Security Directory

C

Click2Claim s.r.o.

click2claim.eu

49

Click2Claim s.r.o. is a Czech-based company specializing in assisting air passengers with claims for compensation related to flight delays, cancellations, missed connections, and denied boarding. The company offers an online platform for submitting claims and managing the compensation process, targeting primarily Czech and European Union customers. Their market position is that of a niche service provider in the air passenger rights sector, supported by partnerships with various insurance and financial institutions. Technically, the website employs a traditional web stack with jQuery and jQuery UI, integrated with multiple analytics and marketing tools including Google Analytics, Facebook Pixel, Smartlook, and Clixtell. Cookie consent is managed via CookieYes, ensuring GDPR compliance. The site is mobile-optimized and provides a secure login area for clients. However, some technologies like jQuery are outdated and could benefit from modernization. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks visible HTTP security headers and explicit security policies or incident response contacts. No critical vulnerabilities were detected in the HTML content. The absence of WHOIS registrant data is due to EURid privacy policies, but the website content and partner ecosystem support legitimacy. Overall, the website presents a professional and trustworthy front for a small service company in the transportation sector, with good privacy compliance and a moderate to good security posture. Recommendations include updating libraries, enhancing security headers, and publishing explicit security policies to improve trust and compliance.

T

TravelGATE Kft

travelgate.hu

55

TravelGATE Kft operates a specialized cloud-based business travel management system tailored for Hungarian travel agencies and tour operators. Their platform offers comprehensive features including online travel offer search, booking, client and order management, and marketing tools. The company holds reputable certifications and maintains an active social media presence, positioning itself as a trusted provider in the Hungarian travel software market. Technically, the website employs a mix of legacy and modern JavaScript libraries, with room for modernization and security enhancements. Security posture is moderate, with cookie consent mechanisms and no visible vulnerabilities, but lacking advanced HTTP security headers and incident response contacts. Overall, the website is professional, compliant with GDPR, and provides clear business and contact information, supporting a medium-sized enterprise profile.

F

fittkau metallgestaltung gmbh

fittkau-metallbau.de

54

Fittkau Metallgestaltung GmbH is a German small-sized manufacturing company specializing in metalworking, forge, and artistic metal structures. The company presents a professional website built on Joomla! CMS, showcasing a portfolio of projects and providing essential contact information. The website targets architects, construction firms, and clients seeking specialized metal fabrication services. The business holds a reputable market position with recent award recognition, indicating industry credibility. Technically, the website employs legacy JavaScript libraries such as jQuery and MooTools, with moderate performance and basic mobile optimization. The absence of advanced analytics and tracking tools suggests a privacy-conscious approach. However, the lack of visible security headers and outdated libraries indicate areas for technical improvement. From a security perspective, the site uses HTTPS (assumed from base URL), includes a cookie consent mechanism, and provides a privacy policy compliant with GDPR. No incident response or security policy pages are found, and no phone contact is provided, which could limit user trust. No critical vulnerabilities or blocking mechanisms are detected, but updating security practices and technical stack is recommended. Overall, the website is professional and trustworthy with good business credibility but could benefit from technical modernization and enhanced security measures to improve resilience and compliance.

S

Sirius Facilities GmbH

siriusfacilities.com

53

Sirius Facilities GmbH is a prominent German commercial real estate company specializing in flexible leasing of office spaces, storage, production halls, conference centers, and virtual office services. With over 70 locations and a large portfolio, they cater primarily to small and medium-sized enterprises as well as larger firms. Their website demonstrates a mature digital presence with a professional design, comprehensive service offerings, and multiple contact channels. Technically, the site is built on Drupal CMS with modern JavaScript libraries and includes privacy compliance tools such as Usercentrics CMP and analytics via Google Analytics and Matomo. Security posture is strong with HTTPS and secure forms, though some HTTP security headers could be improved. The WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high due to consistent branding and transparent contact information.

B

BRIESE SCHIFFAHRT

briese.de

54

BRIESE SCHIFFAHRT is a medium-sized German maritime shipping company managing a fleet of over 130 multipurpose heavylift vessels. The company operates several divisions including chartering, research vessel management, and crew management, serving clients in the shipping and logistics sectors. The website presents a professional and consistent brand image with clear navigation and relevant content targeting maritime industry professionals and potential crew members. Technically, the site uses NeoCMS with jQuery and related libraries, delivering moderate performance and basic mobile optimization. Security posture is moderate with HTTPS implied but lacking explicit security headers and advanced protections on login forms. Privacy compliance is limited, with no cookie consent mechanism detected and only a basic privacy policy present. WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, the website is functional and professional but could improve in security and privacy compliance to enhance trust and regulatory adherence.

Verband Pneumologischer Kliniken e.V. (VPK) is a German non-profit association representing pneumological clinics and departments. The website serves as an information hub for members and interested parties, offering medical guidelines, position papers, and event information. The site is built on TYPO3 CMS and uses common web technologies such as jQuery and Font Awesome. It is professionally designed with consistent branding and clear navigation, targeting healthcare professionals in pneumology within Germany. The website is secure with HTTPS and includes a cookie consent mechanism, though it lacks explicit security policies and incident response information publicly. No forms or direct contact emails are exposed on the main page, but a contact page is available. The WHOIS data is minimal but consistent with the website's purpose, indicating legitimacy. Partner logos link to reputable German medical organizations, enhancing trust.

