Security Directory

L

LookUs Scientific

journalagent.com

49

JournalAgent™ is a specialized online platform developed by LookUs Scientific, offering comprehensive article submission, peer review, and publishing solutions tailored for peer-reviewed scientific journals. The platform supports over 80 journals and thousands of academic users, providing services such as DOI assignment, multi-language support, and advanced archiving. The website demonstrates a professional and consistent brand presence with excellent content quality and user experience, primarily targeting academic and publishing sectors in Turkey.

Allgäu Outlet is a regional retail business specializing in outlet sales of sportswear, fashion, and accessories from well-known brands. The company emphasizes value shopping with discounts up to 70% and promotes sustainability through a large photovoltaic installation. The website is built on the webEdition CMS platform and uses modern web technologies such as Bootstrap, FontAwesome, and CookieFirst for consent management. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with cookie consent implemented but lacks visible security headers and published security policies. No critical vulnerabilities or blocking mechanisms were detected, and the site is accessible without WAF interference. Overall, the business appears legitimate with a moderate trust level and good privacy compliance. Strategic improvements could focus on enhancing security headers, publishing terms of service, and providing clearer contact information.

Weidmüller Interface GmbH & Co. KG is a well-established enterprise specializing in industrial connectivity solutions, including products and services for connection technology, automation, and digitalization. The company targets industrial customers, system integrators, and device manufacturers globally, positioning itself as a leader in manufacturing and technology sectors. Their website reflects a mature digital presence with comprehensive product catalogs and solution offerings. Technically, the website employs modern web technologies such as Google Tag Manager and OneTrust for privacy compliance, and it is optimized for mobile and accessibility standards. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly detailed. The absence of WHOIS registration data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional website and branding. Strategic recommendations include publishing detailed security policies and vulnerability disclosure information to enhance trust and compliance.

I

IBF Solutions GmbH

cra-konferenz.com

65

IBF Solutions GmbH operates the website www.cra-konferenz.com, which serves as an online conference platform focused on the Cyber Resilience Act (CRA) in the mechanical engineering sector. The site provides expert insights, legal and practical perspectives, and guidance for manufacturers and professionals navigating new EU IT/OT security regulations. The business positions itself as a niche event organizer and knowledge provider, supported by partnerships with recognized industry organizations and offering related software and seminars. Technically, the website is built on the Jimdo CMS platform, utilizing common JavaScript libraries such as jQuery and bxSlider, and integrates third-party widgets and Google Maps. The site demonstrates moderate performance and good mobile optimization, with basic accessibility and SEO features. Cookie consent mechanisms and privacy policies are implemented, reflecting a commitment to GDPR compliance. From a security perspective, while HTTPS is implied, no explicit security headers were detected in the HTML source, and SSL configuration details are unavailable. The site does not expose sensitive data and uses standard cookie-based tracking. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and transparency, which impacts overall trustworthiness. Overall, the website is professional, content-rich, and trustworthy from a business and user experience standpoint, but would benefit from enhanced security headers, verified SSL configuration, and improved domain registration transparency to strengthen its security posture and credibility.

V

Viva & Co.

vivaandco.com

58

Viva & Co. is a well-established independent branding and design agency based in Canada, specializing in a wide range of creative services including online, print, visual identity, packaging, and environmental solutions. The company has a strong market position as a trusted partner for both large and small clients, emphasizing results, relationships, and trust. The website reflects a professional and polished digital presence with modern technologies such as WordPress, Gravity Forms, Google Analytics, and Google Tag Manager integrated for analytics and marketing purposes. The technical infrastructure is solid, leveraging Cloudflare for DNS and CDN services, and employing contemporary JavaScript libraries for enhanced user experience. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is limited due to the absence of explicit privacy and cookie policies, representing a compliance gap. Overall, the website is trustworthy, professional, and well-maintained, with clear contact information and active social media engagement. Strategic recommendations include enhancing privacy compliance, implementing security headers, enabling DNSSEC, and publishing security and incident response policies to further strengthen trust and security posture.

D

DECHEMA Ausstellungs-GmbH

dechema-gmbh.de

62

DECHEMA Ausstellungs-GmbH is a specialized event organizer focused on trade shows for the process industries, notably ACHEMA and AchemAsia. It operates within the chemical technology and biotechnology sectors, serving industry professionals globally with a strong presence in Germany and Asia. The company is positioned as a leading organizer of major international trade fairs, providing platforms for industry networking, innovation showcase, and market development. Technically, the website is built on TYPO3 CMS with modern frontend technologies including Bootstrap and jQuery, and integrates Google Maps and Google Analytics with privacy-conscious configurations such as IP anonymization. The site is mobile-optimized, accessible, and SEO-friendly, hosted on a professional hosting provider (Webdiscount). Cookie consent and GDPR compliance are well implemented. From a security perspective, the site uses HTTPS with good SSL configuration and cookie consent mechanisms. However, it lacks publicly available security policies, incident response contacts, and security headers, which are recommended for enhanced trust and compliance. No vulnerabilities or suspicious content were detected. Overall, the website is professional, trustworthy, and well-maintained, with strong business credibility and compliance posture. Strategic improvements in security transparency and incident response readiness would further strengthen its security posture and stakeholder confidence.

S

SCHMACHTL GmbH

schmachtl.at

64

SCHMACHTL GmbH is a medium-sized Austrian company specializing in providing high-quality components and expertise in energy technology, automation & robotics, and environmental technology. The company operates multiple branches and subsidiaries across Austria, Slovakia, and the Czech Republic, serving industrial clients and businesses in related sectors. Their website reflects a professional B2B solutions provider with a clear focus on industrial technology products and services. Technically, the website is built on modern frameworks such as Next.js and React, with integration of Google Maps API and Storyblok CMS, indicating a mature digital infrastructure. The site is mobile-optimized and offers good user experience and navigation clarity. Security posture is moderate; while HTTPS is presumably enabled, no security headers or explicit security policies are visible, and privacy compliance is lacking due to missing privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in privacy compliance and security headers would enhance trust and compliance.

