Security Directory

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

jung-und-schwanger.de

65

jung-und-schwanger.de is a German government-backed informational website operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG). It provides comprehensive support and guidance for young pregnant individuals and young fathers, focusing on pregnancy, childbirth, parenting, education, and legal matters. The site is well-positioned as an authoritative resource in its niche, offering telephone helpline services and online counseling referrals. Technically, the website is built on TYPO3 CMS and uses Matomo for privacy-conscious analytics. It is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security-wise, the site enforces HTTPS, anonymizes IPs in analytics, and uses a cookie consent banner, though it lacks explicit security headers and published security policies. Overall, the site demonstrates a strong commitment to privacy and user support, with no adult or explicit content, making it safe for general audiences.

The Römisch-Katholische Kirche Basel-Stadt website serves as the official online presence of the Roman Catholic Church in Basel-Stadt, Switzerland. It provides comprehensive information about church activities, pastoral care, social services, and community engagement. The site targets local residents and members of the Catholic community, offering resources and news relevant to their spiritual and social needs. The business model is non-profit, focusing on religious and community services within the regional government and non-profit sectors. Technically, the website employs a modern web application framework (webIQ 6.1) and integrates popular JavaScript libraries such as jQuery and Bootstrap for responsive design. It uses multiple analytics platforms including Matomo, Microsoft Clarity, and Google Analytics, alongside a robust privacy consent management system powered by Truendo. The site is mobile-optimized and demonstrates good performance and accessibility basics. From a security perspective, the website enforces HTTPS and uses consent mechanisms for cookies, but lacks explicit security headers and published security policies. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms the domain's legitimacy and consistency with the organization's identity. Overall, the website presents a professional, trustworthy, and secure platform for its intended audience, though improvements in privacy policy transparency, security header implementation, and contact information visibility are recommended.

G

Gemeinde Ermatingen

ermatingen.ch

48

Gemeinde Ermatingen operates as the official municipal government website for the community of Ermatingen in Switzerland. It provides residents and visitors with comprehensive information about local government services, community events, public notices, and administrative contacts. The website targets local citizens and stakeholders, serving as a central hub for municipal communication and service delivery. The business model is typical of a government entity, focusing on transparency, accessibility, and community engagement. From a technical perspective, the website employs a modern technology stack including jQuery, Bootstrap, Isotope, Fancybox, and Matomo analytics, indicating a moderate level of digital maturity. The site is mobile optimized and features interactive elements such as digital tours and event calendars. The CMS appears to be a custom or specialized system (Simpli CMS), supporting structured content management. Security posture is adequate with HTTPS enforced and no visible exposure of sensitive data. However, the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and defense-in-depth strategies. The use of Matomo analytics reflects a privacy-conscious approach to user tracking, though GDPR compliance could be enhanced by adding explicit cookie consent and privacy notices. Overall, the website is trustworthy and professional, with clear contact information and consistent branding. The risk level is low, but strategic enhancements in security policies, privacy compliance, and technical hardening are recommended to maintain and improve trust and regulatory adherence.

K

Kulturbüro Riehen

riehenevents.ch

69

Riehen Events is a municipal cultural event platform operated by the Kulturbüro Riehen, serving the local community and visitors by providing comprehensive event listings, cultural information, and support for event organizers. The website is positioned as a trusted local hub for cultural engagement in Riehen, Switzerland, with a focus on accessibility and community involvement. Technically, the site is built on Drupal 10 with modern JavaScript frameworks and includes privacy-conscious analytics via Matomo. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site demonstrates good digital maturity and professionalism, supporting its role as a public service platform.

G

Gemeinde Riehen Kulturbüro

riehen-tourismus.ch

65

The website www.riehen-tourismus.ch serves as the official tourism portal for the municipality of Riehen in Switzerland. It provides comprehensive information about local attractions, cultural sites, events, parks, dining, and accommodations, targeting tourists and visitors interested in exploring the region. The site is recognized by Switzerland Tourism and the Federal Office of Culture, enhancing its credibility and market position as a trusted local tourism authority. The business model focuses on destination marketing and visitor information services, supporting local tourism growth and cultural engagement. Technically, the website is built on Drupal 10, leveraging modern JavaScript libraries such as Splide.js for UI components and Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and SEO-friendly, with a cookie consent mechanism ensuring GDPR compliance. Hosting details are not explicitly disclosed, but the site uses HTTPS with strong SSL configuration, contributing to a secure user experience. From a security perspective, the site demonstrates good practices including HTTPS enforcement, cookie consent, and no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policy documentation, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced security posture. The WHOIS data aligns well with the website's municipal identity, showing consistent registration information and no suspicious patterns. Overall, the website is professional, trustworthy, and well-suited for its purpose as a tourism information portal. Strategic improvements include publishing formal security and incident response policies and adding vulnerability disclosure information to strengthen user trust and security readiness.

W

Wirtschaftsförderung Region Hannover

roboticscity.de

57

Robotics City Hannover is a regional robotics innovation network supported by the economic development agency of the Hannover region. It serves as a platform to promote robotics technology, support educational and startup initiatives, and foster collaboration among industry, academia, and government. The website is professionally designed, mobile-optimized, and provides comprehensive information about robotics projects, events, and news relevant to the Hannover region. The technical infrastructure includes modern JavaScript libraries and privacy-respecting Matomo analytics. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though formal security policies and incident response contacts are not published. Overall, the site reflects a credible and trustworthy regional government initiative with a focus on technology and innovation.

