Security Directory

D

Deutscher Hebammenverband (DHV)

hebammenforum.de

59

Hebammenforum.de is the official website of the Hebammenforum magazine, the leading professional publication for midwives in Germany affiliated with the Deutscher Hebammenverband (DHV). The site offers rich content including news, subscription options, job listings, and digital app access, targeting approximately 23,000 DHV members. The business model centers on providing specialized media content and advertising opportunities within the midwifery sector. Technically, the site is built on WordPress with modern plugins and privacy-respecting analytics (Matomo), showing a mature digital infrastructure with good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, though explicit security policies and incident response information are not published.

S

StepArc

steparc.lt

43

StepArc is a Lithuanian-based advertising and printing agency specializing in traditional advertising, printing services, graphic design, and business gift production. The company targets a general audience seeking comprehensive advertising and printing solutions. The website is built on WordPress using the Divi theme, integrating popular marketing and analytics tools such as Google Analytics, Google Tag Manager, and Facebook Pixel, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks explicit security headers and formal security policies. Privacy compliance is limited due to the absence of a dedicated privacy policy and terms of service pages. Overall, the website presents a professional and trustworthy image consistent with a small local business.

S

Stichting MS Research

msresearch.nl

69

Stichting MS Research is a well-established Dutch non-profit organization dedicated to financing and stimulating scientific research into Multiple Sclerosis (MS). Founded in 1996, it holds recognized certifications such as ANBI and CBF, reinforcing its credibility and trustworthiness. The organization targets people affected by MS, healthcare professionals, donors, and the general public, providing information, funding research, and organizing events to raise awareness and support. The website reflects a professional and consistent brand image with excellent content quality and user experience.

N

Neuroliitto ry

kuntoutukseen.fi

55

Kuntoutukseen.fi is a Finnish non-profit website operated by Neuroliitto ry, focusing on providing rehabilitation services information. The website targets individuals seeking rehabilitation support in Finland, offering relevant courses and service details. The domain is well-established since 2017, with transparent WHOIS data matching the organization's identity and location. Technically, the site is built on WordPress with modern plugins and analytics tools, including Google Analytics, Google Tag Manager, and Cookiebot for cookie consent management. The site is hosted behind Cloudflare nameservers, ensuring reliable performance and security. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers could be improved. No privacy policy page was explicitly found, which is a minor compliance gap. Overall, the site is professional, trustworthy, and safe for general audiences.

N

Neuroliitto ry

palvelutalo.fi

10

Palvelutalo.fi is a website operated by Neuroliitto ry, a Finnish non-profit organization focused on neurological support and assisted living services. The website serves as an information platform targeting individuals seeking assistance and support related to neurological conditions in Finland. The organization has a long-standing presence since 2003, reflected in the domain registration data and consistent business information. Technically, the site is built on WordPress with a modern plugin ecosystem including Cookiebot for cookie consent and Google Analytics for traffic analysis. The site is hosted behind Cloudflare DNS, ensuring reliable performance and security. Security posture is good with HTTPS enforced and cookie consent implemented, though explicit security headers could be improved. Privacy compliance is supported by Cookiebot, but no explicit privacy policy or terms of service pages were detected in the provided HTML content. Overall, the website demonstrates a professional and trustworthy presence appropriate for a non-profit organization in the healthcare support sector.

E

ELREC AG

elrec.net

49

ELREC AG is a well-established recycling and waste management company operating primarily in Liechtenstein and adjacent Swiss regions such as Graubünden and St.Gallen. With over 80 years of history, the company offers services including recycling, disposal, and destruction of waste materials. Their market position is that of a trusted regional service provider with certified partnerships in the waste disposal sector. The website targets businesses and organizations seeking professional recycling and disposal solutions. Technically, the website is built on WordPress with modern plugins and analytics tools, hosted by Infomaniak Network SA. The site is mobile-optimized and provides a professional user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partially met with a comprehensive privacy policy but no visible cookie consent mechanism. Overall, the domain registration and WHOIS data align well with the company's identity, supporting legitimacy and trustworthiness.

A

Amt für Berufsbildung und Berufsberatung, 9050 Appenzell

appenzeller-lehre.ch

48

The website 'Arbeitswelt Innerrhoden' serves as an official regional platform promoting apprenticeships and vocational training in Appenzell Innerrhoden, Switzerland. It is affiliated with the Amt für Berufsbildung und Berufsberatung, indicating a government-backed educational initiative. The site targets students, parents, apprentices, and vocational trainers, providing information, blog content, event announcements, and a newsletter subscription service. The business model focuses on information dissemination and regional educational promotion. Technically, the site is built on WordPress 6.8.3 with common plugins such as Contact Form 7 and Google reCAPTCHA for form security. It uses modern JavaScript libraries like jQuery and Slick Carousel for UI enhancements. The site is moderately performant, mobile-optimized, and SEO-friendly, though accessibility features are basic. Analytics are handled via Koko Analytics with minimal user tracking. From a security perspective, the site enforces HTTPS and integrates Google reCAPTCHA to protect forms. However, it lacks standard security headers and a cookie consent mechanism, which are important for GDPR compliance and enhanced security posture. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and professional, serving its regional educational purpose effectively. Strategic improvements in privacy compliance and security headers would enhance its security posture and regulatory adherence.

