Security Directory

L

LA’BIO!®

labio.de

46

LA’BIO!® is a small German-based organic gardening and retail company specializing in purely organic herbs and vegetables grown without artificial fertilizers or pesticides. The company targets environmentally conscious consumers interested in organic gardening and sustainable produce. The website is built on WordPress with modern plugins for SEO, social media integration, and user engagement. It features a clear business model focused on retail and online sales, supported by a partner online shop and environmental initiatives. The site is well-branded, consistent, and professionally designed with good navigation and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response information. WHOIS data aligns well with the website content, indicating a legitimate and consistent registration history. Overall, the site presents a trustworthy and professional online presence for its niche market.

2

Inklusion am Arbeitsplatz: Vielfalt fördern, Barrieren abbauen

27prozentvonuns.de

58

The website 27prozentvonuns.de is a German-language informational blog focused on promoting workplace inclusion, diversity, and barrier-free communication. It provides educational content, guides, and strategies aimed at professionals and organizations interested in fostering inclusive work environments. The site is built on WordPress, leveraging common plugins such as Yoast SEO for optimization and uses Cloudflare for DNS and likely CDN services. The technical infrastructure is modern and supports mobile responsiveness with good SEO practices. Security posture is adequate with HTTPS enabled and Cloudflare DNS, but lacks advanced security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or terms of service page. Contact is available via a contact form, but no direct emails or phone numbers are published. Overall, the site is safe, professional, and trustworthy for its niche audience.

T

TECNOLUMEN GmbH & Co.KG

tecnolumen.com

48

TECNOLUMEN GmbH & Co.KG is a medium-sized German company specializing in the manufacture and retail of original Bauhaus lamps, design classics, and related lighting products. The company emphasizes high-quality craftsmanship and sustainability, targeting retailers, design enthusiasts, and collectors. Their market position is that of a niche leader in Bauhaus and classic design lighting. The website is built on WordPress with modern SEO and analytics tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

N

National EMS Information System Technical Assistance Center (NEMSIS TAC)

nemsis.org

55

NEMSIS.org is the official website for the National EMS Information System Technical Assistance Center, a key organization providing standardized emergency medical services data collection and reporting across the United States. The site serves multiple EMS stakeholders including state data managers, EMS agencies, researchers, software developers, and educators by offering data standards, public datasets, technical resources, and training opportunities. The organization is well-established with a domain age dating back to 2002, reflecting its longstanding role in the EMS data ecosystem. Technically, the website is built on WordPress with a modern tech stack including jQuery, Owl Carousel, and ScrollMagic, supported by Google Fonts and Google Analytics for performance and analytics. Hosting and domain registration are managed via Amazon Registrar, Inc., indicating reliable infrastructure. The site is mobile optimized and SEO friendly, though accessibility features are basic. Performance is moderate with good design and navigation. From a security perspective, the site enforces HTTPS and has domain status protections to prevent unauthorized changes. However, DNSSEC is not enabled, and there is a lack of explicit security policies, incident response information, and vulnerability disclosure mechanisms. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, NEMSIS.org is a trustworthy and professional resource for EMS data standards and services with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen user trust and regulatory compliance.

A

ACdP | Asociación Católica de Propagandistas

acdp.es

69

The Asociación Católica de Propagandistas (ACdP) is a Spanish non-profit organization dedicated to Catholic propagation and community engagement. The website serves as a digital platform to inform visitors about the association's mission and to facilitate donations. It targets the Spanish-speaking Catholic community and supporters. The organization maintains a moderate-sized online presence with active social media channels and a donation system integrated via GiveWP. Technically, the website is built on WordPress 6.7.1, leveraging popular plugins such as Yoast SEO for search optimization and Cookiebot for cookie consent management, indicating a reasonable level of digital maturity. The site uses Google Analytics and Google Tag Manager for visitor tracking and marketing purposes. The site is mobile-optimized and demonstrates good SEO practices, although accessibility features could be improved. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms, aligning with GDPR requirements. However, the absence of a publicly accessible privacy policy, terms of service, and security policy pages represents gaps in compliance and transparency. No critical vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website presents a trustworthy and professional front for the ACdP organization, but it would benefit from enhanced privacy and security disclosures to improve compliance and user trust. Strategic recommendations include publishing comprehensive privacy and terms policies, adding incident response contacts, and improving accessibility standards.

L

Lessebo Paper

lessebopaper.com

62

Lessebo Paper is a premium paper manufacturer based in Sweden, emphasizing environmentally friendly and sustainable production methods. The company has a long heritage dating back to 1693, positioning itself as a leader in climate-friendly paper products. Their website reflects a professional and consistent brand image, targeting businesses and consumers interested in high-quality, sustainable paper solutions. The business model focuses on manufacturing and selling premium paper with a strong environmental ethos. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies such as Google Tag Manager and reCAPTCHA for analytics and security. Hosting is provided by Loopia, a known provider. The site performs moderately well with good mobile optimization and basic accessibility features. SEO is supported by the Yoast SEO plugin, enhancing search visibility. From a security perspective, the site uses HTTPS with a good SSL configuration and employs reCAPTCHA to mitigate automated abuse. However, it lacks several security headers and does not publish a security policy or incident response contacts. No vulnerability disclosure or security.txt file is present, which are areas for improvement. Privacy compliance is limited, with no visible privacy or cookie policies, which could pose regulatory risks. Overall, the website is trustworthy and professional but would benefit from enhanced privacy and security disclosures to improve compliance and user trust. Strategic recommendations include implementing privacy and cookie policies, adding security headers, enabling DNSSEC, and publishing vulnerability disclosure information.

