Security Directory

B

Bündnis StrukturWandeln

struktur-wandeln.de

57

Bündnis StrukturWandeln is a small non-profit civil society alliance focused on structural change in the Central German mining region. The website serves as an informational and advocacy platform targeting regional stakeholders and activists. Technically, the site is built on WordPress using modern block editor technologies and includes Matomo analytics for visitor tracking. The site is accessible, mobile-optimized, and uses HTTPS, but lacks visible privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. WHOIS data is minimal and domain status is unusual, which reduces trustworthiness. Overall, the site is functional but could improve in privacy compliance and security best practices.

C

CivixX – Werkstatt für Zivilgesellschaft

civinews.de

54

CivixX – Werkstatt für Zivilgesellschaft is a small non-profit organization based in Leipzig, Germany, specializing in consulting and supporting civil society initiatives, sustainable development, and citizen participation projects. The organization collaborates closely with local governments and regional partners, providing services such as coaching, moderation, networking, and educational material development. Their website reflects a professional and consistent brand image, with clear navigation and comprehensive project descriptions tailored to their target audience of local authorities and civil society stakeholders. Technically, the website is built on WordPress with a modern tech stack including jQuery, Owl Carousel, and Matomo for analytics, indicating a privacy-conscious approach. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security practices include HTTPS enforcement and email obfuscation, though some security headers are missing and no explicit security or incident response policies are published. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, featuring a comprehensive privacy and cookie policy with a consent mechanism. The domain registration data aligns well with the website content and business location, supporting legitimacy. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and maintaining regular updates to WordPress and plugins to sustain security and compliance.

Ü

ÜSTRA

uestra.de

62

ÜSTRA operates as a regional public transportation provider in Hannover, Germany, offering bus and tram services along with timetable and ticketing information. The website is built on TYPO3 CMS and integrates specialized public transport widgets, reflecting a mature digital infrastructure. The site is well-designed, mobile-optimized, and provides a good user experience for its target audience of local commuters and visitors. Security posture is adequate with HTTPS and nonce usage, but lacks explicit security headers and published security policies. Privacy compliance is limited due to missing visible privacy and cookie policies. Overall, the domain registration and WHOIS data align with the business claims, indicating legitimacy and trustworthiness.

F

Funkhaus Freiburg

baden.fm

63

baden.fm is a regional media broadcaster serving Freiburg and the Südbaden region in Germany, offering radio streaming, news, event tips, and ticket sales. The website is professionally designed with consistent branding and targets local residents and listeners. Technically, the site uses a modern tech stack including WordPress CMS, JavaScript libraries such as Swiper.js and Video.js, and analytics tools like Matomo and Google Tag Manager. Security posture is adequate with HTTPS enforced and bot protection via hCaptcha, but lacks explicit security headers and documented security policies. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the site is trustworthy and legitimate, with domain registration data consistent with the business identity.

S

Stiftung Nationale Anti Doping Agentur Deutschland

gemeinsam-gegen-doping.de

39

GEMEINSAM GEGEN DOPING is a German government-supported non-profit network focused on anti-doping education and prevention in sports. It operates under the Stiftung Nationale Anti Doping Agentur Deutschland and collaborates with national and international partners such as NADA, WADA, and the German Olympic Sports Confederation. The website serves as an information hub offering workshops, e-learning, quizzes, and community engagement to promote clean sports. Technically, the site is built on TYPO3 CMS with modern JavaScript integrations, uses hCaptcha for form security, and employs Matomo for analytics with a strong emphasis on privacy compliance via Cookiebot. Security posture is solid with HTTPS and spam protection, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-optimized for accessibility and SEO.

The Meldestelle Sportmanipulation website serves as an official German government-related platform dedicated to combating manipulation in sports competitions and betting fraud. It provides a secure and anonymous whistleblower system, supported by a reputable law firm, to encourage fair play and integrity in sports. The site targets sports enthusiasts, athletes, and the general public interested in maintaining fairness in sports. The business model is a state-mandated reporting and advisory service, positioning itself as a trusted authority in the niche of sports integrity. Technically, the website is built using the Government Site Builder CMS, employs modern web standards including HTML5, CSS3, and JavaScript, and integrates Matomo for web analytics with a clear cookie consent mechanism. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a moderate to good digital maturity. Hosting details are not explicit, but HTTPS is enforced, ensuring secure communications. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent with opt-out options. However, no explicit security headers were detected in the provided data, and there is no published security or incident response policy. No vulnerabilities or exposed sensitive data were found. The absence of a vulnerability disclosure policy or security.txt file suggests room for improvement in transparency and incident handling readiness. Overall, the website is professional, trustworthy, and compliant with GDPR, with clear contact information and official branding. The WHOIS data is minimal but does not raise significant concerns given the governmental nature of the site. Recommendations include publishing formal security policies, adding security headers, and establishing a vulnerability disclosure mechanism to enhance security posture and user trust.