M

makeIT - Der Makerspace für Zukunftstechnologien

makeit-gelnhausen.de

49

makeIT is a specialized IT makerspace located in Gelnhausen, Germany, focused on future technologies such as robotics, AI, AR, 3D printing, and IoT. It serves a diverse audience including companies, technology enthusiasts, founders, and students by providing workshops, tech challenges, and collaborative project spaces. The organization positions itself as a regional innovation hub fostering community-driven technology development and education. Technically, the website is built on WordPress with the Avada theme, leveraging modern web technologies including jQuery, Google Maps API, and Google reCAPTCHA v3 for security. Hosting is provided by netcup, a reputable German hosting provider. The site demonstrates good mobile optimization, accessibility, and SEO practices, with structured data enhancing search engine understanding. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks explicit HTTP security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy, cookie consent, and GDPR adherence. Overall, makeIT presents a professional, trustworthy, and secure online presence aligned with its mission to support technology innovation and education. Strategic improvements in security headers and incident response transparency would further enhance its security posture.

G

GHOTEL & nestor

ghotel.de

56

GHOTEL & nestor is a medium-sized hospitality business operating multiple hotels in Germany, offering accommodation, event hosting, and dining services. The company positions itself as a reliable and guest-focused hotel chain with a strong regional presence and a parent brand association with The Chocolate on the Pillow Group. The website is professionally designed, multilingual, and optimized for user experience and SEO. Technically, it leverages WordPress with WooCommerce, integrates Google Maps, and uses modern analytics and cookie consent tools. Security posture is good with HTTPS and cookie management, though lacks explicit security policies or incident response contacts. Overall, the site is trustworthy and compliant with GDPR, providing a solid digital presence for the hospitality business.

G

Gebauer & Griller

gg-group.com

68

Gebauer & Griller (GG Group) is a well-established international family-owned manufacturing group specializing in high-quality and technologically advanced cables and wiring systems for automotive and industrial applications. The company emphasizes innovation, customer-specific development, and sustainability, positioning itself as a global player with multiple subsidiaries and a broad geographic footprint. The website reflects a professional and consistent brand image with comprehensive content and clear navigation, targeting business customers in the automotive and industrial sectors. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates Google services such as reCAPTCHA and Maps. It features a cookie consent mechanism compliant with GDPR, indicating a mature digital infrastructure. Performance and mobile optimization are good, though some accessibility features could be enhanced. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but could benefit from additional HTTP security headers and explicit incident response information. The WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy. However, the professional website content, detailed contact information, and social media presence support the company's credibility. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility, with room for improvement in security headers and transparency. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, improving accessibility, and verifying domain registration details to strengthen trust and compliance.

V

Vector Informatik GmbH

vector.com

79

Vector Informatik GmbH is a global enterprise specializing in software and engineering services for networking electronic systems primarily in the automotive industry. Their offerings include development tools, software, hardware, and engineering solutions supporting technologies such as CAN, FlexRay, AUTOSAR, and Ethernet. The company maintains a strong international presence with subsidiaries and offices across Europe, Asia, and the Americas, targeting automotive engineers and embedded systems developers. The website reflects a professional and comprehensive digital presence with consistent branding and detailed contact information for multiple regions. Technically, the website is built on the TYPO3 CMS platform and integrates modern technologies including Google Tag Manager, Google Maps API, and OneTrust for consent management. The site demonstrates good performance, mobile optimization, and accessibility features. SEO practices are well implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and employs consent management for cookies, indicating compliance with GDPR. However, additional security headers could be implemented to enhance protection. No vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response page suggests room for improvement in transparency and security communication. Overall, the website is trustworthy and professional, supporting a well-established business. The lack of WHOIS data limits domain registration trust analysis, but the website's global footprint and detailed contact information support legitimacy. Strategic recommendations include enhancing security headers, publishing security and vulnerability disclosure policies, and providing explicit incident response contacts.

D

Divine Moving

divinemoving.com

60

Divine Moving is a small transportation service company specializing in moving and storage services in New York City. The company has a long-established domain since 2001, indicating a stable presence in the market. Their website is built on WordPress with common SEO and performance optimizations, targeting local residential and commercial customers. The technical infrastructure is standard for small businesses, leveraging Google services for fonts, maps, and analytics. Security posture is basic with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and professional but could improve in privacy and security transparency.

W

Well BP

wellbp.com

68

Well BP is a newly founded digital consulting agency specializing in custom software development, digital product creation, and digital marketing services. The company positions itself as a trusted partner offering flexible engagement models and comprehensive digital solutions across various industries. Their website is professionally designed using WordPress and integrates modern technologies such as Google Maps API and advanced WordPress plugins. The technical infrastructure is solid with Cloudflare DNS and HTTPS enabled, though there is room for improvement in security headers and privacy compliance. The security posture is moderate with no critical vulnerabilities detected but lacks published security policies and cookie consent mechanisms. Overall, the website is safe, professional, and trustworthy, targeting businesses seeking digital transformation services.

