Security Directory

I

I Worked On

iworkedon.com

45

I Worked On is a small technology-focused platform founded in 2006 that enables individuals, makers, and developers to create and share portfolios showcasing their projects. The website emphasizes a modern approach to professional experience by focusing on tangible work and outcomes rather than traditional resumes. The platform targets users who want an easy and visually appealing way to present their work to the world. Technically, the website uses modern web technologies including HTML5, CSS3, JavaScript, and Alpine.js for interactivity. It integrates Google Analytics and Google Tag Manager for user tracking and marketing insights. The site is mobile optimized with good SEO practices but lacks some accessibility features and security headers. Hosting details are not explicitly stated but the domain is registered with eNom, LLC and uses name-services.com for DNS. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and important security headers such as Content-Security-Policy and Strict-Transport-Security. No privacy or cookie policies are published, which is a compliance gap. No incident response or vulnerability disclosure information is available. The domain is stable and legitimate with a long registration history, supporting trustworthiness. Overall, the website is professional and functional with moderate security posture and limited privacy compliance. Strategic improvements in security headers, privacy policies, and contact transparency would enhance trust and compliance.

Z

zone35 GmbH & Co. KG

zone35.de

61

zone35 GmbH & Co. KG is a medium-sized, owner-managed digital agency based in Berlin, specializing in healthcare and welfare sectors. Established in 1999, the company offers strategic planning, crossmedia design, and tailored digital solutions including online consulting platforms such as beranet.de. Their market position is solid within their niche, supported by a portfolio of projects and partnerships with health-focused digital products. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates Piwik/Matomo analytics, reflecting a mature digital infrastructure with good mobile optimization and SEO practices. Security posture is good with HTTPS enforcement and cookie consent mechanisms, though formal security policies and incident response details are absent. Overall, the website is professional, trustworthy, and compliant with GDPR, supporting a positive business credibility profile.

L

Limeleaf Worker Collective

limeleaf.coop

10

Limeleaf Worker Collective is a US-based worker-owned cooperative specializing in building fast, reliable, scalable, and maintainable software systems. Their business model focuses on collaborative software development services, targeting teams and organizations needing planning, optimization, and platform building support. The cooperative has established a credible market position, evidenced by partnerships and client logos from major companies and cooperatives. Technically, the website employs modern CSS frameworks and JavaScript analytics, with good mobile optimization and accessibility. However, the domain is relatively new, created in 2025, aligning with the cooperative's founding date. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers, and no privacy or cookie policies are present, indicating compliance gaps. Overall, the website is professional and trustworthy but would benefit from enhanced security and privacy measures.

A

AccessPress Themes | Premium WordPress Themes & Plugins

accesspressthemes.com

3

AccessPress Themes operates a website offering premium WordPress themes and plugins targeting WordPress users and developers. The site presents professional design and content relevant to its niche. However, the absence of WHOIS registration data raises concerns about domain legitimacy or data availability. The technical infrastructure is based on WordPress with standard web technologies, showing moderate performance and good mobile optimization. Security posture is weak due to lack of visible HTTPS confirmation, security headers, and privacy compliance indicators. Overall, the site appears functional but lacks critical trust and security elements, increasing risk for users and business credibility.

N

Nový Hlavák

novyhlavak.com

10

Nový Hlavák is a Czech public infrastructure project focused on revitalizing the Vrchlického sady park, constructing a new tramway line, and reconstructing the main railway station's new hall in Prague. The project is led by the Danish architectural studio Henning Larsen Architects, which won the competitive dialogue with their design 'Šťastný Hlavák'. The website serves as an informational platform showcasing the project vision, visual comparisons, and virtual tours, targeting city residents, visitors, and stakeholders. Technically, the site is built on WordPress with Elementor and integrates Google Analytics for visitor tracking. The site is well-structured and mobile-optimized but lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and DNSSEC.

3

3M

3m.com

73

3M is a large multinational technology and manufacturing company that applies science and innovation to deliver a broad portfolio of products and solutions across multiple industries including automotive, commercial solutions, consumer products, electronics, energy, government, manufacturing, safety, and transportation. The website reflects a mature digital presence with comprehensive content, multimedia elements, and clear navigation tailored to a diverse audience of industrial, commercial, and consumer customers. The company maintains strong branding consistency and trust indicators such as investor relations and sustainability disclosures. Technically, the site uses modern JavaScript frameworks, tag management, and performance monitoring tools, hosted likely on Akamai with IBM WebSphere Portal CMS. Security posture is good with HTTPS, cookie consent mechanisms, and no visible vulnerabilities, though explicit security headers and incident response contacts are not evident. WHOIS data is unavailable due to registry restrictions, but the website's professional nature and corporate disclosures support legitimacy. Overall, the site is well-constructed, secure, and compliant with privacy regulations, serving as a reliable digital asset for 3M's global operations.

