity. Overall, Firebase Crashlytics' website demonstrates a mature, secure, and professional platform suitable for enterprise-level users and developers, with strong trust signals and minimal risk exposure.

I

iakoe

carrot.is

53

iakoe is a specialized Shopify agency focused on delivering design-led e-commerce solutions, balancing brand identity, user experience, and store optimization to create effective shopping experiences. Founded in 2019, the company targets design-conscious brands seeking Shopify development, UX design, SEO, CRO, and migration services. The website demonstrates a strong market position with notable client logos and positive testimonials, indicating trust and professionalism. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Splide.js, and integrates analytics and marketing tools such as Google Analytics, HubSpot, and Crazy Egg. The site is mobile-optimized, accessible, and SEO-friendly, hosted via GoDaddy with a Craft CMS backend. Performance is moderate with good responsiveness and user experience. Security posture is solid with HTTPS enforced, CSRF protection on forms, and no exposed sensitive data. However, the absence of DNSSEC, security headers, and published security or privacy policies indicates room for improvement. Privacy compliance is limited due to missing privacy and cookie policies, which could pose regulatory risks. Overall, the website is professional, trustworthy, and technically competent but would benefit from enhanced security policies and privacy compliance to strengthen its risk posture and regulatory adherence.

A

ARC Print | Transform Your Space with Banners, Custom Posters & Yard Signs

arcprint.com

65

ARC Print is a retail e-commerce website specializing in banners, custom posters, and yard signs aimed at general consumers and businesses looking to transform their spaces. The website uses modern web technologies such as Angular, Google Fonts, Google Maps API, Microsoft Clarity, and Google Tag Manager, indicating a moderate level of digital maturity. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with HTTPS likely enabled but lacking visible security headers and privacy policies. The site lacks clear contact information and compliance documentation, which impacts trust and privacy compliance scores. Overall, the website is functional and safe for general audiences but requires improvements in security and compliance to enhance credibility and trustworthiness.

I

IT Space

itspace.uz

41

IT Space is a small technology company based in Tashkent, Uzbekistan, specializing in the development of Telegram bots, websites, mobile applications, and business utilities. The company offers a broad range of IT services including website creation (business cards, landing pages, e-commerce), bot development, branding design, and CRM integration. Their market position is that of an experienced local developer with a solid portfolio and active client engagement. Technically, the website employs modern frontend technologies such as Bootstrap 5 and jQuery, with integration of Google Analytics and Yandex Metrika for user tracking. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS enabled and secure forms, but lacks published security policies and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and business credible but could improve in compliance and security transparency.

S

SAM global

sam-global.org

67

SAM global is a Swiss-based Christian non-profit organization focused on international development cooperation, primarily through educational projects across ten countries in Africa, Asia, and South America. The organization operates with a medium-sized team and collaborates with local partners to implement sustainable development initiatives. Their website reflects a professional and well-structured digital presence, supporting multilingual access and secure online donations via Stripe and PayPal. The organization holds the ZEWO certification, enhancing trust and credibility among donors and partners. Technically, the website leverages modern web technologies including Webflow CMS, Google Tag Manager, and Weglot for translations, ensuring a responsive and accessible user experience. Security measures such as HTTPS, security headers, and secure payment integrations are properly implemented, though the absence of a cookie consent banner and terms of service page indicates room for improvement in privacy compliance. WHOIS data is incomplete and malformed, which slightly reduces domain trustworthiness, but the overall business legitimacy is supported by transparent contact information and certifications. Strategic recommendations include implementing cookie consent mechanisms, publishing terms of service, and establishing a vulnerability disclosure policy to enhance compliance and security posture.

F

Frisbee

frisbeenet.ch

47

Frisbee is a non-profit network organization founded in 2013 that serves as the umbrella for childhood and youth organizations in the canton of Fribourg, Switzerland. It focuses on fostering collaboration, advocacy, and support for its member organizations, promoting extracurricular activities for children and youth. The website reflects a regional community-oriented mission with clear contact information and a bilingual approach (French and German). The technical infrastructure is based on standard web technologies including HTML5, CSS3, jQuery, and Google Analytics with IP anonymization, indicating moderate digital maturity. The site is mobile responsive and well-structured, providing a good user experience. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy and professionally presented, suitable for its non-profit community role.

