Security Directory

R

ReferralCandy

referralcandy.com

68

ReferralCandy operates as a leading SaaS provider specializing in referral marketing software tailored for eCommerce businesses. The platform empowers online retailers to leverage customer referrals to drive exponential sales growth, boasting a user base exceeding 30,000 eCommerce stores. Their business model focuses on performance-based payments and seamless integration with popular platforms such as Shopify. The website reflects a mature digital presence with professional branding, comprehensive content, and strong social media engagement.

The Smart Built Environment Awards website serves as a professional platform to recognize excellence in the built environment sector, focusing on property management, community management, facilities management, and PropTech. The site is positioned as a regional leader in its niche, offering nomination, sponsorship, and event booking services. The business targets industry professionals and stakeholders primarily in the UAE and surrounding regions. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI libraries, with integration of Google Analytics and Facebook Pixel for marketing and tracking. The site is mobile optimized and presents a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers, and does not provide visible privacy or cookie policies, which impacts compliance and trust. Overall, the domain registration is consistent with the business claims and shows no suspicious patterns.

P

Pepe Valenti

pepevalenti.com

60

Pepe Valenti is a creative professional specializing in product and installation design with a focus on materiality and hands-on experimentation. The website serves as a portfolio showcasing artistic works and installations, targeting an audience interested in design and art. The site is built on Squarespace, leveraging its hosting and CMS capabilities, and includes multimedia content such as images and videos. Security posture is strong with HTTPS and HSTS enabled, but lacks comprehensive privacy and security policies. WHOIS data is unavailable, which slightly reduces trust but the professional presentation and consistent branding mitigate major concerns. Overall, the site is functional and visually appealing but would benefit from enhanced privacy compliance and security transparency.

N

Niki Danai

nikidanai.com

44

Niki Danai's website serves as a professional portfolio showcasing a multidisciplinary artist's work in sculpture, ceramics, product design, and multimedia installations. The site targets art enthusiasts and cultural institutions, emphasizing recent and upcoming exhibitions primarily in Europe. The business model is centered on personal branding and exhibition promotion, with a small-scale operation reflected in the site's content and domain age. Technically, the website employs standard web technologies including HTML5, CSS3, and JavaScript, with Google Fonts integration. Hosting is provided by Contabo, a reputable provider. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. However, there is no CMS detected, and the technical stack is relatively simple. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks DNSSEC and security headers, which are recommended for enhanced security. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Contact information is limited to a contact form, with no direct emails or phone numbers provided. Overall, the website is functional and professional but would benefit from improved security practices, privacy compliance, and enhanced contact transparency to increase trustworthiness and reduce risk.

C

Clara Schweers

claraschweers.com

56

Clara Schweers is a contemporary artist specializing in glass and mixed media artworks, presenting a professional portfolio website that showcases her artistic creations and collaborations. The website serves as a platform for exhibiting her work and facilitating contact for potential sales or exhibitions. The site is hosted on DreamHost and built using the Cargo CMS platform, featuring a modern and visually appealing design optimized for desktop and mobile users. However, the site lacks explicit privacy and cookie policies, which are important for GDPR compliance and user trust. Security-wise, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers, which could be improved to enhance security posture. Overall, the website is credible and professional but would benefit from enhanced privacy compliance and security best practices.

Halbzeit is a small Swiss non-profit organization dedicated to combating racism, particularly within football culture. The website serves as a platform for news, event promotion, community engagement, and merchandise sales. It targets football fans and activists interested in social justice. Technically, the site is built on WordPress with common plugins and libraries, hosted likely by MyHostpoint, and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and formal policies. No privacy or cookie policies are present, and contact information is not explicitly provided, which limits compliance and user trust. Overall, the site is professional and content-rich but would benefit from enhanced privacy, security, and contact transparency.

M

mfsystem

mfsystem.ch

46

mfsystem is a Swiss-based manufacturer specializing in modular furniture systems including shelves, sideboards, wardrobes, and office furniture. The company emphasizes sustainability and customization, offering an online configurator for customers to design their own furniture. Their market position is that of a niche player focusing on quality and flexibility for both residential and commercial clients. Technically, the website is well-structured with modern web standards, mobile optimization, and HTTPS security. However, it lacks some advanced security headers and explicit privacy consent mechanisms. The security posture is solid but could be improved with better transparency on incident response and vulnerability disclosures. Overall, the website presents a professional and trustworthy image with good user experience and clear business focus.

B

bref Magazin

brefmagazin.ch

59

bref Magazin is a Swiss-based media publication focused on the Reformed Church community and cultural topics. The website offers subscription services, a shop, and a variety of articles targeting German-speaking audiences interested in religious and societal issues. The business operates as a niche media outlet with a small but dedicated audience. Technically, the site is built on WordPress with modern web technologies including WooCommerce for e-commerce, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is well-designed, mobile-optimized, and provides a good user experience with clear navigation and rich content. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and contact information for incident response are missing. Privacy compliance is partial due to the absence of a visible privacy policy and terms of service. Overall, the site is trustworthy and professional but could improve transparency and compliance documentation.