H

Harmonie Norge AS

harmonie.no

67

Harmonie Norge AS operates a professional e-commerce website focused on manufacturing and retailing doors, windows, and smart lock solutions primarily for the Norwegian market. The company has a consistent brand presence and offers a range of products including exterior and interior doors, garage doors, and accessories. The website is built on a modern technical stack with JavaScript frameworks, Google Analytics, and a cookie consent mechanism, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced, but lacks visible security headers and explicit privacy and terms policies. Overall, the website is trustworthy and functional but could improve compliance and security transparency.

M

MaM Multimedia s.r.o.

mam.sk

37

MaM Multimedia s.r.o. is a Slovak technology service provider specializing in web design, e-commerce solutions, web hosting, and online marketing. Established in 2003, the company offers a comprehensive range of internet-related services including graphic design, IT equipment provisioning, and internet connectivity. Their market position is supported by a long domain age and references to notable projects such as the official city website of Žilina and various e-commerce clients. Technically, the website employs legacy technologies with JavaScript and Google Analytics integrations but lacks modern security and privacy features. The absence of HTTPS enforcement and security headers, combined with no visible privacy or cookie policies, indicates compliance and security gaps. Overall, the site is functional but requires modernization and enhanced security measures to improve trust and compliance.

S

stopsmoking

stopsmoking.ch

68

stopsmoking.ch is a professionally designed national platform based in Switzerland dedicated to supporting individuals in quitting smoking. It offers comprehensive educational content, counseling services, and tools tailored for both smokers and healthcare professionals. The platform is well-positioned in the healthcare and non-profit sectors, targeting a mature audience seeking tobacco cessation support. Technically, the site is built on TYPO3 CMS, employs modern JavaScript libraries like Swiper.js, and uses Matomo analytics hosted on a Swiss cloud provider, reflecting a good level of digital maturity and privacy awareness. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR and cookie regulations.

H

Helmholtz Munich

helmholtz-muenchen.de

60

Helmholtz Munich is a leading German research center specializing in health and environmental sciences. The organization focuses on biomedical research areas such as diabetes, obesity, environmental health, stem cells, bioengineering, and artificial intelligence. It serves a broad audience including researchers, healthcare professionals, and scientific partners, offering cutting-edge research, technology transfer, and scientific career development. The website reflects a strong market position as a reputable and well-established institution in the healthcare research sector. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and Matomo for analytics, indicating a mature digital infrastructure. The site is well-optimized for mobile devices, accessible, and SEO-friendly, with a professional design and clear navigation. Security measures include HTTPS enforcement, security headers, and script nonce usage, contributing to a robust security posture. Security-wise, the site demonstrates good practices with no visible vulnerabilities or exposed sensitive data. However, it lacks a visible cookie consent mechanism and a dedicated vulnerability disclosure policy, which are recommended for full GDPR compliance and security transparency. Incident response contact details are also not explicitly provided. Overall, the website is professional, trustworthy, and secure, with minor areas for improvement in privacy compliance and security transparency. The domain registration data aligns well with the organization's identity, reinforcing legitimacy and trustworthiness.

E

etracker GmbH

speisekarte.de

56

speisekarte.de is a well-established German online platform specializing in digital restaurant menus and restaurant search, operating since 2008. It serves a large user base with over 150,000 restaurants listed and millions of monthly visitors. The platform offers searchable menus, user accounts, and community features to enhance the dining experience. Technically, the website employs modern web technologies including JavaScript, CSS, and integrates third-party services such as Hotjar and eTracker for analytics, as well as a Consent Management Platform to ensure GDPR compliance. Hosting and DNS are managed via Cloudflare, providing robust performance and security. Security posture is strong with HTTPS enforced and consent mechanisms in place, though some security headers and explicit security policies are absent. Overall, the site is professional, user-friendly, and trustworthy with good privacy compliance and advertising transparency.

C

C4all Gesellschaft mbH & Co. KG

c4all.de

48

C4all Gesellschaft mbH & Co. KG is a German-based digital marketing service provider specializing in telephony, SMS, video, and image services to help businesses analyze campaigns, track customer touchpoints, and acquire new clients. With over 10 years of experience and a client base of 175 companies, C4all positions itself as a reliable partner in the digital marketing ecosystem. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content tailored to business customers seeking marketing measurement and communication solutions. Technically, the site is built on Umbraco CMS with modern HTML5, CSS3, and JavaScript technologies, leveraging the uSkinned sitebuilder framework. While performance and SEO are adequate, there is room for improvement in accessibility and security headers. Security posture is moderate, with secure form handling and CAPTCHA but lacking visible security policies and headers. Privacy compliance is partially met with a privacy policy and GDPR consent checkbox but missing a cookie consent mechanism. Overall, the domain registration data aligns with the business claims, indicating legitimacy and consistency.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-care-life.de