S

Sozialverband Deutschland e.V. Landesverband Niedersachsen

sovd-nds.de

53

The Sozialverband Deutschland e.V. Landesverband Niedersachsen is a regional non-profit social association dedicated to providing social law advice, member services, and advocacy in the German state of Niedersachsen. The website serves as an information hub for members and interested parties, offering digital tools, campaigns, and contact options. It holds a solid market position as a regional branch of a national organization, focusing on social welfare, legal advice, and community support. The target audience includes members, social law clients, and the general public interested in social policy. Technically, the website is built on TYPO3 CMS with modern web technologies including Bootstrap, jQuery, and various JavaScript libraries for enhanced user experience. It is hosted on generic servers with multiple nameservers, uses HTTPS with good SSL configuration, and implements GDPR-compliant cookie consent mechanisms. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses cookie consent with opt-in for marketing and chatbot scripts, and avoids exposing sensitive data. However, it lacks publicly available security policies, incident response contacts, and security headers, which are areas for improvement. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is professional, trustworthy, and compliant with privacy regulations. It effectively supports the organization's mission and member engagement. Strategic recommendations include enhancing security transparency, publishing incident response information, and adding security headers to further strengthen the security posture.

D

Deutscher Olympischer Sportbund (DOSB)

sterne-des-sports.de

56

The website sterne-des-sports.de represents the official platform for the 'Sterne des Sports' awards, a prestigious German recognition program honoring sports clubs for their social engagement. Operated under the Deutscher Olympischer Sportbund (DOSB) and in partnership with Volksbanken Raiffeisenbanken, the site serves as an information hub for participants, partners, and the public. It offers detailed content about the competition, participation guidelines, news updates, and multimedia resources. The target audience includes sports clubs, banking partners, sports associations, and media professionals. The business model is non-profit, focusing on community engagement and corporate social responsibility within the sports sector.

Sportabzeichen-Digital is a German digital platform dedicated to managing and facilitating the German Sports Badge program. It provides users with registration, login, and access to sport badge events and information, targeting sports participants and organizers within Germany. The platform leverages modern web technologies such as Nuxt.js and Vue.js and is hosted on Hetzner infrastructure, ensuring reliable performance and availability. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, including opt-in for analytics via Matomo. Security posture is adequate with HTTPS enforced and anti-bot measures in place, though improvements are recommended in implementing security headers and publishing incident response information. Overall, the website is professional, user-friendly, and trustworthy, serving a niche sports community effectively.

D

Deutscher Olympischer Sportbund (DOSB)

bewegungslandkarte.de

53

Bewegungslandkarte.de is a German non-profit sports platform operated by the Deutscher Olympischer Sportbund (DOSB). It provides a searchable directory of sports and movement offers across Germany, targeting both sports enthusiasts and non-profit sports providers. The website is well-branded, consistent, and supported by a broad network of reputable sports organizations and government bodies. Technically, it is built on TYPO3 CMS, hosted by Hetzner, and integrates modern analytics and marketing tools such as Matomo and Adition. The site is mobile-optimized and SEO-friendly, offering a good user experience with clear navigation and professional design. Security-wise, HTTPS is enforced and cookie consent is implemented with granular controls, though explicit security policies and incident response contacts are not publicly available. Overall, the site demonstrates a strong legitimacy and trustworthiness profile with no suspicious content or vulnerabilities detected.

T

tabmag / publish! Content-Marketing-Agentur

tabmag.de

55

tabmag is a German-based digital magazine platform and content marketing service provider specializing in transforming traditional print content into interactive, responsive digital magazines. The company operates under the umbrella of the publish! Content-Marketing-Agentur and targets organizations such as companies, associations, and clubs seeking modern digital publishing solutions. The website demonstrates a high level of digital maturity with modern technologies, multimedia content, and interactive tools like a cost-saving calculator. Security posture is solid with HTTPS and form validation, though some enhancements like CSP headers and incident response contacts could improve it further. Privacy compliance is well addressed with clear privacy and terms pages, though a cookie consent mechanism is not evident. Overall, the website is professional, trustworthy, and well-positioned in its niche market.

M

Musikosmos

musikosmos.de

44

Musikosmos is a German-based online blog and informational platform focused on music retail, education, and cultural events. It provides detailed articles about music learning methods, product news, and music festivals, targeting musicians, educators, and music enthusiasts. The site also promotes partner online shops and physical retail stores specializing in musical instruments and accessories. Technically, the website is built on WordPress using the Twenty Twelve theme, enhanced with jQuery and Matomo analytics for user tracking. The site is moderately optimized for mobile and SEO, with a good content structure and consistent branding. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and cookie consent mechanisms. Privacy policy is present and GDPR compliant, though cookie consent is missing. No direct contact emails or phone numbers are published, which may impact user trust and support accessibility. Overall, the domain registration data aligns well with the website content and business focus, indicating legitimacy and consistency.

B

Börsenblatt

boersenblatt.net

70

Börsenblatt.net is a leading German trade magazine website serving the book industry, providing news, background information, and services for book retailers and publishers. The site is professionally designed, mobile-optimized, and integrates multiple analytics and advertising technologies, including Google Analytics, Matomo, and Revive Adserver. The website demonstrates a mature digital infrastructure with comprehensive cookie consent management and GDPR compliance. However, the WHOIS data for the domain is unavailable, which raises moderate concerns about domain registration transparency. No explicit contact emails or phone numbers are present on the site, which could impact user trust and business credibility. Overall, the website is secure with proper HTTPS and security headers, and it maintains a high level of content quality and user experience.