M

MHpower.sk

ecoproduct.sk

41

MHpower.sk is a Slovakian small business specializing in modern energy solutions including photovoltaic systems, air conditioning, heat pumps, and electrical installations. The company offers comprehensive services from design to installation and maintenance, targeting both residential and commercial clients. Their market position is that of a reliable local provider emphasizing quality and customer satisfaction. Technically, the website is built on WordPress with a custom theme and SEO optimizations, hosted likely by Websupport with DNSSEC and HTTPS properly configured. Security posture is good with encrypted connections but lacks some security headers and formal policies. Contact information is clearly presented, but privacy and cookie policies are missing, representing compliance gaps. Overall, the website is professional, well-structured, and trustworthy, with room for improvement in privacy compliance and security hardening.

D

Dualoo

dualoo.com

53

Dualoo is a Swiss-based company specializing in applicant management software tailored for small and medium-sized enterprises (KMUs). Their platform offers intuitive e-recruiting solutions that simplify the hiring process, focusing on features such as job posting creation, applicant tracking, analytics, and integrations. Positioned as a leading solution for training companies in Switzerland, Dualoo targets businesses seeking efficient and GDPR-compliant recruitment tools. The website is professionally designed, multilingual, and optimized for performance and mobile use, reflecting a mature digital presence. Technically, the website is built on WordPress using Elementor and WPML for multilingual support, enhanced by NitroPack for performance optimization. It integrates marketing and analytics tools such as Google Tag Manager, Salesforce CRM, and Intercom chat, indicating a well-rounded digital marketing and customer engagement strategy. The site employs HTTPS with strong SSL configuration, though explicit security headers could be improved. From a security perspective, the site demonstrates good practices including HTTPS enforcement, cookie consent management, and no visible vulnerabilities or exposed sensitive data. However, it lacks a published security policy or incident response contact, which could enhance trust and preparedness. The absence of WHOIS data from the .com registry suggests privacy protection or alternative registration, but the professional site and compliance measures support legitimacy. Overall, Dualoo presents a secure, compliant, and user-friendly platform for applicant management, with strong business credibility and technical infrastructure. Strategic improvements in security transparency and explicit header implementation would further strengthen their posture.

W

WordPress Care

wordpresscare.com

57

WordPress Care is a specialized service provider focused on WordPress website building and maintenance tailored for small and medium-sized businesses. The company offers a range of services including daily backups, WordPress core, theme and plugin updates, heat maps, and the use of professional plugins to enhance website functionality. The website presents a professional image with client testimonials and certifications that reinforce trust and expertise in the WordPress domain. Technically, the website is built on WordPress 6.8.3 using the Avada theme and several modern plugins such as Yoast SEO and SuperPWA, indicating a mature digital infrastructure. Analytics and tracking tools like Google Analytics, LinkedIn Insight Tag, and Hotjar are employed to monitor user behavior and marketing effectiveness. Security posture is generally good with HTTPS enabled and no visible vulnerabilities, but lacks explicit security headers and formal security policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and business presentation are consistent with a legitimate small business. Privacy and cookie policies are present, but the lack of a cookie consent mechanism and incident response information suggests room for improvement in compliance and transparency.

X

Xvise

xvise.com

8

Xvise is a logistics consulting company specializing in independent automation planning and implementation support. The website presents a professional image with clear business focus on logistics and technology integration, targeting businesses seeking to optimize their logistics processes. The technical infrastructure is based on WordPress CMS with modern plugins for SEO, analytics, and consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and use of reCAPTCHA, but lacks some advanced security headers and explicit privacy/security policies. The absence of WHOIS domain registration data raises concerns about domain legitimacy, impacting overall trust. Strategic recommendations include improving transparency with privacy and terms policies, securing domain registration details, and enhancing security headers to strengthen trust and compliance.

SafeMotion, operated by ilogs healthcare GmbH, is a specialized technology provider focused on lone worker safety solutions. Their offerings include professional 4G LTE smartwatches, pendants, smartphone apps, and a 24/7 alarm monitoring center. The company targets industries where lone working is common, such as production, construction, logistics, security, retail, social work, hospitality, and public administration. Their market position is that of a reliable and user-friendly safety system provider exceeding legal safety requirements. The website is multilingual and professionally designed, reflecting a small but credible technology business based in Austria. Technically, the website is built on WordPress with modern plugins for SEO and multilingual support. It uses HTTPS and secure AJAX forms but lacks some security headers and cookie consent mechanisms. The site performs moderately well with good mobile optimization and accessibility. No major vulnerabilities or exposed sensitive data were detected. Security posture is solid with HTTPS and secure form handling, but the absence of explicit security policies and incident response contacts is a gap. WHOIS data is minimal and privacy protected, which slightly reduces trust but is common for small businesses. Overall, the site is professional, trustworthy, and compliant with GDPR, though improvements in cookie consent and security transparency are recommended. The risk assessment is low, with no signs of malicious activity or suspicious content. Strategic recommendations include implementing security headers, adding cookie consent, publishing security policies, and enhancing WHOIS transparency to improve trust and compliance.