48

BKK Care & Life is a healthcare-focused website dedicated to raising awareness about testicular cancer and promoting early detection through self-examination. The platform is supported by the BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V., a German statutory health insurance association. The website provides detailed educational content, including anatomy, function, and practical guides for self-checking testicles, targeting men primarily between 25 and 45 years old. The site is professionally designed, multilingual, and well-structured to serve its niche audience effectively. Technically, the website is built on WordPress 6.8.3 with WPML for multilingual support and uses standard web technologies including jQuery and custom JavaScript. Hosting is managed via domaincontrol.com name servers, indicating a stable and reputable hosting environment. Performance and mobile optimization are good, with accessibility and SEO features well implemented. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks some advanced security headers and a cookie consent mechanism. No forms collecting personal data were detected on the main page, reducing immediate privacy risks. The WHOIS data is consistent and legitimate, with no suspicious patterns. However, the site could improve by publishing a security policy, incident response contacts, and vulnerability disclosure information. Overall, BKK Care & Life presents a trustworthy, professional, and secure platform for health education with minor areas for improvement in privacy compliance and security best practices.

S

Spotler

mailplus.nl

65

Spotler is a medium-sized technology company founded in 2014, specializing in marketing cloud solutions that enable marketers to leverage data-driven marketing automation and campaign personalization. The company targets marketing professionals and businesses seeking to improve marketing effectiveness through connected tools and data insights. Their market position is solid within the Netherlands and broader European markets, supported by a professional and well-branded online presence. Technically, the website is built on WordPress with modern SEO and multilingual capabilities via WPML. It uses Cloudflare for DNS and CDN services, Google Tag Manager for analytics, and Cookiebot for cookie consent management. The site is mobile-optimized, accessible, and performs moderately well, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses clientTransferProhibited domain status, and implements cookie consent mechanisms. However, DNSSEC is not enabled, and explicit security headers and policies are not clearly documented. No incident response or vulnerability disclosure information is publicly available, which could be improved to enhance trust and compliance. Overall, Spotler's website demonstrates a high level of professionalism, compliance with GDPR, and a strong business credibility score. The risk profile is low, with recommendations focusing on enhancing DNS security, publishing security policies, and improving transparency around incident response.

G

Global Pixel

globalpixel.pt

54

Global Pixel is a well-established Portuguese company specializing in web development, graphic design, and digital marketing services with over 15 years of experience. The company targets businesses and organizations seeking professional digital solutions, offering a broad range of services including website creation, online stores, SEO, social media management, and advertising campaigns. Their market position is solidified by a diverse portfolio of reputable clients and a consistent brand presence. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, and integrates popular analytics and marketing tools like Google Analytics, Google Tag Manager, and Facebook Pixel. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with a strong SSL configuration and incorporates security best practices such as CSRF tokens and CAPTCHA for forms. However, it lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low risk profile with strong business credibility and privacy compliance. Strategic improvements in security policy transparency and header implementation would enhance the security posture further.

L

LiJOT

lijot.lt

53

LiJOT is a Lithuanian non-profit youth organization that unites national youth organizations and municipal youth councils. Established in 2000, it serves as a central body for youth engagement in Lithuania. The website is built on WordPress using the Elementor page builder, featuring good design quality and mobile optimization. It employs HTTPS and cookie consent mechanisms to enhance user privacy and security. However, the site lacks explicit privacy policies, terms of service, and contact information, which are important for compliance and user trust. The technical infrastructure is modern but could benefit from additional security headers and formalized incident response information.

D

Dansk Ungdoms Fællesråd

duf.dk

68

Dansk Ungdoms Fællesråd (DUF) is a well-established Danish non-profit umbrella organization founded in 1996, representing 78 nationwide youth and children's organizations. The organization focuses on promoting youth participation in democratic processes and supporting the development of youth associations through projects, funding, education, and international cooperation. The website reflects a mature market position with comprehensive content and clear communication tailored to youth organizations and stakeholders in Denmark. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web standards, responsive design, and privacy-conscious analytics tools. Security posture is solid with HTTPS enforced and script integrity checks, though some security headers and formal policies are absent. Overall, DUF demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR, making it a credible and authoritative source in its sector.

E

European Youth Forum

youthforum.org

54

The European Youth Forum is a well-established non-profit organization representing the voice of young people across Europe. Their website clearly communicates their mission to empower youth and advocate for their rights, positioning them as a leading platform in the youth advocacy sector. The site offers comprehensive information about their actions, news, policy library, and membership, targeting youth organizations, policymakers, and young individuals. Technically, the website is built on a modern stack including Craft CMS, JavaScript frameworks, and uses Google Tag Manager for analytics. The site is well-optimized for mobile devices, features good accessibility practices, and loads quickly. The presence of a cookie consent mechanism and a detailed privacy policy indicates a strong commitment to privacy compliance. From a security perspective, the site enforces HTTPS and employs secure form handling with CSRF tokens. While explicit security headers are not fully confirmed, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. The lack of WHOIS data is due to privacy protection, which is justified for this type of organization. No WAF or blocking mechanisms interfere with content access. Overall, the website presents a professional, trustworthy, and secure platform for youth advocacy in Europe. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure page to further strengthen trust and compliance.