S

Spirito Artigiano

spiritoartigiano.it

10

Spirito Artigiano is a content-driven project operated by the Fondazione Manlio e Maria Letizia Germozzi onlus, focusing on artisan business culture and innovation in Italy. The website serves as a magazine and storytelling platform targeting artisan professionals and stakeholders interested in craftsmanship and socio-economic development. The project is relatively young, with domain registration and content dating from 2022 onward, aligning with the foundation's mission to promote artisan values. Technically, the website is built on WordPress using the Uncode theme and several plugins including Contact Form 7, Cookie Law Info, and Matomo Analytics. The site demonstrates good SEO practices, mobile responsiveness, and basic accessibility. The use of Matomo indicates a privacy-conscious approach to analytics, complemented by a comprehensive cookie consent mechanism compliant with GDPR. Security-wise, the site uses HTTPS with a valid SSL certificate but lacks DNSSEC and explicit security headers such as CSP or HSTS. No critical vulnerabilities or exposed sensitive data were detected. The contact mechanisms are limited to an email address and contact form, with no phone or physical address provided. Privacy and cookie policies are clearly presented and accessible. Overall, Spirito Artigiano presents a professional and trustworthy online presence for a niche non-profit cultural project. The security posture is adequate but could be improved with additional DNS and HTTP security measures. The site is fully accessible without WAF or blocking mechanisms, and content safety is rated as safe for general audiences.

Vienna Interior Fashion Days is a niche event organizer focused on showcasing interior fashion brands in Vienna, Austria. The website promotes an upcoming event scheduled for February 2026, featuring seven showrooms of notable brands in fabrics, wallpapers, and sun protection. The business targets interior design professionals and industry participants, positioning itself as a specialized event within the interior fashion sector. The website is built on WordPress with Elementor and employs modern web technologies, including a cookie consent mechanism to comply with privacy regulations. Security measures include HTTPS and the Wordfence plugin, though some security headers are not explicitly detected. Overall, the site is professional, well-branded, and compliant with GDPR requirements, though WHOIS data is unavailable due to privacy protection or query failure.

W

Wir sind Mehrerau

wirsindmehrerau.at

44

Wir sind Mehrerau is a historic religious and educational institution based in Austria, with origins dating back to 1097. The website serves as a digital presence for the Kloster Mehrerau, offering information about its history, religious activities, and community engagement. The organization positions itself as an open, Christian, and contemporary institution with a strong cultural heritage. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies such as Google Fonts and a cookie consent mechanism by Hu-manity. The site is well-structured, mobile-optimized, and employs HTTPS with robust security headers, reflecting a good security posture. However, it lacks explicit privacy and terms of service policies, as well as contact emails and phone numbers, which are important for compliance and user trust. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and clearer contact information.

I

IBIMI

ibimi.it

63

IBIMI is an Italian educational platform specializing in Building Information Modeling (BIM) professional training. The website offers online courses and certifications aimed at professionals and students interested in digital construction technologies. The platform leverages a modern WordPress infrastructure with WooCommerce for e-commerce capabilities and Gravity Forms for data collection. The site is well-structured, mobile-optimized, and integrates Google Analytics and Tag Manager for marketing and analytics purposes. Privacy compliance is evident through a comprehensive privacy and cookie policy with a consent mechanism. Security posture is solid with HTTPS enforcement and reCAPTCHA integration, though formal security policies and incident response contacts are not publicly disclosed. Overall, IBIMI presents a credible and professional online presence in the niche education sector.

Federparquet is an Italian non-profit association representing parquet retailers, installers, and related professionals. Founded officially in 2022, it aims to promote sector development through services such as insurance, expert consultancy, legal assistance, and member conventions. The website serves as an informational and contact portal for members and interested parties, with clear contact details and social media presence. Technically, the site is built on WordPress using the OnePress theme, incorporating modern web technologies like Bootstrap and jQuery. It includes a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS and DNSSEC enabled, though no explicit security policy or incident response information is published. Overall, the site is professional, user-friendly, and trustworthy, serving its niche audience effectively.

The Liturgy Office website serves as the official online presence for the Department for Christian Life and Worship under the Catholic Bishops' Conference of England and Wales. It provides liturgical resources, calendars, prayers, and news relevant to the Catholic community in England and Wales. The site targets clergy, church members, and those interested in Catholic liturgy, positioning itself as a trusted non-profit religious resource provider with a long-standing domain since 2001. Technically, the website employs basic web technologies including HTML5, CSS, Google Fonts, and Google Analytics for tracking. The site lacks a modern CMS and advanced frameworks, indicating a simple but functional technical infrastructure. Performance and mobile optimization are basic, with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS (implied but not explicitly confirmed), but lacks visible security headers and published privacy or cookie policies, which are compliance gaps especially under GDPR. No forms collecting sensitive data are present, reducing attack surface. The WHOIS data confirms domain legitimacy and consistency with the organization's history, supporting trustworthiness. Overall, the website is a credible, safe, and content-relevant resource for its audience but would benefit from enhanced privacy compliance, security hardening, and technical modernization to improve user trust and regulatory adherence.