M

Ministerie van Justitie en Veiligheid

prosecutionservice.nl

60

The Netherlands Public Prosecution Service website represents an official government entity under the Ministry of Justice and Security. It provides comprehensive information about its role in supervising police investigations, prosecuting criminal offenses, and managing court proceedings. The site targets a general audience including citizens, legal professionals, and international stakeholders interested in Dutch prosecution services. The business model is a government service with a strong national presence and a large organizational size. The website content is well-structured, professionally designed, and consistent with government branding standards. Technically, the website employs modern JavaScript libraries such as jQuery UI and uses Piwik PRO for analytics, indicating a moderate level of digital maturity. The site is hosted on government infrastructure with HTTPS enforced, ensuring secure communications. Mobile optimization and accessibility features are well implemented, supporting a broad user base. However, some security headers are missing, and no explicit security policy page is published. From a security perspective, the site demonstrates good practices including HTTPS, no visible vulnerabilities, and secure form handling. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Incident response is supported via a vulnerability reporting page, though no direct security contact emails are published. The domain registration data aligns perfectly with the official government entity, reinforcing trust and legitimacy. Overall, the website is a trustworthy, professional government portal with good security and privacy posture. Recommendations include adding security headers, publishing a dedicated security policy, and providing explicit incident response contact details to further enhance security transparency and user trust.

O

Openbaar Ministerie

om.nl

63

The Openbaar Ministerie (OM) website is the official online presence of the Dutch Public Prosecution Service, a key government entity responsible for criminal prosecution and law enforcement leadership in the Netherlands. The site clearly communicates its role, services, and legal authority, targeting citizens, legal professionals, and stakeholders in the justice system. It is published under the Ministry of Justice and Security, reinforcing its authoritative position. Technically, the website employs modern web technologies including JavaScript, jQuery UI, and Piwik PRO analytics, hosted likely on government infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with comprehensive metadata and structured content. Privacy and cookie policies are present and GDPR compliant, reflecting a mature digital governance approach. Security posture is strong with HTTPS enforced and no visible vulnerabilities or sensitive data exposure. However, explicit security headers are not detected in the HTML content, and no dedicated security policy or incident response contacts are published, which are areas for improvement. The domain registration aligns perfectly with the government entity, enhancing trust and legitimacy. Overall, the OM website is a professional, trustworthy, and well-maintained government portal with strong content quality and compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and providing explicit incident response contacts to further strengthen security and transparency.

B

Berufsverband der Frauenärzte e.V.

bvf.de

56

The Berufsverband der Frauenärzte e.V. (BVF) is a professional association representing gynecologists in Germany, providing a broad range of member services including insurance benefits, professional advice, continuing education through the BVF Akademie, and a members-only online portal. The website is well-structured, professionally designed, and targets medical professionals in the gynecology sector. It maintains a strong market position with approximately 15,000 members and offers relevant content such as news, press releases, and event calendars. Technically, the site is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as jQuery, FlexSlider, and SlickNav for responsive navigation and interactive elements. The site employs Matomo analytics configured to be cookie-free, demonstrating a commitment to user privacy and GDPR compliance. Mobile optimization and SEO practices are good, though accessibility features are basic. From a security perspective, the site enforces HTTPS and uses privacy-conscious analytics. However, it lacks explicit security headers and published security policies or incident response contacts, which are recommended for enhanced security posture. No vulnerabilities or suspicious content were detected. Overall, the website is trustworthy, professional, and compliant with privacy regulations, serving its niche audience effectively. Strategic improvements in security headers and incident response transparency would further strengthen its security and trustworthiness.

T

Theater Waidspeicher e.V.

waidspeicher.de

53

Theater Waidspeicher e.V. is a small, established non-profit cultural organization based in Germany specializing in puppet and music theatre. Founded in 1993, it offers a diverse program targeting a broad audience including children and adults, with performances, workshops, and tours. The website reflects a professional and consistent brand presence with good content quality and clear navigation. Technically, the site is built on the Contao CMS platform, leveraging modern JavaScript libraries and frameworks to provide a responsive and accessible user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site demonstrates a trustworthy and legitimate online presence aligned with its cultural mission.

ACK.Travel is the official website of the Asociace cestovních kanceláří ČR, a Czech association representing travel agencies. The site provides news, travel information, and resources primarily targeting travel professionals and travelers within the Czech Republic. The content is professionally presented with a clear focus on travel and tourism industry updates and member services. Technically, the website employs common JavaScript libraries such as jQuery and AmCharts for interactive maps and user interface elements, and uses Matomo for analytics tracking. However, the site lacks visible privacy and cookie policies, and no WHOIS data could be extracted due to malformed WHOIS responses, which limits the ability to fully verify domain legitimacy. Security headers and SSL configuration details are not provided in the data, indicating potential areas for improvement in security posture. Overall, the website appears legitimate and professionally maintained but would benefit from enhanced privacy compliance and security transparency.

B

bMC GROUP

salvageapp.com

53

SalvageApp is a specialized web application developed and operated by the bMC GROUP, targeting the marine claims sector. It offers a suite of modules designed to improve information flow, cost transparency, project scheduling, risk management, and reporting for marine salvage and insurance claims. The platform is provided complimentary to bMC GROUP clients, positioning it as a value-added service within a niche maritime insurance market. The website presents a professional and consistent brand image with clear contact information and detailed descriptions of its modules and benefits. Technically, the website is built on the Contao CMS with modern frontend technologies including Bootstrap and jQuery. It demonstrates good mobile optimization and user experience, though some SEO and accessibility features are basic. The site uses HTTPS and includes client login functionality, but lacks visible security headers and DNSSEC is not enabled, indicating room for security improvements. Analytics and tracking are implemented via brand-analytics.de, with a basic cookie consent mechanism in place. From a security perspective, the site shows no signs of blocking or WAF interference, and no critical vulnerabilities are evident in the provided data. However, the absence of DNSSEC and security headers suggests moderate security posture. The domain registration is consistent with the business timeline and shows no suspicious patterns, supporting legitimacy. Overall, SalvageApp's website is a credible, well-structured platform serving a specialized business audience with a moderate security posture and good business credibility. Strategic improvements in security headers, DNSSEC, and privacy compliance could enhance trust and resilience.