K

Kulturstiftung Basel H. Geiger | KBH.G

kbhg.ch

46

Kulturstiftung Basel H. Geiger (KBH.G) is a small non-profit cultural foundation based in Basel, Switzerland, focused on contemporary art exhibitions and public cultural programs. The website presents a professional and consistent brand image with clear navigation and relevant content targeting art enthusiasts and the general public interested in cultural events. The business model centers on hosting exhibitions and related public programs, positioning itself as a regional cultural institution with a specialized audience. Technically, the site uses a modern but simple tech stack including jQuery, Slick Carousel, Material Design Icons, and Matomo analytics, providing a good user experience with moderate performance and mobile optimization. Security posture is adequate with HTTPS usage and privacy-respecting analytics, but lacks published privacy and cookie policies, security headers, and explicit incident response contacts. Overall, the site is trustworthy and safe with no adult or questionable content detected.

N

Nationale Naturlandschaften in Mecklenburg-Vorpommern

natur-mv.de

50

The website www.natur-mv.de serves as an official informational portal for the National Natural Landscapes in Mecklenburg-Vorpommern, Germany. It provides detailed information about various national parks, biosphere reserves, and nature parks in the region, targeting nature enthusiasts, tourists, and visitors interested in environmental conservation and outdoor activities. The site features event announcements, interactive maps, and educational content, positioning itself as a key regional resource for nature-related tourism and conservation awareness. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs modern web technologies such as Leaflet.js for interactive maps and Swiper.js for image sliders. It integrates Matomo analytics with user consent mechanisms, ensuring compliance with privacy regulations. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site uses HTTPS and implements cookie consent banners, reflecting adherence to GDPR requirements. However, explicit security headers and a dedicated security policy or incident response contact are not evident. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the website's regional and governmental nature, supporting its legitimacy. Overall, the site maintains a solid security posture but could benefit from enhanced security header implementation and formal vulnerability disclosure policies. The overall risk assessment is low, with the website presenting a trustworthy, professional, and privacy-conscious platform. Strategic recommendations include adding security headers, publishing a security policy or incident response contact, and considering a vulnerability disclosure framework to further strengthen security and trust.

G

GWeb Solutions GmbH

gweb.de

62

GWeb Solutions GmbH is a German-based digital transformation consultancy specializing in helping organizations digitize their processes and structures. With over 12 years of experience and more than 450 completed projects, the company positions itself as a reliable and experienced partner in the technology sector. Their website reflects a professional image with a clear focus on digital innovation and client success. The company targets organizations seeking to modernize and digitally transform their operations. Technically, the website employs modern web technologies including jQuery, FontAwesome, and integrates privacy-conscious tools such as self-hosted Matomo analytics and Google reCAPTCHA for form protection. The presence of a comprehensive cookie consent mechanism and privacy policy indicates good GDPR compliance. Security-wise, while HTTPS is used and forms are protected with reCAPTCHA, the site lacks visible security headers and published security policies, suggesting room for improvement in security posture. Overall, the website is well-designed, user-friendly, and trustworthy, with no signs of malicious content or blocking mechanisms.

M

MGS Loib GmbH

mgs.de

10

MGS Loib GmbH is a medium-sized German retail company specializing in wholesale distribution of sheet music and related music products. The company operates multiple physical branches and serves music retailers and business partners. As of July 1, 2024, the wholesale operations are being transferred to music distribution services (mds) in Mainz, indicating a strategic business transition. The website is professionally designed using WordPress and the Kadence theme, providing a good user experience with clear navigation and relevant content primarily in German. Technical infrastructure includes modern web technologies and privacy-conscious analytics via Matomo. Security posture is adequate with HTTPS enforced, though improvements in security headers and explicit incident response policies are recommended. Privacy compliance is partially met with a privacy policy present but lacking a cookie consent mechanism. Overall, the website is trustworthy and professional, reflecting a credible business presence in the music wholesale retail sector.

T

Tarifverbund OSTWIND

steigensieum.ch

51

The website steigensieum.ch serves as a promotional and informational portal for OSTWIND, a major public transport tariff association in Eastern Switzerland and Liechtenstein. It provides detailed information about monthly and yearly subscriptions, corporate offers, ticket comparisons, and alternatives to car commuting such as P+Rail. The site integrates with official OSTWIND and Swiss public transport services, offering users direct links to purchase tickets and subscriptions. The target audience includes commuters, seasonal travelers, and corporate employees seeking efficient public transport options. The website is professionally designed, content-rich, and well-branded, reflecting a strong market position in the regional transportation sector. Technically, the site is built on TYPO3 CMS and leverages modern JavaScript libraries such as jQuery and Swiper.js for interactive elements. It uses Google Maps API for mapping features and employs Matomo and Google Analytics for user tracking. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks some security headers and a cookie consent mechanism, which are recommended for GDPR compliance. Overall, the security posture is solid with no critical vulnerabilities detected. However, improvements in privacy compliance and explicit security policies would enhance trust. The domain uses privacy-protected WHOIS, which is justified for this business type. The website demonstrates high professionalism and trustworthiness, supported by official partner links and social media presence. Strategic recommendations include implementing a cookie consent banner, publishing a security policy and incident response contacts, enhancing security headers, and maintaining regular audits of third-party scripts to ensure ongoing security and compliance.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

