Security Directory

A

Advokatfirma Haakstad & Co DA

haakstad.no

10

Advokatfirma Haakstad & Co DA is a modern law firm based in the Agder region of Norway, providing legal services to businesses, private individuals, and public authorities. Established in 2012, the firm positions itself as a practical and cost-effective legal solutions provider. Their website reflects a professional and consistent brand image, targeting a Norwegian-speaking audience with clear navigation and relevant content. The firm maintains multiple physical offices and active social media profiles, enhancing their market presence. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a mature digital infrastructure with good SEO and mobile optimization. The site uses HTTPS and modern JavaScript libraries, with moderate performance and basic accessibility features. Analytics are handled via Plausible Analytics, reflecting a privacy-conscious approach. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks some security headers and formal security policies, which could be improved. Privacy compliance is partially addressed with a privacy policy but lacks a cookie consent mechanism. No incident response or vulnerability disclosure information is provided, which are areas for enhancement. Overall, the website is trustworthy, professional, and well-maintained, with minor gaps in security and privacy compliance. Strategic improvements in security headers, cookie consent, and incident response transparency would strengthen their posture and client trust.

F

Flaggstangsfabrikken

flaggstangsfabrikken.no

10

Flaggstangsfabrikken is a Norwegian retail business specializing in the sale of flagpoles and flags at competitive prices. The company offers additional services including delivery and professional installation, supported by a 12-year warranty on their flagpoles. Their market positioning focuses on affordability and quality within the Norwegian market. The website is built on a WordPress WooCommerce platform, leveraging popular plugins such as Elementor for design and Woolentor for enhanced e-commerce features. Google Tag Manager is used for analytics and marketing, with GDPR consent mechanisms in place to restrict tracking in European regions. Security posture is solid with HTTPS and standard security headers implemented, though explicit privacy and terms of service policies are absent, which is a compliance gap. Overall, the site presents a professional and trustworthy e-commerce presence suitable for its target audience.

V

Volt Power Analytics

voltpoweranalytics.com

65

Volt Power Analytics is a specialized energy market analysis company focused on the Nordic and European power markets. Founded in 2022, it offers advanced forecasting tools and data services designed to support power market professionals, investors, and analysts in navigating the energy transition. Their product suite includes real-time market intelligence, long-term price forecasts, and tailored commodity databases, emphasizing renewable energy and green transition support. The company positions itself as an independent and trusted provider with a strong focus on customization and data transparency. Technically, the website is built on WordPress with Elementor and integrates modern SEO and analytics tools such as Yoast SEO, HubSpot, and Plausible Analytics. The site is well-optimized for mobile and accessibility, with good performance and clear navigation. Security practices include HTTPS, domain transfer protection, and cookie consent mechanisms, though DNSSEC is not enabled and some advanced security headers are missing. The security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the absence of a published security policy or incident response contact is a gap. Privacy compliance is strong with comprehensive privacy and cookie policies and GDPR-aligned consent mechanisms. Business credibility is high, supported by clear contact information, professional content, and trust signals such as client logos and LinkedIn presence. Overall, Volt Power Analytics presents a professional, secure, and privacy-conscious digital presence suitable for its target market. Strategic improvements in DNS security and published security policies would further enhance trust and resilience.

Sky Way Travel Center is a small local business operating a travel center in Western New Mexico, providing essential services such as gasoline, food (Subway), restrooms, and a gift shop featuring local Native American artisan products. The website is built on WordPress using the Astra theme and Beaver Builder plugin, reflecting a moderate level of digital maturity with good mobile optimization and SEO practices. The technical infrastructure is standard for small business websites, with no advanced analytics or tracking detected. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and does not provide cookie consent or privacy compliance mechanisms. Overall, the website is functional and trustworthy for its business purpose but could improve in security and privacy compliance.

Sky City Travel Center is a regional travel and hospitality business located in Western New Mexico, offering a range of services including fuel for trucking fleets, dining, shopping, and a casino with slot machines. The business targets travelers and fleet operators along Route 66 and Interstate 40, positioning itself as a premier travel center in the region. The website reflects this with clear service descriptions and contact information. Technically, the site is built on WordPress using modern plugins and themes, with Cloudflare providing DNS and CDN services. SEO is well implemented, and the site is mobile optimized. Security posture is adequate with HTTPS and domain transfer protection, but lacks some advanced security headers and published policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy with room for improvement in security and privacy practices.

Z

Zartbitter e.V.

zartbitter.de

64

Zartbitter e.V. is a German non-profit organization focused on counseling and prevention of sexual violence against children and youth. The organization provides direct counseling services, educational workshops, and training for parents and professionals. It is recognized nationally for its engaging materials and theater productions addressing sensitive topics such as digital violence and children's rights. The website reflects a mature, well-structured digital presence with clear branding and comprehensive content tailored to its target audience. Technically, the website is built on WordPress using Elementor and several specialized plugins for events, SEO, and cookie management. Hosting is provided by SchlundTech, a reputable German hosting provider. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine understanding. Privacy and cookie policies are implemented with consent mechanisms, reflecting good compliance with GDPR. Security posture is solid with HTTPS enforced and no obvious vulnerabilities or exposed sensitive data. However, some recommended security headers are not explicitly detected, and no formal security policy or incident response contact is published. The site does not appear to use extensive tracking or advertising, focusing instead on user privacy and minimal data collection. Overall, Zartbitter e.V. presents a trustworthy, professional online presence appropriate for a sensitive non-profit mission. Strategic improvements could include publishing a security policy, adding vulnerability disclosure information, and enhancing security headers to further strengthen trust and compliance.