F

Forum Werteorientierung in der Weiterbildung e. V.

forumwerteorientierung.de

48

Forum Werteorientierung in der Weiterbildung e. V. is a German non-profit organization dedicated to promoting ethical and value-oriented practices in the continuing education sector. The organization provides a quality seal and a professional code of conduct to its member organizations, aiming to enhance transparency and integrity in the education market. The website serves as an informational platform showcasing members, partners, sponsors, and providing updates on seminars and news relevant to the sector. Technically, the website is built on WordPress with common plugins and libraries such as jQuery and Owl Carousel, hosted on rzone.de servers. It demonstrates moderate performance and good mobile optimization. Security-wise, the site uses HTTPS and implements a cookie consent banner, but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. Overall, the site is professional, trustworthy, and compliant with basic privacy regulations, though it could improve in security policy transparency and technical security hardening.

Evangelische Mission Biel is a small non-profit religious organization based in Biel, Switzerland, focused on providing community and spiritual services including worship, youth and adult programs, and special events. The website is professionally designed with excellent content quality and clear navigation, targeting local community members and churchgoers. Technically, the site runs on WordPress with modern plugins and integrations such as Google Tag Manager and reCAPTCHA, ensuring a moderate to good performance and mobile optimization. Security posture is adequate with HTTPS and anti-bot measures but lacks explicit security headers and published incident response policies. Privacy compliance is partial, with a comprehensive privacy policy but no cookie consent mechanism. Overall, the site is trustworthy and legitimate, with consistent WHOIS data and clear business information.

C

Christliches Zentrum Hofmatt Aarburg

czh.ch

10

Christliches Zentrum Hofmatt Aarburg (CZH) is a small, non-profit Christian church based in Aarburg, Switzerland, focused on providing a welcoming community for families and individuals. The website highlights their core values, church services, youth and children programs, and community groups, positioning them as a local religious organization with an international and family-oriented approach. Their digital presence includes active social media channels and a newsletter subscription, supporting community engagement. Technically, the website is built on WordPress with modern plugins and frameworks such as Vue.js and Swiper.js, ensuring a responsive and user-friendly experience. SEO practices are well implemented with Yoast SEO and structured data markup. Security posture is adequate with HTTPS and reCAPTCHA usage, though there is room for improvement in security headers and incident response transparency. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the website is professional, trustworthy, and serves its community effectively.

A

AmericaTVListings.com

americatvlistings.com

53

AmericaTVListings.com is a niche media website providing comprehensive TV schedule listings for the United States and other countries. The site offers multi-language support and covers a wide range of TV categories including American, local, Spanish, movies, sports, music, documentaries, news, and children's programming. The business model appears to be advertising-supported, leveraging Google Adsense and other marketing tools. The domain is relatively new, registered in 2022, and uses GoDaddy as registrar with Cloudflare DNS services. The website is built on modern frontend technologies including Bootstrap 5 and integrates Google Analytics and Facebook SDK for tracking and analytics. Security posture is moderate with HTTPS enabled and domain locks in place, but lacks DNSSEC and some recommended security headers. Privacy compliance is minimal with no explicit privacy or cookie policies found, though a cookie consent mechanism is present. Contact and incident response information are not clearly provided, which may impact user trust and compliance. Overall, the site is functional, well-branded, and serves its target audience effectively but could improve in security and privacy transparency.

P

PURE BIO

pure-bio.at

54

PURE BIO is a small Austrian company specializing in organic energy drinks and tonic waters, emphasizing natural ingredients and sustainability. The website is built on WordPress with Elementor and includes product information, certifications, and dealer information. The technical infrastructure is modern but lacks some advanced security headers and privacy compliance documentation. Security posture is adequate with HTTPS and cookie consent but could be improved with explicit policies and incident response details. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

A

ASKÖ Steiermark

aktiv-gesund-steiermark.at

66

AKTIV GESUND STEIERMARK operates as the movement and education competence center under the umbrella of ASKÖ Steiermark, providing a broad range of health and fitness courses targeted at all age groups in the Steiermark region of Austria. The organization emphasizes quality in both offerings and execution, supported by a team of trainers and movement experts. Their business model is non-profit and educational, focusing on community health and fitness engagement. The website is professionally designed using the Jimdo CMS platform, featuring clear navigation, mobile responsiveness, and compliance with GDPR through comprehensive cookie and privacy policies. Technically, the site leverages modern web technologies including jQuery, Google Maps, and embedded YouTube videos, hosted by Jimdo GmbH. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though improvements in HTTP security headers are recommended. No critical vulnerabilities or suspicious domains were detected. Overall, the site presents a trustworthy and professional digital presence aligned with its mission and regional focus.