R

Region Hannover

denkdieweltneu.de

62

The website 'Denk die Welt neu - Das Social Innovation Center' is a regional government-supported platform focused on fostering social entrepreneurship and innovation in the Hannover and Niedersachsen region of Germany. It offers a free four-month entrepreneurship program, workshops, mentoring, and coworking spaces to support social startups. The site is well-branded with consistent use of official logos and provides comprehensive contact information and downloadable resources. Technically, the site uses modern JavaScript libraries such as jQuery and Swiper.js, and employs Matomo analytics configured for privacy compliance. The site is mobile-optimized and accessible, with good SEO practices. Security posture is strong with HTTPS enforced and privacy-respecting analytics, though some security headers could be improved. Overall, the site is trustworthy, professional, and compliant with GDPR and cookie consent regulations.

H

hannoverimpuls GmbH

health-innovation-hannover-region.de

54

Health Innovation Hannover Region is a German-based open innovation platform focused on advancing healthcare solutions by connecting stakeholders from science, research, healthcare providers, payers, and industry. Coordinated by hannoverimpuls GmbH, it fosters collaboration and innovation to develop future-oriented healthcare services rooted in the Hannover region with national and international visibility. The platform offers networking, support, and community engagement primarily targeting healthcare providers, SMEs, startups, and research institutions. Technically, the website employs modern web technologies including jQuery, Swiper, and Matomo analytics configured for privacy compliance. The site is well-structured, mobile-optimized, and accessible, with a cookie consent mechanism and HTTPS enforced. Security posture is solid with privacy-respecting analytics and no visible vulnerabilities, though security headers and incident response policies could be improved. Overall, the website presents a professional and trustworthy digital presence aligned with its business goals.

T

Techfactory

techfactory.de

63

Techfactory is a German-based innovation hub focused on deep tech projects, offering co-working spaces and campus facilities primarily targeting startups and innovators in the technology sector. The website presents a professional and consistent brand image with a clear focus on fostering innovation in Hannover, Germany. The business model revolves around providing infrastructure and community support for deep tech innovation, positioning itself as a regional hotspot in this niche. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with integrations such as Matomo for privacy-conscious analytics and Google Maps and YouTube embeds controlled via user consent mechanisms. Hosting appears to be managed through DomainDiscount24, and the site demonstrates moderate performance with good mobile optimization and basic accessibility features. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism with granular user controls, reflecting good privacy compliance aligned with GDPR. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not evident, representing areas for improvement. No critical vulnerabilities or suspicious content were detected. Overall, the website is trustworthy and professionally maintained, with a solid privacy posture and a clear business focus. Strategic enhancements in transparency around security policies and contact information would further strengthen its credibility and user trust.

B

Bundesministerium für Wirtschaft und Energie

energieforschung.de

49

The website energieforschung.de is an official German government platform managed by the Bundesministerium für Wirtschaft und Energie (Federal Ministry for Economic Affairs and Energy). It serves as an information hub for project funding and research initiatives within the energy sector, focusing on applied energy research and the energy transition. The site targets researchers, energy sector stakeholders, policymakers, and the general public interested in energy innovation and funding opportunities. It provides comprehensive content including news, project funding details, research missions, and networking events, positioning itself as a key resource in Germany's energy research landscape. Technically, the website employs a modern yet stable technology stack including jQuery, Bootstrap, Slick Carousel, and Matomo analytics configured with privacy-conscious settings (cookies disabled). The site is mobile-optimized, accessible, and SEO-friendly with proper metadata and Open Graph tags. Hosting appears to be on German research and education network infrastructure, consistent with its governmental nature. From a security perspective, the site uses HTTPS with strong SSL configuration and implements cookie consent mechanisms. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly configured, and no published security or incident response policies are found. No vulnerabilities or exposed sensitive data were detected in the content. Privacy compliance is strong, with a comprehensive privacy policy and cookie management. Overall, energieforschung.de demonstrates a high level of professionalism, trustworthiness, and compliance suitable for a government research information portal. Strategic improvements could include publishing formal security policies, enhancing HTTP security headers, and providing direct contact information for security incidents to further strengthen trust and security posture.

P

PTTC

pttc.be

67

PTTC is a Belgian non-profit organization specializing in professional training for the transport sector, focusing on continuous education and ADR certification for transport companies and drivers. Established in 2009, it holds a stable market position as a reference training center in Belgium. The website is built on WordPress with modern optimization and compliance tools, providing a user-friendly and informative platform. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though some security headers could be improved. Overall, PTTC demonstrates a mature digital presence aligned with its business goals and regulatory requirements.

I

ITSC

itsc.de

59

ITSC is a well-established German company specializing in digital transformation and IT services for statutory health insurance providers. With over 25 years of experience, ITSC offers a broad portfolio including strategic consulting, application management, business process outsourcing, and AI-driven platform solutions. The company positions itself as a trusted partner in the healthcare sector, leveraging modern technologies and certifications to deliver innovative solutions. Technically, the website is built on TYPO3 CMS with Bootstrap for responsive design, integrating privacy-conscious analytics via Matomo and a clear cookie consent mechanism using Klaro. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, ITSC maintains strong practices including HTTPS enforcement, ISO 27001 and ISO 9001 certifications, and privacy-focused analytics. However, there is room for improvement in publishing explicit security headers, incident response contacts, and data protection officer details. No critical vulnerabilities or blocking mechanisms were detected. Overall, ITSC presents a professional, trustworthy, and secure digital presence aligned with its business focus. Strategic recommendations include enhancing security header implementation, incident response transparency, and further privacy disclosures to strengthen compliance and trust.