K

KNOWLIMITS Group a.s.

know.cz

45

KNOWLIMITS Group a.s. is the largest independent Czech communication group specializing in comprehensive marketing and media services. The company offers tailored, data-driven solutions leveraging new technologies and AI tools, serving clients across 15 European markets. Their expertise spans strategy, media planning, digital and social media, creative production, retail marketing, data research, PR, and events. The group employs over 250 professionals and reported a turnover of 4 billion CZK in 2024. Technically, the website is built on WordPress with modern frameworks like Bootstrap 5 and integrates Google Tag Manager for analytics. The site is well-structured, mobile-optimized, and SEO-friendly, though it lacks explicit privacy and cookie policies. Security posture is good with HTTPS enabled but could be improved by adding security headers and incident response information. WHOIS data is unavailable, which slightly reduces domain trustworthiness, but the professional presentation and detailed business information support legitimacy.

8

8devs

8devs.com

9

8devs is a small German company specializing in native app development for the healthcare sector, rescue services, and occupational safety. Their business focuses on improving health and well-being through innovative digital solutions, including apps like NeoDiary, HeroShift, and Verbandbuch. The company supports the entire app lifecycle from conception to publishing in major app stores. Technically, the website is built on WordPress with Elementor and uses modern web technologies, hosted by HTTP.NET INTERNET GMBH. The site is well designed, mobile optimized, and provides clear contact information. However, it lacks privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS enabled but missing advanced security headers and incident response details. Overall, the company presents a professional digital presence with room for improvement in compliance and security transparency.

W

World Heart Federation

worldheart.org

68

World Heart Federation is a globally recognized non-profit organization dedicated to fighting cardiovascular disease and promoting heart health worldwide. The organization is formally recognized by the WHO and operates through advocacy, education, campaigns, and partnerships. Their website reflects a mature digital presence with comprehensive content targeting healthcare professionals, policy makers, and the global health community. Technically, the website is built on WordPress with modern integrations such as Google Tag Manager, Microsoft Clarity, and CookieYes for consent management. The use of Cloudflare for DNS and bot management enhances security and performance. Security posture is solid with HTTPS enforced and clientTransferProhibited domain status, though improvements are recommended in DNSSEC and security headers. Privacy compliance is partially addressed with a cookie consent mechanism but lacks explicit privacy and terms of service pages. Overall, the website demonstrates high professionalism and trustworthiness, supported by consistent WHOIS data and strong social media presence.

P

Patientenschulungsprogramme

patientenschulungsprogramme.de

47

Patientenschulungsprogramme.de is a German healthcare education website operated by Deutscher Ärzteverlag, offering accredited patient training programs primarily for chronic diseases such as diabetes, hypertension, asthma, and COPD. The site targets healthcare professionals and practice teams, providing educational materials and training resources to improve patient care and therapy adherence. The business is well-positioned in the German healthcare market with recognized accreditation and expert authorship. Technically, the website is built on WordPress with modern plugins for GDPR compliance, user management, and content delivery. It employs Google Tag Manager and Usercentrics for analytics and consent management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and explicit security policies could be improved. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting its role as a reliable resource in healthcare education.

A

AidDevs

verbandbuch.app

72

Verbandbuch App is a German-based digital solution provider specializing in a mobile and web application for documenting workplace accidents, near misses, and preventive measures. The company targets small to medium-sized enterprises across various sectors such as crafts, service industries, schools, and industry. Their SaaS business model offers tiered subscriptions with clear pricing and a free trial, emphasizing ease of use, data privacy, and compliance with GDPR. The website is professionally designed, mobile-optimized, and provides multiple download options for iOS, Android, and web platforms. The presence of certification logos and detailed feature descriptions enhance trust and market positioning. Technically, the website is built on WordPress with Elementor, leveraging modern JavaScript libraries and plugins like Burst Statistics for analytics. The site is served over HTTPS with good SSL configuration, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is adequate with a comprehensive privacy policy, but lacks a cookie consent mechanism. Contact options are clear, primarily via email and a login portal. Security posture is solid with encrypted communications and secure form handling, but the absence of published security policies and incident response contacts suggests room for maturity. Overall, the site is trustworthy, functional, and well-positioned for its niche market, though enhancements in privacy and security transparency would strengthen its profile. Risk assessment indicates low immediate threats, but strategic recommendations include implementing cookie consent, publishing security and incident response policies, and adding vulnerability disclosure mechanisms to align with best practices and regulatory expectations.

S

schweitzer media gmbh

schweitzer-media.de

49

schweitzer media gmbh is a small, full-service advertising agency based in Kiel, Germany, specializing in integrated marketing, branding, design, web development, film, and photography. The company targets businesses and public institutions seeking comprehensive marketing solutions. Their market position is regional and overregional with a focus on strong ideas and digital transformation. The website reflects a high level of professionalism with excellent content quality and user experience. Technically, the site is built on WordPress with modern optimization tools and consent management, indicating a mature digital infrastructure. Security posture is good with HTTPS and privacy compliance, though some security headers and explicit policies could be improved. Overall, the domain registration and website content are consistent and legitimate, supporting a high trust level.