R

Reisedienst Hamburg-Nord Bossel GmbH & Co. KG

reisedienst-hamburg-nord.de

62

Reisedienst Hamburg-Nord Bossel GmbH & Co. KG is a well-established bus travel and rental company based in Hamburg, Germany, founded in 1974. The company offers a range of services including busreisen (bus trips), klassenreisen (class trips), stadtrundfahrten (city tours), transfers, and various group travel options. Their market position is that of a trusted local transportation provider with a focus on comfort and reliability. The website reflects a professional business model targeting group travel customers such as schools, clubs, and companies in Hamburg and surrounding areas. Technically, the website is built on a modern stack including jQuery, Cookiebot for consent management, and lazy loading for performance optimization. The site uses structured data (JSON-LD) to enhance SEO and provide clear business information. Hosting and CDN services are leveraged for asset delivery. The site is mobile optimized and has good SEO and accessibility basics, though some accessibility improvements could be made. From a security perspective, the website enforces HTTPS and uses Cookiebot to comply with GDPR cookie consent requirements. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not clearly present. No incident response or security policy pages are found, and no vulnerability disclosure mechanisms are in place. No suspicious or malicious content is detected, and the site appears safe for general audiences. Overall, the website scores well on content quality, technical implementation, privacy compliance, and business credibility, with room for improvement in security best practices and incident response transparency. The domain registration is consistent with the business profile, showing no privacy protection or suspicious patterns. The company provides clear contact information including a phone number and physical address, though no direct email addresses are publicly listed. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, improving accessibility features, and maintaining up-to-date third-party libraries to ensure ongoing security and compliance.

I

Instituto de Turismo de la Región de Murcia

turismoregiondemurcia.es

62

The website www.turismoregiondemurcia.es serves as the official tourism portal for the Costa Cálida region in Murcia, Spain. Operated by the Instituto de Turismo de la Región de Murcia, it provides comprehensive travel information, event listings, activity bookings, accommodation search, and cultural insights aimed at tourists and visitors. The site is well-positioned as a government-backed tourism authority, offering a broad range of services to facilitate travel planning and regional exploration. Technically, the site employs modern web technologies including Bootstrap, jQuery, Swiper.js, and integrates multiple analytics and advertising tools such as Google Analytics, Facebook Pixel, and Adform. The site is mobile-optimized, accessible, and SEO-friendly, with consistent branding and professional design. Structured data (JSON-LD) is used to enhance search engine understanding. From a security perspective, the site uses HTTPS and includes several security best practices, though explicit security headers like CSP or X-Frame-Options were not confirmed in the provided data. No vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and include consent mechanisms, indicating good compliance with GDPR requirements. Overall, the website demonstrates a strong security posture, high content quality, and trustworthy business credibility. It effectively supports its mission as a regional tourism promotion platform. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining regular audits of third-party scripts to sustain security and compliance.

B

Bildungswerk des LSB Rheinland-Pfalz e.V.

bildungswerksport.de

55

Bildungswerk des LSB Rheinland-Pfalz e.V. operates as a specialized educational organization focused on sports training and development within the Rheinland-Pfalz region of Germany. The website serves as a platform to offer courses, seminars, and travel experiences aimed at promoting health and sports education. Positioned as a partner to local sports clubs, the organization targets sports enthusiasts and professionals in the region. Technically, the website is built on WordPress, utilizing common web technologies such as jQuery, LayerSlider, and Font Awesome. The presence of Matomo analytics indicates a moderate level of digital maturity with user tracking capabilities. Security posture is moderate; while HTTPS is presumably enabled (not explicitly confirmed), no security headers were detected, and no explicit security or incident response policies are published. Privacy compliance is limited, with a cookie consent mechanism present but no visible privacy policy or terms of service pages. Overall, the website is functional and professionally designed but would benefit from enhanced security and compliance documentation.