R

Trouvez ou Publiez une randonnée Rapidement et Gratuitement ! | randopedestre.com

randopedestre.com

61

randopedestre.com is a niche French website dedicated to the dissemination and discovery of hiking events both in France and internationally. It provides a free platform for hiking event organizers to publish their events and for hikers to find upcoming hikes via a calendar, search tools, and an interactive map. The website is relatively new, launched in late 2023, and targets hiking enthusiasts and event organizers. Technically, it is built on WordPress using Bootstrap 5 and jQuery, with integrations including Google Maps API, Matomo analytics, and Google AdSense for monetization. SEO is well implemented with Yoast SEO plugin and structured data. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite tracking and advertising. Contact information is limited to a contact form without direct emails or phone numbers. Overall, the site is functional, professional, and trustworthy for its niche but could improve in security and privacy transparency.

C

calendrierdestrails.com

calendrierdestrails.com

63

calendrierdestrails.com is a specialized website launched in late 2023 that provides a comprehensive calendar and publication platform for trail running events primarily in France and abroad. It targets both trail runners looking for upcoming events and organizers wishing to publish their events quickly and for free. The site offers advanced search, regional and departmental categorization, and an interactive map to enhance user experience. Technically, the website is built on WordPress with modern technologies including Bootstrap 5, jQuery, Google Maps API, and uses Matomo for analytics and Google AdSense for monetization. The site is mobile-optimized and SEO-friendly with structured data implemented via JSON-LD. Security-wise, the site uses HTTPS with a clientTransferProhibited domain status but lacks DNSSEC and explicit security headers, which are recommended for improvement. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Overall, the website is functional, professional, and trustworthy but could enhance security and privacy features to improve compliance and user trust.

F

Freizeitzentrum Landauer

landauer.ch

67

Freizeitzentrum Landauer is a community leisure center based in Riehen, Switzerland, providing a wide range of indoor and outdoor activities, event hosting, and social spaces for children, youth, and adults. The website reflects a local government or non-profit operated facility focused on community engagement and cultural activities. The digital infrastructure is built on Drupal 10 with modern JavaScript libraries and includes privacy-conscious analytics via Matomo. The site is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. Security posture is good with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are absent. Overall, the domain registration data aligns well with the website's community focus, indicating legitimacy and trustworthiness.

K

Kanton Solothurn

so.ch

67

The website so.ch serves as the official digital portal for the Canton of Solothurn, Switzerland, providing comprehensive government information, public services, and administrative resources. It targets residents, businesses, and stakeholders within the canton, offering structured navigation to departments such as government, parliament, judiciary, and administration. The site leverages TYPO3 CMS, ensuring a stable and scalable content management environment. Technical infrastructure includes modern web technologies, Google Fonts, Matomo analytics for user insights, and reCAPTCHA for form security. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and cookie consent mechanisms. Overall, the site reflects a professional government presence with high trustworthiness and good user experience.

P

PARAT.cc GbR

parat.cc

51

PARAT.cc is a Munich-based design studio specializing in corporate design, branding, UI/UX, and campaign design primarily for cultural, political, and business sectors. The website showcases a professional portfolio with diverse projects including exhibitions, campaigns, and publications, indicating a niche market position focused on creative and cultural branding services. The business targets organizations seeking high-quality design and branding solutions with a strong emphasis on cultural relevance. Technically, the website employs a modern but lightweight tech stack including jQuery, Video.js, Masonry, and Matomo analytics, reflecting a custom-built platform rather than a common CMS. The site is mobile-optimized with good performance and basic accessibility features. SEO is basic but sufficient for the niche. Security posture is solid with HTTPS enforced and consent-based analytics tracking via Matomo. However, the site lacks advanced security headers and formal security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms. Overall, the website presents a trustworthy and professional image with low risk. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and adding vulnerability disclosure information to improve transparency and trust.

N

Niedersächsische Lotto-Sport-Stitung

stiftungsbericht.de

53

The website www.stiftungsbericht.de represents the Niedersächsische Lotto-Sport-Stiftung, a non-profit foundation established in 2009 by the Lower Saxony government through the merger of two prior foundations. The site primarily publishes annual foundation reports for public access, targeting a general audience interested in the foundation's activities and impact. The foundation holds a stable market position as a regional non-profit entity in Germany. Technically, the website employs modern web technologies including JavaScript ES modules, CSS, and the htmx framework, hosted on servers associated with kasserver.com. It uses Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. The site is mobile optimized with good SEO and accessibility basics, though some accessibility features could be improved. Security-wise, HTTPS is enforced with no visible sensitive data exposure, but lacks explicit security headers and formal security policies published on the site. No forms or contact details are present, limiting direct user engagement and incident response readiness. Overall, the site is professional and trustworthy but could enhance privacy and security transparency.