C

Citypaketet

citypaketet.se

53

Citypaketet is a collaborative advertising platform formed by three of Sweden's largest morning newspapers: Dagens Nyheter, Göteborgs-Posten, and Sydsvenskan. Established in 1994, it targets urban audiences in Sweden's three largest cities by offering combined media advertising solutions across print and digital channels. The website presents a professional image with clear business information and a focus on delivering impactful advertising campaigns. Technically, the site is built on WordPress using the Avada theme and several plugins, including Yoast SEO and Download Manager, indicating a modern and maintainable infrastructure. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, but lacks advanced security headers and formal privacy or cookie policies. Overall, the site is trustworthy and well-positioned in the media sector, though improvements in privacy compliance and security best practices are recommended.

I

Immobilienverband Deutschland IVD

ivd.net

62

The Immobilienverband Deutschland (IVD) is a well-established real estate association in Germany, founded in 2000, serving over 6,200 members including brokers, property managers, and experts. The website acts as a professional portal offering political representation, legal advice, networking opportunities, exclusive information, contract templates, and continuing education. It holds a strong market position as a national association with multiple regional sub-associations. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, WPBakery, and Slider Revolution, indicating a mature digital infrastructure. The site is mobile-optimized and SEO-friendly, though accessibility could be improved. Security posture is good with HTTPS and CAPTCHA protections, but lacks DNSSEC and explicit security headers. Privacy compliance is partial, with cookie consent implemented but no visible privacy or terms pages in the provided content. Overall, the domain registration is consistent and trustworthy, supporting the legitimacy of the business.

M

Maskrosbarn

maskrosbarn.org

46

Maskrosbarn is a Swedish non-profit organization dedicated to supporting children and youth aged 13-19 who have parents suffering from mental illness, addiction, or who expose them to violence. The organization offers a range of services including chat support, educational materials, activities, and advocacy efforts. It operates regionally in Stockholm, Göteborg, Malmö, and provides nationwide support. The website is well-structured, professionally designed, and targets both youth and adults interested in supporting them. The organization holds recognized certifications such as 90-konto and Tryggt Givande, enhancing its trustworthiness. Technically, the website is built on WordPress with modern technologies including React and jQuery. It uses Yoast SEO for optimization and Cookiebot for cookie consent management. Hosting is provided via Loopiagroup nameservers. The site is mobile-optimized and performs moderately well. Analytics and marketing tools include Google Tag Manager, Snapchat Pixel, and LinkedIn Insight Tag, with moderate user tracking and good privacy compliance. From a security perspective, the site enforces HTTPS with an excellent SSL configuration but lacks DNSSEC and security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. However, there is no visible incident response or vulnerability disclosure information. Overall, the website presents a low-risk profile with a strong business credibility and good technical implementation. Recommendations include enabling DNSSEC, adding security headers, publishing incident response contacts, and providing a terms of service page to further enhance trust and security posture.

Algarve 2020 is a travel-focused website providing content about the Algarve region in Portugal and other travel destinations. The site offers travel articles, guides, and tourism information targeting travel enthusiasts and tourists interested in this region. The business model is content publishing through a WordPress platform, with a niche focus on travel and tourism. The website demonstrates good content quality and consistent branding but lacks formal business contact information and privacy-related policies. Technically, the site is built on WordPress using the Blocksy theme and Yoast SEO plugin, with lazy loading for images to improve performance. The site is mobile optimized and uses HTTPS with good SSL configuration. However, it lacks advanced security headers and formal privacy and cookie policies, which are important for compliance and trust. From a security perspective, the site has a solid foundation with HTTPS and no visible vulnerabilities or exposed sensitive data. The absence of security policies, incident response contacts, and vulnerability disclosure mechanisms indicates room for improvement in security maturity. No WAF or blocking mechanisms were detected, and the site is fully accessible. Overall, the website is a legitimate travel content platform with moderate technical and security posture. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and compliance.

T

TECNOLUMEN GmbH & Co.KG

tecnolumen.de

44

TECNOLUMEN GmbH & Co.KG is a German company specializing in the manufacture and retail of Bauhaus and design classic lighting, fittings, and design objects. The company targets design enthusiasts, retailers, and businesses with a focus on high-quality, timeless design products. Their market position is that of a niche leader in Bauhaus lighting and design classics, supported by a dealer network and an online shop. The website reflects a mature digital presence with WordPress CMS, SEO optimization via Yoast, and privacy-conscious analytics using Matomo. The technical infrastructure is solid, hosted via kunde24.de, and includes modern web technologies such as jQuery and Bootstrap. Security posture is good with HTTPS enforced and secure data collection forms, though some security headers and explicit security policies are missing. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-structured, supporting the company’s business credibility and customer engagement.