P

Prosegur UK

prosegur.co.uk

78

Prosegur UK presents itself as a professional security services provider offering integrated security solutions including manned guarding, logistics, alarms, and cybersecurity. The website is well-structured and targets organizations seeking comprehensive security services in the UK market. The company leverages modern web technologies and consent management tools to ensure privacy compliance. However, the WHOIS data indicates the domain www.prosegur.co.uk is not officially registered under Nominet UK due to naming rules violations, which raises questions about domain legitimacy despite the professional appearance and branding consistency. The website lacks direct contact emails and phone numbers but provides a contact form for inquiries. Overall, the digital maturity is moderate with good SEO and mobile optimization but could improve security headers and explicit incident response information.

P

Prosegur

prosegur.us

70

Prosegur is a global security services provider offering integrated solutions including manned guarding, cybersecurity, and risk management, now operating in the USA. The company is recognized internationally for trustworthiness and excellence, holding awards from Newsweek and TIME. Their business model emphasizes hybrid security combining human expertise with advanced technology to deliver adaptive and scalable security solutions tailored to diverse industries. The website targets B2B clients seeking comprehensive security services. Technically, the website employs modern technologies such as Google Tag Manager, HubSpot forms, and Didomi consent management, hosted likely on SAP Commerce Cloud. The site is well-optimized for mobile and accessibility, with good SEO practices and performance. Privacy compliance is robust with clear cookie consent mechanisms and a comprehensive privacy policy hosted on a partner domain. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security policies or incident response contacts, which could be improved. WHOIS data is unavailable, which slightly reduces trust signals, but the overall legitimacy is supported by branding and external recognitions. Overall, Prosegur's website presents a professional, secure, and privacy-conscious digital presence suitable for its enterprise security services business, with recommendations to enhance transparency around security policies and incident response.

C

Connectyca s.r.l.s.

connectyca.it

60

Connectyca s.r.l.s. operates the ThingsIoT website, providing IoT and M2M SIM card solutions with extensive global coverage. The company positions itself as an authorized reseller of Tele2, targeting businesses requiring reliable IoT connectivity and fleet management services. Their offerings include multi-operator SIM cards, data pooling, and a management portal with security features such as SIM blocking. The website is professionally designed, mobile-optimized, and provides comprehensive contact and legal information, supporting a trustworthy business presence. Technically, the site employs modern web technologies including Bootstrap, jQuery, and Slider Revolution, with Google Analytics and reCAPTCHA integrated for analytics and spam prevention. The site is served over HTTPS with no visible security vulnerabilities, though security headers and explicit security policies are absent. Privacy and cookie policies are present and GDPR compliance is indicated, though could be enhanced with more detailed disclosures. Security posture is moderate with good SSL usage and form protections but lacks advanced security headers and incident response information. No vulnerabilities or suspicious content were detected. WHOIS data aligns well with the business claims, showing consistent registrant information and domain age appropriate for the company's market presence. Overall, the website demonstrates a solid business and technical foundation with room for improvement in security policies and compliance transparency. It is suitable for its target audience of IoT connectivity customers and partners.

E

Ethos Media Group srl

secsolutionforum.it

64

Secsolutionforum is a professionally managed digital event platform organized by Ethos Media Group srl, targeting security industry professionals in Italy. The website promotes a digital event scheduled for April 2025, focusing on the convergence of physical and logical security, offering tailored training, workshops, and networking opportunities. The platform serves as a key aggregator for industry knowledge, professional growth, and market insights within the security sector. Technically, the website employs modern web technologies including Bootstrap, jQuery, and Google Analytics, ensuring a responsive and user-friendly experience. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, reflecting adherence to GDPR standards. Security posture is good with HTTPS enabled and no visible vulnerabilities, though improvements in security headers and incident response disclosures are recommended. Overall, the website is trustworthy, professionally designed, and well-positioned in its niche, with strong branding consistency and clear business information.

M

Media Fusion

mediafusionme.com

56

Media Fusion is a well-established B2B media and events company operating primarily in the Middle East and India since 2012. The company specializes in niche publications, trade shows, conferences, and awards ceremonies that foster industry conversations and connections across sectors such as clean energy, built environment, waste management, and aviation. Their market position is strong as a fast-growing enterprise with a professional online presence and a broad portfolio of industry-specific brands and events. Technically, the website uses modern front-end technologies like Bootstrap, jQuery, and GSAP, providing a responsive and visually appealing user experience. However, the site lacks advanced CMS integration and some SEO and accessibility features could be improved. Security-wise, the site benefits from HTTPS and some basic security headers but lacks DNSSEC and published security policies or incident response contacts, which are recommended for enhanced trust and compliance. Privacy compliance is minimal with no cookie consent mechanism detected, which could be a risk under GDPR regulations. Overall, the website is professional and trustworthy but could improve in security and privacy transparency to better align with industry best practices.