D

Domain-Offensive

do.de

77

Domain-Offensive is a German-based domain registration and web hosting provider offering affordable, secure, and climate-neutral services including domain hosting, webspace, DNS, SSL, and email solutions. The company operates under Greenmark IT GmbH and targets individuals and businesses seeking reliable web project partners. The website demonstrates a mature digital infrastructure built on WordPress with Elementor and Yoast SEO, optimized for performance and mobile responsiveness. Security measures include HTTPS enforcement, Google reCAPTCHA integration, and a comprehensive cookie consent mechanism compliant with GDPR. While explicit security headers could be enhanced, the overall security posture is solid with no evident vulnerabilities. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

D

Deutsche Atlantische Gesellschaft e.V.

ata-dag.de

38

The Deutsche Atlantische Gesellschaft e.V. is a German non-profit organization dedicated to informing and engaging the public on German and European security policy, NATO objectives, and transatlantic relations. The organization operates through events, seminars, lectures, podcasts, and publications, targeting individuals and entities interested in security and defense topics. Their market position is that of an established, reputable non-profit within the government and policy sector in Germany. Technically, the website is built on WordPress, utilizing common libraries such as jQuery, Bootstrap, and Font Awesome, with SEO optimization via Yoast. Hosting appears to be managed through kasserver.com. The site is moderately performant, mobile-optimized, and includes analytics via Matomo, reflecting a reasonable level of digital maturity. From a security perspective, the site enforces HTTPS and uses CAPTCHA on contact forms, alongside a cookie consent mechanism. However, it lacks explicit security headers, a published security policy, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with no explicit privacy policy or terms of service pages found. Overall, the website presents a professional and trustworthy front for the organization, with good content quality and business credibility. Security and privacy practices could be enhanced to meet higher compliance standards and improve user trust.

H

Haus der Industrie

hausderindustrie.de

40

Haus der Industrie is a German-language website likely representing an industrial or business entity, though explicit business details are not present in the accessible content. The site uses WordPress with common plugins such as Bootstrap and Visual Composer, indicating a standard CMS-based infrastructure. The technical setup is moderate with basic mobile optimization and no advanced analytics or marketing tools detected. Security posture is basic, with HTTPS enabled but lacking security headers and visible security policies. No privacy or cookie policies were found, and no contact information is provided, limiting user trust and compliance. Overall, the site is accessible and functional but lacks comprehensive business and security information.

Craftverk Digital's website is currently under construction, displaying only a placeholder message with no substantive content or business details. The site uses WordPress with the Impreza theme and WPBakery page builder, hosted likely by WebSupport based on nameservers. Basic security features such as HTTPS and DNSSEC are enabled, but no privacy, cookie, or terms of service policies are present, nor is there any contact information or forms. The domain WHOIS data is suspicious due to a future creation date, which undermines trust and legitimacy. Overall, the website is in an early stage of development with minimal digital maturity and poor content quality.

C

Centrum pre filantropiu n.o.

darujme.sk

63

DARUJME.sk is a well-established Slovak online fundraising platform operated by Centrum pre filantropiu n.o., founded in 2011. It serves as a donation gateway and fundraising tool provider primarily targeting non-profit organizations and individual donors within Slovakia. The platform offers a comprehensive suite of services including secure payment processing, donor communication, administrative tools, and training resources. It holds a strong market position with over 1,000 registered organizations and nearly 40 million euros donated through its system. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content relevant to its audience.

K

KjG Berlin

kjg-berlin.de

56

KjG Berlin is a small non-profit Catholic youth organization based in Germany, focused on engaging young people in community activities, education, and events within the Catholic framework. The website serves as an informational and organizational platform for members and interested parties, providing updates, event information, and contact details primarily via email. The organization maintains a presence on social media platforms such as Instagram and Facebook to reach its target audience. Technically, the website is built on WordPress, utilizing standard web technologies such as PHP, JavaScript, and CSS. The site is served over HTTPS with a valid SSL certificate, ensuring secure communication. While the site demonstrates good mobile optimization and basic SEO practices, it lacks advanced security headers and cookie consent mechanisms, which are recommended for GDPR compliance and enhanced security. From a security perspective, the site shows a moderate security posture with HTTPS enabled but missing several security headers and no visible incident response or vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially met with a privacy policy present, but the absence of a cookie consent banner is a gap. Overall, KjG Berlin presents a trustworthy and professional online presence for a small non-profit organization. Strategic improvements in security headers, cookie consent, and incident response documentation would enhance compliance and security posture, supporting the organization's credibility and user trust.

L

Lobbe

lobbe.app

56

Lobbe operates a German-language website providing digital tools and services for waste management, including a personalized waste collection calendar, container ordering, and recycling location information. The company targets residents in German municipalities where it operates, positioning itself as a regional service provider with a medium-sized business profile. The website is built on WordPress with modern plugins and demonstrates good content quality, accessibility, and SEO optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and incident response details could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and serves its intended audience effectively.