A

Aragón Investiga

aragoninvestiga.es

53

Aragón Investiga is a regional government initiative focused on promoting research, development, and innovation (R&D+i) through public funding instruments in the Aragón region of Spain. The website serves as an informational platform to showcase funding opportunities and support mechanisms for research activities. It targets researchers, public institutions, and innovation stakeholders within the region. The business model is primarily informational and promotional, aligned with public sector objectives to foster innovation. Technically, the website is built on WordPress with SEO optimization via Yoast and uses Google Analytics for visitor tracking. The site is mobile-optimized and presents a professional design with consistent branding. Performance is moderate, and accessibility features are basic but adequate for the target audience. From a security perspective, the site enforces HTTPS and includes an opt-out mechanism for Google Analytics tracking. However, it lacks visible security headers and explicit security or incident response policies. No sensitive data exposure or vulnerabilities were detected in the HTML content. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages found. Overall, the website appears legitimate and trustworthy as a government information portal. The lack of WHOIS data is due to Red.es restrictions common for .es domains, and the domain age aligns with the website's active content since 2021. Strategic recommendations include enhancing privacy disclosures, implementing security headers, and providing clear contact information for security and general inquiries.

F

Freemius

freemius.com

67

Freemius is a technology company providing an all-in-one SaaS platform that simplifies software sales by managing payments, subscriptions, and taxes globally. The company positions itself as a merchant of record for software businesses, enabling developers to focus on product innovation while handling complex sales operations. The website is professionally designed, leveraging WordPress with Elementor and Yoast SEO, indicating a mature digital presence. The platform targets software developers and businesses seeking streamlined monetization solutions. Technically, the site uses modern web technologies and is hosted with Cloudflare as registrar and DNS provider, ensuring reliable infrastructure. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and explicit security headers. Privacy compliance is limited as no clear privacy or cookie policies are found in the analyzed content. Overall, the website is trustworthy and professional but could improve transparency and security practices.

O

Omnisend

omnisnippet1.com

76

Omnisend operates as a specialized ecommerce-focused email and SMS marketing automation platform designed to empower ecommerce brands to increase revenue efficiently. The company offers a comprehensive suite of marketing tools including email campaigns, SMS, web push notifications, AI-driven personalization, and seamless integrations with major ecommerce platforms such as Shopify, WooCommerce, and BigCommerce. The website reflects a mature digital presence with professional branding, clear messaging, and extensive content tailored to ecommerce marketers. Technically, the website is built on WordPress with modern front-end technologies including Swiper.js for sliders, Wistia for video hosting, and Cookiebot for GDPR-compliant cookie consent management. The site is well-optimized for SEO and mobile responsiveness, leveraging Google Tag Manager and Visual Website Optimizer for analytics and A/B testing. Security best practices such as HTTPS and cookie consent are implemented, though some security headers could be improved. From a security perspective, the site demonstrates a solid posture with no visible vulnerabilities or exposed sensitive data. However, the absence of a public security policy or incident response information and lack of a vulnerability disclosure program represent areas for enhancement. The WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trustworthiness from a domain registration perspective but does not detract significantly given the professional web presence. Overall, Omnisend presents a credible and professional ecommerce marketing platform with strong technical and content quality. Strategic improvements in security transparency and WHOIS data availability could further enhance trust and compliance.

B

Bidtellect

bidtellect.com

62

Bidtellect, now part of Simpli.fi, operates as a leading advertising success platform specializing in programmatic advertising solutions and workflow software. The company serves over 2,000 media teams, agencies, and brands, offering a comprehensive omnichannel suite including contextual, native, CTV, mobile, and display advertising. The platform executes a high volume of campaigns monthly, demonstrating significant market presence and operational scale. Technically, the website is built on WordPress using the Divi theme, with modern SEO and GDPR compliance plugins, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enabled and domain transfer protections, though improvements such as DNSSEC and security headers are recommended. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the website presents a professional, trustworthy, and business-focused digital presence with no critical security or content safety issues detected.

T

The European Quality Assurance Register for Higher Education (EQAR)

eqar.eu

57

The European Quality Assurance Register for Higher Education (EQAR) operates as a non-profit organization providing a trusted register of quality assurance agencies within the European Higher Education Area. The website serves as a comprehensive resource for higher education institutions, governmental bodies, and stakeholders seeking transparency and reliable information on quality assurance processes. It maintains a strong market position as an authoritative source in European higher education quality assurance. Technically, the website is built on WordPress with modern SEO and analytics tools such as Yoast SEO and Matomo, ensuring good performance, mobile optimization, and privacy-conscious data collection. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. The domain WHOIS data is privacy protected by EURid, which is typical and justified for this type of organization. Overall, the website is professional, trustworthy, and well-maintained, with no critical security or compliance issues detected.

S

SK ID Solutions

smart-id.com

73

Smart-ID, operated by SK ID Solutions, is a leading digital identity and authentication service provider primarily serving the Baltic region with expanding presence in Belgium, India, and Iceland. The company offers secure, multi-device authentication and qualified electronic signature services compliant with eIDAS and GDPR standards. The website demonstrates a mature digital infrastructure built on WordPress with modern plugins and SEO optimizations, providing a professional user experience with multilingual support. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly documented. The absence of WHOIS domain registration data is a notable anomaly that requires further investigation to confirm domain legitimacy. Overall, the business is well-positioned in the digital identity market with strong trust indicators and client testimonials.