bzga.de

66

The Bundesinstitut für Öffentliche Gesundheit (BIÖG) is a German federal public health institute operating under the Federal Ministry of Health. It focuses on promoting healthy lifestyles, disease prevention, and public health education through research, information dissemination, and advisory services. The website serves as a comprehensive platform for health-related information targeting the general population, healthcare professionals, and risk groups in Germany. It offers extensive resources including studies, audiovisual media, and practical guidance on various health topics. Technically, the website is built on the TYPO3 CMS platform, employs Matomo analytics with strong privacy protections, and demonstrates good mobile optimization and accessibility. Security posture is solid with HTTPS enforcement and privacy-conscious analytics, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site reflects a professional, trustworthy government entity with high content quality and compliance with GDPR and cookie consent regulations.

S

Stadt Wallisellen

wallisellen.ch

61

Stadt Wallisellen operates an official municipal website providing comprehensive information and digital services to its residents and stakeholders. The site covers a broad range of topics including local politics, administration, education, culture, and public services, positioning itself as the primary digital interface for the community. The website demonstrates a solid technical infrastructure using modern web standards, responsive design, and privacy-conscious analytics (Matomo) with user consent mechanisms. Security posture is good with HTTPS enforced and secure form implementations, though some security headers could be improved. Overall, the site is trustworthy, professional, and well-aligned with its government entity status.

S

Stadt Dübendorf

duebendorf.ch

58

Stadt Dübendorf operates an official municipal website serving the residents and visitors of Dübendorf, Switzerland. The site provides comprehensive information about city services, news, events, and digital administrative functions such as the Online-Schalter. The website targets local citizens and stakeholders, positioning itself as a reliable government portal with a focus on accessibility and user engagement. The business model is that of a public service provider, offering transparent and accessible municipal services online. Technically, the website employs a modern CMS platform (i-web CMS) with JavaScript frameworks and libraries such as Owl Carousel and Matomo for analytics. It integrates Google Tag Manager for marketing and tracking purposes while maintaining user privacy through consent mechanisms. The site is mobile-optimized and accessible, with clear navigation and structured content. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses secure login forms. However, it lacks explicit HTTP security headers which could enhance protection against common web threats. No vulnerabilities or exposed sensitive data were detected. The site holds an ISO 27001 certification, indicating a mature security framework. Privacy policies and cookie consent are well implemented, supporting GDPR compliance. Overall, the website is trustworthy, professional, and well-maintained with a strong focus on user privacy and security. Strategic improvements could include adding security headers, publishing incident response contacts, and implementing a vulnerability disclosure policy to further enhance security posture and transparency.

H

Hotel Bären Suhr

baeren-suhr.ch

60

Hotel Bären Suhr is a small-sized hospitality business located in Switzerland, offering comfortable business hotel accommodations, restaurant dining, and event hosting services. It operates as part of the regional hotel group AARGAUHOTELS.CH and holds a Swiss Quality Hotels certification, indicating a commitment to quality and service excellence. The website is professionally designed with clear navigation, comprehensive content, and strong branding consistency, targeting business travelers and event organizers in the region. Technically, the website is built on WordPress 6.8.2, utilizing modern web technologies such as jQuery, Swiper.js, and Google Fonts. It integrates analytics tools like Matomo and Google Analytics 4, and employs Google reCAPTCHA for form security. The site demonstrates good mobile optimization and SEO practices, although accessibility features could be enhanced. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. While basic security best practices are observed, including secure forms and no exposed sensitive data, the site could improve by implementing additional security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or suspicious activities were detected. Overall, the website presents a low-risk profile with a high legitimacy score based on consistent WHOIS data and transparent business information. Strategic recommendations include enhancing security headers, maintaining up-to-date software, and considering a vulnerability disclosure policy to further strengthen security posture.

H

Hotel Villmergen

hotel-villmergen.ch

59

Hotel Villmergen is a medium-sized business hotel located centrally in Villmergen, Switzerland, offering 57 rooms and a unique Spanish grill restaurant called El Toro. The hotel caters primarily to business travelers and local visitors, providing accommodation, dining, and event hosting services. It operates under the parent company AARGAUHOTELS.CH and holds Swiss Quality Hotels certification, enhancing its market credibility. The website is professionally designed with good content quality and clear navigation, supporting a positive user experience. Technically, the site is built on WordPress with modern libraries and plugins, including analytics and cookie consent tools, ensuring compliance and performance. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, though it lacks explicit security policies or incident response information. Overall, the domain registration aligns well with the business profile, indicating legitimacy and trustworthiness.