O

Openbaar Ministerie

openbaarministerie.nl

63

The Openbaar Ministerie (OM) website serves as the official online presence of the Dutch Public Prosecution Service, a key government entity responsible for criminal prosecution and law enforcement leadership in the Netherlands. The site provides comprehensive information about the OM's role, ongoing cases, news updates, and public resources. It targets a broad audience including the general public, legal professionals, victims, and suspects, offering transparency and accessibility to justice-related information. The OM operates under the Ministry of Justice and Security, reinforcing its authoritative position in the national justice system. Technically, the website employs modern web technologies including JavaScript and jQuery UI, with analytics powered by Piwik PRO, reflecting a moderate to advanced digital maturity. The site is hosted on government infrastructure, ensuring reliability and compliance with national standards. Mobile optimization and accessibility features are well implemented, contributing to a positive user experience. SEO and metadata are properly configured, enhancing discoverability. From a security perspective, the site enforces HTTPS with strong SSL configuration and uses nonce attributes in scripts to mitigate injection risks. Privacy and cookie policies are clearly presented with consent mechanisms, aligning with GDPR requirements. However, explicit security policy documentation and incident response contacts are not publicly available, representing an area for improvement. No vulnerabilities or suspicious activities were detected in the content or technical setup. Overall, the OM website demonstrates a high level of professionalism, trustworthiness, and compliance appropriate for a government justice institution. Strategic recommendations include publishing formal security policies, enhancing security headers, and providing clear incident response contacts to further strengthen security posture and public trust.

T

Thüringer Theaterportal

thueringer-theaterportal.de

52

Thüringer Theaterportal is a regional cultural platform dedicated to providing comprehensive schedules and information about theater performances in Thuringia, Germany. It aggregates event details from local theaters such as Schotte e.V. and Kabarett DIE ARCHE, offering users detailed descriptions, images, and direct links to ticket purchasing on partner websites. The portal targets theater enthusiasts and the general public interested in cultural events within the region. Technically, the website is built on the Contao Open Source CMS and employs a variety of JavaScript libraries including jQuery, jQuery UI, Colorbox, and Select2 to enhance user experience. The site is mobile-optimized with a responsive design and includes accessibility features such as skip navigation links. SEO is basic but functional, with meta tags and structured data present. From a security perspective, the site enforces HTTPS and includes essential cookies with CSRF protection. A cookie consent banner is implemented, allowing users to opt-in for external content such as Google Maps. However, the site lacks several recommended security headers and does not provide explicit incident response or vulnerability disclosure information. No critical vulnerabilities or suspicious content were detected. Overall, the website presents a professional and trustworthy front for a small regional cultural information service. It complies with GDPR requirements at a basic level and maintains a good balance between usability and security. Strategic improvements in security headers and transparency would enhance its security posture further.

L

LAG Soziokultur Thüringen e.V.

soziokultur-thueringen.de

71

LAG Soziokultur Thüringen e.V. is a regional non-profit association dedicated to representing and supporting socio-cultural initiatives in the German state of Thüringen. The organization provides key services including cultural consulting, education, funding support, public relations, and lobbying to strengthen the socio-cultural landscape. Their market position is that of a leading regional advocate and service provider for socio-cultural actors. The website is professionally designed, content-rich, and well-structured, targeting cultural stakeholders and the general public interested in socio-cultural projects. Technically, the website is built on the Contao Open Source CMS platform, utilizing modern JavaScript libraries such as jQuery, Slick Slider, and Google Maps API for enhanced user experience. The site is mobile-optimized and includes accessibility features, though some improvements could be made. Performance is moderate, with no major technical issues detected. From a security perspective, the site enforces HTTPS, uses CSRF tokens in forms, and includes CAPTCHA to prevent spam. Cookie consent is implemented with detailed categories, reflecting GDPR compliance. However, there is no publicly available formal security policy or incident response information, which could be improved to enhance trust and preparedness. Overall, the website is trustworthy, safe, and compliant with privacy regulations. It effectively serves its target audience with relevant content and services. Strategic recommendations include publishing a formal security policy, adding a security.txt file, enhancing security headers, and improving accessibility to further strengthen the site's security posture and user experience.

B

Briese Schiffahrts GmbH & Co. KG

briese-research.de

25

BRIESE Research, a division of Briese Schiffahrts GmbH & Co. KG, specializes in the management and chartering of German research vessels, serving scientific institutions and maritime research communities. The company manages a fleet of notable research vessels and collaborates with prominent scientific organizations such as AWI, GEOMAR, and Senckenberg. Their business model focuses on providing comprehensive vessel management, crew recruitment, and logistical support tailored to research needs. The website reflects a niche market position with a medium-sized enterprise footprint in Germany.

D

Darkmay s.r.o.

cestovnysystem.sk

53

Darkmay s.r.o. operates the CeSYS platform, a comprehensive system for travel agencies primarily in Slovakia, offering online tour sales and related services. The company holds a strong market position with over 100 active travel agencies using its data and services. The website is well-structured, professionally designed, and optimized for performance and mobile use. It integrates modern technologies such as jQuery, Bootstrap, Google Analytics, and Google Maps API, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating a trustworthy and accessible platform. Overall, the website demonstrates good compliance with privacy regulations and provides clear business and partner information.

A

Argus AS

argus.no

57

Argus AS is a Norwegian company specializing in providing systems and document bases for effective management of system requirements in the construction, transport, and related industries. They offer digital solutions, certification assistance including ISO standards, and support for regulatory inspections. The company has a long-standing presence since 1999, positioning itself as a specialist in compliance and document management within its sectors. The website reflects a business-to-business model targeting companies needing compliance and certification support. Technically, the site uses a custom ASP.NET Web Forms platform with older JavaScript libraries such as AngularJS and jQuery 1.7.1, indicating moderate digital maturity. The site is functional with good content quality but lacks modern security headers and explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS usage but missing advanced security headers and vulnerability disclosures. Overall, the website is professional and trustworthy but would benefit from updates to security practices and privacy compliance to reduce risk and enhance user trust.