U

Union TLF

e-tlf.com

66

Union TLF is a well-established professional organization representing the transport and logistics sectors in France. Founded in 2000, it serves a large membership base of companies involved in various transport modes and logistics services. The website reflects a mature digital presence with comprehensive information about the organization's services, regional delegations, and industry engagements. The site is professionally designed, well-structured, and optimized for SEO and accessibility, targeting transport and logistics professionals and companies in France. Technically, the site is built on WordPress with modern tools such as Matomo for analytics and Tarteaucitron for cookie consent, demonstrating a commitment to privacy and GDPR compliance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the domain registration data aligns well with the business claims, indicating a legitimate and trustworthy entity.

U

UPTR

uptr.be

54

UPTR is a well-established Belgian professional federation representing transporters and logisticians. Founded in 1937, it provides advocacy, information, and a broad range of specialized services to its members. The website reflects a mature digital presence with multilingual support, clear navigation, and comprehensive content tailored to its target audience. Technically, the site is built on WordPress with WooCommerce and enhanced by SEO and analytics tools like Yoast SEO Premium and Matomo, indicating a modern and privacy-conscious infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some headers could be improved. Overall, the site demonstrates high professionalism and trustworthiness, with no signs of malicious activity or content safety concerns.

E

Eurexpo Lyon | Lyon events

eurexpo.com

63

The website www.gl-lyonevents.com/fr/eurexpo-lyon serves as an informational platform focused on events at Eurexpo Lyon, a major event venue in Lyon, France. The site appears to target event organizers and attendees interested in Lyon-based events, providing venue details and event-related content. The business model centers on event promotion and support services, although explicit business details and company information are not disclosed on the site. Technically, the site is built on Drupal 10 CMS and integrates modern web technologies including YouTube APIs, lazy loading for images, Matomo analytics, and Google Tag Manager for tracking and marketing purposes. The site is mobile-optimized and includes accessibility features, contributing to a moderate user experience and performance level. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and published privacy or terms policies, which are important for compliance and trust. The WHOIS data for the domain is unavailable, raising concerns about domain legitimacy and transparency. Overall, the site is functional but would benefit from enhanced security practices, clearer business disclosures, and compliance documentation to improve trust and credibility.

B

Berner Generationenhaus

begh.ch

51

Berner Generationenhaus is a Swiss non-profit community and cultural center located in Bern, focused on fostering intergenerational dialogue and providing social services. The website presents a well-structured platform offering information about events, exhibitions, social institutions, and room rentals, targeting a broad audience across generations. The organization maintains a strong local presence with clear contact details and active social media channels. Technically, the site is built on Drupal 11 with modern libraries and analytics tools, showing good mobile optimization and accessibility. Security posture is solid with HTTPS and no visible vulnerabilities, though it lacks some security headers and formal security policies. Privacy compliance is limited by the absence of explicit privacy and cookie policies. Overall, the site is professional, trustworthy, and serves its community role effectively.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

familienplanung.de

65

familienplanung.de is an authoritative German government-backed health information portal operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG). It provides comprehensive, scientifically grounded information on pregnancy, childbirth, contraception, fertility, and related counseling services. The site targets pregnant women, couples planning families, and individuals facing pregnancy conflicts. The portal offers educational content, online tests, and access to counseling resources, positioning itself as a trusted public health resource in Germany. Technically, the website is built on TYPO3 CMS, uses Matomo analytics with strong privacy protections, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforcement and privacy-conscious analytics, though formal security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable source for family planning information.

A

Astra

stadtautobahn.ch

69

The website stadtautobahn.ch serves as the official information portal for the renewal of the Stadtautobahn in St. Gallen, Switzerland, managed by Astra, the Federal Roads Office. It provides timely updates on construction, traffic conditions, and community engagement through news articles and an SMS notification service. The site targets local residents and commuters, offering clear and relevant content about the infrastructure project. Technically, the site is built on WordPress with Yoast SEO for optimization, uses Matomo for privacy-conscious analytics, and integrates Google reCAPTCHA to secure user input forms. The design is professional, mobile-optimized, and user-friendly, with consistent branding and trust indicators such as official logos and HTTPS encryption. Security posture is solid with HTTPS and form protections, though it lacks some advanced security headers and published security policies. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the domain registration aligns well with the website's governmental purpose and project timeline, indicating high legitimacy and trustworthiness.

Q

Quality Media Network

qualitymedianetwork.de

52

Quality Media Network is a specialized digital advertising monetization platform targeting content creators and digital publishers primarily in Germany. The company offers premium advertising campaigns, technical support, and exclusive partnerships to help content creators maximize their revenue while maintaining high user experience standards. The website is professionally designed using WordPress with modern plugins and technologies, ensuring good SEO and mobile optimization. Security posture is solid with HTTPS and GDPR compliance via a consent management platform, although explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, well-branded, and provides clear business value to its target audience.

L

Landkreis Leipzig

landkreisleipzig.de

50

Landkreis Leipzig operates as the official regional government authority providing a wide range of public services and information to its citizens. The website serves as a comprehensive portal for residents to access services such as vehicle registration, job center information, and local news. It is well-positioned as a trusted regional administration entity with a focus on accessibility and citizen engagement. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies and accessibility tools like ReadSpeaker, ensuring a good user experience across devices. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, although explicit security headers and incident response policies are not publicly documented. Overall, the site demonstrates a mature digital presence aligned with public sector standards.