L

Lobbe Containerdienst

containerdienst-lobbe.de

51

Lobbe Containerdienst is a German company specializing in container rental services for various waste types including construction debris and garden waste. The company offers an online platform for customers to order containers easily. The website is built on WordPress using Elementor and incorporates SEO best practices with Yoast SEO and structured data. The technical infrastructure is modern and supports good mobile optimization and accessibility. Security posture is adequate with HTTPS enabled and some privacy measures in place, but lacks explicit security policies and vulnerability disclosure mechanisms. Overall, the site is professional and trustworthy with room for improvement in privacy and security transparency.

R

REYTAN VODKA GmbH

reytan-vodka.com

50

REYTAN VODKA GmbH is a small premium vodka brand established in 2023, emphasizing Polish heritage and high-quality craftsmanship. The company operates an e-commerce enabled website built on WordPress with WooCommerce and Elementor, targeting adult consumers interested in premium alcoholic beverages. The website features age verification and GDPR-compliant cookie consent mechanisms, reflecting a mature approach to regulatory compliance. Technically, the site is hosted by Hetzner Online GmbH, uses HTTPS, and integrates Google Analytics for traffic insights. Security posture is solid but could be improved with additional HTTP security headers and published security policies. Overall, the site presents a professional and trustworthy brand image with clear contact information and social media presence.

H

Hanse Business Travel GmbH

hanse-bt.de

54

Hanse Business Travel GmbH is a Hamburg-based company specializing in corporate travel management services since 1995. The company offers a wide range of services including marine travel, business trips, group travel, limousine and transfer services, hotel bookings, car rentals, travel insurance, visa processing, private jet services, and travel tools. Their market position is that of a trusted, experienced travel service provider focused on personalized and professional customer service for business clients. Technically, the website is built on WordPress using the Oxygen Builder framework, enhanced with modern JavaScript libraries such as GSAP and AOS for animations, and optimized for performance with WP Rocket. The site is mobile-friendly, well-structured, and SEO-optimized, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. While explicit security headers are not visibly configured, no vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contact is noted as an area for improvement. Overall, the website presents a professional and trustworthy online presence with strong business credibility and compliance posture. Strategic recommendations include enhancing security headers, publishing security policies, and establishing vulnerability disclosure channels to further strengthen trust and security maturity.

A

Alpha Group

alphagroup.com

74

Alpha Group is a UK-based financial services company specializing in providing comprehensive financial solutions to corporates and institutions operating internationally. The company combines fintech innovation with consultancy expertise to deliver services such as FX risk management, currency management, interest rate hedging, and multi-bank connectivity. Listed on the FTSE 250 and backed by institutional investors, Alpha Group holds a strong market position with a global reach through multiple international offices. The website reflects a mature digital presence with professional design, clear navigation, and multilingual support. Technically, the website is built on WordPress with modern libraries and tools including Google Tag Manager and OneTrust for cookie consent, indicating a commitment to privacy compliance and user experience. The site is mobile optimized and SEO friendly, with comprehensive metadata and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS, implements key security headers, and provides regulatory and security information transparently. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS registration data is a concern that slightly impacts trustworthiness, though the overall security posture is strong. Overall, Alpha Group's website demonstrates a professional, secure, and compliant digital platform suitable for its target audience of corporate and institutional clients. Strategic recommendations include improving WHOIS transparency, enhancing incident response visibility, and maintaining up-to-date security practices.

V

Vereinigte Industrieverbände von Düren, Jülich und Euskirchen e.V.

vivdueren.de

10

The Vereinigte Industrieverbände von Düren, Jülich und Euskirchen e.V. is a well-established regional industrial association representing multiple manufacturing sectors including paper, metal, textile, and chemical industries. The organization provides a broad range of services such as labor law consultation, compliance management, social and tariff policy advocacy, and educational programs aimed at supporting its member companies. Their website reflects a professional and consistent brand presence with clear communication of their mission and services, targeting regional industrial businesses and stakeholders. Technically, the website is built on WordPress using modern plugins like Slider Revolution, WPBakery Page Builder, and Yoast SEO, hosted likely by NetCologne. The site is mobile optimized, SEO-friendly, and includes structured data for enhanced search engine understanding. Security measures include HTTPS enforcement and a cookie consent mechanism, with indications of Wordfence security plugin usage, though some security headers are missing. From a security perspective, the site maintains a good posture with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policies or incident response contacts, which could be improved. Privacy compliance is strong, with a comprehensive privacy policy and GDPR-compliant cookie consent. Overall, the website is trustworthy, professionally maintained, and serves its business purpose effectively. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

D

Die Arbeitgeber der Metall- und Elektroindustrie

standort-staerken.de

10

The website 'Standort stärken – Tarifrunde 2024' serves as an official communication and campaign platform for the employers of the metal and electrical industry in Germany. It provides timely news, videos, data, and event information related to the 2024 collective bargaining round. The site targets industry stakeholders and employers, positioning itself as a trusted source for campaign updates and industry insights. The business model focuses on information dissemination and stakeholder engagement within the manufacturing sector. Technically, the website is built on WordPress, utilizing common plugins such as Contact Form 7 and Google reCAPTCHA for form security. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features could be improved. Performance is moderate, with external widgets from Elfsight enhancing social media integration. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA to protect forms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service. Social media links and official branding contribute to business credibility. Overall, the website presents a professional and trustworthy front for its intended audience, with moderate technical maturity and a solid security baseline. Strategic improvements in security headers, privacy compliance, and incident response documentation would enhance its posture and trustworthiness.