R

Raiffeisen banka

raiffeisen.sk

50

Raiffeisen banka is a well-established Slovak financial institution with over 130 years of tradition, operating as a branch of Tatra banka. The website presents a professional and customer-centric banking service offering personal accounts, loans, savings, and pension products. The digital infrastructure leverages modern web technologies including jQuery, Bootstrap, and Google Tag Manager, ensuring a responsive and user-friendly experience. Security posture is strong with HTTPS enforcement, CSRF protection, and privacy compliance, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site reflects a mature digital presence aligned with industry standards and regulatory requirements.

T

The HISTORY Channel

history.com

56

The HISTORY Channel website (www.history.de) serves as the German-language digital presence for a pay-TV channel specializing in history documentaries and related content. It offers TV programming schedules, streaming options via HISTORY Play, educational materials, and a blog. The site targets a general audience interested in history and documentary content, positioning itself as a reputable media provider in the German market. The business model revolves around pay-TV subscriptions and digital streaming partnerships, notably with Amazon Prime Video Channels. The website is professionally designed, with consistent branding and comprehensive content that supports its market position.

B

BrAIn

ozbrain.sk

45

BrAIn is a Slovak non-profit organization dedicated to supporting the development of young talents in artificial intelligence and intelligent technologies. Founded in 2023 by researchers from the Kempelen Institute of Intelligent Technologies, it aims to prepare gifted students for professional careers in technology and innovation. The organization facilitates internships, educational courses, and networking opportunities with experts and companies, funded partly through 2% tax donations and other contributions. The website reflects a well-structured and professional digital presence with detailed profiles of supported talents and supporters, emphasizing transparency and community engagement. Technically, the website is built on WordPress with modern JavaScript libraries like jQuery and optimized using Autoptimize. It is hosted on a Slovak hosting provider with DNSSEC enabled and uses HTTPS, ensuring secure communication. The site is mobile-optimized and SEO-friendly but lacks some advanced security headers and privacy compliance features such as privacy and cookie policies. From a security perspective, the site benefits from HTTPS and DNSSEC but misses critical security headers and formal privacy compliance mechanisms. No incident response or vulnerability disclosure information is provided. The WHOIS data is consistent with the organization's claims, showing a recently registered domain appropriate for a new non-profit. No suspicious patterns or privacy protection are used, enhancing trustworthiness. Overall, BrAIn's website demonstrates a strong business credibility and content quality with moderate technical implementation and security posture. The main gaps lie in privacy compliance and security best practices, which should be addressed to improve trust and regulatory adherence.

B

Berufsverband der Kinder- und Jugendärzt*innen e.V.

kinderaerzte-im-netz.de

57

Kinderaerzte-im-Netz.de is a comprehensive German healthcare information platform operated by the Berufsverband der Kinder- und Jugendärzt*innen e.V. (BVKJ), focusing on pediatric and adolescent health. The site offers extensive resources including disease information, vaccination schedules, developmental milestones, and preventive care tips, targeting parents, children, and healthcare professionals. It also provides a doctor search service and a dedicated mobile app for patient communication. The platform holds a strong market position as a trusted source in pediatric healthcare in Germany. Technically, the website is built on TYPO3 CMS and employs modern web technologies such as jQuery, FlexSlider, and FontAwesome. It uses Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. The site is mobile-optimized with good navigation and content structure, although some accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some security headers and does not publicly disclose a security policy or incident response contacts. No cookie consent mechanism is present, which is a minor compliance gap. No vulnerabilities or suspicious patterns were identified. Overall, the security posture is solid but could be improved with additional headers and transparency. The domain registration data aligns well with the website's purpose and business entity, indicating legitimacy. External links point to reputable partner and related domains. No adult or inappropriate content is present, making the site safe for general audiences. Strategic recommendations include implementing cookie consent, publishing security policies, and enhancing security headers to strengthen compliance and trust.

B

BVKJ-Service GmbH

bvkj-service-gmbh.de

55

BVKJ-Service GmbH operates as a specialized service provider in the pediatric healthcare sector in Germany, offering selective contracts, care projects, digital services, seminars, cooperations, and an online shop. The company targets pediatric and adolescent medical practices as well as parents, positioning itself as a niche partner within this healthcare segment. The website is built on TYPO3 CMS and uses modern JavaScript libraries such as jQuery and Modernizr, indicating a moderate level of digital maturity. The site is mobile-optimized and provides clear navigation and professional design, though some accessibility and SEO features are basic. From a security perspective, the website enforces HTTPS and uses secure form submissions but lacks important security headers and explicit privacy compliance mechanisms such as cookie consent banners. No incident response or vulnerability disclosure policies are published, and no direct contact emails or phone numbers are visible, which may impact user trust and compliance with GDPR requirements. The WHOIS data shows a standard domain setup with no privacy protection, consistent with the business purpose, but lacks detailed registrant information. Overall, the website is functional and professional but could improve its privacy compliance and security posture. The absence of cookie consent and detailed privacy indicators, along with missing security headers, represent areas for enhancement. The business credibility is moderate, supported by clear service offerings and partner links, but contact transparency could be improved.

Protetika Plzeň is a specialized healthcare provider focused on orthopedic prosthetics and orthotics with a long-standing tradition dating back to the first world war. The company offers a range of services including the production of prostheses, orthoses, and orthopedic insoles, with a particular emphasis on pediatric orthoses. Their market position is that of a regional specialist serving western Czech Republic, supported by partnerships with notable institutions such as FN Plzeň and Cortex. The website reflects a professional business model targeting patients with physical disabilities and healthcare providers in the region. Technically, the website employs a modern but basic technology stack including jQuery, Google Maps API, and Google Analytics, hosted on WEDOS servers. While the site is functional and moderately optimized for performance and mobile use, it lacks advanced accessibility and SEO features. Security posture is adequate with HTTPS and reCAPTCHA implemented, but the absence of security headers and formal security policies indicates room for improvement. Privacy compliance is weak due to missing privacy and cookie policies, which poses a compliance risk. Overall, the website is trustworthy and safe for general audiences but would benefit from enhanced privacy and security measures.