AgiL – Sächsische Agentur für Regionale Lebensmittel is a government-backed agency focused on supporting the development and expansion of regional food value chains in Saxony, Germany. It provides free consulting, networking, and informational services to companies in the agricultural and food sectors, including farms, food crafts, wholesalers, retailers, and logistics companies. The agency operates under the Saxon Ministry of Agriculture and the Saxon State Office for Environment, Agriculture and Geology. The website is professionally designed, content-rich, and well-structured, targeting regional businesses and stakeholders in the food industry.

Z

Zammad

zammad.com

75

Zammad is a medium-sized technology company founded in 2012, specializing in open source helpdesk and ticketing software designed to streamline customer service operations. The company positions itself as a provider of powerful yet user-friendly solutions that integrate multiple communication channels and offer extensive features such as multilingual support, automation, and various integrations. Their market presence is supported by strong branding, customer testimonials, and a focus on digital sovereignty. Technically, the website demonstrates a modern and responsive design with fast performance and good SEO practices. The use of Matomo analytics indicates a privacy-conscious approach to user tracking. Security-wise, the site enforces HTTPS and employs domain transfer protections, but lacks visible security headers and explicit incident response information. Overall, the website is professional, trustworthy, and compliant with GDPR, though improvements in cookie consent and security transparency are recommended.

W

Webfinancial Group Schweiz AG

yourmoney.ch

10

Webfinancial Group Schweiz AG operates a professional ICT and financial market information website targeting investors and financial professionals primarily in Switzerland. The company specializes in stock market information systems, data processing, knowledge management, consulting, ICT security monitoring, and maintenance services. The website demonstrates a solid market position as a leading ICT company in Switzerland within its niche. Technically, the site employs modern JavaScript libraries such as jQuery, Bootstrap, and Highcharts for interactive charts, and uses Matomo for analytics, indicating a moderate level of digital maturity. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security-wise, the website enforces HTTPS and implements CSRF tokens, but lacks visible security headers and published security policies or incident response contacts. Privacy compliance is weak due to the absence of explicit privacy and cookie policies or consent mechanisms. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

Headspin AS is a Norwegian creative agency based in Trondheim, specializing in integrated communication services including strategy, campaign development, design, text production, 3D visualization, website and app development, and film production. The company targets businesses and organizations seeking comprehensive communication and branding solutions. The website reflects a professional and consistent brand image with a medium-sized team and a solid client portfolio. Technically, the site is built on WordPress with modern technologies such as Google Fonts, Google Maps API, and multiple analytics platforms including Matomo and Plausible, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and cookie consent mechanisms. Overall, the site is trustworthy and well-maintained, with clear business information and certifications such as Miljøfyrtårn enhancing credibility.

S

Stadt Uster

uster.ch

61

Stadt Uster operates as the official municipal government website for the city of Uster, Switzerland. It provides comprehensive information and services to residents, businesses, and visitors, including online administrative services, event announcements, and local news. The site targets a broad audience within the community and supports civic engagement through accessible contact and feedback channels. The business model is centered on public service delivery and community information dissemination. Technically, the website employs modern web technologies including Matomo for analytics, ES modules for JavaScript, and a Swiss-based CMS platform (i-web). The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting appears to be local to Switzerland, enhancing data sovereignty and compliance. From a security perspective, the site enforces HTTPS, uses secure login forms, and implements privacy and cookie policies with user consent mechanisms. However, it lacks a dedicated security policy or incident response contact information, and no advanced security headers were detected. No vulnerabilities or suspicious content were found, indicating a solid security posture appropriate for a government website. Overall, Stadt Uster's website is a trustworthy, professional, and well-maintained digital presence for the municipality. It effectively balances user experience, privacy compliance, and security, though it could benefit from enhanced transparency around security policies and incident response procedures.

N

Naturpark Insel Usedom

naturpark-usedom.de

52

Naturpark Insel Usedom operates as a regional non-profit nature park organization dedicated to the conservation and education of the diverse ecosystems on the island of Usedom, Germany. The website serves as an information hub for visitors, nature enthusiasts, and educational groups, providing details about the park's landscapes, wildlife, events, and opportunities for community involvement. The organization holds a recognized certification as a Qualitäts-Naturpark, reinforcing its credibility and commitment to quality standards in nature conservation. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as Leaflet for interactive maps and Swiper for image sliders. It employs Matomo analytics, a privacy-focused tracking solution, and integrates a comprehensive cookie consent mechanism via CCM19, demonstrating a mature approach to privacy compliance. The site is hosted on servers associated with mvnet.de, with HTTPS enforced, ensuring secure communications. From a security perspective, the site benefits from HTTPS and privacy-respecting analytics but lacks explicit security headers like CSP or HSTS, which could enhance its security posture. There is no visible security policy or incident response contact information, which are areas for improvement. No vulnerabilities or suspicious activities were detected in the content or technical setup. Overall, the website presents a professional, trustworthy, and user-friendly platform aligned with its mission. It effectively balances content quality, technical implementation, privacy compliance, and business credibility, making it a reliable resource for its audience.