T

Transportbeton-Fahrerschulung

btb-fahrerschulung.de

53

The website www.btb-fahrerschulung.de serves as a multilingual educational platform dedicated to driver training for transport concrete vehicles, operated under the auspices of the Bundesverband Transportbeton. It offers structured learning materials including videos, checklists, and quizzes aimed at improving driver knowledge and safety. The site targets transport concrete vehicle drivers primarily in Germany and surrounding regions, providing content in multiple languages to accommodate diverse users. Technically, the site is built on WordPress with WPML for multilingual support, hosted on Hetzner servers, and employs Matomo analytics for privacy-conscious user tracking. The design is professional and mobile-optimized, with clear navigation and relevant content. Security posture is adequate with HTTPS enabled, though security headers are not evident and no explicit security or incident response policies are published. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Overall, the site is trustworthy and well-positioned within its niche, though improvements in security and privacy transparency are recommended.

B

Bundesverband Transportbeton

betonwissen.de

54

BetonWissen is an educational and informational platform affiliated with the Bundesverband Transportbeton, serving the transport concrete industry in Germany. The website consolidates training and knowledge resources targeted at professionals in this niche sector. Technically, the site is built on WordPress and hosted by Hetzner, a reputable German hosting provider, indicating a stable and professional infrastructure. The website demonstrates good SEO practices and mobile optimization, although accessibility features are basic. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit security policies. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy page detected. Business credibility is strong due to clear affiliation with a recognized industry association, but contact information is not readily found in the provided content. Overall, the site is professional and trustworthy but could improve in privacy transparency and security best practices.

I

Internationaler Audiodienst (iad)

audiodienst.de

57

Internationaler Audiodienst (iad) is a specialized media service provider focused on producing radio contributions, podcasts, and media training primarily for evangelical church organizations and private radio stations in central Germany. The company offers a comprehensive service model including consulting, production, moderation, and publication of audio content. Their market position is niche and regionally focused, serving clients such as the Evangelische Kirche in Mitteldeutschland and private broadcasters in Thüringen and Sachsen-Anhalt. The website reflects a professional and consistent brand image with good content quality and clear navigation.

D

Domain-Offensive

domainoffensive.de

77

Domain-Offensive is a German-based domain registration and web hosting provider offering affordable, secure, and climate-neutral services including domain hosting, webspace, DNS, SSL certificates, and email solutions. The company operates under Greenmark IT GmbH and targets individuals and businesses seeking reliable web project support. The website is built on WordPress with modern plugins such as Elementor and Yoast SEO, optimized for performance and mobile responsiveness. Security measures include HTTPS enforcement, GDPR-compliant cookie consent, and Google reCAPTCHA integration for form protection. While no explicit security policy or incident response contacts are published, the overall security posture is strong with good SSL configuration and security headers. The domain registration data aligns well with the business claims, indicating legitimacy and transparency.

O

oikos-Institut

oikos-institut.de

43

The oikos-Institut is a small non-profit organization dedicated to supporting mission and ecumenical work within the Westphalian church region in Germany. The website provides information about their services, events, and educational materials aimed at church communities and related stakeholders. Technically, the site is built on WordPress with WooCommerce for e-commerce capabilities and uses Matomo for analytics, reflecting a moderate level of digital maturity. The site is well-designed, mobile-optimized, and offers a good user experience with clear navigation. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks visible security headers and published privacy or security policies. Overall, the domain registration is consistent with the organization's regional and non-profit nature, indicating legitimacy. Strategic improvements include publishing comprehensive privacy and security policies and enhancing security headers to strengthen compliance and trust.

S

Schwing Stetter

schwing.es

56

Schwing Stetter is a well-established manufacturing company specializing in concrete pumps, stationary pumps, concrete plants, recycling plants, and truck-mounted concrete pumps. With over 80 years of experience, the company targets professionals in the construction and concrete industry, offering a comprehensive range of equipment to optimize production and ecological recycling. The website reflects a medium-sized enterprise based in Spain, with consistent branding and professional content. Technically, the site is built on WordPress using modern plugins such as Elementor and Smart Slider 3, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers are missing and incident response information is absent. WHOIS data is not publicly accessible due to registry restrictions, which is typical for .es domains, slightly impacting trust but not indicating suspicious activity. Overall, the website is professional, secure, and compliant with privacy regulations, supporting the legitimacy of the business.