F

Förderverein Garchinger Geschichte e.V.

fgg-garching.de

46

Förderverein Garchinger Geschichte e.V. is a small non-profit organization dedicated to researching and preserving the historical development of the city of Garching, Germany. The website serves as an information hub for local history enthusiasts, offering publications, event announcements, and archival resources. The association targets local citizens and guests interested in cultural heritage and historical education. The business model is community-focused, relying on membership and donations to support its activities. Technically, the website is built on WordPress 6.8.3 with common plugins such as Slider WD, Contact Form 7, and a cookie notice plugin. It uses Bootstrap 3.3.6 for styling and jQuery 3.7.1 for scripting. The site is moderately optimized for mobile devices and has basic SEO and accessibility features. Hosting details are limited but name servers indicate a German hosting provider. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, indicating awareness of privacy regulations. However, no advanced security headers or incident response policies are published. The use of an older Bootstrap version may pose some security risks. No analytics or tracking services are detected, which reduces privacy concerns but also limits marketing insights. Overall, the website is trustworthy and professional for its purpose, with good content quality and clear contact information. The main risks relate to potential outdated components and lack of formal security policies. Strategic improvements in security headers, incident response transparency, and technical updates would enhance the site's security posture and compliance.

P

prio X GmbH

prio-x.de

65

prio X GmbH is a specialized technology company based in Germany offering tailored, web-based platforms for professional dissemination of live events, webinars, and webcasts. Their modular and customizable solutions cater to businesses and organizations seeking flexible online and hybrid event management platforms. The company positions itself as a niche provider with a focus on interactive features, user tracking, and seamless integration with existing systems. Technically, the website is built on a modern WordPress infrastructure with a suite of plugins for SEO, membership, and cookie management, reflecting a mature digital presence. Security posture is solid with HTTPS, consent management, and CAPTCHA protections, though explicit security policies and incident response details are absent. Overall, the site is professional, GDPR compliant, and trustworthy, with room for improvement in security transparency and accessibility.

F

FAMA – Fachverband Messen und Ausstellungen e.V.

fama.de

10

FAMA – Fachverband Messen und Ausstellungen e.V. is a German trade association representing approximately 60 members from the German-speaking trade fair and exhibition industry. The organization focuses on enhancing the quality of trade fairs, exhibitions, and congresses for exhibitors and visitors through networking events, educational seminars, and industry awards. The website serves as an information hub for members and industry stakeholders, providing event details, news, and resources. Technically, the site is built on WordPress with the Divi theme, employing modern web technologies such as lazy loading and optimized CSS delivery. The site is mobile-friendly and well-structured, offering a good user experience.

F

flyondo GmbH

flyondo.de

56

flyondo GmbH operates as a specialized fulfillment service provider and call center focused on the tourism sector, offering comprehensive handling of tourist services through trained travel agents. The company emphasizes multilingual support and advanced booking technologies, positioning itself as a reliable partner for online travel portals, tour operators, and travel agencies. The website reflects a professional and consistent brand image with clear service descriptions and contact information. Technically, the site is built on WordPress with modern plugins like Elementor and Yoast SEO, ensuring good SEO and mobile responsiveness. Security posture is adequate with HTTPS enforced, though security headers and explicit policies could be improved. Privacy compliance is addressed with a privacy policy and cookie consent mechanism. Overall, the site is trustworthy and well-maintained, supporting the company's market position in Germany's tourism fulfillment niche.

Etacs GmbH is a small German IT company specializing in providing web-based automation solutions for travel agencies, focusing on mid- and back-office processes including post-sale and accounting automation. The company targets travel agencies of all sizes with flexible, modern software products designed for 24/7 online operation. The website is built on WordPress with standard plugins and demonstrates a moderate level of digital maturity, including GDPR-compliant cookie consent mechanisms and a professional design. However, it lacks explicit security and incident response policies and does not publish terms of service or contact details openly on the homepage. Security posture is adequate with HTTPS and cookie management but could be improved with additional security headers and vulnerability disclosure mechanisms. Overall, the site is trustworthy and professional but could benefit from enhanced transparency and technical hardening.

G

Generali

generali.sk

56

Generali is a well-established insurance company operating in Slovakia, offering a broad range of life and non-life insurance products including travel, vehicle, and property insurance. The website positions Generali as a strong partner in the Slovak insurance market, targeting local residents seeking insurance solutions. The business model focuses on direct online insurance services with an emphasis on ease of use and accessibility from home. The company enjoys a positive reputation as indicated by a high aggregate rating from customers. Technically, the website is built on WordPress with modern SEO and analytics tools integrated, including Yoast SEO, Google Tag Manager, Microsoft Clarity, and various tracking pixels for marketing and retargeting. The site is mobile optimized and uses HTTPS with strong security headers, reflecting a mature digital infrastructure. However, some accessibility features could be improved. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, security headers, and cookie consent management. There is no evidence of exposed sensitive data or vulnerable libraries. However, the absence of a published security policy, incident response information, or vulnerability disclosure program suggests room for improvement in transparency and security maturity. Overall, the website is professional, trustworthy, and compliant with GDPR, with a strong business credibility score. The risk profile is low, but strategic enhancements in security communication and accessibility would further strengthen the company's digital trustworthiness.