A

Auto-moto savez Republike Srpske

ams-rs.com

49

Auto-moto savez Republike Srpske is a well-established non-profit organization providing roadside assistance, traffic updates, and membership services primarily in Republika Srpska, Bosnia and Herzegovina, and Europe. The website reflects a mature digital presence with a WordPress-based infrastructure, interactive maps, and live border crossing information. The organization targets local residents and travelers, offering key services such as emergency assistance and safety campaigns. The domain is long-standing and consistent with the organization's identity, enhancing trustworthiness. Technically, the site uses modern web technologies and plugins but lacks advanced security headers and DNSSEC, which could improve its security posture. Privacy compliance is weak due to missing privacy and cookie policies, which is a notable gap for GDPR and regional regulations. Overall, the website is professional and functional with room for security and compliance improvements.

А

Агенција за безбједност саобраћаја Републике Српске

bslzrs.org

44

The website bslzrs.org represents the Agency for Traffic Safety of Republika Srpska, Bosnia and Herzegovina. It primarily serves as an informational platform for the XIV International Conference on Traffic Safety in Local Communities, providing detailed content about traffic safety statistics, conference agenda, speakers, thematic areas, and organizational committees. The agency operates as a governmental and non-profit entity focused on improving traffic safety through research, awareness, and collaboration with regional and international partners. The website targets professionals, researchers, and government officials involved in traffic safety and local community development. Technically, the website employs a modern frontend stack including Bootstrap 4, jQuery, Slick Carousel, and Google Maps API integration. It is hosted on Bitlab Hosting and demonstrates moderate performance with good mobile optimization. However, accessibility and SEO optimizations are basic, and no CMS or advanced platforms are detected. The site lacks analytics and tracking scripts, indicating minimal user tracking. From a security perspective, the site uses HTTPS with a valid SSL certificate but lacks DNSSEC and security headers such as Content-Security-Policy or X-Frame-Options. No privacy or cookie policies are present, which is a compliance gap. The WHOIS data shows privacy protection and a recent domain registration date, which is somewhat inconsistent with the historical content but not necessarily suspicious. No WAF or blocking mechanisms are detected, and the site is fully accessible. Overall, the website is professional and trustworthy with good content quality and business credibility. However, it requires improvements in privacy compliance, security headers, and transparency to enhance its security posture and regulatory adherence.

U

Union Banka d.d. Sarajevo

unionbank.ba

53

Union Banka d.d. Sarajevo is a well-established financial institution in Bosnia and Herzegovina, providing a broad range of banking services including accounts, loans, cards, savings, and digital banking platforms such as eUnion and mUnion. The bank targets both individual and corporate clients, with a notable focus on energy efficiency financing and sustainable banking initiatives. The website reflects a mature digital infrastructure built on modern technologies like React and Next.js, offering fast performance and excellent mobile optimization. Security measures such as HTTPS, security headers, and Google reCAPTCHA v3 are implemented, though explicit security policies and incident response information are not publicly detailed. Overall, the bank demonstrates a strong market position with consistent branding and trust indicators, supported by legitimate WHOIS registration data.

E

ENORM Design

enorm.design

44

ENORM Design is a specialized design agency based in Cologne, Germany, focusing on corporate and brand design, editorial design, and cultural and corporate communication. The company serves a diverse clientele including museums, medium-sized enterprises, publishers, associations, savings banks, and publicly listed corporations, primarily in the art, culture, and finance sectors. The website demonstrates a strong market position with notable awards and a comprehensive portfolio showcasing their expertise. Technically, the website is built on TYPO3 CMS and employs modern JavaScript libraries and frameworks, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements can be made by adding security headers and cookie consent mechanisms. The absence of WHOIS data reduces domain registration trust but does not detract significantly from the overall legitimacy given the professional content and legal disclosures. Overall, ENORM Design presents a credible and professional digital presence aligned with its business objectives.

E

ENORM Digital GmbH

enorm.media

52

ENORM Digital GmbH is a specialized internet agency based in Cologne, Germany, focusing on online advertising, digital media planning, and real-time advertising services. The company serves a diverse clientele including museums, medium-sized enterprises, publishers, associations, and financial institutions, particularly in the cultural and financial sectors. Their business model revolves around delivering targeted online campaigns, programmatic buying, and media optimization to increase brand visibility and lead generation. The website reflects a professional and consistent brand image with comprehensive service descriptions and client references, positioning ENORM as a trusted niche player in the German online advertising market. Technically, the website is built on the TYPO3 CMS platform and leverages modern web technologies such as jQuery, Gumby Framework, and Google Maps API. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and security header implementation. The presence of multiple external marketing and advertising tools, including Google Analytics and Facebook Pixel, indicates a mature digital marketing infrastructure. From a security perspective, the site uses SSL encryption as stated in its privacy policy, but lacks visible HTTP security headers and a dedicated security policy or incident response contact. Forms are implemented securely using POST methods, and no sensitive data is exposed in the HTML. Privacy compliance is well addressed with a comprehensive privacy statement aligned with GDPR requirements, although a cookie consent mechanism is absent. Overall, the security posture is adequate but could benefit from enhancements in header security and transparency. The domain WHOIS data is unavailable or protected, which is common for small digital agencies and justified for privacy reasons. Despite this, the website provides sufficient legal and contact information, client logos, and consistent branding to establish legitimacy and trustworthiness. No signs of malicious activity or suspicious patterns were detected. The overall risk assessment is low, with recommendations focusing on improving security headers, cookie consent, and incident response transparency to further strengthen trust and compliance.

A

Adriaticket

adriaticket.com

54

Adriaticket is an established online ticketing and event promotion platform primarily serving Croatian and regional markets. Founded in 2012, it offers ticket sales for concerts, festivals, and cultural events, leveraging a custom-built website with AngularJS and Bootstrap frameworks. The platform integrates multiple third-party services including Google Maps, Facebook SDK, and YouTube APIs to enhance user experience. While the website is professionally designed with good navigation and mobile optimization, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security posture is moderate with HTTPS enforced and use of reCAPTCHA, but absence of DNSSEC and security headers present areas for improvement. Overall, Adriaticket demonstrates a solid business presence with moderate risk, suitable for general audiences and event attendees.

