Security Directory

E

ELREC AG

entsorgi.li

48

Entsorgi Wertstoffsammelstelle operates as a public recycling and waste collection service primarily serving private individuals and businesses in Liechtenstein and adjacent Swiss regions. The company offers a variety of recycling collection points for materials such as metals, paper, plastics, electronics, and hazardous waste. It also provides container rental services and has formed strategic partnerships, notably with RecyPac for the national RecyBag recycling system, enhancing its logistics and quality assurance capabilities. The website reflects a regional leader position in waste management services with a focus on sustainability and circular economy principles. Technically, the website is built on WordPress 6.7.4, leveraging modern JavaScript libraries and Google Maps API for interactive location services. The site is mobile-optimized, accessible, and employs GDPR-compliant privacy and cookie policies. Performance is moderate with good SEO and user experience design. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. The WHOIS data is notably absent, which raises concerns about domain registration legitimacy. Despite this, the website content and business information appear professional and trustworthy. No security incident response or vulnerability disclosure information is provided, indicating potential areas for improvement in transparency and security readiness. Overall, Entsorgi presents a credible and regionally important recycling service with a well-structured digital presence. Addressing domain registration transparency and enhancing security headers would strengthen trust and security posture further.

B

Bezpečné Čáslavsko – Společný informační kanál bezpečnostních složek

bezpecnecaslavsko.cz

41

Bezpečné Čáslavsko is a regional public safety information portal focused on the Čáslavsko microregion in the Czech Republic. It serves as a centralized channel providing updates and information about local police, municipal police, fire services, and other safety organizations. The website targets local residents and stakeholders interested in community safety and crime prevention. The business model is informational and community service-oriented, with a small regional footprint and a focus on public service rather than commercial activities. Technically, the site is built on WordPress with several plugins for maps, forms, and UI enhancements. While the site is mobile-optimized and well-structured, it uses outdated WordPress and jQuery versions, which pose security risks. Security posture is moderate with HTTPS enforced and Wordfence plugin active, but lacks modern security headers and up-to-date software. Privacy compliance is limited due to absence of a privacy policy and terms of service, though a cookie consent banner is present. Overall, the site is trustworthy and legitimate, supported by consistent WHOIS data and domain age. Strategic improvements in security updates, privacy documentation, and security headers are recommended to enhance trust and compliance.

B

BEOS AG

beos.net

10

BEOS AG is a leading German asset manager and project developer specializing in corporate real estate including office, production, logistics, and service spaces. The company positions itself as a market leader with a comprehensive portfolio and a strong focus on sustainability and ESG goals. Their website reflects a mature digital presence with professional design, multilingual support, and integrated analytics and consent management tools. Security posture is solid with HTTPS and captcha protections, though some HTTP security headers are not explicitly detected. The absence of WHOIS data is a notable anomaly but does not detract from the overall legitimacy indicated by the website content and business information. Strategic recommendations include enhancing security headers, publishing a security policy, and clarifying domain registration details.

F

Find Shooting Ranges Near You | Where To Shoot

wheretoshoot.org

57

Where To Shoot is a specialized online platform dedicated to helping firearm enthusiasts locate shooting ranges across various locations. The website offers a comprehensive searchable map with advanced filtering options for indoor and outdoor ranges, shooting disciplines, and available services. It also provides additional resources such as video galleries and the ability for users to list or edit shooting ranges. The platform targets shooting sports participants and hunters, positioning itself as a niche directory service within the recreational shooting industry. Technically, the website is built on WordPress and leverages modern web technologies including Google Maps API for geolocation services, jQuery for interactivity, and several plugins for SEO, advertising, and cookie compliance. The site is mobile-optimized and employs HTTPS to secure user interactions. Analytics and marketing tools such as Google Analytics, Pardot, and Google Tag Manager are integrated, indicating a moderate level of digital maturity. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The absence of a clear privacy policy and direct contact information slightly reduces the overall privacy compliance and business credibility scores. Overall, Where To Shoot presents as a legitimate, professionally maintained directory service with good content quality and user experience. Strategic improvements in privacy policy visibility, security header implementation, and contact transparency would enhance trust and compliance, supporting long-term growth and user confidence.

J

JTRE a.s.

euroveatower.sk

10

Eurovea Tower is a premium real estate project by JTRE a.s., offering luxury residential apartments in Bratislava. The website presents a professional and well-branded digital presence with clear business information and contact details. The technical infrastructure is modern, leveraging Drupal 10 CMS, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is mobile optimized and SEO friendly. Security posture is good with HTTPS and DNSSEC enabled, though some security headers could be improved. Privacy compliance is addressed with a cookie consent mechanism and a basic privacy policy. No critical vulnerabilities or suspicious content were detected, indicating a trustworthy and legitimate business website.

B

BEOS AG

giesserei-garching.de

46

The website represents a real estate project called GIESSEREI Garching, managed by BEOS AG, offering flexible and sustainable office and commercial spaces near Munich. The business targets companies seeking innovative hybrid workspace solutions in a prime location with strong infrastructure. The site is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Yoast SEO, and Matomo analytics. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the domain and hosting setup are consistent and legitimate, supporting the business credibility.