A

Aesthetica

aestheticaedizioni.it

52

Aesthetica Edizioni is a specialized Italian cultural book publisher focusing on aesthetics and philosophy. The website serves as an e-commerce platform offering a curated catalog of books with detailed descriptions and pricing. The business is positioned as a niche player in the cultural publishing sector, targeting Italian-speaking readers interested in academic and philosophical literature. Technically, the site is built on WordPress with WooCommerce and uses common plugins like Yoast SEO and Swift Framework. While the site is mobile optimized and has good SEO practices, it runs outdated versions of WordPress and WooCommerce, which pose potential security risks. The security posture is moderate with HTTPS enabled but lacks advanced security headers and up-to-date software. Privacy and cookie policies are present and GDPR compliant, but no direct contact information or security incident response details are found. Overall, the website is professional and trustworthy but would benefit from technical updates and enhanced security measures.

Mimebù is an Italian publishing company specializing in children's and educational books, offering a diverse catalog including illustrated albums, narrative series, and interactive ebooks. The website serves as an e-commerce platform targeting children, educators, parents, and book retailers, positioning itself as a niche player in the Italian educational publishing market. The company leverages WordPress and WooCommerce for its digital presence, with additional plugins for SEO and downloads. While the site is well-structured and visually consistent, it lacks visible privacy and terms of service policies, which are important for compliance and trust. The cookie consent mechanism is implemented, indicating some attention to privacy regulations. Technically, the site uses an outdated WordPress and WooCommerce version, which poses security risks and should be updated promptly. Security headers are not evident, and no advanced analytics or tracking services are detected, suggesting minimal user tracking. Overall, the site is functional and professional but would benefit from security and compliance improvements.

R

Romandie Formation

romandieformation.ch

48

Romandie Formation is a leading private education center in French-speaking Switzerland, specializing in higher and continuing education for professionals and companies. It offers a broad catalog of certified courses in finance, human resources, management, and interpersonal skills, targeting adult learners and corporate clients. The organization is part of the Centre Patronal group, enhancing its market credibility and reach. The website is well-designed, mobile-optimized, and rich in relevant content, reflecting a mature digital presence. Technically, it leverages WordPress with modern plugins and tracking tools, ensuring good SEO and user experience. Security posture is solid with HTTPS and consent management, though some security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site projects professionalism and trustworthiness, supported by certifications and client testimonials.

F

Filmin

comunidadfilmin.com

61

Filmin is a well-established streaming platform focused on independent cinema, documentaries, and award-winning series primarily serving Spain and Portugal. The website comunidadfilmin.com serves as a community and brand extension, highlighting curated content and the Atlàntida Mallorca Film Fest partnership. Technically, the site is built on WordPress with SEO and multilingual plugins, delivering a professional and responsive user experience. Security posture is adequate with HTTPS and domain protections, but lacks advanced security headers and published policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and safe for general audiences but would benefit from enhanced privacy and security disclosures.

Yverdon Énergies is a public utility entity responsible for the distribution of electricity, gas, potable water, and management of public lighting in the city of Yverdon-les-Bains, Switzerland. The website serves multiple target audiences including tenants, property owners, property management companies, and businesses, providing tailored information and services for each. The business operates as a local public service provider with a medium-sized footprint and a clear focus on sustainable energy and utility management. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and CookieYes for cookie consent management. It uses Bootstrap for responsive design and integrates Google Tag Manager and reCAPTCHA for analytics and security. The site is hosted behind Cloudflare, ensuring good performance and security. The website is mobile-optimized and has good SEO practices, although accessibility features could be enhanced. From a security perspective, the site uses HTTPS and includes bot protection via Google reCAPTCHA. Cookie consent is implemented with detailed categorization, supporting GDPR compliance. However, explicit security headers and a published security policy or incident response contacts are missing, representing areas for improvement. No critical vulnerabilities or suspicious patterns were detected. Overall, Yverdon Énergies presents a trustworthy and professional online presence consistent with its role as a public utility. The site is safe for general audiences, with no adult or questionable content. Strategic recommendations include enhancing security headers, publishing privacy and security policies, and improving accessibility to further strengthen compliance and user trust.

C

Clair et Net.

clair-et-net.com

45

Clair et Net. is a Paris-based independent digital agency established since 1998, specializing in digital transformation, website and mobile application development, and AI project consulting. The company targets businesses and organizations seeking to modernize and leverage digital technologies. Their market position is that of a specialized boutique agency with a strong focus on human-to-human digital intelligence and innovation. Technically, the website is built on WordPress with modern SEO practices, uses Google Analytics and Matomo for analytics, and integrates Google Fonts and Font Awesome for design. The site is mobile optimized and presents a professional user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, although the website content and business information appear legitimate. Overall, the website scores well on content quality and business credibility but needs enhancements in privacy compliance and security posture.

R

RATIO_Land

ratio-land.de

69

RATIO_Land is a large retail shopping center located in Baunatal near Kassel, Germany, offering over 50 shops, restaurants, and cafés with ample free parking. The website is built on WordPress using popular plugins such as Yoast SEO, WPBakery Page Builder, and Borlabs Cookie for cookie consent management. The site is well-designed, mobile-optimized, and provides relevant content including current offers and news. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks explicit security headers and published privacy or security policies. No direct contact emails or phone numbers were found in the provided content, which could impact user trust and compliance. Overall, the domain registration data is consistent with the website's business claims, indicating legitimacy.