The Landesarbeitsgemeinschaft Jazz in Thüringen e. V. is a regional non-profit organization dedicated to promoting jazz music within the Thuringia region of Germany. The website serves as a cultural hub, providing information and networking opportunities for jazz enthusiasts and local jazz clubs. It maintains partnerships with several regional jazz clubs, as evidenced by multiple external links. The site is built on the Contao CMS platform and utilizes common JavaScript libraries such as jQuery and Colorbox, indicating a moderate level of technical maturity. The website is accessible, mobile-optimized, and presents a consistent branding aligned with its cultural mission. However, it lacks advanced privacy and security features such as cookie consent mechanisms and security headers, which are important for compliance and protection.

T

Technologické centrum AV ČR

h2020.cz

44

The website www.h2020.cz serves as the official Czech national portal for the EU Horizon 2020 research and innovation framework program. Operated by Technologické centrum AV ČR, it provides comprehensive information, news, event calendars, and documentation related to Horizon 2020. The portal targets researchers, innovators, industry stakeholders, and public institutions interested in EU research funding opportunities. It positions itself as a trusted government-affiliated resource with consistent branding and clear navigation. Technically, the site uses a combination of jQuery, Bootstrap 3.3.7, jQuery UI, and a custom CMS named FoxFrame. It integrates Google Tag Manager and Google Analytics for tracking. The site is mobile optimized and performs moderately well, though accessibility features are basic. The HTML structure and meta tags support good SEO practices. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers such as Content-Security-Policy and X-Frame-Options, which could improve protection. There is no visible privacy or cookie policy, which is a compliance gap especially under GDPR. No WHOIS data is available for the domain, which slightly reduces trust but the content and external links strongly indicate legitimacy. Overall, the site is a professional and trustworthy government information portal with good content quality and technical implementation. To enhance security and compliance, it should implement security headers, publish privacy and cookie policies, and provide clear contact information for security and privacy concerns.

Parzival-Jugendhilfe is a small, non-profit educational and youth support organization based in Karlsruhe, Germany. It operates as part of the Parzival-Zentrum Karlsruhe and offers integrative educational services based on Waldorf pedagogy, targeting male youths aged 12 to 18. The website reflects a professional and consistent brand image with clear navigation and relevant content focused on its educational mission. Technically, the site is built on WordPress with modern SEO practices via Yoast SEO and uses standard web technologies such as jQuery. Hosting is provided by kasserver.com, as indicated by the nameservers. Security posture is adequate with HTTPS enforced and some anti-spam measures, but lacks advanced security headers and explicit incident response or security policies. Privacy compliance is basic with a privacy and cookie policy present but no active cookie consent mechanism. Overall, the website is trustworthy and well-positioned within its regional educational sector.

A

Akabo Media

akabomedia.co.uk

45

Akabo Media is a UK-based small business specializing in publishing and event organization focused on logistics, supply chain, and intelligent transportation systems. The company provides decision makers in these sectors with informed intelligence, analysis, and industry events to maintain competitive advantage. The website is professionally designed using WordPress with Elementor and Yoast SEO, indicating a moderate level of digital maturity. The technical infrastructure includes modern web technologies and analytics tools, supporting good performance and SEO optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal policies. The absence of privacy and cookie policies, as well as contact information, represents compliance and trust gaps. WHOIS data is unavailable due to domain registration errors, which impacts domain legitimacy assessment. Overall, the website is functional and business-focused but would benefit from enhanced compliance and security transparency.

Primatour s.r.o. is a Slovak travel agency based in Trnava, offering a wide range of holiday packages including last minute deals, exotic vacations, family and adult-only hotels, and cruises. The company emphasizes 20 years of experience and positions itself as a trusted provider in the Slovak travel market. Their website is well-structured, professionally designed, and targets Slovak-speaking travelers seeking vacation options. The business model revolves around travel package sales and customer service with a strong digital presence including social media and newsletter marketing. Technically, the website leverages modern web technologies such as jQuery, Bootstrap, and Slick Slider, integrated with a specialized travel agency system (CeSYS). It uses CDN-hosted assets and includes marketing and analytics tools like Google Tag Manager, Facebook Pixel, and Mailchimp. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms compliant with GDPR. However, explicit security headers and incident response policies are not evident. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the business claims, supporting legitimacy and trustworthiness. Overall, Primatour's website demonstrates a solid digital maturity level with good privacy compliance and business credibility. Strategic improvements could focus on enhancing security headers, incident response transparency, and accessibility features to further strengthen their security posture and user trust.

B

brand MARINE CONSULTANTS GmbH

brand-marine.com

51

brand MARINE CONSULTANTS GmbH is a specialized marine consultancy founded in 2014, offering a broad range of services including salvage operations, casualty management, surveys, and expert witness services. The company targets shipowners, law firms, insurance companies, and offshore contractors globally. The website is professionally designed, mobile optimized, and uses modern web technologies including Contao CMS and various JavaScript libraries. Privacy and cookie policies are implemented with GDPR compliance. However, the WHOIS data for the domain is missing, which raises concerns about domain registration legitimacy. No direct contact emails or phone numbers are present on the services page, which could impact user trust. Overall, the security posture is moderate with room for improvement in security headers and incident response transparency.