O

ORION TELEKOM d.o.o.

tickets.rs

52

Tickets.rs is an established online ticketing platform operated by ORION TELEKOM d.o.o., founded in 2008 and serving primarily the Serbian market. The platform offers online ticket sales for a variety of entertainment events including concerts, theater performances, festivals, and sports events. The website demonstrates a professional design with good user experience and clear navigation, targeting a broad audience interested in cultural and sports events. Technically, the site is built using Angular 9, integrates Google Maps and Google Analytics, and employs modern UI components such as Material Design and Swiper.js for carousels. While HTTPS is enforced and no sensitive data is exposed, the site lacks DNSSEC and visible security headers, which are recommended for enhanced security. Privacy compliance is weak as no explicit privacy or cookie policies were found, and no consent mechanisms are implemented. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business entity. Overall, the site is functional and trustworthy but would benefit from improved privacy and security practices.

E

ENORM Digital GmbH

enorm.digital

54

ENORM Digital GmbH is a Cologne-based internet agency specializing in digital communication projects such as websites, landing pages, one-pagers, banners, and online advertising. The company serves a diverse clientele including museums, medium-sized enterprises, publishers, associations, and financial institutions, positioning itself as a trusted partner in the cultural and financial sectors. Their website demonstrates a professional and consistent brand presence with a comprehensive portfolio and client references. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and frameworks, ensuring good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements in security headers and cookie consent mechanisms are recommended. The company provides detailed legal disclosures and privacy policies compliant with GDPR, enhancing trust and transparency.

N

NapravioBiH d.o.o.

napraviobih.ba

52

NapravioBiH d.o.o. is a Bosnian company focused on promoting and distributing products made in Bosnia and Herzegovina, targeting both local artisans and international markets. The company collaborates with sister companies across Europe to facilitate market access and employment opportunities, including for handicapped individuals. Their website reflects a small but professional business with a clear mission to improve the image and economy of Bosnia and Herzegovina through product promotion and distribution. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and integrates social media and video content. However, it lacks advanced CMS or modern frameworks and shows only basic mobile optimization and SEO. Security posture is moderate with HTTPS usage but missing key security headers and no visible security or incident response policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is functional and trustworthy but would benefit from enhanced security and compliance measures.

J

Jobly

monster.fi

56

Jobly.fi is a prominent Finnish digital recruitment platform offering a wide range of job listings across multiple sectors and regions. As part of Alma Media's Alma Career division, it holds a strong market position with over 25 years of experience in digital recruitment. The platform targets a broad audience including students, unemployed individuals, career changers, and professionals, providing services such as job search, employer profiles, recruitment campaigns, and CV search. Technically, the website is built on Drupal CMS and integrates modern marketing and analytics tools like Google Tag Manager, Adform, and Permutive, ensuring a responsive and user-friendly experience. Security-wise, the site enforces HTTPS and employs secure form practices but lacks published security policies and incident response contacts, indicating room for improvement. Overall, Jobly.fi demonstrates a mature digital presence with good content quality, technical implementation, and business credibility, though enhancing security transparency and compliance documentation would strengthen its posture further.

D

Deutscher Nachhaltigkeitskodex (DNK)

deutscher-nachhaltigkeitskodex.de

59

The Deutscher Nachhaltigkeitskodex (DNK) website serves as a comprehensive platform providing free support for companies, especially small and medium-sized enterprises (SMEs), to comply with the EU's Corporate Sustainability Reporting Directive (CSRD). It offers a modular suite of services including a digital reporting platform, checklists, helpdesk support, and sector-specific guidance. The DNK is backed by the German Federal Ministry for Economic Affairs and Climate Action (BMWK) and developed by the Council for Sustainable Development (RNE), positioning it as a trusted and authoritative resource in the sustainability reporting domain. Technically, the website employs modern web technologies such as Bootstrap and jQuery, integrates Google Maps for interactive features, and uses Consentmanager.net for GDPR-compliant cookie management. Analytics are handled via Piwik (Matomo), reflecting a moderate level of user tracking balanced with privacy considerations. The site is mobile-optimized, accessible, and SEO-friendly, with a consistent and professional design that enhances user experience. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, though explicit security headers like Content-Security-Policy are not evident. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with the site's official nature, supported by government and recognized sustainability organizations. Overall, the site demonstrates a strong security posture with room for improvement in explicit security policies and incident response disclosures. The overall risk assessment is low, with the site presenting a trustworthy, professional, and compliant platform for sustainability reporting. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining up-to-date third-party components to sustain and improve the security and compliance posture.

L

Landeszentrum für Ernährung Baden-Württemberg

ernaehrung-bw.de

60

The website 'lern-bw.de' represents the Landeszentrum für Ernährung Baden-Württemberg, a regional government-affiliated center focused on nutrition education and promoting sustainable, healthy community catering. It targets a broad audience including educators, catering professionals, parents, and seniors. The site offers educational materials, events, and information to support nutrition education across various life settings. Technically, the site uses a custom CMS with modern JavaScript libraries such as jQuery, Matomo for analytics, and Google Maps API. The site is mobile-optimized and accessible with good SEO practices. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, but lacks explicit security headers and published security policies. Privacy compliance is limited due to missing privacy and cookie policies. WHOIS data is minimal but domain appears legitimate for a government-related entity. Overall, the site is professional, trustworthy, and safe for general audiences.