C

Centurion Towerhotel

centurion-towerhotel.ch

60

Centurion Towerhotel is a modern lifestyle hotel located in Windisch-Brugg, Switzerland, offering 66 design-focused rooms and apartments alongside a high-quality restaurant, Ignis Grill & Wine. The hotel targets business travelers, tourists, and event organizers, providing accommodation, dining, and event hosting services. The website reflects a professional and consistent brand image, supported by clear contact information and trust signals such as Swiss Quality Hotels certification and integrated customer reviews. Technically, the site is built on WordPress with modern libraries and plugins, including Matomo analytics and Google reCAPTCHA, ensuring a good balance of functionality and security. Security posture is strong with HTTPS, cookie consent mechanisms, and no visible vulnerabilities, although security headers could be improved. Overall, the site is compliant with GDPR and offers a positive user experience with good mobile optimization and SEO practices.

A

AARGAUHOTELS

aargauhotels.ch

59

AARGAUHOTELS is a regional hospitality group in Switzerland operating multiple hotels and gastronomy establishments primarily in the Aargau region and Tessin. The website presents a professional and well-structured digital presence with comprehensive information about their hotels, restaurants, offers, and career opportunities. The business targets guests seeking quality accommodation and dining experiences with a focus on regional products and sustainable practices. Technically, the site is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Matomo, and Google Analytics 4, ensuring good digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is trustworthy, privacy compliant, and provides clear contact information and business transparency.

B

Biosphärenreservatsamt Schaalsee-Elbe

elbetal-mv.de

51

The website www.elbetal-mv.de serves as an official informational portal for the UNESCO Biosphärenreservat Flusslandschaft Elbe Mecklenburg-Vorpommern, focusing on nature conservation, education, tourism, and regional development. It targets a broad audience including nature enthusiasts, local residents, educational institutions, and partner organizations. The site offers comprehensive content about the biosphere reserve, including news, events, educational resources, and partner information, positioning itself as a key regional resource. Technically, the site is built on TYPO3 CMS, leveraging modern JavaScript libraries such as Swiper.js for UI components and Matomo for analytics, alongside a GDPR-compliant consent management platform. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and employs consent management for cookies, with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced transparency and security posture. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations, making it a reliable source of information for its audience. Strategic improvements in security documentation and incident response readiness would further strengthen its security and compliance stance.

G

Gemini.no

gemini.no

62

Gemini.no is a well-established Norwegian research news portal jointly operated by NTNU and SINTEF, providing comprehensive and accessible scientific news across multiple disciplines including technology, health, environment, and society. The website demonstrates a mature digital infrastructure built on WordPress with modern analytics and tracking tools, ensuring good user experience and SEO optimization. Security posture is strong with HTTPS enforcement and privacy-conscious analytics configurations. Privacy and cookie policies are comprehensive and GDPR compliant, enhancing user trust. Contact information is available, though phone numbers are not explicitly listed. Overall, Gemini.no presents a professional, trustworthy, and content-rich platform serving a broad audience interested in research and science news.

A

Arkitektur Skaper Verdi

arkitekturskaperverdi.no

58

The website 'Arkitektur Skaper Verdi' is dedicated to showcasing the importance of good architecture, landscape architecture, and interior architecture. It features content such as news, projects, and podcasts related to architecture, targeting a general audience interested in architectural value and design. The site uses modern web technologies including Next.js and Sanity CMS, indicating a contemporary technical infrastructure with moderate performance and good mobile optimization. Matomo analytics is implemented for user tracking, but there is no visible cookie consent mechanism or privacy policy, which may raise privacy compliance concerns. Security posture is limited due to lack of visible security headers and absence of HTTPS verification in the provided data. WHOIS data is unavailable, limiting domain legitimacy verification. Overall, the site is professional and content-rich but would benefit from enhanced security and privacy compliance measures.

K

Kulturdirektoratet

kulturradet.no

70

Kulturdirektoratet is a Norwegian government agency under the Ministry of Culture and Equality, dedicated to promoting arts and culture across Norway. It administers cultural grants, provides guidance to applicants, and serves as the secretariat for several independent cultural bodies. The website reflects a professional government presence with comprehensive information and resources for cultural stakeholders. Technically, the site uses modern technologies including Craft CMS, Alpine.js, and privacy-focused Matomo analytics, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response information are absent. Overall, the site is trustworthy and well-maintained, serving its public sector mission effectively.

A

Arkitektbedriftene i Norge AS

arkitektbedriftene.no

62

Arkitektbedriftene i Norge AS is a professional association and employer organization representing architectural offices and practitioners in Norway, including architects, landscape architects, and interior architects. The organization provides membership services, quality tools such as MAKS and MAKS-søk, legal guidelines, statistical data, webinars, and an architect search portal. Their market position is that of a key industry association supporting architectural professionals in Norway. The website is well-structured, professionally designed, and targets architectural firms and professionals within Norway. The business model revolves around membership and providing value-added services to its members.

S

Statsbygg

statsbygg.no

61

Statsbygg is a Norwegian government agency responsible for managing major construction projects and state-owned properties. The website presents comprehensive information about their projects, sustainability efforts, innovation initiatives, and public services. It targets government entities, contractors, suppliers, and the general public interested in public infrastructure and property management. The site uses modern web technologies including React and Matomo analytics, and embeds multimedia content such as Vimeo videos. The website is well-designed, mobile-optimized, and professionally maintained, reflecting a high level of digital maturity. Security posture is strong with HTTPS and security headers implemented, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, which is unusual but may be due to registry policies. Overall, the site is trustworthy and authoritative for its domain.