D

Datatilsynet

datatilsynet.no

74

Datatilsynet is the Norwegian Data Protection Authority, serving as both a supervisory and ombudsman body responsible for ensuring compliance with privacy regulations and protecting individuals from misuse of personal data. The website provides comprehensive information on privacy rights, obligations for businesses, and regulatory frameworks, targeting Norwegian citizens, organizations, and privacy professionals. It holds a strong market position as a national government agency with authoritative content and services. Technically, the website employs a modern tech stack including Vue.js and jQuery, is built on the EPiServer CMS platform, and demonstrates good mobile optimization and accessibility. The site uses HTTPS and implements a cookie consent mechanism aligned with GDPR requirements, reflecting a mature digital infrastructure suitable for a government entity. From a security perspective, the site benefits from HTTPS and secure cookie handling but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data is consistent with Norwegian domain registry policies and does not detract from the site's legitimacy. Overall, Datatilsynet's website is professional, trustworthy, and compliant with privacy regulations, offering valuable resources and guidance on data protection. Strategic improvements could include enhancing security headers, publishing incident response information, and adding vulnerability disclosure mechanisms to further strengthen security posture.

V

Verein Stiftungen für Bildung e.V.

netzwerk-stiftungen-bildung.de

58

Netzwerk Stiftungen und Bildung is a German non-profit organization that facilitates collaboration and knowledge sharing among educational foundations and actors. The website serves as a platform offering a directory of members (Netties), news, events, and educational resources. It targets foundations, educational institutions, and stakeholders interested in local educational development. The organization appears well-established with a medium-sized network and a professional online presence. Technically, the website is built on Drupal 10, leveraging modern JavaScript libraries such as jQuery UI and Klaro for cookie consent management. The site is mobile-optimized, accessible, and implements good SEO practices. Google Analytics is used for visitor statistics with user consent. The site uses HTTPS and shows good security hygiene, although some security headers could be improved. From a security perspective, the site enforces HTTPS and uses a consent manager for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not present, which could be enhanced to improve trust and compliance. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. It provides clear contact information and a comprehensive cookie consent mechanism. The domain WHOIS data is limited but does not raise immediate concerns. Strategic improvements in security headers and incident response transparency are recommended to further strengthen the security posture.

Technické služby Lanškroun, s.r.o. is a municipal service provider based in the Czech Republic, offering a range of public services including waste management, maintenance of green areas, public lighting, transport and construction works, sports facility management, and cemetery services. The company primarily serves the town of Lanškroun and its residents, positioning itself as a local essential service provider. The website content is well-structured and relevant to its audience, with clear navigation and consistent branding. However, the absence of WHOIS data and lack of explicit contact information on the site limits external verification of legitimacy. From a technical perspective, the website employs standard web technologies such as jQuery and custom JavaScript, with basic mobile optimization and accessibility features. The site includes a cookie consent mechanism indicating some level of privacy awareness, but lacks comprehensive privacy and security policies. No evidence of modern CMS or advanced frameworks was found, and performance is moderate. Security posture is weak due to missing HTTPS confirmation, absence of security headers, and no visible incident response or vulnerability disclosure information. The lack of WHOIS data further reduces trustworthiness. There are no signs of malicious content or adult material, and the site appears safe for general audiences. Overall, while the business appears legitimate and focused on municipal services, the website would benefit from improved security measures, transparency in privacy practices, and clearer contact information to enhance trust and compliance.

H

Hülskens Liebersee GmbH & Co. KG

huelskens-liebersee.de

51

Hülskens Liebersee GmbH & Co. KG operates as a regional supplier of high-quality sand and gravel products primarily serving the construction and concrete industries in Germany, specifically in the regions of Sachsen and Brandenburg. The company emphasizes product quality, reliable delivery, and partnership with customers. The website is professionally designed using the Contao CMS platform and hosted on agenturserver infrastructure. It features comprehensive product information, downloadable resources, and career opportunities, reflecting a mature digital presence. Security posture is moderate with HTTPS usage and cookie consent mechanisms in place, but lacks explicit security policies or vulnerability disclosures. No significant vulnerabilities or tracking technologies were detected, indicating a privacy-conscious approach. Overall, the website is trustworthy and well-aligned with the business's operational scope and regional market.

H

Hülskens Barleben GmbH & Co. KG

huelskens-barleben.de

51

Hülskens Barleben GmbH & Co. KG is a medium-sized German company specializing in the extraction and supply of construction materials, primarily sand and gravel, for public and private building projects. The company operates multiple sites and offers a comprehensive product range including standard and specialized aggregates. Their business model focuses on providing a full supply chain solution from extraction to delivery via truck and ship, positioning them as a reliable regional partner within the construction materials industry. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to construction professionals and clients. Technically, the website is built on the Contao Open Source CMS platform, utilizing common JavaScript libraries such as jQuery and Colorbox for UI enhancements. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance. SEO practices are adequately implemented through meta tags and structured navigation. The absence of heavy analytics or tracking scripts suggests a privacy-conscious approach. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and a dedicated security policy or incident response contact, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the HTML content. WHOIS data is consistent with the business identity, supporting domain legitimacy. Overall, the website presents a trustworthy and professional digital presence for Hülskens Barleben GmbH & Co. KG, with solid business credibility and privacy compliance. Strategic enhancements in security headers and incident response transparency would further strengthen their security posture.

The BKC-Spendenportal website serves as an online donation platform operated by the Bank für Kirche und Caritas eG, targeting charitable organizations primarily within the church and caritas sectors in Germany. It facilitates the connection between donors and charitable projects, providing a streamlined platform for online donations. The website is professionally designed with clear navigation and content relevant to its audience, emphasizing transparency and trust through visible contact information and testimonials. Technically, the site is built on the Contao Open Source CMS and leverages common JavaScript libraries such as jQuery, Colorbox, and Isotope for enhanced user experience. Hosting is provided by Schlundtech, a reputable German hosting provider. The site demonstrates good mobile optimization and SEO practices, although performance is moderate rather than fast. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which are recommended for improved security posture. No vulnerabilities or exposed sensitive data were detected in the content. Overall, the site maintains a good security baseline appropriate for its business model. The overall risk assessment is low, with the site presenting a trustworthy and professional front for its niche market. Strategic recommendations include formalizing security policies, adding vulnerability disclosure mechanisms, and enhancing security headers to further strengthen trust and compliance.