Penzion a Bistro U Kapra is a small hospitality business based in Třeboň, Czech Republic, offering accommodation and a bistro specializing in fish and local cuisine. The website presents a clear business focus with detailed descriptions of rooms, bistro offerings, and contact information, targeting tourists and local visitors. The domain is well-established since 2005, supporting business credibility. Technically, the website uses modern web technologies including HTTPS, Google reCAPTCHA, and Google Maps integration, hosted on WEDOS infrastructure. However, it lacks explicit privacy and cookie policies, and security headers are not evident, indicating areas for compliance and security improvement. Overall, the site is functional, safe, and professionally presented but could enhance trust and compliance by adding missing policies and security best practices.

R

Referat 72 – Digitalisierungsstrategie

digital-laend.de

71

digital.LÄND is the official digitalization strategy platform of the Baden-Württemberg state government, providing comprehensive information and resources related to digital transformation initiatives. The website serves as a central communication hub targeting citizens and businesses within the region, positioning itself as a trusted government source for digital strategy. The platform is supported by modern technical infrastructure including WordPress CMS, enhanced security via Wordfence, and privacy compliance through Real Cookie Banner Pro and Matomo analytics. The site demonstrates a mature digital presence with excellent SEO, accessibility, and mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and active firewall protections. Privacy compliance is robust, featuring detailed cookie consent mechanisms and GDPR-aligned policies. Overall, the website reflects a professional, secure, and trustworthy government digital service.

T

The Adsmith

theadsmith.com

55

The Adsmith is a well-established full-service branding, advertising, design, and web creation firm based in Athens, Georgia, founded in 1983. The company targets businesses seeking comprehensive creative services to transform their brands and grow their market presence. Their website reflects a professional and consistent brand image, showcasing a portfolio of client projects and detailed team bios with social media links, indicating a mature market position as a regional creative agency. Technically, the website is built on WordPress with a modern tech stack including jQuery, Google Fonts, Font Awesome, and SEO tools like Yoast. Hosting appears to be via WP Engine, supporting good performance and mobile optimization. The site uses Google Analytics for tracking and Google reCAPTCHA for form security, demonstrating a reasonable level of digital maturity. From a security perspective, the site uses HTTPS and implements reCAPTCHA on forms, but lacks DNSSEC and security headers, which are recommended for enhanced protection. No privacy or cookie policies were found, indicating compliance gaps with GDPR and other privacy regulations. Contact information is clearly presented, enhancing business credibility. Overall, the website is professional and trustworthy with a good security baseline but would benefit from improved privacy compliance and enhanced security configurations to reduce risk and build greater user trust.

C

Colt Technology Services

colt.net

75

Colt Technology Services is a global digital infrastructure company specializing in delivering advanced network and cloud connectivity solutions to enterprise clients, particularly in telecommunications, capital markets, and technology sectors. The company positions itself as a leader in providing reliable, high-performance digital infrastructure with a focus on customer care and innovation. Their website reflects a mature digital presence with comprehensive service offerings including network services, cloud connectivity, and capital markets solutions. Technically, the website is built on WordPress with a modern tech stack incorporating advanced analytics, marketing tools, and user experience optimizations. The site is well-structured, mobile-optimized, and incorporates strong SEO practices. Security measures are robust, including HTTPS enforcement, security headers, CAPTCHA on forms, and clear incident response contacts. Privacy compliance is evident with GDPR-aligned policies and cookie consent mechanisms. The security posture is strong with no visible vulnerabilities or exposed sensitive data. The company maintains recognized certifications such as ISO 27001 and SOC 2, enhancing trustworthiness. Although WHOIS data is unavailable, the overall digital footprint and professional presentation support the legitimacy of the business. Strategic recommendations include enhancing vulnerability disclosure transparency and continuous monitoring of third-party scripts. Overall, Colt Technology Services demonstrates a high level of digital maturity, security awareness, and business credibility, making it a trustworthy and professional enterprise service provider.

Mitfahren-bb.de is a regional mobility platform serving the Böblingen district in Germany, facilitating carpooling and integration with public transport to reduce costs and environmental impact. The platform is free to use and targets commuters and regular travelers in the region. Technically, the site is built with modern web technologies including React and Google Maps API, hosted on terralink.de infrastructure. The website demonstrates good digital maturity with responsive design, clear navigation, and GDPR-compliant privacy and cookie policies. Security posture is solid with HTTPS enforced and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, professional, and aligned with its business purpose.

S

Seyfor

profiuctenka.cz

45

Profi Účtenka is a Czech Republic based software solution specializing in electronic sales record (EET) applications for mobile devices including Android, iOS, and Windows. The company, Seyfor, offers a trusted and widely used product with over 27,000 downloads, positioning itself as a reliable provider in the local market. Their business model combines software distribution with hardware sales through a partner network, targeting small to medium businesses requiring compliance with Czech EET regulations. The website is professionally designed using WordPress and Elementor, featuring clear navigation, mobile optimization, and integration with app stores for easy access to their applications. Privacy and cookie policies are implemented with GDPR compliance, and contact information is comprehensive, including phone, email, physical addresses, and a contact form.

T

TREFFPUNKT DEUTSCHLAND Reisemagazin Reiseführer

treffpunktdeutschland.de

55

Treffpunkt Deutschland operates as a German-language travel magazine and guide platform focusing on domestic tourism within Germany. The website offers extensive travel guides, regional news, event listings, and advertising opportunities targeting German travelers interested in exploring their homeland. The business model centers on content provision and advertising revenue within the travel media sector. Technically, the site is built on the Sitejet CMS platform, leveraging modern web technologies and hosted via inter-cdn.com, providing moderate performance and good mobile optimization. Security posture is moderate with HTTPS usage and some script blocking mechanisms, but lacks visible security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and consent mechanisms. Overall, the site is professional and content-rich but would benefit from enhanced security and privacy practices to improve trust and compliance.