S

SCHWING Stetter Ostrava s.r.o.

schwing.cz

45

SCHWING Stetter Ostrava s.r.o. is a Czech Republic-based manufacturer specializing in concrete pumps, mixers, batching plants, and related construction equipment. The company offers production, sales, and servicing of these products, targeting construction companies and concrete industry professionals. Their market position is that of a reputable regional player with a medium-sized business footprint. The website reflects a professional business model with clear product categories and service offerings, including training and consulting. Technically, the website is built on WordPress using the Enfold theme and integrates modern technologies such as Google reCAPTCHA for form security and All in One SEO for search optimization. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and anti-bot measures on forms, though there is room for improvement in implementing security headers and publishing explicit security policies. The absence of WHOIS registration data is a concern for domain legitimacy but does not detract significantly from the business credibility demonstrated on the site. Overall, the site is safe, professional, and business-focused with minor compliance gaps in privacy policy presence.

M

Messe Sinsheim GmbH

messe-sinsheim.de

61

Messe Sinsheim GmbH is a medium-sized German company specializing in organizing technically oriented public exhibitions and model building fairs across Germany and Europe. As a wholly owned subsidiary of the Schall-Gruppe, it holds a strong market position in the manufacturing and model building event sector. The website reflects a professional digital presence built on WordPress, leveraging modern plugins and caching technologies to deliver a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking explicit security policies and incident response contacts. The domain registration is consistent with the business history and hosting provider, indicating legitimacy and trustworthiness.

S

Sky City Cultural Center

acomaskycity.org

56

Sky City Cultural Center & Haaku Museum is a small non-profit cultural institution dedicated to preserving and showcasing the heritage and art of the Acoma Pueblo community. The website provides visitors with information about tours, events, and educational resources, targeting tourists, art enthusiasts, and educational groups interested in Native American culture. The organization maintains a professional online presence with clear branding and social media engagement. Technically, the website is built on WordPress with modern plugins and SEO optimizations, hosted with Cloudflare DNS and secured with HTTPS. However, the absence of privacy and cookie policies indicates compliance gaps. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers. WHOIS data shows inconsistencies such as a future domain creation date, which may be a data error but warrants monitoring. Overall, the site is trustworthy and well-maintained but could improve compliance and security transparency.

D

Digiwheel

digiwheel.com

58

Digiwheel is a specialized manufacturer of casino gaming equipment, including gaming and promotional wheels, kiosks, and roulette games. The company targets casino operators and gaming industry professionals, positioning itself as a niche provider of quality gaming hardware. The website reflects a professional and consistent brand image with a focus on product presentation and promotional activities. The business is relatively established, with a domain age of nearly 9 years, indicating operational stability. Technically, the website is built on a modern WordPress platform using Elementor and Astra theme, hosted on AWS infrastructure. It employs several plugins for SEO, GDPR compliance, and user engagement, including Yoast SEO, Complianz GDPR, and Zoho Website Automation. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration and domain registration protections. However, DNSSEC is not enabled, and security headers are not explicitly detected, representing areas for improvement. No vulnerability disclosure or security policy pages are present, which could enhance trust and incident response readiness. Overall, Digiwheel's website is professional, secure, and compliant with privacy regulations, suitable for its business domain. Strategic improvements in security headers, DNSSEC, and explicit security policies would further strengthen its security posture and trustworthiness.

The website www.eisbein.com represents the Vereinigung Hamburger Schiffsmakler und Schiffsagenten e. V., promoting the traditional Eisbeinessen event held in Hamburg. This event serves as a key networking platform for maritime industry professionals, sponsors, and partners. The site provides detailed event information, partner acknowledgments, and historical context, targeting maritime stakeholders and event attendees. The business model revolves around event organization and sponsorship facilitation within the transportation sector. Technically, the site is built on WordPress using the Enfold theme, incorporating common plugins such as LayerSlider and Cookie Notice for enhanced user experience and compliance. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, though it lacks advanced security headers and an incident response contact. WHOIS data is missing, which slightly reduces trust but the professional site and partner ecosystem support legitimacy. Overall, the site is well-structured, trustworthy, and serves its niche audience effectively.

F

Frameworks AS

frameworks.no

59

Frameworks AS is a Norwegian web agency established in 2003, specializing in web design, development, SEO, and maintenance services primarily for businesses in the Agder region and across Norway. The company offers services including website and app development, site maintenance, and search engine optimization, leveraging platforms like WordPress and Umbraco. Their market position is that of a trusted local and national partner with a strong focus on performance, usability, and client satisfaction. Technically, the website is built on WordPress with Elementor and Yoast SEO, supported by modern JavaScript libraries and analytics tools like Plausible Analytics. The site demonstrates excellent performance, mobile optimization, and SEO practices. Security posture is strong with HTTPS and multiple security headers implemented, though explicit privacy and cookie policies are missing, representing a compliance gap. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

F

Feistmantl Cleaning Systems

feistmantl.com

53

Feistmantl Cleaning Systems is a well-established Austrian manufacturer specializing in cleaning systems for waste and recycling containers, with over 35 years of experience and more than 1300 installations across Europe. The company targets B2B clients in waste management, pharmaceutical, food, chemical industries, and municipal sectors. Their website is professionally designed, multilingual, and optimized for user experience and SEO. Technically, the site runs on WordPress with modern plugins for multilingual support and GDPR compliance, and uses Matomo for privacy-conscious analytics. Security posture is solid with HTTPS, domain locking, and cookie consent, though some advanced security headers and explicit security policies are absent. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and mature online presence.

