High-risk security reports

S

Städtische Volkshochschule Crailsheim

vhs-crailsheim.de

48

The Städtische Volkshochschule Crailsheim operates as a regional adult education institution in Germany, offering a wide range of courses including languages, health, arts, integration, and professional development. It maintains a solid market position as a trusted public educational provider with integration into the Baden-Württemberg online VHS portal, enhancing its digital reach. The website is well-structured, content-rich, and targets a broad audience including adults, youth, and immigrants seeking language and integration courses. Technically, the website is built on TYPO3 CMS with Bootstrap and jQuery, providing a responsive and accessible user experience. Hosting appears to be with a German provider, and the site uses HTTPS with secure login forms. However, some security best practices such as security headers and cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. From a security perspective, the site shows good baseline protections but lacks explicit security policies and incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is limited but consistent with the website's German educational nature. Overall, the site is trustworthy and professional but could benefit from enhanced privacy and security disclosures. Strategically, the institution should focus on implementing cookie consent, security headers, and publishing clear security and incident response policies to strengthen trust and compliance. The digital infrastructure is solid but could be modernized with updated libraries and analytics for better user insights and performance monitoring.

V

vhs Filderstadt

vhs-filderstadt.de

44

vhs Filderstadt is a medium-sized non-profit educational institution based in Germany, providing a wide range of adult education and cultural programs including language courses, art school offerings, health and fitness classes, and integration projects. The website is professionally designed using TYPO3 CMS, with good content quality and clear navigation targeting the general public interested in lifelong learning and cultural enrichment. The institution maintains an active social media presence and offers both in-person and online courses, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS usage and secure login forms, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the website is trustworthy, compliant with GDPR, and well-aligned with the organization's mission and community role.

V

Volkshochschule Freiburg e.V.

vhs-freiburg.de

49

Volkshochschule Freiburg e.V. is a well-established adult education provider based in Freiburg, Germany, offering a broad spectrum of courses including languages, culture, health, and professional development. The organization targets adults seeking lifelong learning and integration support, positioning itself as a key regional educational institution with recognized certifications such as AZAV-Quacert and the Alpha-Siegel for accessibility. The website reflects a professional and accessible platform with clear navigation and comprehensive course offerings. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and accessibility tools like Eye-Able. It is hosted on a stable provider with secure HTTPS configuration and demonstrates good mobile optimization and SEO practices. The presence of cookie consent mechanisms and privacy policy pages indicates a strong commitment to GDPR compliance. From a security perspective, the site employs HTTPS and cookie consent but lacks explicit security policy and incident response contact information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's identity, showing no suspicious registration patterns, enhancing trustworthiness. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements could include publishing a dedicated security policy and incident response details to further enhance transparency and trust.

V

Volkshochschule Lörrach & Steinen

vhs-loerrach-steinen.de

49

Volkshochschule Lörrach & Steinen is a regional adult education provider in Germany offering a broad range of courses including languages, health, culture, and professional development. The website serves as an information and registration portal for courses and events, targeting the general public interested in lifelong learning. The institution maintains a solid market position as a trusted non-profit educational entity with partnerships to local foundations and online education platforms. Technically, the website is built on TYPO3 CMS, employs modern web technologies, and integrates accessibility tools, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable resource for its audience.

V

Volkshochschule March

vhsmarch.de

46

Volkshochschule March is a local adult education institution based in March, Germany, offering a wide range of courses in politics, culture, health, languages, and digital skills. The website serves as a portal for course information, registration, and community engagement, targeting adult learners and local residents. The institution holds an EFQM certification, indicating a commitment to quality management. Technically, the website is built on TYPO3 CMS with modern web technologies, providing good mobile responsiveness and accessibility. Security posture is adequate with HTTPS and cookie consent mechanisms, though security headers and incident response policies are not explicitly published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

V

vhs Karlsruhe Land

vhs-karlsruhe-land.de

49

vhs Karlsruhe Land is a regional adult education provider serving 16 municipalities in the Karlsruhe Land area of Germany. The organization offers a broad range of educational courses, workshops, seminars, and cultural events targeting adults and youth. Their business model focuses on public educational services with a strong regional presence and partnerships with other educational platforms. The website is built on WordPress with modern frontend technologies and demonstrates good digital maturity with mobile optimization and accessibility features. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking explicit security policies and incident response contacts. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

L

Landesnetzwerk Weiterbildungsberatung Baden Württemberg

bildung-bringt-weiter.de

46

Landesnetzwerk Weiterbildungsberatung Baden Württemberg (LN WBB) is a regional network providing free, neutral, and personalized continuing education counseling services to individuals in Baden-Württemberg, Germany. The website serves as a portal to locate advisory centers and offers multiple consultation formats including in-person, video, telephone, and online. The network positions itself as a trusted educational resource with a focus on accessibility and quality standards. Technically, the website is built on WordPress with modern plugins for SEO, accessibility, and cookie management, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent implemented, though explicit security policies and headers are lacking. Overall, the website is professional, trustworthy, and well-suited for its target audience, but could improve privacy transparency and security documentation.