The website carolinemakes.art is currently inaccessible, presenting a 403 Forbidden error page that blocks access to any substantive content. The domain is registered through a privacy protection service (Domains By Proxy, LLC) and hosted on SiteGround servers. There is no visible business information, contact details, or privacy and cookie policies on the site. The lack of accessible content and metadata severely limits the ability to assess the business or its services. Technically, the site uses basic HTML and CSS with Google Fonts but lacks modern SEO, accessibility, or security headers. The domain is relatively new, created in 2022, and uses domain status prohibitions to prevent unauthorized changes. Overall, the site exhibits minimal digital maturity and poor content quality due to the access restriction.

Bloomlight Productions GmbH is a Swiss-based creative company specializing in biography, literature, film, coaching, and moderation. The company targets cultural and educational audiences, offering a range of services including film production, performances, podcasts, exhibitions, and project coaching. Their market position is niche, focusing on storytelling and cultural projects with a small company size. The website is professionally designed using the Contao CMS and modern web technologies, providing good user experience and mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and cookie consent mechanisms are areas for improvement. Contact information is clearly presented, enhancing business credibility. Overall, the website reflects a trustworthy and legitimate entity with a focus on cultural media production.

L

liberladen

liberladen.org

48

liberladen.org is an e-commerce platform specializing in literature and cultural magazines, primarily serving a German-speaking audience interested in literary and cultural content. The website offers a variety of literary magazines and cultural publications, positioning itself as a niche player in the media sector focused on literature. The platform is built on WordPress with WooCommerce, leveraging modern web technologies and a professional design that supports good user experience and mobile responsiveness. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although security headers and incident response policies are not explicitly published. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but lacks a cookie consent mechanism and explicit contact information. The absence of WHOIS data limits trust assessment, but the website content and structure suggest a legitimate and professional operation. Strategic improvements include enhancing privacy compliance, publishing security policies, and improving contact transparency.

D

DataSkills4SMEs

dataskills4smes.eu

56

DataSkills4SMEs is an EU-financed project website aimed at supporting small and medium-sized enterprises (SMEs) across Europe by enhancing their data skills and promoting the use of modern technologies for efficient business operations. The site focuses on developing innovative learning tools for SME employees to facilitate paperless offices and maintain high-quality standards. The website is built on WordPress using the Avada theme and integrates Google Analytics for visitor tracking. While the site is accessible and presents relevant content for its target audience, it lacks visible privacy and cookie policies, as well as explicit contact information, which are important for compliance and user trust. The domain's WHOIS information is not publicly available due to EURid's privacy policies for .eu domains, which is typical and does not raise immediate concerns about legitimacy.

T

THE STAEGER COLLECTION

staeger-collection.com

59

The Staeger Collection is a niche, Basel-based organization dedicated to the preservation and exhibition of vintage bicycles. The website serves primarily as a showcase for their collection, targeting cycling enthusiasts, collectors, and historians. The business model appears non-commercial, focusing on cultural heritage and education. Technically, the site is built on Squarespace, leveraging modern web fonts and standard web technologies, delivering a moderate performance and good mobile experience. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and privacy compliance features. The absence of WHOIS registration data is a notable concern, potentially impacting domain trustworthiness. Overall, the site is functional and professional but would benefit from enhanced compliance and security measures.

Stretcher is a small, artist-run exhibition project based in Basel, Switzerland, founded in 2023 by artists Karin Borer and Daniel Kurth. The project focuses on contemporary art exhibitions, artist editions, readings, and collaborative art events, operating within the InfoSpace collective art community. The website provides detailed program information, contact details, and event schedules, targeting a general audience interested in contemporary art. Technically, the website is built with standard HTML and CSS, uses Google Fonts, and integrates a newsletter subscription via Mailchimp. The site is mobile-optimized with good navigation and content relevance but lacks advanced technical frameworks or CMS. Security posture is moderate with no explicit HTTPS or security headers information available, and no privacy or cookie policies are present, indicating compliance gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

M

Mixlr Ltd

mixlr.com

60

Mixlr Ltd operates a specialized live audio broadcasting platform that enables users to create, distribute, and host professional-quality live audio streams globally. Founded in 2010, the company has established itself as a trusted provider in the live audio streaming niche, serving diverse audiences including sports teams, podcasters, educators, and faith groups. The platform emphasizes ease of use, reliability, and professional sound quality without the complexity of traditional broadcasting tools. Technically, Mixlr leverages a modern tech stack including Ruby on Rails, Turbo, StimulusJS, and AWS infrastructure with Cloudfront CDN, ensuring fast and scalable performance. The website is well-designed, mobile-optimized, and SEO-friendly, reflecting a mature digital presence. Security posture is solid with HTTPS and domain transfer protections, though improvements such as enabling DNSSEC and publishing explicit security policies could enhance trust further. Privacy compliance is evident through a comprehensive privacy policy and cookie consent mechanisms aligned with GDPR. Overall, Mixlr presents a credible, professional, and secure online presence with moderate user tracking for analytics and marketing purposes.