Frölich Reisen is a German travel agency specializing in a variety of travel services including bus tours, flights, cruises, and premium travel packages. The website targets German-speaking travelers seeking well-organized and comfortable travel experiences. The company appears to be a medium-sized regional player in the transportation sector with a diversified portfolio of travel offerings. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Tag Manager, and Facebook Pixel for analytics and marketing. The site is hosted by webgo.de and uses HTTPS with good SSL configuration. Security posture is solid with HTTPS and cookie consent implemented, but lacks advanced security headers and explicit privacy or terms of service pages. No contact emails or phone numbers are explicitly found, which may affect user trust and compliance. Overall, the website is professional and well-branded with good SEO and mobile optimization but could improve privacy compliance and security practices.

K

Kasseler Markthalle 2020 GmbH

kasseler-markthalle.de

50

Kasseler Markthalle 2020 GmbH operates a regional market hall in Kassel, Germany, offering a wide range of regional and international food products through over 70 market stands and gastronomy services. The business emphasizes local specialties, fresh produce, and culinary events, positioning itself as a key local retail and hospitality venue. The website is professionally designed using WordPress with SEO optimization and structured data, providing a rich user experience and clear navigation. GDPR compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Security posture is solid with HTTPS and no visible vulnerabilities, though security headers and incident response information could be improved. Overall, the site reflects a trustworthy and established local business with good digital maturity.

C

Campagna Sbilanciamoci!

sbilanciamoci.info

55

Sbilanciamoci.info is a well-established Italian non-profit media and campaign platform focused on socio-economic and political issues, providing critical analysis and advocacy since 1999. The website targets Italian civil society, activists, researchers, and the general public interested in economic alternatives and social justice. It offers rich content including articles, publications, campaigns, and events. Technically, the site is built on WordPress with a modern plugin stack supporting SEO, privacy compliance, and user experience. The site is mobile-optimized and uses HTTPS, indicating a secure and professional infrastructure. Security posture is good with room for improvement in security headers and accessibility. Privacy compliance is strong with clear cookie consent mechanisms and comprehensive privacy policies. No direct company contact emails or phone numbers are published, but contact forms and social media channels are available. WHOIS data is limited due to TLD restrictions and privacy protection but does not raise concerns. Overall, the website is trustworthy, professionally maintained, and aligned with its non-profit mission.

P

proste.NGO

proste.ngo

43

proste.NGO is a Polish non-profit organization dedicated to simplifying the formal and legal conditions for Polish non-governmental organizations. The website serves as an advocacy and informational platform targeting NGOs and social activists in Poland. The business model is focused on non-profit advocacy and support, with a clear niche in the Polish NGO sector. The website is built on WordPress using modern plugins such as Yoast SEO and W3 Total Cache, indicating a moderate level of digital maturity. The design is professional and mobile-optimized, with good SEO practices implemented. Security posture is moderate; HTTPS is used, but security headers and explicit privacy policies are missing, representing areas for improvement. No WAF or blocking mechanisms were detected, and the domain registration data aligns well with the website's claims, supporting legitimacy. Overall, the site is functional and credible but would benefit from enhanced privacy compliance and security hardening.

Α

ΑΜΚΕ ΙΑΣΙΣ

iasismed.eu

47

The website www.iasismed.eu represents ΑΜΚΕ ΙΑΣΙΣ, a small non-profit organization founded in 2005 in Greece, focused on providing psychosocial rehabilitation and counseling services to individuals in need. The organization emphasizes therapeutic and community support services, including food provision and training sessions. The website content is primarily in Greek with English language support, reflecting a localized target audience. Technically, the site is built on WordPress with modern SEO and analytics tools such as Yoast SEO, Google Analytics, and Google Tag Manager, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS and includes a cookie consent mechanism, but lacks visible security headers and formal privacy or terms of service documents, which are areas for improvement. Overall, the site is accessible without WAF or blocking, and the domain WHOIS data is privacy protected as per EURid policies, which is typical for European domains. The absence of direct contact information and formal policies slightly reduces trust but does not critically impair the site's credibility.

O

OpenAthens

openathens.net

84

OpenAthens is a well-established leader in authentication services, specializing in secure, remote access solutions for organizations worldwide, particularly in academic, healthcare, and corporate research sectors. With over 30 years of experience and a strong market presence, OpenAthens offers a suite of products including personalized single sign-on solutions and participation in global identity federations. The company operates under the parent organization Jisc and serves a broad international audience with trusted technology solutions. Technically, the website is built on WordPress with modern performance and SEO optimizations, leveraging tools like Google Tag Manager, reCAPTCHA, and Rollbar for analytics and security. The site demonstrates excellent mobile optimization, accessibility, and content quality. Security posture is strong with HTTPS enforcement and GDPR-compliant cookie management, though explicit security headers and vulnerability disclosure mechanisms could be improved. Overall, the domain's privacy-protected WHOIS data is typical for security-conscious businesses and does not detract from the site's legitimacy. The website is professional, trustworthy, and well-positioned in its niche.