S

Studierendenwerk Rostock-Wismar

stw-rw.de

10

Studierendenwerk Rostock-Wismar is a regional non-profit organization providing essential student services including dining facilities, student housing, financial aid, and social support primarily for students in Rostock and Wismar, Germany. The website reflects a well-structured and professional digital presence with clear navigation and relevant content tailored to its target audience. The organization maintains active social media channels and provides transparent contact information and policies, enhancing trust and accessibility. Technically, the website employs a moderate technology stack including jQuery, Google Maps API, and various UI components like LayerSlider and MegaMenu. Hosting is managed via DomainControl, and HTTPS is enforced, ensuring secure communications. While some libraries are slightly outdated, no critical vulnerabilities are evident from the content. Accessibility and mobile optimization are well addressed, though SEO could be improved. From a security perspective, the site demonstrates good practices such as cookie consent and HTTPS usage but lacks explicit security headers and an incident response contact. No vulnerabilities or suspicious patterns were detected. Privacy compliance is strong with a visible privacy policy and cookie banner. Overall, the site is safe, trustworthy, and suitable for its educational and social service mission.

The website www.locator-tzzz.com serves as an interactive tourism portal for Zagrebačka županija (Zagreb County) in Croatia. It is operated by the Turistička zajednica Zagrebačke županije, a public non-profit organization focused on promoting tourism within the region. The site offers an interactive map, listings of points of interest, accommodations, events, and cycling routes, targeting tourists and visitors interested in exploring the area. The business model is non-commercial, aiming to support regional tourism development. Technically, the website employs a range of established web technologies including Google Maps API, jQuery, Bootstrap, and various UI libraries to provide a responsive and interactive user experience. The site is moderately optimized for mobile devices and has a clear navigation structure. However, there is no evidence of a CMS or advanced hosting details. Performance is moderate, with room for improvement in SEO and accessibility. From a security perspective, the site lacks visible HTTPS enforcement and security headers, which are critical for protecting user data and ensuring trust. The presence of CSRF tokens in forms is a positive sign, but the absence of privacy and cookie policies indicates poor compliance with GDPR and related regulations. The WHOIS data is missing or inaccessible, which raises concerns about domain legitimacy and trustworthiness despite the professional appearance of the site. Overall, the website provides valuable regional tourism information but suffers from significant security and compliance gaps. The unclear domain registration status is a critical risk factor. Strategic improvements in security posture, privacy compliance, and domain registration transparency are recommended to enhance trust and protect users.

G

Gärtner von Eden e.G.

gaertner-von-eden.de

56

Gärtner von Eden e.G. is a professional garden design and construction company based in Germany, specializing in exclusive garden planning and landscaping services. The company targets private and commercial clients seeking high-quality garden solutions. Their website reflects a mature digital presence with a focus on user experience, SEO, and privacy compliance. Technically, the site is built on WordPress using the Divi theme, incorporating modern tools such as hCaptcha and Cookiebot for security and privacy. Security posture is good with HTTPS and security headers implemented, though the absence of a public security policy and incident response details suggests room for improvement. The domain WHOIS data is missing, which raises concerns about domain legitimacy, but the website content and business information appear consistent and professional. Overall, the site scores well on content quality and technical implementation but should address WHOIS transparency and security policy publication to enhance trust.

P

pxMEDIA.de GmbH

pxmedia.de

45

pxMEDIA.de GmbH is a specialized online marketing agency based in Germany, focusing on systematic personnel recruiting, employer branding, and customer acquisition for ambitious medium-sized enterprises. The company positions itself as a partner for sustainable business success, offering consulting, conception, implementation, and ongoing support services. Their market niche is well-defined, targeting the medium-sized business sector with tailored digital marketing solutions. The website demonstrates a professional and consistent brand image, supported by award recognition and client testimonials. Technically, the site is built on WordPress with modern plugins and integrations such as Wistia for video hosting and Google Maps API for location services. Hosting is provided by Alfahosting, a reputable German hosting provider. Security posture is solid with HTTPS enforced and CAPTCHA protection on forms, though explicit security headers and incident response policies are absent. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism in place. Overall, the website is well-designed, mobile-optimized, and trustworthy, with no signs of suspicious or adult content.

H

hockeydata GmbH

hockeydata.net

56

hockeydata GmbH is a specialized Austrian company providing software solutions and professional services focused on sports statistics, association management, and live graphics for sports broadcasts. The company holds a leading position in Austria's sports software market, serving clubs, leagues, broadcasters, and fans with tailored products and services. Their offerings include sport statistics software, multimedia display systems, and operational support for sports events and TV productions. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website is built on WordPress with modern plugins and libraries such as WPBakery Page Builder, jQuery, and Google APIs. The site is mobile-optimized and performs moderately well, though accessibility features are basic. Security posture is solid with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. The WHOIS data is unavailable or indicates the domain may not be registered under the queried name, which raises concerns about domain legitimacy. However, the website content and business presence suggest an operational and credible entity. No signs of WAF or content blocking were detected, allowing full content analysis. Overall, hockeydata GmbH presents a trustworthy and professional online presence with room for improvement in privacy compliance and security policy transparency. Verification of domain registration is recommended to strengthen trust and legitimacy.

The website domecekhorovice.cz represents a municipal leisure center named Středisko volného času - DOMEČEK HOŘOVICE, established in 2005 and serving the local community of Hořovice, Czech Republic. It offers cultural and educational activities primarily targeting children, youth, and families. The site provides event announcements, contact information, and terms of service documentation, reflecting a public sector non-profit business model with municipal backing. Technically, the website employs common web technologies including jQuery, Google Analytics, Google Tag Manager, Google Maps API, and Lightbox2 for image galleries. The site appears to be custom-built or uses an unknown CMS, with moderate performance and good mobile optimization. SEO and accessibility features are basic but functional. From a security perspective, the site uses HTTPS and includes no visible sensitive data exposure. However, it lacks security headers and does not provide privacy or cookie policies, which are compliance gaps. The use of third-party analytics implies moderate user tracking without explicit consent mechanisms. No incident response or vulnerability disclosure information is present. Overall, the website is legitimate, consistent with its municipal purpose, and safe for general audiences. Strategic improvements include implementing privacy and cookie policies, enhancing security headers, and improving accessibility and compliance to strengthen trust and security posture.