The website eurodesk.org.uk is currently a parked domain with a simple landing page indicating that the domain is for sale. There is no active business or service presented on the site. The content is minimal, primarily in German, and serves only to advertise the domain sale. The technical infrastructure includes basic JavaScript and external scripts related to advertising and tracking, hosted via AWS Cloudfront CDN. There is no evidence of a content management system or modern web frameworks. Security posture is weak due to lack of visible HTTPS enforcement, absence of security headers, and no privacy or cookie policies. No contact or business information is provided, limiting trust and credibility. Overall, the site functions solely as a domain parking page with advertising scripts and no substantive content or business presence.

M

Myndigheten för ungdoms- och civilsamhällesfrågor (MUCF)

mucf.se

56

MUCF is a Swedish government agency dedicated to improving the conditions for young people and civil society. It operates as the national office for EU youth programs such as Erasmus+ and the European Solidarity Corps, distributing grants and facilitating international exchanges. The website reflects a mature digital presence with a modern Drupal 11 CMS, integrated analytics via Matomo, and compliance with privacy regulations including GDPR. The site is well-structured, accessible, and professionally branded, reinforcing MUCF's authoritative position in its sector. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers could be enhanced. WHOIS data was not retrievable for the queried subdomain, but the domain's legitimacy is supported by official branding and content. Overall, MUCF's website is a trustworthy, well-maintained government resource serving youth and civil society stakeholders in Sweden.

A

ANPCDEFP

eurodesk.ro

42

Eurodesk Romania operates as an official national portal providing comprehensive information and resources related to European Union youth programs such as Erasmus+, DiscoverEU, and the European Solidarity Corps. The website serves youth, youth workers, and organizations by offering timely news, event announcements, and access to funding opportunities. It is supported and co-financed by the European Union and the Romanian government agency ANPCDEFP, establishing a strong market position within the government and non-profit sectors focused on youth development. From a technical perspective, the website employs a legacy JavaScript stack including Prototype.js and Scriptaculous, alongside modern analytics tools like Google Analytics and Google Tag Manager. The site is served over HTTPS with a cookie consent mechanism in place, indicating a moderate level of digital maturity and compliance with GDPR requirements. However, there is room for improvement in mobile optimization, performance, and implementation of modern security headers. Security posture is adequate with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of explicit security policies or incident response information suggests an opportunity to enhance transparency and preparedness. WHOIS data is not publicly available due to ROTLD privacy policies, but the domain's association with official EU and government entities supports its legitimacy. Overall, the website presents a trustworthy and professional platform for youth-related EU program information, with moderate technical sophistication and compliance. Strategic improvements in security headers, mobile responsiveness, and incident response documentation would further strengthen its security and user trust.

S

SKD BKK

skd-bkk.de

57

SKD BKK is a German health insurance provider positioning itself as a premium 'S-Kasse' with unlimited health service benefits. The website presents a professional and consistent brand image, targeting general healthcare customers in Germany. The business model focuses on comprehensive health insurance services including family health, telemedicine, electronic patient records, and health courses. The company leverages TYPO3 CMS for its website platform, with custom theming by DSG1 GmbH, and employs privacy-conscious analytics via Matomo. Cookie consent is managed through Cookiebot, ensuring GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and incident response policies are not explicitly published. Overall, the website is well-structured, mobile-optimized, and trustworthy, with no signs of malicious or adult content.

Koenig & Bauer BKK is a regional statutory health insurance provider in Germany, serving primarily employees and families associated with Koenig & Bauer and related companies. The website presents a professional image with clear information about health insurance services, fitness programs, and personal support. The company emphasizes regional proximity and personalized service, positioning itself as a trusted partner in health and wellbeing. Technically, the website uses custom HTML, CSS, and JavaScript with moderate performance and basic mobile optimization. Security posture is moderate with no visible advanced security headers or explicit security policies, and privacy compliance is partial due to the absence of a cookie consent mechanism. Contact information is comprehensive and transparent, supporting business credibility. Overall, the website is safe, professional, and trustworthy but could improve in security and privacy compliance.

A

Audi BKK

audibkk.de

48

Audi BKK is a German statutory health insurance provider offering affordable nationwide coverage with a competitive contribution rate of 17.0%. The company emphasizes digital services such as electronic patient records, e-prescriptions, and a digital bonus program, positioning itself as a modern and customer-centric insurer. The website reflects a strong market position, highlighted by top rankings in customer satisfaction surveys. Technically, the site is built on TYPO3 CMS with modern JavaScript frameworks and includes a consent management platform for GDPR compliance. Security posture is solid with HTTPS enforcement and security headers, though explicit security policies and incident response details are not publicly disclosed. Overall, the site is professional, trustworthy, and well-optimized for users.