E

eStation.cz

estation.cz

36

eStation.cz is a Czech Republic based small technology service provider specializing in web design, e-commerce solutions, programming, graphic design, PPC advertising, and SEO services. With over 11 years of experience and more than 250 projects completed, they have established a solid market position serving businesses seeking professional online presence and marketing. The website is built on WordPress with a modern tech stack including Yoast SEO, Google reCAPTCHA, and GDPR-compliant cookie consent mechanisms. The site is well-structured, mobile-optimized, and provides clear contact information and client testimonials, indicating a trustworthy and professional business. However, the absence of WHOIS registration data reduces transparency and slightly impacts trustworthiness.

E

Escuela de Negocios CEU Castilla y León (CEU-CyL)

ceucyl.com

64

Escuela de Negocios CEU Castilla y León (CEU-CyL) is a regional business school focused on providing business education and professional training in Castilla y León, Spain. The website presents a professional and well-structured digital presence built on WordPress, utilizing common SEO and analytics tools such as Yoast SEO, Google Analytics, and Facebook Pixel. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and published security policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Privacy compliance is partial, with no visible privacy policy or terms of service pages. Contact information is not explicitly provided, limiting direct communication channels. Overall, the website is functional and safe but would benefit from enhanced transparency and security practices.

Stiftung Zukunft Berlin is a German non-profit foundation dedicated to promoting democracy through civic engagement and collaboration focused on the future of Berlin and its region. The foundation operates various initiatives and work areas including city and regional development, education, youth, democracy participation, and digital culture. The website reflects a professional and consistent brand presence with a clear mission and active social media engagement. Technically, the site is built on WordPress with modern plugins for SEO, cookie compliance, and newsletter management, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers could enhance protection. The domain WHOIS data is privacy protected, which is typical and justified for this type of organization. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements.

M

Maison des journalistes

maisondesjournalistes.org

55

Maison des journalistes is a French non-profit organization dedicated to providing refuge and support to exiled journalists. The website serves as a platform to showcase their mission, events, and partnerships, targeting journalists in exile and supporters of press freedom. The organization maintains a consistent brand presence with multilingual support and active social media channels. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and ExactMetrics for analytics, ensuring good SEO and moderate performance. Security posture is solid with HTTPS enforced, but lacks some security headers and explicit incident response policies. The absence of a cookie consent mechanism and incomplete WHOIS data are notable compliance and trust concerns. Overall, the site is professional and trustworthy but could improve in privacy compliance and domain legitimacy verification.

R

Réseau Bretagne Solidaire

bretagne-solidaire.bzh

49

Réseau Bretagne Solidaire is a French non-profit regional multi-actor network established in 2018, dedicated to supporting organizations engaged in international cooperation and solidarity projects within the Brittany region. The website serves as a comprehensive platform offering project support, training, networking, and communication services to its members and partners. It holds a strong market position as the 12th RRMA in France, with a medium-sized membership base and active engagement in events, publications, and calls for projects. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates essential plugins for SEO, GDPR compliance, and user engagement. The site demonstrates good performance, mobile optimization, and accessibility, supported by a well-structured navigation system and rich content. Analytics and marketing tools such as Google Analytics, Google Tag Manager, and Mailjet are used responsibly with user consent mechanisms in place. From a security perspective, the site enforces HTTPS, employs security headers, and uses GDPR-compliant cookie consent banners. Forms include validation and explicit consent checkboxes, enhancing data protection. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks a dedicated security policy or incident response contact information, which could be improved. Overall, the website presents a professional, trustworthy, and user-friendly digital presence aligned with its non-profit mission. Strategic recommendations include publishing a formal security policy, adding incident response contacts, and considering a vulnerability disclosure policy to further strengthen trust and security posture.

S

Stop the war now

stopthewarnow.eu

46

Stop the war now is a medium-sized Italian non-profit network comprising over 170 organizations dedicated to peacebuilding and international solidarity through nonviolent actions. The website serves as a platform to coordinate peace caravans, humanitarian projects, and cultural peace initiatives, targeting citizens and organizations interested in activism and humanitarian aid. Technically, the site is built on WordPress with a modern theme and plugins such as Yoast SEO and Google Analytics integration, providing a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit privacy policies, which are recommended for compliance and trust. Overall, the website is credible and professional but could improve transparency and security practices to enhance trust and compliance.

S

Sveriges Kommunikationsbyråer

komm.se

57

Sveriges Kommunikationsbyråer (Komm) is a well-established Swedish industry association founded in 2004, serving communication agencies and companies involved in marketing, PR, design, digital media, and related fields. The organization provides membership services, industry news, educational resources, events, and legal guidance to its members, positioning itself as a key player in Sweden's communication sector. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site is built on WordPress with modern SEO tools like Yoast SEO and uses Plausible Analytics for privacy-conscious visitor tracking. The site is mobile-optimized, accessible, and performs moderately well. Hosting and domain registration are stable and consistent with the business profile, with no signs of suspicious activity or privacy protection that would obscure legitimacy. From a security perspective, the site enforces HTTPS and uses secure forms but lacks advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a comprehensive privacy policy and GDPR adherence, though a cookie consent mechanism is missing. Overall, the website is trustworthy, professional, and well-maintained, with minor recommendations to enhance security headers and cookie consent to further improve compliance and security posture.