J

JAN VLČEK

vlcek-stavby.cz

39

Jan Vlček operates as an authorized builder and member of the Chamber of Authorized Engineers and Technicians in Construction, providing construction management and project services primarily in the Czech Republic. The business targets individuals and companies seeking professional construction oversight and authorized building services, with a focus on civil, residential, and industrial projects. The website reflects a small, local service provider with over 30 years of industry experience, supported by professional certifications and clear contact information. Technically, the website is built on WordPress using common plugins such as Contact Form 7 and Revolution Slider. It employs jQuery 1.7.2 and Google Maps API for functionality. The site shows moderate performance and basic mobile optimization but uses outdated JavaScript libraries and lacks advanced SEO and accessibility features. No analytics or tracking services are detected, indicating minimal user tracking. From a security perspective, the site uses HTTPS but lacks important security headers like Content-Security-Policy and Strict-Transport-Security. The use of outdated libraries presents potential vulnerabilities. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Contact information is clearly provided, but no incident response or security policies are visible. Overall, the website is functional and moderately professional but requires improvements in security, privacy compliance, and technical modernization to enhance trustworthiness and protect user data effectively.

N

Národní ústav duševního zdraví

nudz.cz

52

Národní ústav duševního zdraví (NUDZ) is a Czech national institute focused on mental health research, clinical care, and education. The website serves as a comprehensive portal for their research programs, clinical services, educational offerings, and public mental health initiatives. It targets a general audience including patients, researchers, clinicians, and the public. The organization appears to be a government-affiliated or public institution with a medium-sized operational scale. Technically, the website is built on TYPO3 CMS, uses Alpine.js for interactivity, and integrates Matomo for analytics, reflecting a modern and mature digital infrastructure. Security posture is strong with HTTPS and security headers properly implemented, though some improvements in privacy compliance such as cookie consent are recommended. The absence of WHOIS data reduces domain registration trust but the website content and branding strongly support legitimacy. Overall, the site is professional, accessible, and trustworthy with room for enhanced privacy and contact transparency.

The website www.baumesse-wietmarschen.de serves as a regional event promotion platform for the Baumesse trade fair focused on building, living, and gardening in Wietmarschen-Lohne, Germany. It is managed by Wirtschaft Innovation Nordwest and features detailed event information, exhibitor listings, and partner organizations. The site is built on the Jimdo Creator CMS platform, leveraging third-party services such as Google Analytics and POWr.io widgets for enhanced functionality. The website is well-structured, mobile-optimized, and provides clear navigation and contact information, although no contact forms or email addresses are directly provided. From a technical standpoint, the site uses HTTPS with a good SSL configuration and includes a comprehensive cookie consent mechanism compliant with GDPR. However, it lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or suspicious content were detected, and the domain registration data aligns with the hosting platform, indicating legitimacy. The site does not display terms of service or certifications, which could be areas for improvement. Overall, the security posture is moderate with room for enhancement in security headers and incident response transparency. Privacy compliance is good due to the presence of a privacy policy and cookie consent. The business credibility is supported by clear contact details and partner affiliations. The website is safe for general audiences and does not contain any adult or questionable content. Strategic recommendations include implementing additional security headers, publishing incident response contacts, and adding terms of service to improve trust and compliance. Regular audits of third-party scripts and continued adherence to privacy regulations will further strengthen the site's security and user trust.

H

Happy-Beton GmbH & Co. KG

happy-beton.de

62

Happy-Beton GmbH & Co. KG is a well-established German company specializing in the production and distribution of ready-mixed concrete and construction materials, serving the northern German market with over 40 locations. Their services include transport concrete, rental of concrete pumps, and supply of natural building materials such as sand and gravel, supported by a strong regional presence and certifications like CSC. The website is professionally designed, mobile-optimized, and built on the Contao CMS platform, integrating modern JavaScript libraries and a comprehensive cookie consent mechanism. Security posture is solid with HTTPS and cookie consent, though some security headers and policies could be improved. Contact information is transparent and comprehensive, supporting business credibility. Overall, the digital infrastructure supports their business model effectively with room for enhanced security policies and incident response disclosures.

eTwinning România is a national educational project co-funded by the European Commission under the Erasmus+ program. It facilitates inter-school collaborative projects for teachers and students across Europe using the European School Education Platform. The website serves as the official Romanian portal, coordinated by the Agenția Națională pentru Programe Comunitare în Domeniul Educației și Formării Profesionale (ANPCDEFP). It provides resources, news, professional development courses, and contact information for stakeholders. The site is well-branded, consistent, and targets educators and schools in Romania and Europe. Technically, it is built on WordPress with common plugins and integrates Google services such as Maps and Analytics. Hosting is provided by HostX, and the site uses HTTPS with a moderate security posture. However, DNSSEC is not enabled, and some security headers are missing. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism detected. Contact details are clearly provided, enhancing business credibility.

U

Umlaut Recordings

umlaut.de

40

Umlaut Recordings is a small, niche music label and artist management entity focused on the Didgeridoo player Tom Fronza and associated musicians. The company offers workshops, live performances, studio music production, and music sales through an online shop. The website is professionally designed with clear navigation and good content quality, targeting music enthusiasts and event organizers. Technically, the site is built on WordPress using modern plugins and themes, with moderate performance and good mobile optimization. Security posture is solid with HTTPS, spam protection, and reCAPTCHA, though lacking some advanced security headers and explicit security policies. Privacy compliance is basic with privacy and terms pages present but no cookie consent mechanism. Overall, the domain registration and website content are consistent and legitimate, reflecting a trustworthy small business in the music sector.