C

Caritasverband für den Kreis Lippe und die Stadt Bad Pyrmont e.V.

caritas-detmold.de

50

The Caritasverband für den Kreis Lippe und die Stadt Bad Pyrmont e.V. is a regional non-profit organization providing a broad range of social services including general social counseling, debt counseling, refugee support, and legal advice. The website serves as an information and contact portal for individuals seeking assistance in the Lippe district and Bad Pyrmont city in Germany. The organization positions itself as a trusted local social service provider with a clear focus on community support and volunteer engagement. Technically, the website is built on WordPress 6.8.3 with common plugins such as Yoast SEO for search optimization and Borlabs Cookie for GDPR-compliant cookie management. The site uses HTTPS with a strong SSL configuration and is hosted on servers associated with rzone.de. The technical infrastructure is modern and supports good mobile responsiveness and accessibility, although some improvements in security headers could be made. From a security perspective, the site demonstrates good practices including HTTPS enforcement and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies or incident response information suggests room for improvement in transparency and preparedness. The use of Google Analytics is compliant with user consent, reflecting moderate user tracking. Overall, the website is professional, trustworthy, and well-maintained, with a strong focus on privacy compliance and user experience. Strategic recommendations include enhancing security headers, publishing security policies, and considering a vulnerability disclosure mechanism to further strengthen the security posture and trustworthiness.

W

World Dredgers GmbH & Co. KG

world-dredgers.de

49

World Dredgers GmbH & Co. KG is a specialized engineering company focused on the design, construction, and servicing of suction dredgers and related equipment for efficient gravel and sand extraction. The company emphasizes innovation, notably with its autonomous GPS-based movement control system for dredgers, enhancing operational efficiency and automation. Their market position is that of a niche specialist serving B2B clients in the energy and transportation sectors related to raw material extraction. Technically, the website is built on the Contao CMS platform, utilizing modern JavaScript libraries and frameworks, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking explicit security headers and incident response policies. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, reflecting a credible small-sized enterprise with a clear business focus and parent company affiliation.

O

OTTO MAURER Assekuranzmakler GmbH

maurer-assekuranz.de

51

OTTO MAURER Assekuranzmakler GmbH is a specialized insurance brokerage firm focusing on inland navigation, construction, recycling, and related industries primarily in Germany and the BeNeLux region. With over 30 years of experience and affiliation to the HÜLSKENS-Firmenverband group, the company offers tailored insurance solutions including Flusskasko, P&I, machinery breakdown, and freight loss insurance. The website reflects a professional and consistent brand presence with clear service descriptions and multiple contact points. Technically, the website is built on the Contao Open Source CMS platform, utilizing common JavaScript libraries such as jQuery and Swipe.js for UI components. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Hosting appears to be managed via Agenturserver, with no direct evidence of advanced security headers or analytics tools. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism compliant with GDPR. However, no explicit security policy or incident response contacts are published, and security headers are not evident. No vulnerabilities or suspicious content were detected. The WHOIS data aligns well with the business claims, showing consistent registration and no privacy protection, supporting legitimacy. Overall, the website is trustworthy, professional, and compliant with privacy regulations, though improvements in security policy transparency and technical security headers are recommended to enhance the security posture and trust further.

R

Ruhrmann Logistik GmbH & Co. KG

ruhrmann-logistik.de

51

Ruhrmann Logistik GmbH & Co. KG is a well-established logistics company specializing in bulk goods handling and port logistics with multiple locations in North Rhine-Westphalia, Germany. The company operates its own port facilities and is part of the larger Hülskens Firmenverband corporate group, which has a long history in the construction and logistics sectors. The website clearly targets business clients in transportation and waste management, offering comprehensive logistics services including ship disposition and specialized material handling. Technically, the website is built on the Contao CMS platform and uses common JavaScript libraries such as jQuery and Swipe.js for UI components. The site is moderately performant, mobile-optimized, and includes basic accessibility features. SEO is well addressed with proper meta tags and structured data. Security-wise, the site enforces HTTPS and implements a cookie consent mechanism, but lacks explicit security headers and published security policies. The security posture is solid but could be improved by adding formal security and incident response policies and enhancing HTTP security headers. No vulnerabilities or suspicious elements were detected in the content or scripts. WHOIS data aligns well with the business claims, indicating a trustworthy domain with consistent registration information. Overall, the website presents a professional and credible business presence with good content quality and technical implementation. Strategic improvements in security transparency and incident response readiness would further strengthen trust and compliance.

H

Heinr. Elskes GmbH & Co. KG

elskes.de

51

Heinr. Elskes GmbH & Co. KG is a medium-sized, leading concrete manufacturing and supply company based in Nordrhein-Westfalen, Germany. The company operates under the Hülskens Holding group and offers a broad range of products including transport concrete, precast concrete elements, construction steel, and material testing services. Their market position is strong regionally, supported by sustainability certifications such as CSC Platinum and Gold, and a modern online ordering platform enhancing customer experience. The website reflects a professional and trustworthy business with clear contact channels and a focus on quality and sustainability. Technically, the site is built on the Contao CMS platform using modern JavaScript libraries, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. No blocking or WAF challenges were detected, allowing full content access and analysis. Overall, the site scores well on content quality, technical implementation, privacy compliance, and business credibility, making it a reliable digital presence for the company.