S

ShowHeroes Studios

showheroes-studios.com

55

ShowHeroes Studios is a media production company specializing in editorial, commercial, and digital video production services targeted at publishers and advertisers. The company operates under the parent entity ShowHeroes Group and maintains a professional online presence with a well-structured website optimized for SEO and user experience. The website leverages modern web technologies including JavaScript ES modules and Google Analytics for tracking. Security posture is solid with HTTPS enforced and domain transfer protections in place, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service available, but lacks a cookie consent mechanism. Overall, the site is trustworthy, professional, and well-positioned in the media industry.

S

ShowHeroes Group

showheroes-group.com

59

ShowHeroes Group is a medium-sized, Germany-based company specializing in contextual video and CTV advertising solutions. It operates multiple subsidiary brands providing advanced video technology and advertising platforms targeting digital publishers and advertisers primarily in Europe. The website demonstrates a high level of professionalism, with excellent content quality and clear business messaging. The technical infrastructure leverages modern JavaScript modules, HubSpot marketing tools, and is hosted on DigitalOcean, indicating a mature digital presence. Security posture is strong with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and explicit security policies are absent. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the website and domain registration data align well, supporting the legitimacy and trustworthiness of the business.

VRS Media GmbH & Co. KG is a specialized IT service provider and software house focused on delivering white-label SaaS solutions for over 120 newspaper publishers and 570 newspaper titles. Their offerings include themed internet portals, online classified ad markets, and ad submission systems tailored for media houses. The company holds a strong market position in Germany and surrounding countries, serving a medium-sized business segment with a comprehensive portfolio and full-service support including hosting, maintenance, and marketing assistance. Technically, the website is built on WordPress with a modern theme and plugins, optimized for mobile and SEO, and integrates privacy-respecting analytics via Matomo. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

Via Charlemagne is an international non-profit association dedicated to promoting the cultural and historical heritage of Charlemagne and the Carolingian Empire across Europe. The organization focuses on educational and touristic circuits, cultural activities, and training programs related to European history and identity. The website is well-positioned as a recognized cultural itinerary certified by the Council of Europe, targeting history enthusiasts, tourists, educators, and cultural organizations. The business model centers on cultural promotion and education rather than commercial activities. Technically, the website is built on WordPress with modern technologies including Bootstrap, jQuery, Owl Carousel, and AOS for animations. SEO is enhanced by the Yoast SEO plugin, and Google Analytics and Tag Manager are used for visitor tracking. The site is mobile-optimized and provides a good user experience with clear navigation and multilingual support. From a security perspective, the site enforces HTTPS and uses Google reCAPTCHA v3 on contact forms, indicating a reasonable security posture. However, it lacks explicit security headers and a formal security or incident response policy. Privacy compliance is partially addressed with a privacy policy page, but no cookie consent mechanism is present, which could be improved to meet GDPR requirements fully. Overall, the website is professional, trustworthy, and serves its cultural and educational mission effectively. Strategic improvements in privacy compliance and security headers would enhance its security posture and regulatory adherence.

R

Rete Italiana Pace e Disarmo

retepacedisarmo.org

49

Rete Italiana Pace e Disarmo is a small Italian non-profit organization dedicated to peace and disarmament advocacy. The website serves as an information hub for campaigns related to arms control, nuclear disarmament, military spending, and peace education. It targets activists, NGOs, policymakers, and the general public interested in peace issues. The organization appears well-positioned within the Italian peace advocacy sector with active social media presence and regular content updates. Technically, the website is built on WordPress with a modern theme and plugins for SEO and caching. The infrastructure is standard for non-profit advocacy sites, with moderate performance and good mobile optimization. However, some technical improvements are possible, such as enabling DNSSEC and adding security headers. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks advanced security headers and DNSSEC. The Google Analytics plugin is installed but not configured, indicating incomplete analytics setup. No privacy, cookie, or terms of service policies are found, which is a compliance gap. No incident response or vulnerability disclosure information is provided. Overall, the website is professional and trustworthy but could improve privacy compliance and security posture. Strategic recommendations include implementing privacy and cookie policies, enabling DNSSEC, adding security headers, and configuring analytics properly.

The Comitato Nazionale per i 150 anni dalla nascita di Luigi Einaudi is a small, government-affiliated non-profit organization dedicated to coordinating and promoting cultural and educational events commemorating the 150th anniversary of Luigi Einaudi's birth. The website serves as the official platform for event information, contests, and an innovative AI project allowing interaction with Luigi Einaudi's persona. Technically, the site is built on WordPress with modern SEO and cookie consent tools, providing a good user experience and mobile optimization. Security posture is solid with HTTPS, DNSSEC, and cookie consent, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, professional, and compliant with GDPR, with clear contact information and social media presence.

B

Bauer Media

bauermedia.se

56

Bauer Media is a leading European media company specializing in digital and commercial audio entertainment, including radio and podcast platforms such as PodPlay and RadioPlay. The company boasts a large weekly audience of over 61 million listeners across nine countries, positioning itself as a dominant player in the audio advertising market. Their business model focuses on leveraging strong brand recognition and extensive reach to offer advertising and audio content services to marketers and consumers alike. Technically, the website is built on WordPress with modern SEO and marketing integrations, including HubSpot and Google Analytics, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements could be made by enabling DNSSEC and adding security headers. Privacy compliance is well addressed with clear privacy and cookie policies, though no explicit security or incident response policies are published. Overall, the website is professional, trustworthy, and well-optimized for its target audience.