L

Literaturhaus Zürich

literaturhaus.ch

54

Literaturhaus Zürich is a well-established non-profit cultural institution based in Zürich, Switzerland, founded in 1834. It offers a variety of literary and cultural services including readings, book premieres, panel discussions, and library services. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to a general audience interested in literature and culture. The organization maintains active social media channels and provides clear contact information, enhancing its accessibility and community engagement. Technically, the site is built on WordPress with modern plugins such as Elementor and WooCommerce, ensuring a robust and flexible platform. Performance is moderate with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced, security headers present, and cookie consent mechanisms implemented, although no explicit security policy or incident response information is published. Overall, the website is trustworthy, compliant with GDPR, and professionally managed, supporting the organization's cultural mission effectively.

E

Edition Maulhelden

alfonsinastorni.ch

44

The website www.alfonsinastorni.ch is a well-structured cultural and literary blog dedicated to the Argentinian-Swiss author Alfonsina Storni, operated under the brand Edition Maulhelden. It offers rich content including blog posts, podcasts, and literary editions, targeting a general audience interested in literature and cultural history. The site is built on WordPress with modern SEO and podcasting plugins, indicating a moderate level of digital maturity and technical infrastructure. Security posture is adequate with HTTPS enabled and some security best practices observed, but lacks advanced security headers and incident response information. Privacy compliance is partial, with a privacy policy hosted on a related domain but no cookie consent mechanism on the main site. Overall, the site is trustworthy and professional but could improve in privacy and security transparency.

P

ProductReview.com.au Pty. Ltd.

productreview.com.au

65

ProductReview.com.au Pty. Ltd. operates a leading Australian consumer review platform that provides user-generated opinions on a wide range of products, services, and businesses. The website targets Australian consumers seeking trustworthy reviews to inform purchasing decisions. It maintains a strong market position as a comprehensive and popular review site with a large volume of user content and active community engagement. The business model relies on advertising and sponsored content, supported by partnerships with various brands and service providers. Technically, the website is built on a modern React framework with extensive use of third-party services including Google Analytics, DoubleClick, and various ad networks. The site demonstrates high digital maturity with excellent mobile optimization, fast performance, and good SEO practices. Privacy compliance is robust, featuring a comprehensive consent management platform aligned with GDPR requirements. From a security perspective, the site enforces HTTPS, implements multiple security headers, and avoids exposing sensitive data. While no explicit security policies or incident response contacts are published, the overall security posture is strong. The integration of numerous advertising and tracking services is transparent and managed via user consent. Overall, ProductReview.com.au presents a low-risk profile with a professional and trustworthy online presence. Strategic recommendations include publishing explicit security and incident response policies, enhancing transparency around vulnerability disclosures, and maintaining ongoing audits of third-party integrations to mitigate emerging risks.

D

DocLX Holding GmbH

lighthousefestival.tv

64

Lighthouse Festival is a well-established boutique electronic music festival organizer with over 12 years of experience, operating events primarily in Croatia, Austria, and Tanzania. The company focuses on creating intimate, exclusive festival experiences branded as 'electronic music on vacation'. The website reflects a professional digital presence with clear event information, social media integration, and a consistent brand image. Technically, the site uses modern web technologies including Bootstrap, jQuery, and various JavaScript libraries to deliver a responsive and engaging user experience. However, some areas such as cookie consent and security headers could be improved to enhance privacy compliance and security posture. The domain registration data is consistent with the business claims, supporting the legitimacy of the site.

P

Pilates Babes GmbH

pilatesbabes.com

67

Pilates Babes GmbH operates a professionally designed e-commerce website focused on Pilates fitness classes, events, retreats, and merchandise primarily targeting the Austrian and German markets. The company leverages the Shopify platform to deliver a mobile-optimized, fast-loading website with integrated social media presence and customer testimonials, positioning itself as a niche wellness brand. Technically, the site uses modern web technologies including Shopify's Dawn theme, JavaScript, CSS, and hCaptcha for form security. The security posture is solid with HTTPS enforced and domain locking, though explicit security policies and incident response contacts are absent. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the website is trustworthy and professional but could improve transparency and compliance documentation.