A

AARHSE

aarhse.com

43

AARHSE is a French academic association dedicated to historical and sociological research in the energy sector. The website serves as an informational platform presenting the association's activities, including competitions, bibliographies, and a museum dedicated to the heritage of electricity and gas. The site targets academics, researchers, and professionals interested in energy history and sociology. Technically, the website is built on WordPress with Elementor and uses modern JavaScript libraries and Matomo analytics for privacy-conscious tracking. Security posture is adequate with HTTPS enabled, but lacks some security headers and cookie consent mechanisms. WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency. Overall, the website is professional, content-rich, and trustworthy for its niche audience.

K

Konnektiv Kollektiv GmbH

konnektiv.de

44

Konnektiv Kollektiv GmbH is a Berlin-based agency specializing in sustainable and ethical digital transformation primarily in the public sector and international development contexts. Their services include developing privacy-friendly open-source software, consulting on digital sovereignty, and providing training and moderation on inclusive digital transformation. The company collaborates globally with NGOs, foundations, local innovators, and government institutions, focusing on Africa, Asia, and Latin America. Technically, the website is built on WordPress with modern plugins and themes, hosted via Schlund Technologies, and uses Matomo analytics with privacy-conscious settings. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and formal policies could be improved. Privacy compliance is partial with a privacy policy present but lacking cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, reflecting a credible small non-profit entity.

The Toolbox Agenda 2030 website serves as a digital platform aggregating best practices for sustainable development implementation targeted at Swiss cantons, municipalities, and businesses. It offers two main toolboxes tailored for government entities and companies, supporting the Agenda 2030 sustainability goals. The site is multilingual (German, French, Italian) and presents a professional, consistent brand image aligned with its government-related mission. Technically, the website is built on WordPress using the Oxygen builder framework, enhanced with jQuery and Matomo analytics for user tracking. Cookie consent is implemented with granular categories, reflecting a moderate level of privacy compliance. The site loads with moderate performance and is mobile-optimized with basic accessibility features. From a security perspective, HTTPS is enforced with no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and published security policies limits the security posture. No privacy policy or terms of service pages were found, which impacts compliance and user trust. The domain uses privacy protection in WHOIS, which is common and justified for this type of project. Overall, the website is functional, professional, and moderately secure but would benefit from enhanced privacy disclosures, security policies, and contact information to improve trust and compliance.

D

Das Gebäudeprogramm

dasgebaeudeprogramm.ch

68

Das Gebäudeprogramm is a Swiss government-supported initiative focused on promoting energy efficiency in buildings through subsidies and consulting. The website serves as an information hub for private homeowners and builders in Switzerland, providing detailed guidance on energy-saving measures, subsidy applications, and success stories. The program is positioned as a key pillar in Swiss energy and climate policy, backed by federal and cantonal authorities. Technically, the website employs modern web standards with HTTPS, security headers, and Matomo analytics, reflecting a mature digital infrastructure. The security posture is strong with no evident vulnerabilities, though privacy compliance could be enhanced by adding cookie consent mechanisms and explicit data retention policies. Overall, the site is professional, trustworthy, and well-aligned with its governmental mission.

K

Kommune 360°

kommune360.de

54

Kommune 360° is a German non-profit initiative focused on fostering cooperative and integrated planning and management to support successful child development within municipalities. The organization operates a professional website offering resources such as a Change-Guide, a Fellow-Program, podcasts, festivals, and newsletters targeted at municipal employees and stakeholders involved in child and youth welfare planning. The website is well-branded, consistent, and supported by partner organizations including Auridis Stiftung, DKJS, and PHINEO. Technically, the site is built on WordPress with modern plugins and frameworks, including Bootstrap and Mai Engine, and employs both Google Analytics and Matomo for analytics. The site is GDPR compliant with a comprehensive privacy policy and a cookie consent mechanism with opt-in functionality. Security posture is good with HTTPS enforced, though security headers are not detected and could be improved. No critical vulnerabilities or exposed sensitive data were found. Overall, the site demonstrates a mature digital presence suitable for its non-profit mission.

G

graubünden Bike

graubuendenbike.org

47

Graubünden Bike is a regional project initiative focused on advancing bike tourism and sustainable mobility in the Graubünden region of Switzerland. The project is positioned as a pioneer in the bike tourism sector, aiming to enhance the region's attractiveness through development of bike offerings, training, and community engagement. The website serves as an information hub with event calendars, news, and project documentation, targeting cyclists, local stakeholders, and tourists. Technically, the site is built on WordPress with a modern tech stack including jQuery, Bootstrap, and Matomo analytics, providing a good user experience with mobile optimization and SEO best practices. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not implement cookie consent mechanisms. The domain registration is recent but consistent with the project timeline and shows no suspicious patterns. Overall, the site is professional and trustworthy but could improve privacy compliance and security hardening.