D

d.vinci HR-Systems GmbH

dvinci-hr.com

49

d.vinci HR-Systems GmbH operates a professional German-language website offering specialized recruiting and onboarding software solutions. The company positions itself as an expert provider in the HR technology sector, targeting HR departments and recruiters seeking efficient applicant management and onboarding tools. The website demonstrates a mature digital presence with modern technologies including WordPress CMS, Bootstrap framework, and advanced SEO practices supported by Yoast SEO Premium and structured data. Analytics and marketing tools such as HubSpot and Google Tag Manager are integrated with appropriate cookie consent mechanisms, reflecting good privacy compliance. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. Contact information is clearly presented with company domain emails and phone numbers, enhancing business credibility. Overall, the site is professional, trustworthy, and well-optimized for its target audience.

M

med update GmbH

freshup-inneremedizin.de

64

fresh up Innere Medizin is a specialized digital education platform offering livestream refresher courses for internal medicine professionals, targeting both returning practitioners and specialists seeking to update their knowledge. The platform is positioned as a complementary offering to established medical updates such as the DGIM INTERNISTEN UPDATE, leveraging expert speakers and CME accreditation to enhance its appeal. Technically, the website is built on a modern WordPress infrastructure with a suite of plugins supporting SEO, membership management, and user engagement. The site demonstrates good mobile optimization and SEO practices, though accessibility could be improved. Security posture is solid with HTTPS and cookie consent mechanisms, but could benefit from enhanced security headers and a formal vulnerability disclosure policy. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and consistency. The site maintains a professional and trustworthy image with clear branding and partnership endorsements.

Z

Zentrale Stelle Rettungsdienst AöR

zsr.sh

58

Zentrale Stelle Rettungsdienst AöR operates as a government agency focused on quality assurance in emergency medical services within Schleswig-Holstein, Germany. The organization consolidates measures to ensure high standards in rescue services. The website reflects a professional and regionally focused public sector entity with clear contact information and compliance with GDPR through a cookie consent mechanism. The domain registration aligns well with the organization's founding date and location, enhancing trustworthiness. Technically, the website is built on WordPress 6.8.3, utilizing standard web technologies and a cookie consent plugin. The site is moderately performant, mobile-optimized, and includes essential security headers and HTTPS encryption, indicating a solid technical foundation. However, DNSSEC is not enabled, which could be improved for enhanced DNS security. Security posture is good with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent banner. However, the site lacks explicit security policies, incident response information, and vulnerability disclosure mechanisms, which are recommended for transparency and preparedness. Overall, the website presents a trustworthy and professional image suitable for a government agency. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and adding a security.txt file to facilitate vulnerability reporting. These steps would further strengthen the site's security and compliance posture.

S

Schlaraffia Aquisgranum

aquisgranum.de

56

Schlaraffia Aquisgranum is a small, non-profit cultural fraternity chapter based in Aachen, Germany, affiliated with the worldwide Schlaraffia organization founded in 1859. The website serves as an informational portal for members and interested parties, providing details about the fraternity's history, principles, and membership process. The site is built on WordPress using the OceanWP theme and Elementor page builder, indicating a moderate level of digital maturity with good SEO and mobile optimization. Security posture is solid with HTTPS and security headers in place, though formal security policies and incident response information are absent. Privacy compliance is basic but present, with a cookie notice and privacy policy page. Overall, the site is trustworthy, professionally presented, and focused on cultural and social fraternity activities.

Iisii solutions GmbH operates a specialized online appointment booking platform called O-TIS, fully integrated with the EVIDENT TIS practice management system. This integration allows healthcare providers, particularly dental and medical practices, to offer patients real-time appointment scheduling, automated reminders, and digital management of patient appointments. The company positions itself as an exclusive partner of EVIDENT, providing a seamless and efficient solution that reduces administrative workload and enhances patient engagement. Technically, the website is built on a modern WordPress CMS with popular plugins such as WPBakery Page Builder and Borlabs Cookie for consent management. The site is well-structured, mobile-optimized, and uses HTTPS with good SSL configuration. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site demonstrates good practices including encrypted connections and cookie consent mechanisms. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of a security.txt or incident response contact limits transparency in vulnerability handling. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. The business model is clear and focused on healthcare providers using EVIDENT TIS software. Strategic recommendations include enhancing security headers, publishing security policies, and adding explicit incident response contacts to improve trust and compliance.