S

SPIE Deutschland & Zentraleuropa

spie.de

72

SPIE Deutschland & Zentraleuropa is a leading multi-technical service provider operating in Germany and neighboring Central European countries. The company specializes in services for buildings, plants, and infrastructure, positioning itself as a key player in the energy and transportation sectors. The website reflects a professional corporate presence with clear business descriptions and a focus on B2B customers. Technically, the site uses a modern CMS (Sitefinity), integrates Google Maps API, and employs Microsoft Application Insights for telemetry, indicating a mature digital infrastructure. Privacy compliance is well addressed with a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not published. Overall, the site is trustworthy and professionally maintained, with room for improvement in transparency around security and terms of service.

A

Atlas Copco

atlascopco.com

71

Atlas Copco is a global industrial manufacturing company specializing in sustainable productivity solutions. Their website reflects a large enterprise with a professional digital presence, targeting industrial and business customers worldwide. The site uses modern web technologies including Adobe Helix, jQuery, and integrates Google Maps and OneTrust for cookie consent, indicating a mature technical infrastructure. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks visible security headers and explicit security policies. The absence of WHOIS data for the www subdomain is unusual but does not detract from the overall legitimacy given the brand recognition and website quality. Strategic recommendations include enhancing security headers, publishing clear privacy and security policies, and verifying domain registration details for full trust assurance.

E

ERDWERK GmbH

erdwerk.com

52

ERDWERK GmbH is a German-based company specializing in geothermal energy solutions, including consulting, planning, execution, and project management services. The company has a solid market presence with numerous projects primarily in Germany and some international locations. Their website is professionally designed using Drupal 8 CMS, featuring integration with Google Maps and Piwik analytics, indicating a moderate level of digital maturity. Contact information and social media links are clearly provided, enhancing business credibility. From a security perspective, the website uses HTTPS and does not expose sensitive data in the HTML content. However, it lacks visible security headers and explicit privacy or cookie policies, which are important for compliance and security best practices. The absence of WHOIS registration data is a concern, as it reduces trustworthiness despite the professional website presence. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, the website demonstrates a good business and technical foundation but requires improvements in privacy compliance, security headers, and WHOIS transparency to enhance trust and security posture. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, and clarifying domain registration details.

D

Deutsche Gesellschaft für Neurologie

dgn-neurojobs.org

43

DGN Neurojobs is the official job marketplace of the German Society for Neurology, specializing in job listings for neurologists, psychologists, and nursing staff primarily in Germany and neighboring countries. The website serves as a niche platform connecting healthcare professionals with employers in the neurology sector, offering categorized job listings, employer branding, and application tips. The platform is well-positioned as a trusted resource within its specialized market segment.

A

AGFW

fw703.de

46

AGFW is a German association dedicated to promoting energy efficiency in heating, cooling, and combined heat and power systems, with a strong focus on district heating and climate protection goals. The website provides technical guidelines, calculation tools, and supports climate-relevant projects, targeting municipalities and energy sector stakeholders. The organization is positioned as a reputable industry association with established standards and collaborations with academic and funding institutions. Technically, the website is built on TYPO3 CMS, leveraging Bootstrap and jQuery for frontend responsiveness and Google Tag Manager for analytics. The site is moderately performant, mobile-optimized, and implements a cookie consent mechanism aligned with GDPR requirements. However, some security headers and explicit security policies are not evident. From a security perspective, the site uses HTTPS and has implemented cookie consent with opt-in/out capabilities, but lacks visible incident response contacts and vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious content were detected. The WHOIS data is minimal but does not raise immediate concerns, though more registrant transparency would improve trust. Overall, the website is professional, trustworthy, and compliant with basic privacy and security standards. Strategic improvements in security headers, incident response transparency, and contact information would enhance its security posture and user trust.

A

AGFW - Der Energieeffizienzverband für Wärme, Kälte und KWK e.V.

fw704.de

48

AGFW is a German energy efficiency association specializing in heating, cooling, and combined heat and power systems. The website provides regulatory guidance, technical standards, and calculation tools to support subsidy applications under the KWKG legislation. The organization collaborates with regulatory bodies such as BAFA and expert committees to maintain up-to-date and practical resources for industry stakeholders. The website targets energy professionals and project developers seeking compliance and funding support. Technically, the site is built on TYPO3 CMS with Bootstrap and jQuery, integrating Google Tag Manager and Google Maps with user consent. The site is mobile-optimized and structured for good user experience, though some accessibility features are basic. Performance is moderate, and SEO is basic but functional. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks visible HTTP security headers and explicit incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies aligned with GDPR. Overall, the website is professional, trustworthy, and well-suited to its niche audience. Strategic improvements in security headers and incident response transparency would enhance its security maturity and trustworthiness.

B

Bau-Fritz GmbH & Co. KG

baufritz.com

51

Baufritz is a well-established German company specializing in ecological prefabricated wooden houses, combining sustainable architecture with innovative environmental technology. The company targets private and business customers seeking healthy and environmentally friendly housing solutions. Their market position is strong, with a history dating back to 1896 and certifications supporting their ecological claims. Technically, the website employs modern frameworks like Bootstrap and integrates Google Tag Manager and Usercentrics for analytics and consent management, reflecting a mature digital infrastructure. Security posture is good with HTTPS and consent mechanisms, though some security headers and explicit policies could be improved. The WHOIS data is missing or unavailable, which slightly impacts domain trustworthiness but does not detract from the professional presentation and comprehensive content. Overall, the website is high quality, accessible, and trustworthy for its audience.