The Federal Ministry of Food and Agriculture (BMLEH) operates an official government website providing comprehensive information on topics such as food and nutrition, consumer protection, farming, animal welfare, rural regions, forests, fisheries, international affairs, and digitalisation. The site targets the general public, stakeholders in agriculture and food sectors, and international partners, serving as a key communication and service platform for the ministry. The website is well-structured, professionally designed, and consistent with government branding standards. Technically, the website is built on the Government Site Builder CMS platform, utilizing modern web standards including HTML5, CSS3, and SVG graphics. It incorporates Matomo analytics for anonymous visitor statistics and implements a granular cookie consent mechanism compliant with GDPR. Mobile optimization and accessibility features are well addressed, ensuring a good user experience across devices. From a security perspective, the site enforces HTTPS with excellent SSL configuration and includes standard security headers such as Content-Security-Policy and Strict-Transport-Security. The cookie consent banner clearly distinguishes necessary cookies from optional tracking and third-party content cookies. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not present, representing areas for improvement. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. The domain appears legitimate and consistent with official government use. No WAF or content blocking was detected, allowing full content accessibility. Strategic recommendations include publishing detailed security policies, providing incident response contact channels, and establishing a vulnerability disclosure process to enhance security posture and transparency.

V

vttrando.fr

vttrando.fr

56

VTTrando.fr is a specialized French website dedicated to mountain biking enthusiasts and event organizers, offering a comprehensive calendar of VTT events and a platform for free event publication. The site is well-positioned in its niche market, providing valuable services such as interactive maps, regional event listings, and a blog with relevant content. Technically, it leverages WordPress CMS with modern libraries like Bootstrap and jQuery, integrates Google Maps and reCAPTCHA for enhanced user experience and security, and uses Matomo for analytics alongside Ezoic for advertising. The website demonstrates good SEO practices and mobile optimization, ensuring accessibility and usability for its audience. Security-wise, the site enforces HTTPS, uses consent management for cookies, and employs reCAPTCHA to protect forms, though it lacks explicit security policy and incident response disclosures. The absence of WHOIS data suggests privacy protection, which is typical for small niche sites and does not detract from its legitimacy. Overall, VTTrando.fr presents a professional, trustworthy, and user-friendly platform with moderate to good security and privacy compliance.

W

Wirtschaftsförderung in der Region Hannover

wirtschaftsfoerderung-hannover.de

65

Wirtschaftsförderung in der Region Hannover is a regional government economic development organization focused on supporting businesses, startups, and innovation in the Hannover area. The website provides comprehensive information on business location, financing, founding support, innovation, workforce development, and events. It targets entrepreneurs, companies, investors, and regional stakeholders, positioning itself as a key facilitator for economic growth in the region. Technically, the site uses a custom CMS with modern JavaScript libraries such as jQuery and Swiper.js, and employs Matomo for privacy-conscious analytics. The site is well-optimized for mobile and accessibility, with a clear navigation structure and professional design. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly documented. Overall, the site demonstrates a mature digital presence aligned with governmental standards and regional economic goals.

L

Landeshauptstadt Hannover

herrenhausen.de

52

The website 'Herrenhäuser Gärten - Hannover.de' serves as the official online presence for the Herrenhäuser Gardens and the Museum Schloss Herrenhausen, operated by the Landeshauptstadt Hannover (City of Hannover). It provides comprehensive visitor information, event details, group tours, and ticketing services, targeting tourists, families, and cultural enthusiasts. The site is well-positioned as a leading cultural and botanical attraction in Hannover, supported by consistent branding and professional content. Technically, the website employs modern web standards including HTML5, CSS3, SVG graphics, and JavaScript, with Matomo analytics for user tracking. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The CMS appears custom or proprietary, typical for government sites. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes essential security headers. No vulnerabilities or exposed sensitive data were detected. However, the site lacks a visible cookie consent mechanism and dedicated security or incident response policies, which are recommended for enhanced GDPR compliance and transparency. Overall, the website is trustworthy, professionally maintained, and provides a safe user experience. Strategic improvements in privacy consent and security transparency would further strengthen its compliance and user trust.

H

Hannover Marketing und Tourismus GmbH

visit-hannover.com

61

Visit Hannover is an official tourism portal managed by Hannover Marketing und Tourismus GmbH, providing comprehensive information on hotels, sightseeing, events, congresses, and regional attractions in Hannover, Germany. The website targets tourists, business travelers, and event attendees, offering booking options and cultural highlights. Technically, the site uses modern JavaScript libraries, Matomo analytics, and Google advertising scripts, with a likely CMS based on eZ Platform. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS and consent management, though explicit security headers and policies are missing. WHOIS data is unavailable, which slightly reduces trust but the website content and branding indicate legitimacy. Overall, the site is professional, user-friendly, and compliant with GDPR.

B

Bauhaus-Universität Weimar

uni-weimar.de

57

Bauhaus-Universität Weimar is a medium-sized public university in Germany specializing in architecture, civil engineering, design, media, and related disciplines. The website serves students, researchers, and academic partners with comprehensive information about study programs, research, and university news. The university maintains a strong brand presence and offers a well-structured, accessible, and mobile-optimized website built on TYPO3 CMS with modern web technologies. Security posture is solid with HTTPS and privacy-conscious analytics (Matomo) but lacks explicit cookie consent and published security policies. The domain registration aligns with academic networks, supporting legitimacy. Overall, the site is professional, trustworthy, and suitable for its educational mission.