S

ShowHeroe SE

showheroes.com

60

ShowHeroes is a well-established company specializing in Connected TV (CTV) and digital video advertising solutions. They leverage advanced AI technology, notably their SemanticHero AI platform, to deliver contextual targeting and innovative ad formats. The company serves both advertisers and publishers globally, positioning itself as a leader in the media advertising technology sector. Their website reflects a professional and modern digital presence with strong branding and comprehensive service descriptions. Technically, the site is built on WordPress with modern JavaScript frameworks and integrates multiple marketing and analytics tools such as Google Analytics, HubSpot, and Quantcast for consent management and tracking. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. However, no explicit security policy or incident response contacts are published. Overall, the website is trustworthy, well-structured, and targets a professional audience in the advertising technology space.

T

The Walt Disney Company

twdc.com

68

The Walt Disney Company website serves as the official corporate presence for one of the world's leading entertainment and media conglomerates. The site highlights the company's mission to be a top producer and provider of entertainment and information globally. The website is well-branded, professionally designed, and targets a general audience interested in corporate information and media content. The business model is centered on entertainment production and media distribution, with a strong market position as a global leader in the media industry. Technically, the website is built on WordPress CMS, enhanced with Yoast SEO for search optimization, and integrates Adobe Launch for analytics and tracking. The site employs OneTrust for cookie consent management, demonstrating awareness of privacy compliance requirements. The technical infrastructure is modern and supports good mobile optimization and accessibility, although some accessibility features could be improved. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data confirms the domain's legitimacy and consistency with the company's identity, supporting a high trust level. Overall, the website is a secure, professional, and credible corporate site with room for improvement in privacy policy visibility, security policy publication, and accessibility enhancements. The risk level is low, but strategic improvements in security transparency and compliance documentation are recommended.

Q

Quantum Metric, Inc.

continuousproductdesign.com

50

Continuous Product Design is a professional educational platform offering the CPD Foundations Certification, aimed at digital leaders and product teams to enhance their skills in customer-centric product development. The website is affiliated with Quantum Metric, a recognized enterprise technology company, positioning it strongly in the technology education sector. The platform targets enterprise-level digital executives, UX, product, and analytics leaders, providing a free certification to foster leadership in continuous product design. Technically, the website is built on WordPress, hosted likely on WPEngine, and uses modern JavaScript libraries and SEO best practices. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS with domain locking features but lacks DNSSEC and explicit security headers. Privacy compliance is good with a comprehensive privacy policy and terms of use, though no cookie consent mechanism was detected. Overall, the site is trustworthy and professionally maintained, with room for improvement in security headers and incident response transparency.

C

CIFOR-ICRAF

worldagroforestry.org

69

CIFOR-ICRAF is a globally recognized non-profit research organization focused on forestry, agroforestry, and environmental sustainability. It operates under the CGIAR consortium and provides extensive research outputs, knowledge sharing, and policy advocacy to address global challenges such as climate change and biodiversity loss. The website reflects a mature digital presence with comprehensive content and strong branding consistency. Technically, the site is built on WordPress with modern frameworks and integrates multiple analytics and marketing tools while maintaining GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and bot management cookies, though some security headers and incident response disclosures could be improved. Overall, the site is professional, trustworthy, and well-optimized for users and search engines.

F

Fédération Romande Immobilière

fri.ch

50

Fédération Romande Immobilière (FRI) is a well-established association founded in 1925, representing property owners in the French-speaking region of Switzerland. The organization focuses on defending property owners' rights, improving political, economic, and legal conditions related to real estate, and encouraging home ownership. The website reflects a professional presence with clear business information, contact details, and regional partnerships with cantonal chambers and HEV Schweiz. Technically, the site is built on WordPress with modern plugins for SEO, GDPR compliance, and search functionality, supported by Google Analytics and Tag Manager for analytics and marketing. Security posture is solid with HTTPS and reCAPTCHA integration, though some security headers could be improved. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy accessible via a report page. Overall, the site is trustworthy, well-branded, and serves its target audience effectively.

S

SLU Holding

sluholding.se

46

SLU Holding is a Swedish innovation facilitator closely linked to the Swedish University of Agricultural Sciences (SLU). The company focuses on transforming research and knowledge into sustainable innovations that benefit society, particularly in green sectors such as agriculture, forestry, and environmental sciences. Their services include inspiration, advisory support, and financing to help researchers and students bring their ideas to market. The website reflects a professional and consistent brand image with a clear focus on sustainability and innovation. The target audience primarily consists of researchers, students, and innovators connected to SLU. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Gravity Forms, integrated with Google Analytics and Google Tag Manager for tracking. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. The performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks advanced security headers and DNSSEC. There is no visible security policy or incident response information, which could be improved to enhance trust. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism, aligning with GDPR requirements. Overall, SLU Holding's website presents a trustworthy and professional digital presence with a solid foundation in content quality and business credibility. Strategic improvements in security policies and technical security controls would further strengthen their posture and user trust.