The Town of Superior, Colorado's official municipal website serves as a comprehensive portal for residents, businesses, and visitors, offering extensive information on community events, government services, public safety, and recreational activities. The site positions itself as a trusted local government resource with a clear focus on transparency and community engagement. The presence of multiple language options and social media integration enhances accessibility and outreach. Technically, the website employs a modern technology stack including jQuery, Google Maps API, and the OpenCities CMS platform by Granicus, built on ASP.NET WebForms. The site demonstrates good mobile optimization, accessibility features, and moderate performance. Analytics and user experience tools such as Monsido and Google Tag Manager are utilized for monitoring and improvement. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some recommended security headers and a cookie consent mechanism, which are areas for improvement. The WHOIS data is incomplete, likely due to .gov domain policies, but the domain's legitimacy is supported by its official government status and consistent branding. Overall, the website is professional, trustworthy, and well-maintained, with minor gaps in privacy compliance and security best practices. Strategic enhancements in security headers and privacy mechanisms would further strengthen its posture.

C

Campercontact

campercontact.com

61

Campercontact is a well-established online platform specializing in providing camper locations and camping site listings primarily targeting camper travelers in Europe, especially the Netherlands. The website offers a comprehensive booking system, mobile applications for offline use, and curated camper routes, positioning itself as a leading service in the camper travel niche. Technically, the site leverages modern web technologies including Next.js and React, integrates with Google Maps and various analytics and marketing tools, and demonstrates good mobile optimization and SEO practices. Security-wise, the website enforces HTTPS, employs standard security headers, and uses a cookie consent mechanism, though it lacks visible privacy and security policy documentation. The absence of WHOIS registration data raises concerns about domain legitimacy and transparency, which should be addressed to enhance trust. Overall, Campercontact presents a professional and user-friendly digital presence with room for improvement in privacy compliance and business transparency.

R

Romantischer Rhein Tourismus GmbH

romantischer-rhein.de

68

Romantischer Rhein Tourismus GmbH operates a professional tourism promotion website focused on the Romantic Rhine region in Germany, targeting tourists and visitors interested in cultural and natural attractions. The website provides comprehensive information about regional offers, events, and accommodations, positioning itself as a key regional marketing organization. The technical infrastructure leverages modern web technologies including Google Maps API, Cookiebot for consent management, and Google Analytics for visitor tracking, indicating a mature digital presence. Security posture is strong with HTTPS enforced, appropriate security headers, and no visible vulnerabilities, although formal security policies and incident response contacts are not published. Overall, the website is trustworthy, compliant with GDPR, and well-optimized for user experience and mobile devices, making it a reliable source for regional tourism information.

S

SeasonCamper

seasoncamper.de

44

SeasonCamper is a specialized camper rental service operating in Germany, focusing on seasonal camper vans tailored for rental purposes at camping sites. The business collaborates with industry partners such as BVCD and Dethleffs to design campers optimized for rental. The website serves as a platform to find and rent campers, providing information about camper models and locations across Germany. The target audience includes camping enthusiasts and vacationers seeking convenient camper rentals. Technically, the website is built on WordPress using Elementor as the page builder and Yoast SEO for search engine optimization. It integrates Google Maps API for location services and uses Borlabs Cookie for cookie consent management. The site loads with moderate performance and is optimized for mobile devices. Analytics are implemented via Google Analytics with conditional IP anonymization. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers and published security policies. No vulnerability disclosures or incident response contacts are provided. Cookie consent mechanisms are in place, but privacy policy and terms of service pages are not detected in the analyzed content. Overall, the website presents a professional and trustworthy front for a small business in the transportation and hospitality sector. Strategic improvements in privacy disclosures, security headers, and incident response information would enhance compliance and security posture.

P

Puzzeluitje B.V.

puzzeluitje.nl

63

Puzzeluitje B.V. operates a niche e-commerce platform specializing in puzzle-based outings such as walking, cycling, and car puzzle tours primarily targeting families, friends, and groups in the Netherlands. The company offers a digital app and physical route options, positioning itself as a unique leisure activity provider with a growing market presence since its 2021 inception. The website is professionally designed using WordPress with WooCommerce and Elementor, providing a user-friendly experience with clear navigation and mobile optimization. The technical infrastructure includes modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and MailerLite, integrated with GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS, DNSSEC, and reCAPTCHA protections, though additional security headers could enhance defenses. Business legitimacy is supported by consistent WHOIS data and transparent contact information. Overall, the site presents a trustworthy and professional digital presence for a small hospitality business.

G

Glitnor Group

glitnor.com

55

Glitnor Group is a medium-sized technology company specializing in the iGaming sector, operating multiple B2C online casino brands and a B2B game studio. The company has a strong presence in Sweden and offices in Malta, Bulgaria, Spain, and Gibraltar. Their business model combines direct consumer-facing casino operations with game content development and affiliate marketing. The website is professionally designed, mobile-optimized, and provides clear information about their brands and services, targeting adult online gamblers and industry partners. Technically, the website is built on the Webflow CMS platform, utilizing modern web technologies such as Google Fonts, jQuery, and Google Maps API. The site performs moderately well with good mobile optimization but lacks advanced accessibility features and some SEO optimizations. Security-wise, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are critical for compliance and trust. The WHOIS data for the domain is missing, which raises concerns about domain legitimacy and registration transparency. This inconsistency affects the overall trust score despite the professional appearance and business presence. No WAF or blocking mechanisms were detected, and the site content is fully accessible. Overall, Glitnor Group's website reflects a credible and professional business in the iGaming industry but would benefit from enhanced security practices, transparent privacy policies, and WHOIS data clarity to improve trust and compliance.