The website extra-plus.de serves as a dedicated portal for supplementary health insurance products offered by Barmenia Versicherungen, a large independent insurance group in Germany. It targets BKK insured customers and provides detailed information on ambulant, dental, hospital, travel, and other supplementary insurance products. The site is well-branded, consistent with the parent company Barmenia, and offers clear contact channels including phone, email, and physical address. The presence of structured data and social media links further reinforces its legitimacy and market presence. Technically, the website employs modern JavaScript libraries such as Slick Slider and FontAwesome, and uses RichFaces indicating a Java Server Faces backend. Usercentrics is integrated for cookie consent management, ensuring GDPR compliance. Google Tag Manager is used for analytics and marketing tags. The site is mobile optimized, accessible, and SEO friendly, with good performance characteristics. From a security perspective, the site enforces HTTPS and uses consent management for cookies, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious content were detected. The WHOIS data aligns well with the website branding and domain registration, indicating a trustworthy and legitimate online presence. Overall, the website demonstrates a strong business credibility and privacy compliance posture, with room for improvement in explicit security policy publication and security header implementation.

The website ww1.glm-fachschaft.de appears to be a minimal placeholder or redirect page with very limited content. It primarily contains an invisible tracking pixel and an iframe loading external content from searchresultsworld.com, which raises concerns about content control and security. There is no visible business information, contact details, or compliance policies such as privacy or cookie policies. The technical infrastructure is basic, with no detected CMS or frameworks, and the hosting appears to be via domainmx.com based on nameservers. Security posture is weak due to lack of HTTPS enforcement visible in the content, absence of security headers, and potential risks from third-party iframe injections. WHOIS data is minimal and generic, lacking registrant details, which reduces trustworthiness. Overall, the site scores low on content quality, security, and privacy compliance, indicating a high risk and low credibility.

The website med-alumni.de currently serves as a domain parking and sales landing page, offering a selection of generic categories such as products, home & garden, sports, and information guides. The domain is explicitly marked as 'for sale' and lacks any substantive business content or contact information. The technical infrastructure is basic but includes modern HTML, CSS, and JavaScript with a captcha challenge to mitigate bot access. However, there is no evidence of HTTPS enforcement or advanced security headers, which limits the security posture. The absence of WHOIS data and registrant information further reduces trust and legitimacy. Overall, the site is functional as a domain sale landing page but lacks business credibility and comprehensive privacy or security compliance.

U

Universitäres Herz- und Gefäßzentrum Frankfurt

herz-frankfurt.de

49

The Universitäres Herz- und Gefäßzentrum Frankfurt is a specialized heart and vascular center integrated within the Universitätsklinikum Frankfurt. It offers interdisciplinary cardiology, angiologie, heart and vascular surgery services, focusing on personalized patient care and advanced therapies. The center holds multiple certifications and maintains partnerships with reputable organizations, positioning itself as a leading healthcare provider in the region. The website reflects a professional and comprehensive digital presence with clear navigation and rich content tailored to patients, visitors, and medical professionals. Technically, the site is built on Craft CMS with modern web standards and includes privacy-conscious analytics implementations. Security posture is good with HTTPS and consent management, though explicit security policies and incident response details are absent. Overall, the site is trustworthy, compliant with GDPR, and well-optimized for user experience.

T

Trackonomics

trackonomics.net

66

Trackonomics is a technology company offering a SaaS platform focused on affiliate data aggregation, analytics, and link automation. Their services target content publishers, brands, and agencies seeking to optimize affiliate marketing efforts at scale. The company appears to be a small-sized business founded in 2014, with a professional and consistent web presence. The website is built on WordPress, leveraging Yoast SEO and Google reCAPTCHA for security and SEO enhancements. Hosting and domain registration are managed through Amazon Registrar, Inc., indicating a reliable infrastructure. Security posture is moderate with HTTPS enabled but lacking advanced security headers and DNSSEC. Privacy and cookie policies are not found, indicating compliance gaps. No explicit contact information or incident response details are provided, which may impact user trust and regulatory compliance. Overall, the website is professional, safe, and functional but would benefit from enhanced privacy disclosures and security practices.

D

Das Örtliche

dasoertliche.de

46

Das Örtliche is a leading German telephone directory and local search service offering comprehensive listings for businesses, authorities, and private entries. The website provides multiple search functionalities including standard search, reverse phone lookup, postal code and area code searches, and additional services like online appointment booking and table reservations. It holds a strong market position in Germany's telecommunications sector with a large user base and recognized brand presence. The company is part of DTM Deutsche Tele Medien GmbH and maintains partnerships with related directory services.

D

Das Telefonbuch-Servicegesellschaft mbH

dastelefonbuch.de

62

Das Telefonbuch-Servicegesellschaft mbH operates a leading German online telephone directory service offering phone numbers, addresses, company information, and person search. The website serves a broad German audience with additional services such as appointment booking and advertising platforms. The company maintains a strong market position in the media sector with a large-scale operation. Technically, the website is built on a custom CMS with modern JavaScript and CSS technologies, supported by Cloudflare CDN and advanced consent management tools. The site is performant, mobile-optimized, and accessible, providing a professional user experience. Security posture is solid with HTTPS enforced and consent-based tracking, though explicit security headers could be improved. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant. Overall, the domain registration data aligns well with the business identity, indicating legitimacy and trustworthiness.