T

tegosgroup

tegos-group.com

63

tegosgroup is a medium-sized German company founded in 2017 specializing in cloud platform software solutions for optimizing business processes in the circular economy, particularly focusing on waste management, disposal, and recycling sectors. The website presents a professional and consistent brand image with good content relevance and user experience. Technically, the site is built on WordPress using Gravity Forms and jQuery UI, hosted by IONOS SE, and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and no explicit security or privacy policies are found. Overall, the site is trustworthy but could improve privacy compliance and security transparency.

G

GEFAHRGUTJÄGER GmbH

gefahrgutjaeger.de

65

GEFAHRGUTJÄGER GmbH is a specialized consulting and legal services provider focused on hazardous goods law, hazardous substances, waste management, immission control, and occupational safety. The company targets businesses and professionals requiring expert advice and training in compliance with German and EU regulations. Their market position is that of a niche specialist with a strong focus on regulatory compliance and education. The website is professionally designed using WordPress with Elementor and Yoast SEO, indicating a mature digital presence. Integration of Google Analytics and Maps is managed with user consent, reflecting good privacy practices. Security posture is strong with HTTPS and security headers implemented, although no explicit security policy or incident response information is published. Overall, the website is trustworthy, well-maintained, and compliant with GDPR requirements.

O

okl & partner Rechtsanwälte PartG mbB

oklp.de

57

okl & partner Rechtsanwälte PartG mbB is a specialized law firm based in Germany, focusing on environmental and planning law with additional expertise in procurement, civil, and criminal law. The firm targets industrial clients, SMEs, and public sector entities, positioning itself as a market leader in its niche. The website reflects a professional service-oriented business model with a clear focus on legal advisory services. Technically, the website is built on WordPress using the Salient theme and several plugins including Yoast SEO and GDPR compliance tools. Hosting appears to be managed via GoDaddy, inferred from the domain's nameservers. The site demonstrates good mobile optimization and SEO practices but lacks visible privacy and cookie policies, which impacts its privacy compliance score. Security posture is moderate with no explicit security headers or incident response information found. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

P

PAULY Rechtsanwälte Köln

pauly-rechtsanwaelte-koeln.de

58

PAULY Rechtsanwälte Köln is a small law firm specializing in environmental and energy law based in Cologne, Germany. The website presents a professional appearance using WordPress with the Avada theme and includes SEO optimization via Rank Math PRO. The technical infrastructure includes Google Tag Manager for analytics and Borlabs Cookie for cookie consent management. However, the site lacks explicit privacy policy and terms of service pages, and no direct contact information such as emails or phone numbers were found in the provided content. Security posture is moderate with no detected security headers and unknown SSL configuration. WHOIS data is minimal with generic hosting name servers and no detailed registrant information, which slightly reduces trustworthiness. Overall, the website is functional and professionally designed but would benefit from enhanced transparency and security practices.

E

European Natural Forest School

naturalforest.eu

53

The European Natural Forest School is a specialized educational program dedicated to natural forestry and ecology, targeting advanced students and young professionals in forestry and conservation fields. It operates as a small-scale, donor-supported initiative with partnerships including The Natural Forest Academy and donors such as the Frankfurt Zoological Society and Dieter Mennekes Umweltstiftung. The program aims to provide expert knowledge and practical field experience in natural forest ecology, conservation, and management, with the next session planned for 2026. Technically, the website is built on WordPress using Elementor and the JupiterX theme, leveraging modern plugins and libraries such as Vue.js and jQuery. The site is moderately performant, mobile-optimized, and accessible at a basic level. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the website is professional, trustworthy, and aligned with its educational mission but would benefit from enhanced privacy and security practices.

W

Wildnis in Deutschland

wildnisindeutschland.de

58

Wildnis in Deutschland is a well-established non-profit initiative dedicated to creating and protecting wilderness areas in Germany. The website serves as an educational and advocacy platform, providing comprehensive information about wilderness, conservation efforts, and related funding programs. It targets environmentalists, policymakers, researchers, and the general public interested in nature preservation. The initiative is supported by a coalition of 22 conservation organizations, positioning it as a key player in the German environmental sector. Technically, the website is built on WordPress using the Enfold theme, enhanced with SEO and security plugins such as Yoast SEO and Contact Form 7 with reCAPTCHA. The hosting is managed via INWX, a reputable German registrar. The site demonstrates good mobile optimization, accessibility, and SEO practices, with structured data implemented for enhanced search engine understanding. From a security perspective, the site uses HTTPS with a strong SSL configuration and employs reCAPTCHA to protect forms from spam. While explicit security headers are not fully visible in the HTML, the overall posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies including consent mechanisms, aligning with GDPR requirements. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. It effectively communicates its mission and engages its audience professionally. Strategic recommendations include enhancing security headers, publishing incident response contacts, and considering a security.txt file to improve vulnerability disclosure transparency.