B

Blizzard Entertainment

vvisions.com

79

Blizzard Entertainment is a globally recognized leader in the video game industry, known for developing and publishing iconic game franchises. The analyzed website serves as a professional career portal targeting job seekers interested in opportunities at Blizzard, particularly in Albany and other locations. The site is well-branded, professionally designed, and provides comprehensive job listings and application functionality. Technically, the site leverages modern recruitment platforms and integrates OAuth for social login, enhancing user experience and security. The security posture is strong with HTTPS enforcement and security headers, though explicit incident response contacts are not found. Privacy and cookie policies are present and GDPR compliant, reflecting good privacy practices. Overall, the site is trustworthy, professional, and aligned with Blizzard's enterprise stature.

MeetingReview.com is a well-established Dutch online platform founded in 2001 that specializes in helping users find and book meeting rooms, event locations, and related meeting services across the Netherlands. It leverages a large database of independent user reviews to provide transparency and trust for event planners and organizers. The platform also offers promotional and advertising opportunities for service providers in the meeting and event industry. Technically, the website uses a Bootstrap-based responsive design with common web technologies including jQuery, Google Analytics, Google Tag Manager, and a live chat widget, hosted on Argeweb infrastructure. The site is mobile optimized and SEO friendly with good navigation and content relevance. Security posture is adequate with HTTPS and domain transfer protections, but lacks DNSSEC and some security headers. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the website is professional, trustworthy, and serves a niche hospitality market effectively.

I

IVN Nederland

ivn.nl

48

IVN Nederland is a well-established Dutch non-profit organization dedicated to nature education and engagement for children and adults. The organization offers a wide range of services including nature activities, courses, volunteer programs, and a nature routes app. IVN holds recognized certifications such as ANBI and CBF, reinforcing its credibility and trustworthiness in the non-profit sector. The website is professionally designed with excellent content quality, clear navigation, and strong branding consistency, targeting a broad audience interested in nature and environmental education. Technically, the website is built on WordPress with modern technologies including jQuery, Google Maps API, and various marketing and analytics tools like Google Tag Manager, Hotjar, and Microsoft Clarity. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with comprehensive privacy and cookie policies and active consent mechanisms. Overall, IVN Nederland's digital presence reflects a mature and trustworthy organization with a clear mission and effective online engagement. The absence of critical security issues and the presence of multiple trust indicators support a high level of business credibility and user trust.

S

Stasher

stasher.com

70

Stasher is a UK-based company specializing in providing secure luggage storage services worldwide through a network of trusted shops and hotels. The platform offers travelers an affordable and convenient alternative to traditional station lockers, with 24/7 access and insured baggage storage. Their business model revolves around an online marketplace and mobile app that connects customers with local storage providers, positioning them as a leading player in the transportation and hospitality sectors. The company has a well-established online presence, supported by a domain registered since 2002, reflecting a mature and stable business. Technically, the website leverages modern web technologies including Next.js and React, with integration of Google Maps API for location services and Cloudflare for DNS and hosting. The site demonstrates good performance, mobile optimization, and SEO practices. Privacy and cookie policies are clearly presented with an active consent mechanism, indicating compliance with GDPR and related regulations. Analytics and marketing tools such as Google Analytics and Tapfiliate are used responsibly with moderate user tracking. From a security perspective, the website enforces HTTPS with strong SSL configuration and implements key security headers. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a dedicated security policy or incident response contact information suggests room for improvement in transparency and preparedness. Overall, the security posture is solid but could be enhanced by publishing vulnerability disclosure information. The overall risk assessment is low, with the website exhibiting high professionalism, trustworthiness, and compliance. Strategic recommendations include enhancing security transparency, adding incident response details, and considering a public vulnerability disclosure policy to further strengthen user trust and security culture.

S

SkillOnNet

skillonnet.com

65

SkillOnNet is a leading provider of white label and turnkey casino software solutions serving the global iGaming industry. The company offers a comprehensive suite of services including licensing, CRM, support, platform management, and game development, targeting casino operators and gaming businesses worldwide. Their market position is reinforced by multiple industry awards and regulatory licenses, underscoring their credibility and compliance in a highly regulated sector. Technically, the website is built on modern frameworks such as AngularJS, hosted on AWS infrastructure, and optimized for both desktop and mobile platforms with fast performance and good SEO practices. Security posture is strong with HTTPS enforcement and secure form handling, though improvements are recommended in cookie consent and security policy transparency. The absence of WHOIS registration data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional web presence and business indicators. Overall, SkillOnNet presents a mature, professional, and trustworthy digital footprint suitable for its industry niche.

M

Mead Johnson Nutrition Company

meadjohnson.com

60

Mead Johnson Nutrition Company operates as a healthcare-focused business specializing in pediatric nutrition products. The company is a subsidiary of Reckitt Benckiser Group plc since 2017, positioning it strongly within the consumer health market. The website serves as a corporate portal providing brand information, supplier resources, and links to related brands such as Enfamil. The target audience includes healthcare professionals, parents, and suppliers. The business model centers on manufacturing and distributing specialized nutrition products with a large enterprise scale and a history dating back to 1996. Technically, the website employs a modern technology stack including jQuery, Google Tag Manager, Google Analytics, AddThis social sharing, and Google Maps API. The CMS appears to be Drupal, inferred from URL and theme structure. The site demonstrates moderate performance and good mobile optimization but has basic accessibility features. SEO practices are adequate with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS and uses standard analytics and marketing scripts. However, no explicit security policy or incident response contacts are publicly available. Security headers are not explicitly detected in the provided data, and there is room for improvement in security best practices such as adding CSP and X-Frame-Options headers. No vulnerabilities or exposed sensitive data were observed. Overall, the website is professional, trustworthy, and compliant with privacy regulations, including GDPR, supported by a comprehensive privacy policy and cookie consent mechanism. The domain WHOIS data aligns well with the business claims, confirming legitimacy. No adult or questionable content is present, making the site safe for general audiences. The AI score reflects a strong overall quality with minor areas for improvement in security transparency and accessibility.