S

Sure Water LLC

surewatertanks.com

61

Sure Water LLC operates an e-commerce website specializing in emergency water storage tanks primarily targeting homeowners and small businesses in the United States. The company leverages over three decades of industry experience to provide durable, certified plastic water tanks designed for emergency preparedness. The website is built on the Shopify platform, utilizing modern e-commerce technologies and integrations such as Facebook Pixel, Google Analytics, and Lucky Orange for marketing and analytics purposes. Despite the professional presentation and active sales presence, the absence of WHOIS registration data raises questions about domain legitimacy, although this may be due to privacy protections or technical issues. The site lacks explicit privacy and cookie policies, which could impact compliance with data protection regulations. Overall, the business appears credible with strong trust indicators including certifications and customer testimonials.

A

AdmiralCloud

admiralcloud.com

71

AdmiralCloud is a technology company specializing in Digital Asset Management solutions for enterprises. Their website presents a professional and well-structured platform built on WordPress with the Divi theme, indicating a moderate level of digital maturity. The site includes modern web technologies such as lazy loading scripts and font optimizations, contributing to a good user experience and performance. However, the absence of WHOIS data raises questions about domain registration transparency. Security posture is moderate, with cookie consent implemented but lacking visible security headers and explicit privacy or terms of service pages. Overall, the website is functional and business-focused but would benefit from enhanced transparency and security practices to improve trust and compliance.

H

Helmholtz Munich

helmholtz-munich.de

60

Helmholtz Munich is a leading German research center specializing in health and environmental sciences. The organization focuses on biomedical research, including diabetes, obesity, environmental health, and personalized medicine. It serves researchers, healthcare professionals, and scientific communities, offering advanced research, technology transfer, and scientific career development programs. The website reflects a strong market position as a reputable non-profit research institution with a clear mission to improve future health. Technically, the website is built on TYPO3 CMS with modern frontend technologies and uses Matomo for privacy-conscious analytics. The site is well-optimized for mobile and accessibility, with a professional design and clear navigation. However, some improvements could be made in security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site uses HTTPS and does not expose sensitive data. No critical vulnerabilities were detected, but the absence of explicit incident response contacts and vulnerability disclosure policies suggests room for improvement in security transparency and readiness. Overall, the website is trustworthy, professional, and well-maintained, with minor gaps in privacy compliance and security best practices. Strategic enhancements in these areas would further strengthen its security posture and user trust.

E

EURAXESS Croatia

euraxess.hr

70

EURAXESS Croatia is a national portal affiliated with the European Commission, providing comprehensive information and personalized support services to researchers and their families to facilitate mobility and career development within Croatia and Europe. The platform offers job listings, funding opportunities, and practical guidance on visas, healthcare, accommodation, and other essential topics. The website targets researchers, entrepreneurs, research organizations, and businesses, positioning itself as a key facilitator in the European research ecosystem. Technically, the website is built on Drupal 10, leveraging modern web technologies and adhering to good practices in mobile optimization, accessibility, and SEO. Hosting appears to be managed by CARNET, a Croatian academic and research network, which aligns with the domain registration data. The site performs moderately well with a clean, professional design and clear navigation. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, reflecting compliance with GDPR and privacy standards. However, there is room for improvement in security headers and publishing explicit security policies or incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Overall, EURAXESS Croatia presents a trustworthy, professional, and well-maintained online presence that effectively serves its target audience. Strategic recommendations include enhancing security headers, publishing a security policy, and expanding contact information to improve transparency and user trust.

O

Opetushallitus

oph.fi

67

Opetushallitus is the Finnish National Agency for Education, serving as a key government authority responsible for early childhood education, school curricula, lifelong learning, and internationalization in education. The website reflects a mature digital presence with comprehensive educational content, services, and resources targeted at educators, students, and organizations within Finland and internationally. The site is built on Drupal 10, employs modern web technologies, and demonstrates good mobile optimization and accessibility standards. Privacy and cookie policies are clearly presented with consent mechanisms in place, indicating compliance with GDPR requirements. Security posture is strong with HTTPS enforced and appropriate security headers detected. No critical vulnerabilities or suspicious activities were found. Overall, the website is professional, trustworthy, and well-aligned with its role as a national education authority.

The website at cartagiovani.eu currently serves as a security CAPTCHA challenge page powered by BitNinja, designed to block automated or suspicious traffic. It does not provide any business or marketing content, and visitors must complete a CAPTCHA to proceed. The page uses Google reCAPTCHA v2 and Google Analytics for bot mitigation and tracking. The technical infrastructure indicates use of outdated CMS versions (Joomla 1.5 and WordPress 2.5) as per meta tags, which may pose security risks if these platforms are actively used elsewhere on the site. Hosting is provided by Serverplan Srl Unipersonale, a known hosting provider. The security posture includes basic bot mitigation but lacks visible security headers and privacy policies, limiting compliance and trustworthiness. Overall, the site is primarily a security gate rather than a business-facing website.