B

Bauer Martin Ferienhof

bauer-martin.de

55

Bauer Martin Ferienhof is a family-oriented hospitality business offering vacation stays on a farm at the Baltic Sea in Germany. The website presents a professional and well-structured digital presence, leveraging WordPress with Elementor and NitroPack for performance optimization. The business targets families seeking wellness and farm experiences, with key services including luxury wellness houses, children's activities, and horse riding. The site complies with GDPR through a comprehensive privacy and cookie policy and employs hCaptcha for form security. Security posture is strong with HTTPS and security headers, though formal security policies and incident response details are absent. Overall, the site is trustworthy and well-optimized, with moderate user tracking via Google Tag Manager. Recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance.

F

FAUN Group

faun.com

56

FAUN Group operates as a manufacturer specializing in waste collection vehicles and sweepers, serving a global market with a strong presence in Germany. The company offers a range of products including VARIOPRESS, ROTOPRESS, POWERPRESS, and CITY series vehicles, alongside specialized lifters and sweeping machines. Their business model focuses on manufacturing, sales, service, and training, supported by digital vehicle management solutions. The website reflects a professional and consistent brand image with good content quality and clear navigation, targeting municipalities and waste management companies. Technically, the website is built on WordPress with Elementor, integrating modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, TikTok Pixel, and LinkedIn Insight Tag. The site is mobile optimized and uses HTTPS, though some security headers are not explicitly detected. Cookie consent mechanisms are implemented, but privacy and terms of service documents are not clearly found, indicating room for compliance improvement. Security posture is generally good with HTTPS and no visible vulnerabilities, but the absence of WHOIS data and lack of explicit security policies or incident response contacts reduce trust slightly. The extensive use of tracking pixels suggests moderate to extensive user tracking, which should be balanced with stronger privacy disclosures. Overall, the website is professional and functional, but improvements in transparency, privacy policy publication, and security header implementation are recommended to enhance trust and compliance.

RECYCLING magazin is a German media publication specializing in news, analysis, and information related to the recycling and circular economy sectors. The website serves professionals and stakeholders interested in sustainability and environmental topics, offering industry news, event information, advertorials, and newsletters. It holds a solid market position as a niche media outlet in Germany. Technically, the site is built on WordPress using Elementor and Yoast SEO, with integrations for Google Tag Manager and Borlabs Cookie for privacy compliance. The site is well-optimized for SEO and mobile devices, with moderate performance and basic accessibility features. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

L

Luducrafts, s.r.o.

luducrafts.com

47

Luducrafts, s.r.o. is a Slovakia-based gamification agency founded in 2014, specializing in helping companies achieve their goals through playful and engaging gamification solutions. Their services include consulting, workshops, and custom gamified solution design, targeting businesses seeking to improve employee engagement, onboarding, training, and change management. The company maintains a professional web presence with a portfolio of case studies and reputable clients, positioning itself as a niche player in the gamification technology sector. Technically, the website is built on WordPress CMS with common plugins such as Yoast SEO, Contact Form 7, and Slick Carousel. The site is hosted likely by Websupport.sk, uses HTTPS with good SSL configuration, and includes a cookie consent banner indicating privacy awareness. However, DNSSEC is not enabled, and some security headers are missing. Google Analytics is present via a plugin but not configured, resulting in minimal user tracking. From a security perspective, the site demonstrates basic good practices such as HTTPS and cookie consent but lacks published security policies, incident response contacts, and advanced DNS security features. No WAF or blocking mechanisms are detected, and no vulnerabilities or malicious content were found. The domain registration data is consistent with the business information, supporting legitimacy. Overall, the website scores well in business credibility and content quality but has room for improvement in privacy compliance and security posture. Strategic recommendations include publishing privacy and terms of service policies, enabling DNSSEC, adding security headers, and properly configuring analytics to enhance compliance and security.

U

URID

urid.de

44

URID is a small German-based internet services and web design studio established in 2008. The company offers a range of services focused on creating and improving internet presence for clients, primarily targeting small and medium businesses or individuals. Their market position is that of a niche provider with personalized service, supported by a portfolio of projects and customer testimonials. Technically, the website is built on WordPress with a modern but moderate performance infrastructure hosted by netcup. The site is mobile optimized and SEO friendly, though accessibility features are basic. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. Overall, the website is professional and trustworthy with no signs of malicious content or vulnerabilities.

C

CREE GmbH

creebuildings.com

51

CREE GmbH operates as an international construction collective specializing in regenerative building solutions. Their website presents a professional image with a clear focus on sustainable construction methodologies and a global network of partners. The company targets construction professionals and clients interested in sustainable building practices. The business model revolves around providing proven systems and methodologies to facilitate regenerative construction projects internationally. Technically, the website is built on WordPress using Elementor and Astra theme, supported by modern tools such as Google Tag Manager, HubSpot, and CookieHub for analytics and privacy compliance. The site is well-optimized for performance and mobile devices, with good SEO practices and structured data enhancing search visibility. Security-wise, the site benefits from HTTPS encryption and Cloudflare protection, with a comprehensive cookie consent mechanism categorizing cookies by purpose. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent, which could be improved to enhance trust and compliance. The WHOIS data for the domain is missing, indicating either a recent registration or privacy protection, which slightly reduces the domain trustworthiness despite the professional website content. Overall, the site is secure, professional, and compliant with privacy regulations, but could benefit from enhanced transparency in security and legal policies.