B

Bund der Selbständigen Bayern

bds-bayern.de

45

Bund der Selbständigen Bayern is a well-established membership association founded in 1874, representing the interests of self-employed individuals and the independent middle class in Bavaria, Germany. The organization operates as a non-partisan, cross-industry network providing advocacy, legal advice, educational programs, and member services. Their market position is strong regionally with a history of over 150 years and a comprehensive service offering including academies, competence centers, and event organization. The website reflects a professional and consistent brand image targeting self-employed professionals and SMEs in Bavaria.

D

Deutsche Gesellschaft für Mykologie e.V.

dgfm-ev.de

58

The Deutsche Gesellschaft für Mykologie e.V. (DGfM) is a well-established German non-profit organization dedicated to the study and promotion of mycology. The website serves as a comprehensive resource for mushroom enthusiasts, researchers, and educators, offering educational content, qualifications, events, and community forums. The organization has a strong market position within its niche, supported by a century-long history and active engagement through social media and publications. Technically, the website is built on Joomla CMS with modern libraries like Bootstrap and jQuery, and it employs Matomo analytics configured for privacy compliance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-optimized for users, with no signs of blocking or WAF interference.

M

MOBILEE

mobilee-plattform.de

43

MOBILEE is a German non-profit platform dedicated to social work through sport and movement. It serves as a networking and resource hub for initiatives, organizations, and individuals working at the intersection of social work and sports. The platform is supported by notable foundations and sport organizations, enhancing its credibility and reach within its niche. The website is professionally designed using WordPress and Elementor, featuring rich content, event information, and partner links. Technically, the site uses modern web technologies and privacy-conscious analytics (Matomo), but lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is good with HTTPS and no exposed sensitive data, but could be improved by adding security headers and vulnerability disclosure mechanisms. Overall, the site is trustworthy, well-branded, and serves its target audience effectively.

S

Spielfeld Gesellschaft

spielfeld-gesellschaft.de

10

Spielfeld Gesellschaft is a German non-profit platform focused on fostering social cohesion and integration within the Niedersachsen region. Supported by the Niedersächsische Lotto-Sport-Stiftung, it offers community engagement through events, podcasts, newsletters, and networking opportunities. The website reflects a clear mission to connect people and ideas for an open society. Technically, the site uses modern JavaScript modules, Matomo analytics with cookies disabled, and good accessibility and SEO practices, though some improvements in cookie consent and security headers are recommended. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks published security policies or incident response contacts. Overall, the site is professional, trustworthy, and safe for general audiences.

L

Landesverband Nachhaltiges Sachsen e.V.

nachhaltiges-sachsen.de

57

Landesverband Nachhaltiges Sachsen e.V. is a regional non-profit organization dedicated to promoting sustainable development in Saxony, Germany. The website serves as a platform for networking, supporting projects, and providing educational materials related to sustainability. It targets stakeholders interested in social-ecological transformation and regional engagement. The organization maintains an active presence through newsletters, social media, and project coordination. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and Matomo for privacy-respecting analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a good level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and policies could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting the organization's credibility and mission.

H

Hochschule für Gestaltung und Kunst FHNW

campusderkuenste.ch

57

Campus der Künste is an educational and cultural platform operated by the Hochschule für Gestaltung und Kunst FHNW, located in Basel, Switzerland. The website serves as a hub for arts and design education, cultural events, and collaboration among various creative institutions. It targets students, artists, and cultural professionals, positioning itself as a regional leader in arts education and cultural engagement. The business model focuses on providing educational services and fostering a vibrant cultural community. Technically, the website is built using modern JavaScript frameworks such as Nuxt.js and includes polyfills for compatibility. It uses Matomo analytics for privacy-conscious user tracking. The site is moderately performant, mobile-optimized, and has a consistent branding approach. However, some accessibility and SEO optimizations could be improved. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks important security headers and does not provide visible security or incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, enhancing trust. Overall, the website is professional and trustworthy with a good security posture but could improve privacy compliance and security best practices. Strategic recommendations include implementing security headers, adding cookie consent, publishing security policies, and enhancing accessibility.

D

Deutscher Olympischer Sportbund e.V.

sportdeutschland.de

44

Sportdeutschland is the official digital platform of the Deutscher Olympischer Sportbund e.V., Germany's leading sports organization. It promotes sports participation nationwide, offering digital tools such as an interactive sports club map, a club app, and website services tailored for sports clubs and associations. The platform supports Olympic and Paralympic initiatives and targets sports enthusiasts, clubs, and volunteers across Germany. Technically, the website is built on TYPO3 CMS with modern front-end libraries and uses Matomo for privacy-conscious analytics. The site is well-structured, mobile-optimized, and professionally designed, reflecting a mature digital presence. Security posture is solid with HTTPS and secure forms, though it lacks some security headers and a cookie consent mechanism. Privacy compliance is strong with a comprehensive GDPR-aligned privacy policy. Overall, the site is trustworthy and authoritative in its domain.