N

Naturpark Am Stettiner Haff

naturpark-am-stettiner-haff.de

52

Naturpark Am Stettiner Haff is a regional nature park located in northeastern Germany near the Polish border, offering natural landscapes, cultural sites, and educational events. The website serves as an informational and promotional platform for visitors and nature enthusiasts, highlighting the park's features, events, and conservation efforts. It holds a recognized quality certification as a 'Qualitäts-Naturpark' and targets tourists and local visitors interested in nature and culture. The business model is non-profit and government-related, focusing on environmental education and regional tourism promotion. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as Leaflet for interactive maps and Swiper for image sliders. It employs a cookie consent management system (CCM19) and Matomo for analytics, indicating a moderate level of digital maturity and privacy awareness. Hosting is regional, consistent with the park's location, and the site demonstrates good mobile optimization, accessibility, and SEO practices. From a security perspective, the site uses HTTPS and a cookie consent mechanism but lacks explicit security headers like CSP or a published security policy. No incident response contacts or vulnerability disclosure mechanisms are evident. The absence of these elements suggests room for improvement in security posture, although no critical vulnerabilities or exposures were detected in the content. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, providing a safe and informative experience for its audience. Strategic enhancements in security headers, incident response transparency, and expanded contact information would further strengthen its security and compliance stance.

N

Naturpark Feldberger Seenlandschaft

naturpark-feldberger-seenlandschaft.de

50

Naturpark Feldberger Seenlandschaft is a regional nature park in Germany focused on conservation, education, and tourism. The website provides comprehensive information about the park's natural environment, wildlife, conservation projects, and visitor services. It targets nature enthusiasts, tourists, and the local community, operating as a non-profit entity with a recognized quality certification from the Verband Deutscher Naturparke e.V. The website is built on TYPO3 CMS and incorporates modern web technologies including interactive maps and Matomo analytics, reflecting a moderate to good level of digital maturity. Privacy compliance is well addressed with GDPR-aligned policies and a consent management platform. Security posture is adequate with HTTPS and no exposed sensitive data, though it lacks some advanced security headers and formal security policies. Overall, the site is professional, trustworthy, and safe for general audiences.

N

Naturpark Flusslandschaft Peenetal

naturpark-flusslandschaft-peenetal.de

52

Naturpark Flusslandschaft Peenetal is a regional nature park in Germany dedicated to conservation, education, and tourism. The website serves as an informational portal providing detailed content about the park's natural features, events, and educational programs. It targets nature enthusiasts, tourists, and environmental educators. The business operates as a non-profit or government-affiliated entity with a strong regional presence and recognized certification as a Qualitäts-Naturpark. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries such as Leaflet for interactive maps and Swiper for image sliders. It employs Matomo analytics for privacy-conscious visitor tracking and integrates a comprehensive cookie consent mechanism via CCM19. The site demonstrates good mobile optimization, accessibility, and SEO practices, hosted on mvnet.de infrastructure. From a security perspective, the site uses HTTPS with excellent SSL configuration and implements privacy-friendly analytics and cookie consent. However, it lacks explicit security headers and does not provide a public security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. It provides a safe and informative user experience with no adult or questionable content. Strategic improvements include enhancing security headers, publishing a security policy, and adding explicit contact details for incident response.

N

Naturpark Mecklenburgische Schweiz und Kummerower See

naturpark-mecklenburgische-schweiz.de

52

Naturpark Mecklenburgische Schweiz und Kummerower See is a regional nature park organization in Germany focused on conservation, education, and tourism. The website provides comprehensive information about the park, including guided tours, events, and educational resources. It targets nature enthusiasts, tourists, and educational groups, positioning itself as a quality-certified nature park with a strong regional presence. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries for maps and UI, and is hosted on regional infrastructure. The site is mobile-optimized, accessible, and SEO-friendly. Security-wise, HTTPS is enforced, cookie consent is implemented with granular controls, and privacy-respecting analytics (Matomo) is used. However, explicit security policies and incident response information are not published. Overall, the site is trustworthy, professional, and compliant with GDPR, with no critical vulnerabilities detected.

N

Naturpark Nossentiner/Schwinzer Heide

naturpark-nossentiner-schwinzer-heide.de

52

The Naturpark Nossentiner/Schwinzer Heide website represents a regional nature park in Germany focused on conservation, education, and tourism. The site offers detailed information about the park's natural features, events such as mushroom walks, and educational programs. It targets nature enthusiasts, tourists, and local communities. Technically, the site is built on TYPO3 CMS with modern front-end technologies and includes a cookie consent mechanism compliant with GDPR. Analytics are handled via Matomo, ensuring privacy-conscious tracking. Security posture is good with HTTPS enforced, though some security headers are missing. No critical vulnerabilities or suspicious content were detected. Overall, the site is professional, trustworthy, and well-structured, supporting the park's mission effectively.

N

Naturpark Sternberger Seenland

naturpark-sternberger-seenland.de

52

Naturpark Sternberger Seenland operates as a regional nature park authority and tourism promoter in Mecklenburg-Vorpommern, Germany. The website provides comprehensive information about the park's natural features, events, and educational offerings, targeting nature enthusiasts, families, and tourists. The business model is non-profit, focusing on environmental education and regional promotion. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries like Leaflet for maps, and integrates Matomo for analytics, reflecting a mature digital infrastructure with good mobile optimization and accessibility. Security posture is solid with HTTPS and consent management in place, though security headers and explicit security policies could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though contact information is primarily via forms rather than direct emails or phone numbers.