O

Opetushallitus

cimo.fi

67

Opetushallitus is the Finnish National Board of Education, serving as a key government agency responsible for early childhood education, school curricula, lifelong learning, and internationalization services in Finland. The website reflects a mature digital presence with comprehensive educational content, funding information, and international cooperation programs. The site is built on Drupal 10, leveraging modern web technologies and strong privacy controls, including cookie consent management and minimal user tracking. Security posture is robust with HTTPS enforcement and best practices in place, though explicit security headers could be enhanced. Contact information is transparent and includes phone numbers, physical address, and social media channels, reinforcing trust and accessibility. Overall, the website is professional, well-structured, and highly trustworthy, serving a broad audience of educators, students, and institutions.

E

Erasmus+ ja Euroopa Solidaarsuskorpuse agentuur

noored.ee

47

Erasmus+ ja Euroopa Solidaarsuskorpuse agentuur is a national agency in Estonia dedicated to supporting youth programs under the Erasmus+ and European Solidarity Corps initiatives. The agency provides comprehensive information, project opportunities, training, and resources to youth, youth sector specialists, and organizations. The website is professionally designed, well-structured, and optimized for mobile and SEO, reflecting a mature digital presence. Technically, it is built on WordPress with modern performance enhancements such as WP Rocket and Google Site Kit integration. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are not evident. Overall, the site is trustworthy, compliant with GDPR, and serves as a key government/non-profit resource for youth programs in Estonia.

H

Helmholtz Munich

lungeninformationsdienst.de

58

The Lungeninformationsdienst website is a professionally managed health information portal operated by Helmholtz Munich in cooperation with the German Center for Lung Research (DZL). It provides scientifically validated, up-to-date information on lung diseases, diagnosis, therapy, prevention, and living with lung conditions. The site targets patients, healthcare professionals, and the general public interested in lung health. Its market position is strong within the German healthcare information sector, leveraging institutional trust and research expertise. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and integrates Matomo analytics for user tracking. The website is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS and nonce usage, but lacks explicit security headers and published security policies. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the domain registration data aligns well with the institutional affiliations, indicating high legitimacy and trustworthiness.

Radiologie Nuklearmedizin Adickesallee operates the Deutsches Zentrum für Dentaldiagnostik in Frankfurt, specializing in advanced dental and head-neck diagnostic imaging using MRI and CT technologies. The website reflects a professional medical service provider with a clear focus on patient care and diagnostic precision. The technical infrastructure is modern, leveraging Next.js and Material-UI frameworks, hosted on Hetzner servers, ensuring reliable performance and mobile responsiveness. Security posture is strong with HTTPS and security headers implemented, though privacy compliance could be enhanced with explicit cookie consent mechanisms and published security policies. Overall, the site is trustworthy and well-positioned in the healthcare diagnostics market.

N

Næringslivets NOx-fond

noxfondet.no

61

Næringslivets NOx-fond is a Norwegian non-profit organization dedicated to reducing nitrogen oxide emissions by supporting emission-reducing projects through funding and regulatory frameworks. The website serves as an information hub for businesses subject to NOx regulations, providing guidance on reporting, funding applications, and updates on NOx agreements. The organization maintains a strong market position within Norway's environmental and energy sectors, supported by official registration and active social media presence. Technically, the website is built on a modern CMS platform (Episerver/Optimizely) and employs advanced analytics and consent management tools such as Microsoft Application Insights and Cookiebot. It uses Google reCAPTCHA Enterprise to secure forms and enforces HTTPS with strong security headers, reflecting a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices. From a security perspective, the site demonstrates good practices including encrypted connections, consent management, and monitoring. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its target audience effectively. Strategic improvements in security transparency and incident readiness would further strengthen its posture.

G

Gelbe Seiten

gelbeseiten.de

51

Gelbe Seiten is a prominent German business directory offering comprehensive listings of companies, telephone numbers, and addresses across various industries in Germany. The website serves both consumers seeking service providers and businesses aiming to increase visibility through advertising and premium listings. It holds a strong market position supported by multiple awards and a consistent brand presence. Technically, the site employs modern web technologies, including JavaScript frameworks, consent management platforms, and performance optimizations, hosted on reliable infrastructure with Cloudflare DNS. Security posture is robust with HTTPS enforcement and GDPR compliance mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the site is professional, user-friendly, and trustworthy, with moderate tracking balanced by user consent.