S

SYNER, s.r.o.

posunoutsedal.cz

54

SYNER, s.r.o. is a well-established construction engineering company based in the Czech Republic with over 33 years of market presence. The website 'Posunout se dál' serves as a recruitment campaign platform highlighting the company's stability, certifications, and attractive employee benefits. The company targets professionals and students in the construction and engineering sectors, offering various job positions and emphasizing a family-like corporate culture. Technically, the website is built on WordPress with modern technologies such as Contact Form 7, Google Analytics, and reCAPTCHA integration, ensuring a secure and user-friendly experience. Security posture is solid with HTTPS enforcement, partial security headers, and GDPR-compliant privacy and cookie policies. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns with the company's profile, although the domain is relatively new, likely dedicated to recruitment efforts. Overall, the website reflects a professional and trustworthy digital presence supporting SYNER's business objectives.

N

NaZemi

pracebudoucnosti.cz

42

The website 'Práce (bez) budoucnosti' is a Czech non-profit educational platform operated by the organization NaZemi. It focuses on the societal challenges and transformations related to the future of work, particularly in the context of automation, digitalization, and robotization. The site offers educational content, exhibitions, and workshops aimed at raising awareness about labor market changes and technological impacts. The target audience is the general public interested in these topics, with a clear focus on Czech society. Technically, the website is built on WordPress using the Divi theme and standard plugins such as Contact Form 7. It integrates Google Tag Manager and Matomo for analytics and tracking. The site is hosted under a Czech registrar and uses HTTPS with a good SSL configuration. Mobile optimization and SEO practices are good, though accessibility is basic. No advanced security headers were detected, and privacy and cookie policies are not present, which is a compliance gap. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, but lacks explicit security headers like CSP or HSTS. There is no visible vulnerability disclosure or incident response information. The domain registration data is consistent with the website's claims and organization, indicating legitimacy. No WAF or blocking mechanisms are detected, and the content is safe for general audiences. Overall, the website is professionally presented with good content quality and business credibility. However, it should improve privacy compliance by adding privacy and cookie policies and enhance security posture by implementing security headers and formal vulnerability disclosure mechanisms.

T

The Berlin Center for Intellectual Diaspora

intellectualdiaspora.org

50

The Berlin Center for Intellectual Diaspora operates as a small non-profit public forum based in Germany, focusing on Jewish-Catholic inspired discussions around contemporary politics, religion, society, and culture. The website serves as a platform for debates and encounters, targeting a general audience interested in intellectual and cultural discourse. The business model is centered on providing a niche cultural and religious discussion space without commercial intent. Technically, the website is built on WordPress using the Kadence theme and several plugins including Rank Math SEO and TranslatePress for multilingual support. The infrastructure is modern and moderately optimized for performance and mobile responsiveness. Hosting is associated with IONOS SE, a reputable registrar and hosting provider. SEO practices are good, but accessibility features are basic. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, DNSSEC is not enabled, and no security headers were detected in the provided content. There is no visible privacy policy, cookie consent mechanism, or incident response information, which are gaps in compliance and security posture. No vulnerabilities or suspicious patterns were identified. Overall, the website presents a moderate risk profile with good technical foundations but lacks important privacy and security compliance elements. Strategic improvements in policy publication, security headers, and DNS security would enhance trust and compliance.

S

SANCTA MARIA Schule der hl. Hedwig gGmbH

sancta-maria-schule.de

53

SANCTA MARIA Schule der hl. Hedwig gGmbH is a specialized educational institution in Berlin, Germany, focusing on students with special needs in learning and intellectual development. The school operates under the Catholic Hedwigschwestern organization and collaborates with related pedagogical and social service partners. The website reflects a well-maintained digital presence using WordPress with Elementor and Astra theme, providing clear information about the school, its programs, and contact options. Privacy and security measures such as GDPR-compliant consent and Google reCAPTCHA are implemented, indicating awareness of data protection requirements. However, explicit security policies and incident response contacts are not present, which could be improved. Overall, the site is professional, trustworthy, and serves its target audience effectively.

C

Canisius-Kolleg

canisius.de

53

Canisius-Kolleg is a well-established Jesuit educational institution located in Berlin, offering Gymnasium education from grade 5 and an integrated secondary school from grade 9. The school emphasizes a Christian-humanist educational philosophy, fostering comprehensive development and responsibility among young people. It serves a diverse student body with over 900 students from 60 nationalities. The website reflects a mature digital presence built on WordPress with modern plugins and a responsive design, providing clear navigation and rich content. Privacy and cookie policies are comprehensive and GDPR compliant, with an active consent mechanism. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site projects professionalism, trustworthiness, and a strong educational brand in the Berlin region.

W

Weber Betonwerk

weber-betonwerk.de

54

Weber Betonwerk is a German-based manufacturer specializing in high-quality concrete prefabricated and semi-finished elements for the construction industry. The company emphasizes precision, in-house formwork construction, and just-in-time delivery supported by a modern fleet and digital customer portal. Their website reflects a mature digital presence built on WordPress with professional design and GDPR-compliant privacy and cookie policies. The technical infrastructure includes modern plugins and Cloudflare DNS, ensuring good performance and security. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is trustworthy and well-positioned to serve its target audience of construction professionals.