B

Biosphärenreservatsamt Schaalsee-Elbe

schaalsee.de

50

The website www.schaalsee.de represents the UNESCO Biosphärenreservat Schaalsee, a regional nature conservation and education entity in Germany. It provides comprehensive information about the biosphere reserve, including natural habitats, conservation efforts, educational programs, tourism, and partner initiatives. The site targets nature enthusiasts, tourists, educators, and regional stakeholders. Technically, the site is built on TYPO3 CMS, uses modern frontend libraries like Swiper.js, and integrates Matomo for analytics along with a consent management platform for GDPR compliance. The website is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism, but lacks explicit security policy pages, incident response contacts, or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data shows consistent domain registration with German name servers, supporting legitimacy. Overall, the site demonstrates a good security posture and privacy compliance suitable for a government/non-profit organization. The risk level is low, with recommendations to enhance security transparency by publishing security policies and incident response contacts, and to consider a vulnerability disclosure mechanism. The website's content is safe for general audiences, focusing on environmental education and regional tourism without any adult or questionable content.

The Biosphärenreservat Südost-Rügen website serves as the official online presence for the UNESCO-recognized biosphere reserve in Southeast Rügen, Germany. It provides comprehensive information about the region's unique cultural landscape, natural environment, and ongoing sustainability projects. The site targets local residents, visitors, and environmental enthusiasts, offering educational content, event announcements, and partner information. The business model is non-profit and government-affiliated, focusing on conservation and regional promotion. Technically, the website employs a traditional but effective tech stack including Bootstrap and jQuery, with Matomo analytics for privacy-conscious user tracking. The site is mobile responsive and well-structured, though it lacks some modern CMS features and advanced accessibility implementations. Performance is moderate, with no critical errors detected. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks important security headers and a cookie consent mechanism, which are recommended for compliance with EU regulations. No incident response or vulnerability disclosure policies are published, which could be improved to enhance trust and security posture. Overall, the website is trustworthy, professionally maintained, and aligned with its mission. Strategic improvements in privacy compliance and security hardening would further strengthen its position and user confidence.

N

Nationalparkamt Vorpommern

nationalpark-jasmund.de

49

Nationalpark Jasmund is a German national park website representing the smallest national park in Germany, renowned for its ancient beech forests designated as UNESCO World Heritage. The site serves as an informational and educational platform targeting nature enthusiasts, visitors, and volunteers, offering details on the park's natural features, events, and conservation efforts. The business operates within the government and non-profit sectors, focusing on environmental preservation and public engagement. Technically, the website is built on TYPO3 CMS, employs Matomo for analytics with user consent, and embeds multimedia content responsibly. Security posture is solid with HTTPS and consent mechanisms, though it lacks some advanced security headers and formal security policies. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with no detected adult or questionable content.

N

Nationalpark Vorpommersche Boddenlandschaft

nationalpark-vorpommersche-boddenlandschaft.de

49

The website www.nationalpark-vorpommersche-boddenlandschaft.de serves as the official digital presence for the Nationalpark Vorpommersche Boddenlandschaft, the third largest national park in Germany. It provides comprehensive information about the park's natural environment, history, visitor guidelines, events, and educational programs. The site targets nature enthusiasts, visitors, and educational groups, offering detailed content in German with English language support. The business model is primarily informational and educational, supported by government or non-profit funding, with a strong emphasis on conservation and public engagement. Technically, the website is built on TYPO3 CMS, a mature open-source content management system, and employs Matomo for analytics, ensuring privacy-conscious user tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a moderate performance profile. Security is adequate with HTTPS enforced and a consent management platform in place, though it lacks some advanced security headers and explicit security policies. From a security perspective, the site shows no signs of vulnerabilities or exposed sensitive data. Privacy compliance is strong, with clear privacy and cookie policies aligned with GDPR requirements. However, the absence of a published security policy or incident response contact is a minor gap. Overall, the domain registration data aligns well with the website content, indicating legitimacy and consistency. The overall risk profile is low, with recommendations focusing on enhancing security headers, publishing a security policy, and adding vulnerability disclosure mechanisms to further strengthen trust and resilience.

M

Müritz-Nationalpark

mueritz-nationalpark.de

50

The Müritz-Nationalpark website represents a well-established German national park authority providing comprehensive information about the park, its nature, educational programs, and visitor services. The site targets nature enthusiasts, educational institutions, and volunteers, positioning itself as a leading government/non-profit entity in environmental conservation and public education. The business model is non-commercial, focusing on conservation, education, and sustainable tourism. Technically, the website is built on TYPO3 CMS, uses modern mapping technologies like Leaflet with OpenStreetMap tiles, and integrates Matomo for analytics, reflecting a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies. No critical vulnerabilities or exposed sensitive data were found. Overall, the site is trustworthy, professional, and compliant with GDPR, though it could improve transparency around security and incident response. The domain registration aligns with the regional network, supporting legitimacy. No adult or questionable content is present, making it safe for general audiences.

C

Clientis AG

clientis.ch

72

Clientis AG operates as a leading outsourcing provider for banks in Switzerland, enabling clients to focus on their core business while benefiting from cost advantages and innovations. The website presents a professional and consistent brand image, targeting banking institutions and their customers. The technical infrastructure leverages modern web technologies including React and Liferay CMS, with integrated analytics tools such as Matomo and Microsoft Clarity to monitor user interactions. The site is mobile optimized and demonstrates good SEO and accessibility practices, though some accessibility features could be enhanced further. Security posture is solid with HTTPS enforced and standard security headers implied, but explicit security policies and incident response information are not published, representing an area for improvement. Privacy compliance is well addressed with comprehensive privacy and cookie policies and an active consent mechanism. Overall, the website reflects a mature digital presence appropriate for a medium-sized financial services company.