InwesD – Interessengemeinschaft Deutsche Deponiebetreiber e.V. is a German non-profit association representing landfill operators across Germany, covering landfill classes 0 to III in various operational phases. The organization provides services such as representation, networking, information dissemination through their Deponiebuch, and regional contact points. Their website is professionally designed, consistent in branding, and targets landfill operators and related stakeholders in Germany. Technically, the site is built on the Contao CMS platform, uses modern JavaScript libraries like Swiper.js and GLightbox, and integrates Google Maps with user consent mechanisms. Hosting is provided by webgo.de, a German hosting provider. Security posture is good with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are not published. No analytics or advertising scripts are detected, indicating a privacy-conscious approach. Overall, the site is trustworthy, well-maintained, and serves its niche audience effectively.

A

AGFW e. V.

agfw.de

53

AGFW e. V. is a well-established German industry association focused on promoting energy efficiency, combined heat and power, and district heating and cooling. With over 700 member companies and more than 50 years of experience, it serves as a technical and policy advocate, providing certifications, standards, and industry services. The website reflects a professional and consistent brand presence targeting energy sector stakeholders and professionals. Technically, the website is built on TYPO3 CMS with modern frontend technologies including Bootstrap and jQuery. It integrates Google Tag Manager and Google Maps APIs for analytics and location services. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. Performance is moderate with room for improvement. From a security perspective, the site uses HTTPS (assumed from canonical URL), includes CSRF protection in forms, and implements a cookie consent mechanism compliant with GDPR. However, explicit security headers and incident response policies are not evident. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is trustworthy, professional, and compliant with privacy regulations. It effectively serves its business purpose but could enhance security posture by adding security headers and publishing incident response information.

P

Poljoprivredno gospodarstvo Šember

sember.hr

45

Poljoprivredno gospodarstvo Šember is a small, family-owned winery located in Jastrebarsko, Croatia, specializing in producing award-winning wines such as rajnski rizling, chardonnay, and crni pinot. The business leverages its regional heritage and vineyard location on the Plešivica hills to attract wine enthusiasts and visitors for tasting and tours. The website reflects a well-established presence with consistent branding and clear communication of its offerings. Technically, the site uses common web technologies including Bootstrap, jQuery, Google Analytics, and Google Maps API, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS and reCAPTCHA integration, but lacks advanced security headers and explicit security policies. Privacy compliance is basic with cookie consent and terms of service present but no dedicated comprehensive privacy policy. Overall, the site is trustworthy and professional, suitable for its target mature audience interested in wine products and experiences.

N

Nutricia

nutricia.lv

65

Nutricia is a healthcare nutrition company operating in Latvia, providing nutrition products and consumer information primarily in Latvian and Russian. The website is built on WordPress and integrates modern web technologies including Google Fonts, Google Maps API, Google Tag Manager, Hotjar, and OneTrust for cookie consent. The site is well-structured with SEO optimizations and mobile responsiveness, targeting consumers and healthcare professionals in Latvia. Security measures include HTTPS enforcement and cookie consent, though explicit security headers and policies are not evident. The absence of direct contact information and privacy policy pages suggests areas for improvement in transparency and compliance. Overall, the website presents a professional and trustworthy digital presence consistent with its business domain.

W

Willkommen in MV

willkommeninmv.de

53

Willkommen in MV is a regional government and non-profit portal dedicated to providing comprehensive integration support services for migrants and refugees in Mecklenburg-Vorpommern, Germany. The website offers extensive categorized information on social services, language courses, job centers, medical and psychosocial help, and legal advice. It targets migrants, refugees, and residents seeking integration assistance, positioning itself as a key public service resource in the region. The business model is primarily public service funded, focusing on accessibility and community support.

D

DEKOD d.o.o.

dekod.hr

52

DEKOD d.o.o. is a well-established Croatian ticketing organization with over two decades of experience and a leading market position in the region. The company offers a comprehensive suite of ticketing and event management services, including e-ticketing systems, payment solutions, and web shop capabilities. Their clientele includes cultural institutions, event organizers, and public venues, supported by a strong regional presence and trusted partnerships such as with ulaznice.hr. The website reflects a professional business focus with clear contact information and client testimonials, reinforcing their credibility. Technically, the site is built on WordPress with the Enfold theme and uses common web technologies, but it runs outdated software versions that pose security risks. Security posture is moderate with HTTPS enabled but lacks modern security headers and visible privacy or cookie policies, indicating room for compliance improvement. Overall, the website is functional and trustworthy but would benefit from technical and compliance updates to enhance security and user trust.

B

Bo-Tec

bo-tec.de

65

Bo-Tec is a specialized German company focused on the repair and refurbishment of various vehicle gearings and components, serving a niche market of agricultural and industrial vehicle owners. The website is professionally designed using the Jimdo CMS platform, featuring clear navigation, good mobile optimization, and relevant content in German. The company provides detailed contact information and maintains a cookie consent mechanism compliant with GDPR. Technically, the site uses modern web technologies and third-party widgets but lacks advanced security headers and explicit security policies. The security posture is adequate with HTTPS enforced and no visible vulnerabilities. Overall, the website presents a trustworthy and professional business presence with room for improvement in security and compliance documentation.