D

Digitalne uspomene

digitalneuspomene.eu

54

Digitalne uspomene is a Croatian small business specializing in the professional digitalization and preservation of old VHS, VHS-C, Mini DV, DVD, and audio cassette media. The company targets individuals and families seeking to preserve precious memories by converting analog media into modern digital formats such as MP4 and MP3. Their service model includes local pickup and delivery in Rijeka and nationwide shipping options. Technically, the website is built on WordPress with Elementor, featuring embedded YouTube videos and Google Fonts, delivering a modern and responsive user experience. Security posture is solid with HTTPS and secure video embeds, though lacking some advanced security headers and explicit privacy policies. The absence of public WHOIS data is due to EURid privacy policies, which is common and justified for this business type. Overall, the website presents a professional and trustworthy front for a niche local service provider.

F

Flensburgjournal

flensburgjournal.de

49

Flensburgjournal is a regional online magazine focused on providing news, event information, and cultural content for Flensburg and its surrounding areas in Germany. Established in 2019, it serves a local audience with a variety of categories including current news, leisure, reports, and sports. The website is built on WordPress and integrates common digital marketing and analytics tools such as Google Analytics and Google Adsense. The technical infrastructure is modern and supports responsive design for mobile and desktop users. Security posture is moderate with HTTPS enforced and some privacy-conscious settings in analytics, but lacks explicit security headers and formal privacy or cookie policies. No incident response or security contact information is provided, which is a gap in compliance and trust. Overall, the site is professional and trustworthy for its regional media role but would benefit from enhanced privacy and security transparency.

F

Fitek

fitek.com

49

Fitek is a medium-sized technology company specializing in digital invoice management and bookkeeping automation solutions for finance professionals. Established in 2003, the company offers a comprehensive B2B SaaS platform that streamlines purchase, expense, and approval workflows, integrating with leading accounting systems. Their multilingual website and customer testimonials indicate a strong market presence in multiple European countries. Technically, the website is built on WordPress with Elementor and employs modern tools such as Google Tag Manager and WPML for multilingual support. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements like enabling DNSSEC and security headers are recommended. No critical vulnerabilities or privacy policy were detected, but cookie compliance is well implemented. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

SONNTAG Wirtschaftsprüfung is a medium-sized professional services firm based in Germany specializing in auditing, tax consulting, legal advice, and related financial services. The company emphasizes a risk-oriented auditing approach aligned with international standards and offers comprehensive consulting services including business valuation, restructuring, and IFRS transition support. Affiliated with the international MOORE network, SONNTAG positions itself as a reliable partner for both local and cross-border clients. The website reflects a professional and consistent brand image with clear service descriptions and contact information. Technically, the site is built on WordPress with modern plugins and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Overall, the site is trustworthy and well-maintained, supporting the company's credible market position.

G

Graugans Werbeagentur

graugans.de

43

Graugans Werbeagentur is a small, established advertising agency based in Kaaks, Germany, specializing in web design, print advertising, and digital marketing services. With over 14 years of experience and more than 1,000 projects, the agency serves a broad client base across Germany, focusing on tailored marketing solutions including SEO, social media, and newsletter campaigns. The company holds recognized innovation awards, underscoring its market credibility. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses performance and privacy enhancing tools such as WP Rocket and Borlabs Cookie. The site is mobile-optimized and SEO-friendly, though there is room for improvement in accessibility and security headers. Hosting is likely provided by 1&1 IONOS, consistent with the domain's German origin. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with GDPR-aligned cookie management and a comprehensive privacy policy. Overall, the website presents a professional and trustworthy digital presence for the agency, with moderate technical sophistication and good compliance. Strategic improvements in security headers and accessibility could further enhance the site's robustness and user experience.

V

Vinofil

vinofil.no

53

Vinofil.no is a Norwegian niche website dedicated to wine enthusiasts, offering wine tips, podcasts, articles, and coverage of new releases from Vinmonopolet. Founded in 2023, it is operated by Svein Lindin, a wine journalist and sommelier with extensive experience. The website uses WordPress with modern plugins and themes, optimized for SEO and mobile devices. While the site employs HTTPS and standard security practices, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Contact options are limited to a newsletter signup form, and no direct emails or phone numbers are published. Advertising is managed via Google AdSense and tracking through Google Tag Manager. The domain registration is consistent with the business age and shows no suspicious patterns, indicating legitimacy.

M

Marketing Hub s.r.o.

marketinghub.cz

51

Marketing Hub s.r.o. is a Czech-based digital marketing agency specializing in comprehensive online marketing services including PPC advertising, SEO, web analytics, graphic design, copywriting, social media management, emailing, and web development. Founded in 2024, the company positions itself as a performance-driven marketing partner for businesses seeking tailored digital solutions. The website reflects a professional and modern digital presence with strong SEO and user experience design. Technically, the site is built on WordPress with integration of modern JavaScript libraries and Google marketing tools, hosted on Websupport infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact and business information.