H

Hülskens GmbH & Co. KG

huelskens-kies-sand.de

50

Hülskens GmbH & Co. KG is a well-established German company specializing in the extraction and supply of mineral raw materials such as sand and gravel, primarily serving the construction and infrastructure sectors. With over 100 years of experience and multiple regional subsidiaries, the company emphasizes sustainable land use and ecological projects alongside its core business. The website reflects a professional and regionally focused business model with clear communication of services and corporate values. Technically, the website is built on the Contao CMS platform, utilizing modern web technologies including Bootstrap and jQuery. It is hosted on agenturserver infrastructure, with good mobile optimization and SEO practices. The site employs HTTPS and cookie consent mechanisms, demonstrating compliance with GDPR requirements. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site shows a solid posture with no detected vulnerabilities or exposed sensitive data. The absence of analytics scripts suggests a privacy-conscious approach. WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website is trustworthy, professional, and compliant, with room for improvement in security policy transparency and header implementation. The risk level is low, with no critical issues detected. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party scripts to sustain and improve security and compliance posture.

Z

ZľavaDňa

zlavadna.sk

55

ZľavaDňa is a Slovakian online platform specializing in daily discount deals across multiple categories including travel, wellness, food, and goods. The website targets consumers primarily in Slovakia seeking value offers and experiences. Technically, the site uses a modern JavaScript stack with jQuery, Google Tag Manager, Hotjar, and cookie consent mechanisms, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, though security headers could be enhanced. Privacy compliance is basic, lacking explicit privacy and terms of service pages in the analyzed content. Overall, the site is professional and trustworthy with a strong market position in its niche.

L

Landratsamt Miltenberg

landratsamt-miltenberg.de

61

Landkreis Miltenberg operates a professional and comprehensive local government website providing residents and stakeholders with current news, career opportunities, departmental information, and citizen services. The site is well-structured, accessible, and includes privacy and cookie consent mechanisms, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries and a reputable CMS (Contao), hosted on a known provider, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and privacy compliance, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website is trustworthy and serves its public sector role effectively.

C

Cruise Gate Hamburg GmbH

cruisegate-hamburg.de

49

Cruise Gate Hamburg GmbH operates the cruise terminals in Hamburg, managing berth allocations and serving as the central contact for cruise operators. The company also markets Hamburg as a cruise destination internationally. The website is professionally designed, primarily in German, and targets cruise operators, passengers, and tourism stakeholders. Technically, the site uses modern JavaScript libraries such as jQuery and Video.js, with a CMS likely Kirby. It is mobile-optimized and SEO-friendly, though some accessibility features are basic. Security posture is good with HTTPS enforced, but lacks some security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact is mainly via forms, with no direct emails or phone numbers visible. Social media presence is strong, enhancing trust and engagement.

H

Hülskens Holding GmbH & Co. KG

huelskens.de

51

Hülskens Holding GmbH & Co. KG is a well-established German company specializing in the supply of mineral resources such as Kies and Sand, production of transport concrete and precast concrete elements, water construction, logistics, and insurance brokerage. With a history dating back to the early 20th century and a workforce exceeding 900 employees, the company holds a strong regional market position serving construction, energy, and logistics sectors. Their business model focuses on B2B services with multiple subsidiaries and specialized business units, supported by a professional and content-rich website. Technically, the website is built on the Contao CMS platform, utilizing modern JavaScript libraries and frameworks, and hosted by agenturserver. The site is mobile-optimized and SEO-friendly, though some improvements in accessibility and security headers could be made. Security posture is moderate with HTTPS usage and cookie consent mechanisms in place, but lacks explicit security policies or incident response information. Overall, the domain registration and WHOIS data align well with the company's claims, supporting legitimacy and trustworthiness.

The Pax-BKC Spendenportal is a German-language online donation platform operated by Pax-Bank für Kirche und Caritas eG, focused on connecting donors with charitable projects and organizations primarily related to church and Caritas sectors. The platform offers project listings, organization registrations, and facilitates online donations, targeting donors and non-profit institutions in Germany. The website is professionally designed with clear navigation and mobile optimization, built on the Contao CMS with modern JavaScript libraries enhancing user experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are absent. No suspicious or malicious content is detected, and privacy compliance is well addressed with GDPR-aligned cookie consent and privacy policy. Overall, the site presents a trustworthy and professional presence in the non-profit donation space.

Axians eWaste GmbH operates the eTFSportal, a specialized cloud-based software solution designed to facilitate compliance with EU regulations on cross-border waste shipments. The portal supports electronic notification and transport management processes, targeting companies involved in waste transport and disposal. The business is positioned as a niche provider within the energy and transportation sectors, leveraging its parent company Axians' expertise and infrastructure. The website demonstrates a professional and consistent brand presence with clear business information and multilingual support. Technically, the website employs a modern technology stack including jQuery, Bootstrap, FontAwesome, and Google reCAPTCHA v3 for security. The portal integrates various UI components and validation mechanisms to ensure usability and security. Hosting appears professional and GDPR compliant, though some security enhancements such as DNSSEC and security headers could be improved. Security posture is solid with HTTPS enforced and bot protection via reCAPTCHA, but lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website and business present a trustworthy and professional image with moderate technical sophistication and good compliance practices. Strategic improvements in security headers and incident response transparency would further enhance trust and resilience.

K

Kolb Erdbau & Abbruch GmbH

kolb-erdbau-abbruch.de

48

Kolb Erdbau & Abbruch GmbH is a German construction services company specializing in earthworks, demolition, special deep foundation, area recycling, and pollutant remediation. The company targets regional construction and real estate clients, offering consulting and specialized services. The website is built on the Contao CMS platform, utilizing modern JavaScript libraries such as jQuery and Rocksolid Slider, providing a professional and responsive user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers and explicit security policies are absent. Contact information is clearly presented, enhancing business credibility. Overall, the website reflects a small but professional business with a focus on local market presence and compliance with GDPR cookie regulations.