W

WVRC Video

wvrcvideo.com

51

WVRC Video is a small, award-winning media company specializing in professional video production services including corporate videos, commercials, and promotional videos. The company emphasizes storytelling and client collaboration to deliver high-quality, customized video content. The website reflects a consistent brand identity and provides clear contact information, client testimonials, and service descriptions, positioning WVRC Video as a credible player in the media production sector. Technically, the site is built on WordPress with modern plugins and APIs, hosted by A2 Hosting, and shows moderate performance and mobile optimization. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

W

WVRC Audio

wvrcaudio.com

10

WVRC Audio is a regional media company specializing in local and network radio programming, serving the West Virginia area with a focus on informative and reliable content. The company operates under the parent company WVRC Media and has a strong market presence supported by multiple industry awards and client testimonials. The website reflects a professional and consistent brand image with clear contact information and a user-friendly design. Technically, the site is built on WordPress with modern plugins and hosted by A2 Hosting, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhancement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy and safe for general audiences.

G

Golf & Country Club Salzburg-Klessheim

golfclub-klessheim.com

52

Golf & Country Club Salzburg-Klessheim is a well-established regional golf club founded in 1955, offering a 9-hole golf course, driving range, professional golf training, tournaments, and hospitality services including the Restaurant Hubers. The website is professionally designed, mobile-optimized, and provides comprehensive information for golf enthusiasts and members. Technically, it is built on TYPO3 CMS with modern JavaScript libraries and integrates Google Maps and Google Tag Manager for enhanced user experience and analytics. Security posture is good with HTTPS enforced and secure form handling, though security headers and incident response information are lacking. Privacy and cookie policies are present and GDPR compliant, reflecting a responsible approach to user data. However, the absence of WHOIS registration data raises concerns about domain registration transparency, which slightly impacts trustworthiness.

Benekovterm s.r.o. is a Czech company specializing in manufacturing and selling high-quality automatic solid fuel boilers and hybrid heating technologies, including pellet boilers combined with heat pumps and renewable energy solutions such as photovoltaic systems. The company has a long tradition dating back to 1949 and positions itself as a leader in innovation within the Czech energy sector. Their website provides comprehensive product information, customer references, and multiple contact channels, reflecting a mature business presence. Technically, the website uses common JavaScript libraries and Google Maps API, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and headers could be improved. The WHOIS data is missing or unavailable, which raises some concerns about domain registration legitimacy despite the active and professional website. Overall, the site is trustworthy and well-maintained, serving a clear target audience of residential and commercial customers interested in energy-efficient heating solutions.

The website alleswurscht.li is a government health promotion project operated by the Amt für Gesundheit des Fürstentums Liechtenstein. It provides a rich collection of healthy recipes emphasizing fresh, regional, and seasonal products, curated by a certified nutritionist. The site targets the general population of Liechtenstein, promoting balanced nutrition and healthy lifestyles through accessible content and community engagement via newsletters and a forum. The website is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site is built on the Contao Open Source CMS platform, utilizing common web technologies such as jQuery, Google Analytics, Google Tag Manager, and Google Maps API. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks important security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the security posture is solid but could be enhanced by implementing security headers, publishing incident response information, and adding cookie consent to improve GDPR compliance. The domain WHOIS data confirms official government ownership, reinforcing the site's legitimacy and trustworthiness. No adult or explicit content is present, making the site safe for general audiences. Strategic recommendations include improving security headers, adding cookie consent, publishing security and incident response policies, and enhancing privacy compliance to strengthen trust and regulatory adherence.

I

Integrovaná doprava Žilinského a Trenčianskeho kraja, s.r.o.

idsplus.sk

56

Integrovaná doprava Žilinského a Trenčianskeho kraja, s.r.o. operates as a regional integrated public transportation provider in Slovakia, focusing on the Žilina and Trenčín regions. The company aims to increase public transport usage by offering coordinated services, ticketing, and information through digital platforms such as the IDS PLUS mobile application. The website reflects a professional and consistent brand presence with clear communication of services and partnerships with regional transport operators and EU projects. Technically, the website employs a modern technology stack including Bootstrap, jQuery, DataTables, and Google services such as reCAPTCHA and Analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security measures include HTTPS enforcement and CAPTCHA integration, though some security headers and explicit policies could be improved. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with GDPR-aligned cookie consent and a comprehensive privacy policy. However, the absence of a terms of service page and incident response information suggests room for enhancement in governance and transparency. Overall, the website is trustworthy, professionally maintained, and serves its target audience effectively. Strategic improvements in security headers, incident response disclosure, and vulnerability disclosure policies would further strengthen its security and compliance posture.

E

Envision Saint John: The Regional Growth Agency

discoversaintjohn.com

56

Discover Saint John is a professionally developed regional tourism website operated by Envision Saint John: The Regional Growth Agency. It serves as a comprehensive portal for visitors to explore events, accommodations, and trip planning resources in the Saint John Region of New Brunswick, Canada. The website is well-positioned as a regional tourism authority with a strong digital presence and multiple marketing integrations. Technically, the site is built on Drupal 10 with modern web technologies and is optimized for mobile and accessibility. Security posture is good with HTTPS and privacy policies in place, though explicit security headers and incident response information are lacking. The absence of WHOIS data introduces some uncertainty about domain registration legitimacy, but the site content and branding indicate a trustworthy and established organization. Overall, the website demonstrates a mature digital infrastructure supporting regional tourism promotion with room for security and compliance enhancements.