K

Klinikum Fulda gAG

klinikum-fulda.de

59

Klinikum Fulda gAG operates a large, modern hospital providing maximal healthcare services in the Osthessen region of Germany. The institution serves over 500,000 residents with inpatient and outpatient care, specialized clinics, and educational programs as a campus of the Universitätsmedizin Marburg. The website reflects a mature digital presence with comprehensive patient information, event announcements, and career opportunities. Technically, the site is built on WordPress with modern plugins and analytics tools, ensuring good performance and SEO optimization. Security posture is strong with HTTPS, cookie consent management, and no visible vulnerabilities. Privacy policies are comprehensive and GDPR compliant. Overall, the site projects high professionalism and trustworthiness.

FFT Produktionssysteme GmbH & Co. KG is a well-established German company specializing in innovative and flexible manufacturing systems, particularly turnkey production solutions and process automation for industries such as automotive and aerospace. Founded in 1974, FFT holds a strong market position as a global leader with a comprehensive portfolio of services including after-sales support. The website reflects a professional and consistent brand image with multilingual support and detailed business information. Technically, the site is built on TYPO3 CMS, hosted likely by Deutsche Telekom, and integrates modern analytics tools like Matomo and Leadinfo while maintaining GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and CAPTCHA protections, though some security headers could be improved. Overall, the site is user-friendly, mobile-optimized, and trustworthy, with no signs of suspicious activity or content.

M

Musikhaus Jörgensen

musikhaus-joergensen.de

43

Musikhaus Jörgensen is a well-established music retail business based in Düsseldorf, Germany, founded in 1930. The company specializes in selling music notes, books, various musical instruments including string, wind, percussion, electronic instruments, and digital pianos, with a premium partnership for Yamaha Clavinova products. The website serves as an informational and contact portal with links to an external online shop and partner sites. Technically, the site is built on WordPress with jQuery and uses Matomo for analytics, indicating a moderate level of digital maturity. The site is accessible, mobile-optimized, and professionally designed, though it lacks some advanced accessibility features and cookie consent mechanisms. Security posture is adequate with HTTPS enabled but lacks explicit security headers and formal security policies. Overall, the site is trustworthy and credible for its business domain but could improve compliance and security transparency.

C

Cantus-Riedel Berlin

cantus-riedel.de

44

Cantus-Riedel Berlin is a well-established music retail business operating since 1910 in Berlin-Charlottenburg. The company offers a broad range of music-related products including sheet music, instruments, accessories, classical CDs, and merchandise. It also hosts events such as workshops and concerts, targeting musicians, composers, music teachers, and music enthusiasts. The business model combines a physical store with an online shop presence, positioning it as a trusted local retailer with a strong community focus. Technically, the website is built on WordPress using the Twenty Twelve theme, enhanced with jQuery and Matomo analytics for visitor tracking. The site is moderately optimized for performance and mobile devices, with good SEO and basic accessibility features. However, there is room for improvement in security headers and privacy compliance, particularly regarding cookie consent mechanisms. From a security perspective, the site uses HTTPS and does not expose sensitive information or vulnerable libraries. Nonetheless, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The use of Matomo analytics without a cookie consent banner indicates partial GDPR compliance. Overall, the security posture is adequate but could be strengthened with additional best practices. The overall risk assessment is low given the nature of the business and the absence of critical vulnerabilities or suspicious indicators. Strategic recommendations include implementing security headers, adding cookie consent, publishing security and incident response policies, and maintaining regular updates to the CMS and plugins to enhance security and compliance.

M

Musikhaus Hogrebe

musikhaus-hogrebe.de

43

Musikhaus Hogrebe is a small retail music store located in Aachen, Germany, specializing in musical instruments, accessories, and sheet music. The business was newly established in 2018 and operates both a physical storefront and an online presence linking to a partner e-commerce platform. The website is built on WordPress and uses Matomo analytics, reflecting a moderate level of digital maturity with some privacy awareness. The site is well-structured, mobile-optimized, and provides clear contact information, enhancing user trust and engagement. From a security perspective, the website benefits from HTTPS encryption and does not expose sensitive data. However, it lacks important security headers and does not provide explicit security policies or incident response information. There is no cookie consent mechanism, which is a compliance gap under GDPR regulations. The WHOIS data shows no privacy protection, consistent with a legitimate retail business, though registrant details are minimal. Overall, the website presents a professional and trustworthy front for a local music retailer but would benefit from enhanced security practices and improved privacy compliance. Strategic improvements in security headers, cookie consent, and transparency around data protection would strengthen the site's security posture and regulatory adherence.

B

Bauer & Hieber

bauer-hieber.com

45

Bauer & Hieber is a well-established German retailer specializing in music sheets and related products, with a history spanning over 100 years. The company operates multiple physical branches and an online shop, targeting musicians and music enthusiasts primarily in Germany. Their website is built on WordPress and includes a blog partnership with MusiKosmos, enhancing their content offering. Technically, the site uses standard web technologies including jQuery and Matomo for analytics, but lacks advanced security headers and cookie consent mechanisms. Security posture is moderate with HTTPS enabled but missing some best practices. The absence of WHOIS data raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Privacy policy is present and GDPR compliant, but cookie consent and incident response information are missing. Overall, the website provides relevant business content but could improve in technical and security aspects to enhance trust and compliance.