E

Eduteam – centrum celoživotního vzdělávání z.s.

edugrant.cz

47

EDUgrant is a Czech Republic-based non-profit initiative focused on providing grants and educational support to primary and secondary vocational schools. The website serves as an informational and application portal for schools seeking funding and resources to modernize education. The organization partners with reputable foundations such as The Velux Foundations, enhancing its credibility and outreach. The business model centers on grant distribution and educational seminars, targeting educational institutions within the Czech market. The website content is well-structured, professionally designed, and clearly communicates its mission and services to its target audience. Technically, the website is built on WordPress using Oxygen Builder and several plugins like Toolset Views. It employs modern web technologies including jQuery and MediaElement.js for media handling. The site is hosted likely by Kraxnet, consistent with the domain registrar information. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured navigation. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers such as Content-Security-Policy and X-Frame-Options. There is no published security policy or incident response contact, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is weak due to the absence of privacy and cookie policies, which could pose regulatory risks under GDPR. Overall, EDUgrant presents a trustworthy and professional online presence with a clear educational mission. To enhance its security posture and compliance, it should implement security headers, publish privacy and cookie policies, and provide incident response information. These improvements will strengthen user trust and regulatory adherence while maintaining its positive market position.

A

Archiv der Hansestadt Wismar

zeitreise-wismar.de

65

Zeitreise Wismar is a specialized historical archive portal affiliated with the Hansestadt Wismar city archive. It provides extensive access to historical documents, city views, newspapers, and cultural heritage information primarily targeting local residents, historians, and visitors interested in Wismar's history. The website is built on a modern WordPress infrastructure using Astra theme and Elementor page builder, hosted by Raidboxes, indicating a stable and professional technical foundation. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit security policies and vulnerability disclosure information. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the site is trustworthy and professionally presented, serving a niche educational and governmental function.

G

Gradska knjiznica Marka Marulića

gkmm.hr

43

Gradska knjiznica Marka Marulića is a well-established public library based in Split, Croatia, founded in 2002. It serves a broad audience including children, youth, and adults by providing diverse library services, cultural events, educational workshops, and an online catalog. The institution holds a strong local market position as a key cultural and educational resource. The website reflects this with rich content, event listings, and membership information, targeting general public and literary enthusiasts. Technically, the site is built on WordPress with modern plugins and frameworks such as Bootstrap and Swiper, hosted by Totohost, and integrates Google Analytics for visitor insights. The site is mobile-optimized and SEO-friendly, though accessibility features are basic.

Z

Zentrale Stelle Rettungsdienst AöR

zsr-sh.de

58

The Zentrale Stelle Rettungsdienst AöR (ZSR AöR) is a government entity established in 2023 to centralize and ensure quality assurance in emergency medical services across Schleswig-Holstein, Germany. The organization focuses on collecting and analyzing standardized data from rescue services to improve structural, process, and outcome quality. The website reflects this mission with professional content, clear navigation, and relevant information targeted at rescue service providers and government stakeholders. Technically, the site is built on WordPress with modern plugins for cookie consent and basicBlocks for layout, hosted under a reputable registrar with DNS hosted on cloudpit domains. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and DNSSEC are missing. Privacy compliance is well addressed with a comprehensive privacy policy and cookie banner. No incident response or security policy information is published, which could be improved. Overall, the site is trustworthy, professional, and serves its governmental function effectively.

M

med update GmbH

freshup-hausarztmedizin.de

63

fresh up Hausarztmedizin is a specialized digital education platform offering livestream refresher courses for general practitioners and medical professionals in Germany. The platform is operated by med update GmbH and features expert lectures, CME accreditation, and on-demand video access. The website is professionally designed using WordPress with modern plugins and SEO optimization, targeting healthcare professionals seeking to update their knowledge. Technically, the site employs a robust WordPress infrastructure with security and privacy plugins such as Borlabs Cookie, ensuring GDPR compliance and user consent management. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The domain registration is consistent with a reputable registrar, though WHOIS details are minimal. Overall, the site presents a trustworthy and professional online presence in the healthcare education sector.

M

med update GmbH

radio-onko-update.com

53

The website radio-onko-update.com represents a professional platform operated by med update GmbH, focused on delivering specialized educational seminars and updates in the field of radiation oncology. It targets medical professionals, providing expert commentary on recent studies, seminar materials, and networking opportunities. The business is well established with a domain age since 2009 and strong accreditations from recognized oncology societies. Technically, the site is built on WordPress with modern plugins for SEO, analytics, and GDPR compliance, offering a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS and cookie consent mechanisms, though improvements in DNSSEC and security headers are recommended. Overall, the site demonstrates high trustworthiness and professionalism suitable for its healthcare audience.

M

med update GmbH

internisten-update.com

55

Internisten Update 2025 is a specialized medical education platform operated by med update GmbH, offering annual seminars and online training focused on the latest clinical studies in internal medicine. The platform is well-established with a 20-year history and strong ties to the German Society for Internal Medicine (DGIM), positioning it as a trusted source for medical professionals seeking up-to-date knowledge. The website leverages a mature WordPress infrastructure with modern plugins for SEO, analytics, and GDPR compliance, ensuring a professional digital presence. Security posture is solid with HTTPS and domain protections, though improvements in security headers and published policies could enhance trust further. Overall, the site provides a high-quality user experience with clear navigation, comprehensive content, and effective consent management, making it a reliable resource for its target audience.