S

Sportson International Oy

babolat.com

60

Sportson International Oy operates a Finnish e-commerce platform specializing in tennis, padel, and badminton sports equipment and apparel. Founded in 1982 and based in Kaarina, Finland, the company represents well-known brands such as Babolat and Fila. The website targets both retail consumers and B2B customers, offering a comprehensive product range with fast delivery and free shipping over a threshold. Technically, the site employs modern web technologies including jQuery, Google reCAPTCHA, and Google Analytics, ensuring a functional and user-friendly experience with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and spam protection via reCAPTCHA, though improvements are recommended in cookie consent and security headers. Overall, the website presents a professional and trustworthy digital presence aligned with its business operations and market position.

V

Verein Jakobsweg.ch

jakobswegplus.ch

65

The website jakobswegplus.ch represents a non-profit initiative by Verein Jakobsweg.ch to provide a wheelchair-accessible pilgrimage route across Switzerland from Konstanz to Genf. The project is positioned as a niche service targeting wheelchair users interested in spiritual and cultural pilgrimage experiences. The site is built on the Jimdo CMS platform, leveraging standard web technologies and third-party widgets for enhanced functionality. It demonstrates good digital maturity with mobile responsiveness, cookie consent mechanisms, and clear contact information. Security posture is adequate with HTTPS enforced and cookie management in place, though explicit security headers and incident response policies are absent. Overall, the site is trustworthy and professionally presented, supporting its mission effectively.

N

NetZone AG

netzone.ch

78

NetZone AG is a Swiss-based hosting provider specializing in web hosting, email services, domain registration, managed vServers, SMS, and security solutions. The company positions itself as a pioneer in Swiss hosting with a strong emphasis on Swiss server location, high availability, and security features such as spam and malware filtering and application firewalls. The website reflects a professional and consistent brand image targeting businesses and individuals seeking reliable hosting services in Switzerland. Technically, the site uses a modern but somewhat dated tech stack including Bootstrap 3.3.7 and jQuery 2.2.4, with integrations for Google reCAPTCHA and cookie consent mechanisms, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and secure forms, but lacks explicit security headers and a published security policy. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent. Overall, the site is trustworthy and professionally maintained, with room for improvement in security transparency and SEO.

W

WSC

wsc.group

58

WSC Group is a specialized company in the motorsport industry, focusing on rule-making and service provision for car racing, particularly in Touring Car categories. Founded in 2014 and based in Switzerland, WSC has established itself as a key player by launching the TCR category and pioneering electric Touring Car racing with ETCR. The company also engages in SIM Racing competitions, reflecting a modern approach to motorsport. The website is professionally designed using Squarespace, with good content quality and clear navigation aimed at motorsport professionals and enthusiasts. Technically, the site uses modern web technologies and enforces HTTPS with HSTS, ensuring a secure browsing experience. However, the absence of privacy and cookie policies, lack of explicit contact information, and unavailable WHOIS data reduce the overall trust and compliance posture. Strategic improvements in privacy compliance and transparency are recommended to enhance credibility and security.

I

Instituto de Turismo de la Región de Murcia

murciaturistica.es

50

The website www.turismoregiondemurcia.es serves as the official tourism portal for the Costa Cálida region in Murcia, Spain. It is operated by the Instituto de Turismo de la Región de Murcia and provides comprehensive information on tourism activities, accommodations, events, and cultural experiences. The site targets tourists and visitors interested in exploring the Murcia region, offering multilingual support and booking functionalities. Technically, the site employs modern web technologies including Bootstrap, jQuery, Swiper, and integrates multiple tracking and analytics tools such as Google Analytics, Facebook Pixel, and Adform. The website is well-designed with good mobile optimization and clear navigation, reflecting a professional and trustworthy government tourism platform. Security-wise, the site uses HTTPS and secure external scripts but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. WHOIS data is unavailable due to access restrictions, limiting domain trust verification, but the official branding and content quality support legitimacy. Overall, the site is a reliable and informative resource for tourism in Murcia with moderate technical and security maturity.