M

mychoice.info

mychoice.info

48

mychoice.info is a vocational training and apprenticeship platform targeting young people in the German-speaking region, particularly Liechtenstein. It provides comprehensive resources including apprenticeship listings, company profiles, career guidance, events, and inspirational stories to assist users in finding suitable vocational paths. The platform is well-positioned as a niche educational resource with a consistent brand and active social media presence. Technically, the website employs modern web technologies such as Google Maps API for location services, TikTok Analytics for user tracking, and Swiper.js for interactive content sliders. The site is mobile-optimized and features secure login forms with CSRF protection, indicating a mature digital infrastructure. Performance is moderate with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses secure form practices but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. However, no dedicated security or incident response contact information was found. Overall, the website is trustworthy and professionally maintained, with a strong focus on user privacy and data protection. The domain WHOIS data is privacy protected, which is justified for this type of platform. Strategic improvements in security headers and incident response transparency would enhance the security posture further.

F

Freizeit Guru

freizeit-guru.li

49

Freizeit Guru is a specialized leisure activity portal focused on Liechtenstein and its surrounding regions, offering over 250 curated activities for various seasons and group sizes. The platform targets a broad audience including families, groups, and individuals seeking recreational options. It holds a strong regional market position as a comprehensive guide for local leisure activities. Technically, the website is built on WordPress using the GeneratePress theme and several modern plugins for SEO, search filtering, and user engagement features. The site demonstrates good digital maturity with mobile optimization, structured data, and SEO best practices. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and serves its business purpose effectively.

E

Eurodesk Italy

eurodesk.it

53

Eurodesk Italy operates as the official national and European network providing information and orientation services to young people about European programs such as Erasmus+ and the European Solidarity Corps. The website serves as a comprehensive portal offering access to events, webinars, opportunities, and a network of local points across Italy. It is supported by the European Commission, enhancing its credibility and official status. The target audience includes young people and professionals working with youth, focusing on mobility and educational opportunities within Europe. Technically, the site is built on Drupal 10, integrates Google services such as Maps and Analytics, and uses modern web standards with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is professional, trustworthy, and well-positioned in its niche, with strong branding and consistent content quality.

C

City of Saint John

saintjohn.ca

63

The City of Saint John website serves as the official digital presence for the municipal government of Saint John, New Brunswick. It provides residents, businesses, and visitors with comprehensive information on city services, transit, community events, public safety, and governance. The site positions itself as a trusted source for local news, emergency alerts, and civic engagement platforms, targeting a broad audience within the city and surrounding areas. Technically, the website is built on Drupal 10, leveraging modern web technologies including Google Analytics for user tracking and Google Maps API for transit and location services. The site is hosted behind Cloudflare DNS and CDN services, ensuring reliable performance and security. Mobile optimization and accessibility features are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs domain transfer protections. However, it lacks advanced security headers and does not provide publicly accessible security or incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. No vulnerabilities or suspicious content were detected. Overall, the website demonstrates a solid business credibility and technical foundation suitable for a government entity, but could improve in privacy compliance and security transparency to enhance trust and regulatory adherence.

O

Oslo Economics

osloeconomics.no

51

Oslo Economics is a well-established Norwegian economic advisory firm founded in 2008, providing comprehensive economic analysis and consulting services to businesses, government agencies, and organizations. The company holds a strong market position as one of Norway's leading economic advisory environments, offering a wide range of services including financial analyses, health economic analyses, market competition studies, and strategic advisory. Their website reflects a professional and consistent brand image, targeting a broad audience of decision-makers and stakeholders in both public and private sectors. Technically, the website is built on a modern WordPress platform with integration of popular libraries and services such as jQuery, Bootstrap Grid, Google Analytics, and Google Tag Manager. The site demonstrates good mobile optimization, accessibility, and SEO practices, although hosting details are not explicitly disclosed. The presence of cookie consent mechanisms and GDPR-compliant privacy policies indicates a mature approach to privacy and data protection. From a security perspective, the site enforces HTTPS and uses secure contact forms but lacks explicit security headers and publicly available security policies or incident response plans. No vulnerabilities or exposed sensitive data were detected in the analysis. The domain registration is consistent with the business claims, showing a long-standing presence without privacy protection, which supports legitimacy. Overall, Oslo Economics presents a trustworthy and professional online presence with strong compliance and technical foundations. Strategic improvements in security policy transparency and enhanced security headers could further strengthen their security posture and trustworthiness.

N

NBC Bratislava, s.r.o

nbcbratislava.sk

50

NBC Bratislava, s.r.o operates the Gopass arena, a modern sports and event venue located in Bratislava, Slovakia. The facility focuses primarily on basketball and other indoor sports, while also accommodating concerts, conferences, and social events with capacities up to 4500 attendees. The company maintains a professional online presence with clear contact information and social media links, targeting sports enthusiasts and event organizers in the region. Technically, the website uses a standard modern stack including jQuery, Bootstrap, and Google Maps API, with a cookie consent mechanism and GDPR-compliant privacy policy in Slovak. Security posture is adequate with HTTPS and captcha-protected contact forms, though it lacks advanced security headers and explicit incident response policies. Overall, the site is well-structured, user-friendly, and trustworthy, supporting the company's business model as a regional sports and event facility.