I

idealo internet GmbH

idealo.de

71

idealo.de is Germany's leading price comparison website, offering consumers access to over 350 million offers from more than 50,000 shops. Owned by Axel Springer SE, idealo has established itself as a market leader in the e-commerce price comparison sector since its founding in 2000. The platform provides expert product advice and comprehensive price comparisons, targeting general consumers primarily in Germany and other European countries. The website is professionally designed with excellent user experience, mobile optimization, and clear navigation, supporting its strong market position. Technically, idealo.de leverages modern web technologies including React and Next.js frameworks, hosted on Amazon AWS infrastructure. The site integrates Usercentrics for GDPR-compliant cookie consent management and uses Google Tag Manager for analytics. Performance is fast, and accessibility features are well implemented. The use of SVG logos and fonts enhances branding consistency and load efficiency. From a security perspective, idealo.de enforces HTTPS with strong SSL configuration and implements key security headers such as Content Security Policy and Strict-Transport-Security. No exposed sensitive data or vulnerable libraries were detected in the HTML content. However, the site lacks a dedicated security policy or incident response page, which could enhance transparency and preparedness. The WHOIS data is consistent with the business claims, showing a domain age appropriate for the company's history and no suspicious registration patterns. Overall, idealo.de presents a low-risk profile with strong business credibility, technical maturity, and privacy compliance. Strategic recommendations include publishing a formal security policy, providing incident response contact details, and considering a security.txt file to further improve security posture and trust.

istitutimissionari.it represents the Conferenza degli Istituti Missionari in Italia (CIMI), a non-profit organization uniting Italian missionary institutes to promote missionary spirit and initiatives. The website provides information about their mission, events such as the Festival della Missione, publishing activities via EMI, and community projects like intercongregational living in Modica. The target audience is Italian-speaking individuals interested in missionary and religious activities. Technically, the site is built on WordPress using the Divi theme, with responsive design and moderate performance. Security posture is good with HTTPS and DNSSEC enabled, but lacks advanced security headers and formal vulnerability disclosure. Privacy and cookie policies are missing, and Google Analytics is installed but not configured, indicating room for privacy compliance improvement. The domain is newly registered, which contrasts with the organization's long history, suggesting a recent domain acquisition or migration. Overall, the site is professional and trustworthy but could enhance compliance and security transparency.

The Liturgy Office website serves as the official online presence for the Department for Christian Life and Worship under the Catholic Bishops' Conference of England and Wales. It provides liturgical resources, calendar information, prayers, and news relevant to the Catholic community in England and Wales. The site targets clergy, church members, and religious scholars, positioning itself as a trusted resource within the religious non-profit sector. The business model is non-commercial, focusing on service and information dissemination. Technically, the website employs basic web technologies including HTML5, CSS, Google Fonts, and Google Tag Manager for analytics. The site lacks a modern CMS and advanced frameworks, indicating a relatively simple infrastructure. Performance and mobile optimization are basic, with room for improvement in accessibility and SEO. No forms or user input fields reduce complexity and security risks. From a security perspective, the site uses HTTPS (assumed but not explicitly confirmed), but lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. The WHOIS data is transparent and consistent with the organization's identity, supporting legitimacy. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is a reliable and safe resource with good business credibility but requires improvements in privacy compliance, security hardening, and technical modernization to enhance user trust and regulatory adherence.

C

Catholic Bishops' Conference of England and Wales

taking-stock.org.uk

45

Taking Stock is a non-profit project managed by the Catholic Bishops' Conference of England and Wales, focusing on the architectural and historical review of Catholic churches and chapels across England and Wales. The website serves as an informational resource and partnership platform involving dioceses and Historic England. The target audience includes researchers, heritage professionals, and the Catholic community. The business model is collaborative and heritage-focused, with a niche market position in religious architectural documentation. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and advanced SEO plugins like Yoast. Hosting utilizes a CDN for performance, and Google Analytics is implemented for visitor tracking. The site demonstrates good mobile optimization and basic accessibility features, though there is room for improvement in security headers and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks explicit security policies, incident response information, and cookie consent banners, which are important for GDPR compliance and user trust. No critical vulnerabilities or suspicious activities were detected. Overall, the website is professionally maintained with a strong business credibility and good content quality. Strategic recommendations include enhancing privacy compliance with cookie consent, implementing security headers, and publishing security and incident response policies to improve trust and compliance posture.

U

united-domains AG

europa.blog

52

Europa Blog is a niche German-language media platform focusing on European political, social, and cultural topics. It publishes essays and columns from various authors, including notable contributors like Jürgen Klute and Frederik D. Tunnat. The site targets readers interested in in-depth socio-political analysis and commentary within Europe. The business model centers on content publishing without evident commercial sales or e-commerce components. The domain is registered since 2016 with privacy protection, consistent with the site's profile as a small media outlet.

F

Fydelia

fydelia.com

53

Fydelia is a UK-based technology company specializing in WiFi marketing solutions designed to enhance customer engagement and loyalty for venues. Their platform offers features such as digital scratch cards, integration with major WiFi hardware providers, and seamless connectivity with marketing and loyalty platforms like Airship, SevenRooms, and Klaviyo. The website demonstrates a professional and consistent brand presence, targeting businesses seeking to leverage WiFi as a marketing channel. Technically, the site is built on WordPress with modern integrations for analytics and advertising, though some scripts like Google Analytics are commented out. Security posture is solid with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. WHOIS data is missing or privacy-protected, which slightly impacts trust but does not negate the legitimacy of the active business presence. Overall, the site is well-structured, mobile-optimized, and provides clear contact information, supporting a positive business credibility profile.