M

Emploi, Formation, Entrepreneur, École | Prends mon conseil

maison-emploi-pmc.fr

41

The website 'Prends mon conseil' focuses on providing advice and resources related to employment, training, entrepreneurship, and education primarily targeting French-speaking users. The content is well-structured and presented with a professional design using WordPress and Elementor, indicating a moderate level of digital maturity. However, the absence of WHOIS data limits the ability to verify domain ownership and business legitimacy fully. Technically, the site uses modern web fonts and scripts but lacks visible security headers and privacy policies, which are critical for compliance and user trust. The security posture is basic, with no evident vulnerabilities but also no advanced protections or disclosures. Overall, the site appears functional and relevant to its audience but would benefit from enhanced security and compliance measures to improve trust and legal adherence.

TonSPuR.org is a niche website dedicated to providing spiritual care and audio content for police and rescue personnel, primarily in the German-speaking region of Switzerland. The site serves as a resource especially during pandemic-related event cancellations, offering an archive of audio contributions. The business model is non-commercial and focused on community support rather than profit. The website is built on WordPress, utilizing common plugins such as Podlove Podcasting and standard web fonts, hosted by Hostpoint AG. The technical infrastructure is moderate with good mobile optimization but lacks advanced SEO and accessibility features. Security posture is adequate with HTTPS enabled but lacks important security headers and DNSSEC. No privacy or cookie policies are present, indicating compliance gaps. Contact information is minimal, limiting direct communication channels. Overall, the site is functional and serves its intended audience but requires improvements in privacy, security, and transparency to enhance trust and compliance.

E

echo medienhaus

echo.at

44

echo medienhaus is a medium-sized Austrian media company specializing in print and digital media, event management, and agency services. The website reflects a professional media house with a consistent brand presence and a diversified portfolio of media and event partners. The technical infrastructure is based on WordPress CMS using the Enfold theme and Avia framework, with moderate performance and good mobile optimization. Google Analytics is used for visitor tracking with a cookie consent mechanism implemented. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is limited due to the absence of a clear privacy policy and terms of service. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced compliance and security documentation.

A

AUTOTRASPORTI CAMBIANICA SRL

cambianica.com

68

AUTOTRASPORTI CAMBIANICA SRL is an established transportation and logistics company based in Italy, with over 50 years of experience in national and international freight transport. The company targets businesses and individuals requiring reliable transport services primarily in the Bergamo and Brescia regions. The website is built on WordPress using the Divi theme and incorporates SEO best practices via Yoast SEO, along with Google Tag Manager and reCAPTCHA for analytics and security. While the website presents a professional and consistent brand image with good content quality and user experience, there are notable gaps in privacy compliance and security posture, including the absence of privacy and cookie policies and missing security headers. The WHOIS data for the domain is unavailable, raising concerns about domain registration legitimacy. Overall, the site is functional and moderately secure but requires improvements in compliance and domain registration transparency.

T

Transports Brevet

brevet.fr

49

Transports Brevet is a well-established French transportation company specializing in the logistics and transport of fresh and frozen products nationwide. Founded in 1966, it operates multiple logistics platforms and offers professional transport and storage services tailored to business clients. The website reflects a medium-sized enterprise with a clear focus on transportation and logistics within France. Technically, the site is built on Joomla CMS with modern front-end libraries such as Bootstrap and jQuery, and it includes Google Analytics for visitor tracking. The site is mobile-optimized and presents a professional design with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements a cookie consent banner, but lacks visible security headers and explicit security or incident response policies. The absence of WHOIS registration data is a notable gap, limiting domain trust verification. Overall, the website is functional, professional, and safe for general audiences, but could improve in security transparency and compliance documentation.

B

BTL Transports et Logistique

btl-i.fr

57

BTL Transports et Logistique is a well-established French transport and logistics company with a rich history dating back to 1852, formally created in its current form in 2008 through the merger of five regional companies. The company operates primarily in northern France with three main agencies and offers a range of services including transport, logistics, freight forwarding, parcel pickup points, and vehicle covering. Their market position is that of a trusted regional player with a commitment to environmental responsibility and customer satisfaction. Technically, the website employs modern frameworks such as Bootstrap and jQuery, with good mobile optimization and a professional design. Security-wise, the site uses HTTPS and has a cookie consent mechanism but lacks advanced security headers and explicit privacy or security policies. The absence of WHOIS data limits full trust verification, but the website content and business information appear consistent and professional. Overall, the site presents a solid digital presence with room for improvement in security and privacy transparency.