H

hemmer.ch SA

theodia.org

61

Theodia.org is a specialized online platform providing free tools for managing and displaying Roman Catholic mass schedules worldwide. The website is operated by hemmer.ch SA, a Swiss organization with a domain registration dating back to 2008, indicating a stable and established presence. The platform targets the Roman Catholic community and users interested in service schedules, offering a niche but valuable service. Technically, the website is built using modern Angular framework and integrates Google Maps API for location-based features, reflecting a moderate level of digital maturity. The design is professional and mobile-optimized, providing a good user experience. However, the site lacks critical privacy and cookie policies, contact information, and security policies, which are essential for compliance and user trust. Security posture is adequate with HTTPS enabled but could be improved by enabling DNSSEC and implementing security headers. Overall, the website is legitimate and functional but would benefit from enhanced privacy compliance and security best practices.

S

Stichting Belanghebbenden Pietermaai District e.o.

pietermaaidistrict.com

51

Pietermaai District is a hospitality and cultural promotion website focused on the Pietermaai neighborhood in Curaçao. It provides information about local hotels, bars, restaurants, shops, and events, targeting tourists and visitors interested in local culture and nightlife. The website positions itself as a niche promoter of the district's unique offerings, blending history with modern hospitality services. Technically, the site is built on WordPress with a modern plugin ecosystem including Yoast SEO, Slider Revolution, and membership management tools. It uses Google Analytics and Tag Manager for tracking and is hosted on a provider indicated by its nameservers. Security posture is moderate with HTTPS enabled but lacks explicit security headers and privacy compliance documentation. No WAF or blocking mechanisms were detected, and the domain is well-aged and registered with a reputable registrar. Overall, the site is professional and functional but would benefit from enhanced privacy and security policies.

I

IKOMMERCE S.r.l.

ikom.it

50

IKOMMERCE S.r.l. is an Italian digital and e-commerce agency specializing in Magento-based e-commerce platforms, web marketing, multilingual customer service, and systems integration. With over 20 years of experience, the company targets businesses seeking comprehensive digital commerce solutions. Their website reflects a professional and consistent brand image with clear service offerings and contact channels. Technically, the site is built on WordPress with modern libraries and frameworks, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS and consent mechanisms, though lacking explicit security policies and incident response details. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness.

M

Metodo S.r.l.

metodogroup.it

52

Metodo S.r.l. is a small Italian IT company based in La Spezia, specializing in IT assistance, maintenance, and custom software and website development. The company targets local businesses and organizations, offering a broad range of IT services including cybersecurity, GDPR compliance, cloud business solutions, and networking. Their market position is that of a regional IT service provider with a focus on tailored solutions. The website is professionally designed, mobile-optimized, and provides clear navigation and contact information. Technically, the site uses modern frameworks like Bootstrap and integrates Google Analytics and Tag Manager for tracking, with a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enabled and no visible vulnerabilities, though some security headers and DNSSEC are missing. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website reflects a credible and professional IT service provider with room for improvement in security policies and incident response transparency.

C

Curaçao Gardens

curacaogardens.com

56

Curaçao Gardens operates as a boutique hospitality provider offering urban vacation apartments and studios in Willemstad, Curaçao. The business targets tourists seeking a tropical retreat with hotel services in restored historical townhouses. The website is professionally designed on the Squarespace platform, featuring integrated booking links and social media presence. Technically, the site uses modern web technologies including Google Fonts, Google Maps API, and Plyr video player, hosted on Squarespace's CDN with HTTPS and HSTS enabled, indicating a solid security foundation. However, the absence of privacy and cookie policies, lack of explicit contact information, and missing WHOIS registration data reduce the overall trust and compliance posture. The site employs Google Analytics and Tag Manager for user tracking but lacks clear privacy compliance indicators. Overall, the website is functional and professional but would benefit from enhanced privacy disclosures and verified domain registration to improve credibility and compliance.

Do-muzea.cz is a Czech Republic-based online portal dedicated to providing comprehensive information about museums across the country. The website serves both museum visitors and museum professionals by offering a detailed directory of museums, visitor information, and services tailored to cultural institutions. The site is operated by NETservis s.r.o., as indicated by the author meta tag, and features a professional design with integrated Google Maps for location visualization. Technically, the website employs jQuery 3.2.1, Google Fonts, and Google Maps API, indicating a moderately modern tech stack. The site is mobile-optimized and offers a good user experience with clear navigation and relevant content. However, there is no detected CMS or hosting provider information. Performance is moderate, with no critical errors or broken elements observed. From a security perspective, the site uses HTTPS, which is a fundamental security measure. However, it lacks important security headers such as Content-Security-Policy and X-Frame-Options, which could enhance protection against common web attacks. No vulnerabilities or exposed sensitive data were detected. The absence of privacy and cookie policies, as well as contact information for incident response, indicates gaps in compliance and security transparency. Overall, the website is functional and trustworthy for its intended purpose but would benefit from improved privacy compliance and enhanced security practices. The lack of WHOIS data limits domain trust analysis, but the website content and HTTPS usage suggest legitimate operation. Strategic improvements in security headers, privacy policies, and contact transparency are recommended to strengthen the site's security posture and compliance.