S

Stadtarchiv Garching

stadtarchiv-garching.de

47

Stadtarchiv Garching operates as a municipal archive providing historical sources, publications, and projects related to the city of Garching. The website serves as an informational portal targeting historians, local citizens, and researchers interested in local history. Technically, the site is built on WordPress with a modern theme and plugins, hosted on a reputable provider, and shows good mobile optimization and SEO practices. Security posture is adequate with HTTPS enforced but lacks advanced security headers and cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained, though improvements in privacy compliance and security policies are recommended.

Kadence Theme is a technology company specializing in WordPress themes and plugins, offering products such as Kadence Theme, Kadence Blocks, and Starter Templates. The company targets website creators and developers seeking high-performance, ready-to-use website templates and tools. Their market position is that of an established WordPress ecosystem provider with a medium-sized presence. Technically, the website is built on WordPress 6.8.3 with a modern tech stack including Kadence plugins, Rank Math SEO, and Google Fonts, delivering fast performance and excellent mobile optimization. Security posture is good with HTTPS enforced and no visible vulnerabilities, but lacks explicit security headers and published policies. Overall, the site is professional and trustworthy, though the absence of WHOIS data and privacy policies slightly reduces trust. Strategic recommendations include publishing privacy and cookie policies, adding security headers, and providing clear security incident contacts.

D

Dobrovolnické centrum, z.s.

dcul.eu

41

Dobrovolnické centrum, z.s. is a Czech non-profit organization with a 25-year history dedicated to connecting volunteers with those in need across various social sectors. The organization operates volunteer programs supporting children, youth, seniors, and disabled persons, and maintains international partnerships to foster volunteering in Europe. Their key services include mentoring programs, youth clubs, and cultural initiatives, positioning them as a trusted regional non-profit with accreditation in sports and cultural volunteering. Technically, the website is built on WordPress with modern plugins and good mobile optimization, hosted by WEDOS Internet, a.s. Security posture is solid with HTTPS enabled, though lacking security headers and formal privacy/cookie policies, indicating areas for compliance improvement. Overall, the site is professional and trustworthy, with clear contact information and active social media presence.

C

Consulting Service Sp. z o.o.

all-can.pl

40

All.Can Polska is a national non-profit initiative dedicated to improving oncology and hematology care efficiency in Poland. It operates as part of a global network aiming to influence healthcare policy and patient outcomes through expert collaboration and evidence-based recommendations. The website serves as an information and engagement platform targeting healthcare professionals, policymakers, and patient organizations. Technically, the site is built on WordPress with Elementor, employing modern web technologies and performance optimizations. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers and vulnerability disclosures are absent. Overall, the site is professional, trustworthy, and compliant with basic privacy standards, though it lacks explicit privacy policy documentation and direct contact information.

W

World Patients Alliance

worldpatientsalliance.org

10

World Patients Alliance is a global non-profit umbrella organization advocating for patient rights, safety, and access to quality healthcare worldwide. The organization hosts educational events, webinars, and campaigns to empower patients and patient organizations globally. Their website reflects a professional digital presence built on WordPress, leveraging modern plugins and SEO tools to engage their audience effectively. The technical infrastructure is solid with HTTPS, domain locking, and integration of analytics and event management tools. Security posture is good but could be improved by enabling DNSSEC and adding advanced security headers. Privacy compliance is basic, lacking cookie consent mechanisms and explicit terms of service. Overall, the website is trustworthy, well-branded, and serves its mission effectively.

F

Fundacja Instytut Praw Pacjenta i Edukacji Zdrowotnej

fop2024.pl

44

The website represents the XVIII Forum Organizacji Pacjentów (Patient Organizations Forum) 2024, a significant non-profit conference in Poland focused on patient advocacy and healthcare system challenges. Organized by the Fundacja Instytut Praw Pacjenta i Edukacji Zdrowotnej, it targets patient organizations and healthcare stakeholders, providing a platform for dialogue, education, and recognition of contributions in healthcare. The site is professionally designed using WordPress and the Divi theme, with multilingual support and integration of modern web technologies. Security posture is adequate with HTTPS enabled, but lacks some advanced security headers and cookie consent mechanisms. WHOIS data confirms the domain is recently registered, aligning with the event timeline, and shows no suspicious indicators. Overall, the website is credible, well-structured, and serves its business purpose effectively.

F

Flugplatz Oldenburg-Hatten

edwh.de

10

Flugplatz Oldenburg-Hatten operates as a small regional aviation and leisure business located between Oldenburg and Bremen, Germany. The website offers services including a flight school, sightseeing flights, and a café with event booking options. The business targets aviation enthusiasts and local visitors seeking recreational activities. The website is built on WordPress with a custom theme and uses standard plugins for contact forms and cookie consent management. Hosting is provided by Schlund Technologies, consistent with the German domain and regional focus. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and GDPR-aligned cookie consent. Contact information is available, but no explicit security or incident response policies are published. Overall, the website is professional, trustworthy, and well-suited for its niche audience.