K

KoreaWho

koreawho.com

62

KoreaWho is a specialized media platform providing detailed biographical profiles and news about influential leaders in the Korean economy. The website targets business professionals, investors, and researchers interested in Korean corporate leadership. It offers a searchable database of profiles and news articles focusing on executives across various sectors including energy, finance, manufacturing, and transportation. The platform positions itself as a niche authoritative source for Korean business leadership information. Technically, the website employs modern web technologies such as jQuery, Google Tag Manager, and Google Fonts. It is mobile-optimized with good SEO practices and moderate performance. The site uses HTTPS and integrates analytics tools like Google Analytics and Naver Analytics, indicating a moderate level of digital maturity. From a security perspective, the site enforces HTTPS but lacks comprehensive security headers and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy policy present but no explicit GDPR compliance or cookie consent. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a professional and trustworthy front with quality content and good user experience. However, the absence of WHOIS registration data raises concerns about domain legitimacy, warranting further verification. Security and privacy practices could be improved to enhance compliance and trustworthiness.

The website bpforum.net serves as the official platform for the 2025 Business Post Finance Forum held in Hanoi, Vietnam, focusing on expanding Korea-ASEAN financial cooperation. Hosted by the Korean media company 비즈니스포스트, the site targets financial professionals, policymakers, and investors interested in ASEAN and Vietnamese financial markets. The business model centers on organizing specialized finance forums to facilitate networking and knowledge sharing. The site content is primarily in Korean with professional event details, speaker introductions, and partner information, reflecting a focused niche audience. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, Owl Carousel, and Animate.css, hosted on AWS infrastructure. The site is mobile-optimized with good navigation and design quality, though SEO and accessibility features are basic. No CMS or advanced analytics tools are detected, indicating a relatively straightforward technical setup. From a security perspective, the domain uses clientTransferProhibited status but lacks DNSSEC and visible security headers, which are recommended for enhanced protection. The absence of privacy and cookie policies indicates compliance gaps, especially under GDPR. No incident response or vulnerability disclosure information is provided. WHOIS data is transparent and consistent with the business, supporting legitimacy. Overall, the site is professionally presented and credible for its business purpose but would benefit from improved security practices and privacy compliance to strengthen trust and regulatory adherence.

B

Bundes-Sport GmbH

austrian-sports.at

61

Bundes-Sport GmbH is a government-affiliated non-profit organization in Austria, established in 2018 to promote and manage funding for sports associations and institutions under the Bundes-Sportförderungsgesetz 2017. The organization plays a pivotal role in supporting both elite and grassroots sports through funding allocation, control, and evaluation. The website reflects a professional and consistent brand presence, targeting sports entities and stakeholders within Austria. Technically, the site is built on WordPress with modern plugins like Elementor and Revolution Slider, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie management. No critical vulnerabilities or suspicious content were detected, and WHOIS data confirms the legitimacy and consistency of the domain registration. Overall, the site demonstrates a mature digital presence suitable for its governmental and non-profit role.

C

Civic Voice

civicvoice.org.uk

69

Civic Voice is a UK-based national charity dedicated to supporting the civic movement in England. The organization focuses on making places more attractive and distinctive by promoting civic pride and supporting local civic societies through training, networking, and policy advocacy. Their website reflects a mature non-profit with a clear mission and active engagement with their community. Technically, the site is built on WordPress with modern plugins and includes a comprehensive cookie consent mechanism, indicating good digital maturity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for its audience.

C

Cheltenham Civic Society

cheltenham-battlefield-crosses.org

53

Cheltenham Battlefield Crosses is a small non-profit museum dedicated to preserving and exhibiting WWI battlefield crosses commemorating fallen servicemen from Cheltenham. Managed by Cheltenham Civic Society, the museum offers historical insights and conservation efforts for these fragile artifacts. The website serves as an informative platform for visitors and researchers, providing stories and background on the crosses and soldiers. Technically, the site is built on WordPress with modern plugins for SEO and GDPR compliance, featuring a responsive design and basic accessibility. Security posture is good with HTTPS and cookie consent mechanisms, though improvements could be made by enabling DNSSEC and adding security headers. Overall, the site is trustworthy, well-branded, and professionally maintained, though it lacks explicit contact details and formal security policies.