Lokwort Buchverlag is a small Swiss book publisher specializing in thematic and regional literature, primarily targeting German-speaking audiences interested in Swiss German dialects and consciousness topics. The company operates an e-commerce platform based on WordPress and WooCommerce, offering a curated selection of books and author events. The website is professionally designed with good navigation and mobile optimization, reflecting a consistent brand image. Technically, the site uses modern web technologies including jQuery, Slick Slider, and MediaElement.js, but lacks some advanced security headers and cookie consent mechanisms. Security posture is moderate with HTTPS enforced but missing additional headers and explicit security policies. Contact information is clearly provided, enhancing business credibility. Overall, the website is safe, compliant to a basic degree with privacy regulations, and suitable for general audiences.

P

PROLIT Verlagsauslieferung GmbH

prolit.de

61

PROLIT Verlagsauslieferung GmbH is a medium-sized German service provider specializing in book distribution and publishing logistics. The company serves over 170 publishers and offers a broad catalog of approximately 41,000 titles. The website reflects a professional and content-rich platform targeting publishers and the book trade, with regular news updates and a partner program involving over 2,000 bookstores. Technically, the site is built using the Hugo static site generator, ensuring fast performance and good mobile optimization. Security posture is solid with HTTPS enabled, though some security headers and cookie consent mechanisms are missing. Contact information is clearly provided, enhancing trust and credibility.

M

morehotlist

morehotlist.com

59

morehotlist is a German-language online magazine dedicated to independent books and publishers, providing news, event information, and award announcements. The website targets readers and book enthusiasts interested in the independent literary scene. It operates as a niche media outlet with a small but consistent presence in the German market. The business model revolves around content publishing and community engagement through social media and subscriptions. The site is hosted on WordPress.com, leveraging Jetpack and other WordPress plugins for functionality and performance.

I

Imagemakers Creative Agency

imagemakers.de

56

Imagemakers Creative Agency is a small, established marketing and creative agency based in Munich, Germany, with approximately 20 years of experience. They specialize in marketing, advertising, and web design services targeting businesses seeking professional creative solutions. The website is built on WordPress with a modern tech stack including Yoast SEO, WPBakery Page Builder, and Real Cookie Banner Pro, indicating a mature digital infrastructure. Social media integration and GDPR-compliant privacy and cookie policies demonstrate a commitment to compliance and user engagement. Security posture is solid with HTTPS enabled and Wordfence plugin active, though some security headers could be improved. Overall, the website is professional, trustworthy, and well-optimized for SEO and user experience.

Z

Zizzi

zizzi.co.uk

72

Zizzi is a well-established Italian restaurant group operating in the UK and Ireland, offering Italian dining experiences in uniquely designed restaurants. The website reflects a mature digital presence with strong SEO and marketing integrations, including Google Analytics, Tag Manager, and social media connectivity. The technical infrastructure is modern, leveraging WordPress with Yoast SEO and custom Propeller CMS assets, hosted likely on AWS, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforced and appropriate security headers, though explicit security policies and incident response information are not publicly available. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. The WHOIS data is incomplete due to domain naming rules issues, which slightly impacts trust analysis but does not detract from the professional presentation and business credibility. Overall, the website is secure, professional, and trustworthy, serving a general audience with safe content.

B

Black Sheep Coffee

blacksheepcoffee.co.uk

72

Black Sheep Coffee is a specialty coffee brand established in 2013, offering specialty grade Robusta coffee beans and operating cafes, kiosks, and cocktail bars globally. The company leverages a Shopify-based e-commerce platform to sell coffee products and subscriptions, integrating third-party services such as Trustpilot for reviews, Recharge for subscriptions, and Weglot for translations. The website demonstrates a good level of digital maturity with responsive design, GDPR-compliant cookie consent, and performance optimizations. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly available. Overall, the site is professional, trustworthy, and well-positioned in the specialty coffee e-commerce market.

A

Airship Services Ltd.

joinerskitchen.co.uk

52

Joiners Kitchen is a demo and marketing website created by Airship Services Ltd. to showcase their CRM and guest engagement platform tailored for the hospitality industry. The site highlights personalized customer journeys, integration with booking and WiFi systems, and feedback collection to enhance guest experiences and drive revenue. The target audience includes hospitality businesses seeking advanced CRM solutions. Technically, the site is built on Webflow CMS with modern frontend technologies and hosted on Webflow's CDN, providing good performance and mobile optimization. Security posture is solid with HTTPS enforced and no exposed sensitive data, though security headers and privacy policies are lacking. The absence of WHOIS data due to a domain query error reduces trust somewhat, but the professional content, partner logos, and testimonials support credibility. Overall, the site is a well-executed marketing tool with room for improvement in privacy compliance and security best practices.