S

Správa a údržba ciest Prešovského samosprávneho kraja

zjazdnostpsk.sk

42

Správa a údržba ciest Prešovského samosprávneho kraja operates a website providing meteorological station data and road maintenance information for the Prešov region in Slovakia. The site serves as a public service platform offering real-time weather data and coverage maps to residents and authorities. The company is a regional governmental entity established in 2004, with a medium-sized operational scope focused on transportation infrastructure and weather monitoring. Technically, the website is built on WordPress 6.8.3, utilizing modern libraries such as jQuery, Bootstrap, and Google Maps API for interactive features. The site demonstrates good mobile optimization and moderate performance, with a clean and professional design. Security measures include HTTPS with a valid SSL certificate and DNSSEC enabled, alongside Google reCAPTCHA v3 to mitigate automated abuse. Security posture is solid but could be improved by adding explicit security headers and publishing a security policy or incident response contacts. Privacy compliance is limited due to the absence of explicit privacy and cookie policies or consent mechanisms, which is a notable gap given GDPR requirements. No vulnerabilities or suspicious content were detected, and the domain's WHOIS data confirms legitimacy and consistency with the business purpose. Overall, the website is a trustworthy and functional public service portal with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

Benekov is a Czech company specializing in manufacturing and selling high-quality automatic solid fuel boilers and renewable energy solutions, including hybrid pellet boilers and photovoltaic systems. Established in 1949, it holds a strong market position in the Czech energy sector, offering comprehensive services such as installation, servicing, and partner training. The website is professionally designed, providing detailed product information, customer references, and multiple contact channels, targeting domestic customers and businesses interested in energy-efficient heating technologies. Technically, the website employs a modern JavaScript stack including jQuery, bxSlider, Lightbox, and Google Maps API, ensuring a good user experience with mobile optimization and SEO best practices. However, some security headers are missing, and no explicit security policy or incident response information is found, indicating room for improvement in security posture. The site uses HTTPS and has cookie consent mechanisms, reflecting good privacy compliance. The WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy despite the professional appearance and detailed company information on the site. This discrepancy lowers the overall trust score and suggests the need for verification of domain ownership. Overall, Benekov's website is a solid representation of a medium-sized energy sector company with good content quality and technical implementation but requires enhanced security measures and domain registration transparency to improve trust and compliance.

8

81

81.cz

54

81.cz is a Czech-based company specializing in energy-related services including air conditioning, heat pumps, photovoltaic power plants, electronic security systems, and real estate rental. The company operates multiple branches across major Czech cities such as Prague, Brno, Ostrava, Hradec Králové, and Plzeň, supported by strong customer reviews on Google and Firmy.cz. Their business model leverages EU-funded projects to promote sustainable energy solutions, positioning them as a reputable regional player in the energy and real estate sectors. Technically, the website employs modern web technologies including Google Tag Manager, Google reCAPTCHA, Google Maps API, and popular JavaScript libraries like jQuery and Parsley.js. The site is mobile-optimized with good design quality and user experience. However, it lacks explicit privacy and cookie policies, and no security headers are detected, which are areas for improvement. The site uses HTTPS with a presumably strong SSL configuration, enhancing security. From a security perspective, the site shows good practices such as HTTPS enforcement and bot protection via reCAPTCHA, but lacks comprehensive security headers and incident response information. The absence of WHOIS data reduces domain trust slightly, but the presence of verified customer reviews and EU project disclosures supports legitimacy. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional and trustworthy with moderate technical maturity and security posture. Strategic improvements in privacy compliance, security headers, and transparency around incident response would enhance their security and compliance standing.

E

Enel Green Power

enelgreenpower.com

71

Enel Green Power is a leading global renewable energy company specializing in the generation and sale of clean energy from various renewable sources including wind, solar, hydro, geothermal, and storage. The company operates worldwide with a significant installed capacity of 67.2 GW, positioning itself as the largest renewable energy company globally. Their business model includes direct sales, Power Purchase Agreements (PPA), and a strong commitment to sustainability and innovation. The website reflects a mature digital presence with comprehensive content, educational resources, and a clear focus on the energy transition. Technically, the website is built on Adobe Experience Manager, leveraging modern web technologies and analytics tools such as Adobe DTM, Facebook Pixel, LinkedIn Insight Tag, and Dynatrace for performance monitoring. The site is well-optimized for mobile devices, accessible, and SEO-friendly. Security posture is strong with HTTPS enforced and use of reCAPTCHA, although explicit security headers were not fully confirmed in the HTML content. From a security and compliance perspective, the site includes privacy and cookie policies with consent mechanisms and appears GDPR compliant. However, no direct contact information, security policy, or incident response contacts were found, which could be improved for transparency. The WHOIS data is missing or unavailable, which is unusual for a large enterprise and reduces domain registration transparency, though the overall site professionalism and content quality mitigate concerns. Overall, Enel Green Power's website is a high-quality, professional platform that effectively communicates its business and sustainability mission. Strategic recommendations include enhancing visible security policies, adding direct contact information for security and compliance, and clarifying domain registration details to improve trust and transparency.

S

SolarReviews

solarreviews.com

68

SolarReviews operates as a leading independent solar panel comparison and review platform in the United States, targeting homeowners interested in installing solar panels. The website offers tools such as a solar cost and savings calculator, unbiased consumer reviews of solar companies, and expert reviews of solar equipment including panels, batteries, and inverters. It is well-positioned in the renewable energy sector with a strong market presence supported by citations from reputable media outlets. Technically, the website employs modern web technologies including Vue.js, Tailwind CSS, Google Analytics, Hotjar, and Stripe for payments, indicating a mature digital infrastructure. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the website enforces HTTPS and uses several security best practices, though explicit security headers and policies are not fully visible in the provided content. The absence of WHOIS data reduces domain trust slightly, but the overall brand credibility and content quality remain high. Privacy and cookie policies are not detected, suggesting room for improvement in compliance. Overall, SolarReviews presents a professional and trustworthy online presence with moderate risk and opportunities for enhanced privacy and security transparency.