D

Dell Deutschland

dell.de

68

Dell Deutschland operates as a regional branch of Dell Technologies, providing a comprehensive portfolio of technology products and services including notebooks, desktops, servers, storage, monitors, gaming equipment, and accessories. The website targets both business and consumer segments in Germany, reflecting Dell's strong market position as a global technology leader. The digital infrastructure is robust, leveraging advanced marketing and analytics tools such as Adobe Target and OneTrust for consent management, ensuring GDPR compliance. The site is well-optimized for performance, mobile responsiveness, and accessibility, with a professional design and clear navigation. Security posture is strong with HTTPS enforcement, security headers, and cookie consent mechanisms, though explicit security policy and incident response information are not publicly detailed. Overall, the site demonstrates high trustworthiness and professionalism consistent with an enterprise-grade technology provider.

R

RC Printer

rcprinter.com

70

RC Printer is a small Canadian e-commerce business specializing in kits for 3D printed RC vehicles, targeting hobbyists and enthusiasts interested in building their own remote-controlled creations. The website is built on the Shopify platform, leveraging modern web technologies and third-party apps such as Judge.me for customer reviews and Zoorix for cross-selling. The site demonstrates good digital maturity with fast performance, mobile optimization, and clear navigation. Privacy and cookie policies are present and GDPR compliant, with a consent mechanism implemented. Security posture is strong with HTTPS enforced and standard security headers, though DNSSEC is not enabled and no explicit security or incident response policies are published. Overall, the business appears legitimate and trustworthy with consistent domain registration data and transparent contact information.

L

Leipziger Messe GmbH

medlogistica.de

67

med.Logistica is a specialized event platform organized by Leipziger Messe GmbH, focusing on hospital logistics and process management in the German-speaking healthcare sector. It serves as a leading congress and trade fair, targeting hospital management professionals, exhibitors, and visitors interested in optimizing hospital processes. The platform offers exhibitor registration, visitor information, ticketing, and an official mobile app to enhance user engagement. The website reflects a professional and consistent brand image aligned with its parent company, Leipziger Messe GmbH, based in Germany. Technically, the website employs modern web technologies including JavaScript, Google Tag Manager for analytics, and a comprehensive cookie consent mechanism powered by consentmanager.net. The site is mobile-optimized, accessible, and SEO-friendly, hosted likely under Leipziger Messe's infrastructure. Performance is moderate with good technical implementation but lacks explicit CMS identification. From a security perspective, the site enforces HTTPS and uses cookie consent for GDPR compliance. However, it lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration data aligns well with the website content, indicating a trustworthy and legitimate online presence. Overall, med.Logistica's website is a well-structured, professional platform with good privacy compliance and moderate security posture. Strategic improvements in security policy transparency and incident response readiness would enhance trust and resilience.

J

Jsmon

jsmon.sh

65

Jsmon is a newly founded technology startup (2024) offering a modern JavaScript security platform focused on continuous external application security and monitoring. The platform aims to provide developers and security teams with advanced scanning, monitoring, and automation capabilities to stay ahead of JavaScript-related threats. The website is professionally designed using Framer and hosted with Cloudfront CDN, indicating a modern technical infrastructure. Analytics and customer engagement tools like Google Analytics and Intercom are integrated, supporting digital maturity. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation.

G

Growwr Inc.

growwr.co

42

Growwr Inc. operates a professional freelance platform specializing in connecting vetted and verified tech talent with clients seeking freelance gigs, contract work, or full-time roles. The platform emphasizes reliability, secure payments, and genuine job opportunities, positioning itself as a trustworthy alternative in the gig economy. The website is well-designed with a modern tech stack based on Next.js and React, offering good mobile optimization and user experience. However, some privacy compliance aspects such as cookie consent and explicit terms of service are missing or minimal. Security posture is solid with HTTPS and no exposed sensitive data, but lacks advanced security headers and formal incident response information. Overall, Growwr presents a credible and professional business with room for improvement in privacy and security transparency.

E

Everywhere Ventures

everywhere.vc

69

Everywhere Ventures operates as a global pre-seed venture capital fund focused on backing early-stage founders worldwide. Their business model centers on investing $250k into pre-seed rounds and fostering a strong founder community, supported by a portfolio of over 300 companies across 30 countries. The website reflects a professional and consistent brand image, targeting startup founders and investors with clear messaging and portfolio showcases. Technically, the site is built on Webflow with modern JavaScript libraries, delivering a good user experience with mobile optimization and accessibility considerations. Security posture is solid with HTTPS and secure forms, though lacks some advanced security headers and published policies. Privacy compliance is weak due to missing privacy and cookie policies, representing an area for improvement. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

A

Asian Art and Antiques LTD

vegasswordshow.com

63

The Vegas Sword Show website represents a niche event organizer focused on Japanese sword collectors and antique arms enthusiasts, hosting an event in Las Vegas in conjunction with the Las Vegas Antique Arms Show. The business operates primarily as an event coordinator, providing table and pass sales, event information, and accommodation details. The website is built on a custom CMS platform and presents a professional, content-rich experience with good navigation and mobile optimization. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with no visible security headers or published security policies, and privacy compliance is weak due to missing privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and informative but would benefit from improved security and compliance transparency.