I

Ionic

ionicons.com

62

Ionic's Ionicons website offers a premium open-source icon pack designed primarily for developers and designers working with the Ionic Framework and other platforms. The company, founded in 2014 and headquartered in Portugal, is a subsidiary of OutSystems, a recognized player in the technology sector. The website showcases a comprehensive and well-designed icon set with strong branding and a professional user experience. Technically, the site leverages modern web technologies such as StencilJS and Web Components, hosted behind Cloudflare, ensuring fast performance and mobile optimization. Security posture is solid with HTTPS enforced, though improvements like enabling DNSSEC and adding security headers are recommended. Privacy compliance is moderate, with cookie consent implemented but lacking explicit privacy and terms of service pages. Overall, the domain registration and business information are consistent and trustworthy, supporting a high legitimacy score.

C

home - communeagence.ch

communeagence.ch

49

The website communeagence.ch represents a small communication agency focused exclusively on serving French-speaking Swiss municipalities. The business appears to be niche and specialized, targeting a specific regional audience. The website is built on WordPress using the Divi theme, incorporating modern web technologies such as Google Analytics and Google Tag Manager for tracking, with IP anonymization enabled to enhance privacy. However, the site lacks visible privacy and cookie policies, which are critical for GDPR compliance and user trust. Security posture is moderate with HTTPS enabled but missing important security headers and incident response information. Overall, the site is functional and professionally designed but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

A

Aquarium GEOMAR

aquarium-geomar.de

60

Aquarium GEOMAR is a small educational and exhibition aquarium affiliated with the GEOMAR Helmholtz-Zentrum für Ozeanforschung in Kiel, Germany. It focuses on showcasing native marine species from the North and Baltic Seas, as well as some Mediterranean and tropical marine life, including popular local seals. The website serves as an informational portal for visitors, providing details about exhibits, visiting hours, and contact information. The business operates primarily as a local educational and tourist attraction with a non-commercial model. Technically, the website is built on the 1&1 IONOS Website Editor platform, utilizing technologies such as jQuery, skrollr for parallax effects, and Snowplow for analytics. It is hosted on 1&1 IONOS infrastructure with content delivered via Cloudfront CDN. The site is mobile optimized and performs moderately well, with good SEO and basic accessibility features. From a security standpoint, the website enforces HTTPS with excellent SSL configuration but lacks explicit security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, indicating GDPR awareness. Overall, Aquarium GEOMAR's website is professional, trustworthy, and safe for general audiences. It effectively supports the business's educational mission but could improve security posture by adding security headers and incident response information.

M

MÄRZ Verlag

maerzverlag.de

61

MÄRZ Verlag is a German independent publishing house specializing in radical and non-conventional literature and media. The company operates an e-commerce platform selling books across various genres including literature, poetry, and non-fiction. It maintains a niche market position with a focus on politically and culturally radical content, supported by a subsidiary imprint, Korbinian Verlag. The website is professionally designed, mobile-optimized, and integrates modern digital marketing and analytics tools such as Google Analytics and Matomo, with a strong emphasis on privacy compliance through a comprehensive cookie consent mechanism. Social media presence across major platforms enhances its outreach and community engagement. Technically, the site is built on WordPress with WooCommerce for e-commerce functionality, secured by Wordfence and served over HTTPS with good SSL configuration.

K

Kueez

kueezrtb.com

58

Kueez is a technology company specializing in providing innovative solutions for publishers and performance marketers. Their offerings include the Kueez Monetization Suite and an End2End Marketing Platform designed to drive profitable growth and scalable marketing performance. The company targets digital publishers and marketers seeking to optimize revenue and campaign effectiveness. The website demonstrates a professional and consistent brand presence with strong client logos and active content such as blogs and social media engagement. Technically, the site is built on Webflow with modern libraries and includes GDPR-compliant consent management, indicating a mature digital infrastructure. Security posture is generally good with HTTPS and secure forms, though explicit security headers and published security policies are absent. WHOIS data for the subdomain is unavailable, which is typical for subdomains but slightly reduces trust. Overall, the site is well-designed, functional, and business credible with moderate to high trustworthiness.

L

La Guida Nomade

laguidanomade.it

46

La Guida Nomade is an Italian online portal dedicated to conscious travelers seeking wellness, artisanal, agricultural, commercial, and tourism experiences that respect health, life, and the environment. The website serves as a niche directory and content platform, positioning itself as a reference point for sustainable and mindful travel in Italy. The business is small-sized, founded around 2018, and operates under the parent project La Grande Via. The portal offers categorized listings, blog content, and a contact form to engage users. Technically, the website is built on WordPress with WooCommerce for product listings, enhanced by popular plugins such as Yoast SEO, Revolution Slider, and WPBakery Page Builder. It uses modern web technologies including Google Analytics for tracking, Google Fonts, and FontAwesome icons. The site is moderately optimized for performance and mobile devices, with good SEO practices and structured data implemented. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA for form protection. However, it lacks explicit security headers like a full Content-Security-Policy and does not publish a security policy or incident response contacts. Privacy compliance is basic, with no visible privacy or cookie policies or consent mechanisms, which is a gap given GDPR requirements. Overall, the website is accessible, professionally designed, and content-rich, targeting a general audience interested in sustainable travel and lifestyle. The security posture is adequate but can be improved with better policy disclosures and headers. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.