Hydrogroup d.o.o. is a Bosnia and Herzegovina based company specializing in pools, wellness, fountains, and hydromassage pools. Established in 2000, it offers comprehensive services including design, supply, installation, maintenance, and consumables. The company has a solid regional presence with over 350 reference projects and partnerships with leading global brands. The website is built on WordPress with a moderate technical infrastructure including Bootstrap and jQuery, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and Wordfence plugin, but lacks explicit security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.

K

Kozmo Shop

kozmoshop.ba

39

Kozmo Shop is a regional e-commerce retailer specializing in cosmetics, makeup, hair care, maternity, fitness, and wellness products primarily serving Bosnia and Herzegovina. The website is professionally designed using the OpenCart platform with the Journal2 theme, featuring a broad product catalog and multiple brand partnerships. The technical infrastructure includes modern JavaScript libraries and integrations with marketing and analytics tools such as Google Analytics, Facebook Pixel, and AdRoll, indicating a mature digital marketing approach. Security posture is solid with HTTPS enforced and cookie consent implemented; however, the absence of security headers and limited contact information represent areas for improvement. No privacy policy or terms of service pages were detected, which may impact compliance and user trust. Overall, the site is accessible without WAF or blocking mechanisms and presents safe content suitable for general audiences.

Grand Hotel Neum is a well-established hospitality business located in Bosnia and Herzegovina, offering a wide range of services including accommodation, wellness, dining, and congress facilities. The website reflects a medium-sized hotel with a strong market position as the largest and most luxurious hotel on the Neum riviera. Technically, the site uses a traditional tech stack with jQuery, Bootstrap, and integrates third-party booking and analytics services. While the site is functional and content-rich, it lacks modern privacy and security compliance features such as privacy and cookie policies, GDPR indicators, and security headers. The domain registration data supports the legitimacy and long-term operation of the business. Overall, the website is professional but could improve in security and privacy compliance to enhance trust and regulatory adherence.

P

Profi Aesthetics

profi-aesthetics.eu

39

Profi Aesthetics is a small graphic design portfolio business based in Germany, showcasing a diverse range of creative projects including artwork, book design, web design, exhibition design, and event campaigns. The website serves primarily as a visual portfolio targeting general audiences interested in graphic design services. The business model focuses on presenting past projects to attract potential clients or collaborators. Technically, the website employs standard web technologies such as HTML5, CSS3, JavaScript, jQuery 1.12.3, and Swiper.js for interactive slideshows. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. However, the use of an outdated jQuery version and lack of modern frameworks or CMS indicates room for technical modernization. From a security perspective, the site lacks visible security headers and explicit HTTPS confirmation from the provided data, which may expose it to certain risks. No privacy or cookie policies are present, indicating non-compliance with GDPR and related regulations. No contact or incident response information is available, limiting transparency and trust. No analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the website is functional and professionally designed but requires improvements in privacy compliance, security posture, and contact transparency to enhance trustworthiness and regulatory adherence.

The website 'Reden bewegen – WOHIN?' is a cultural and educational initiative by the Jüdisches Museum Frankfurt in cooperation with the Bundeszentrale für politische Bildung. It focuses on democratic education and remembrance culture through a mobile sound installation and workshops targeted at secondary school students and teachers. The project is positioned as a non-profit educational offering with municipal support, emphasizing political education and democratic awareness. Technically, the website uses standard web technologies including HTML5, CSS, and JavaScript with jQuery 1.12.3. The site is accessible, well-structured, and mobile-optimized but lacks advanced security headers and cookie consent mechanisms. Security posture is moderate with no visible vulnerabilities but could be improved by updating libraries and implementing security best practices. Overall, the site is trustworthy, professional, and serves its educational mission effectively.

P

Die Frankfurter Paulskirche

paulskirche.de

43

The website paulskirche.de represents the Frankfurter Paulskirche, a historical and governmental site focused on democracy and cultural heritage. The site uses modern web technologies such as React and Next.js, indicating a contemporary technical infrastructure. However, the content is minimal and primarily serves as an informational landing page with limited interactive features. The security posture is basic, with no visible security headers or privacy policies, and no contact information is provided, which limits user trust and compliance with privacy regulations. Overall, the site is legitimate and consistent with municipal ownership but would benefit from enhanced security and compliance documentation to improve trust and user engagement.

The Sarajevo Holiday Market website represents a small-scale event organizer focused on cultural and commercial fairs held in Sarajevo since 2011. The business promotes seasonal markets including a winter holiday market and a summer market showcasing local artisans and products. The website content is bilingual, targeting both local residents and tourists, and provides essential contact information and vendor registration links. Technically, the site uses legacy JavaScript libraries such as jQuery 1.12.0 and Modernizr 2.8.3, with basic mobile optimization and moderate performance. Security posture is weak due to lack of visible HTTPS enforcement, absence of security headers, and missing privacy and cookie policies. No analytics or tracking scripts are detected, indicating minimal user tracking. Overall, the site is functional and professional but requires improvements in security and privacy compliance to meet modern standards.

Spanish Market d.o.o. is a small manufacturing company based in Bosnia and Herzegovina specializing in the production of packaged bakery products with long shelf life. The website presents a professional and consistent brand image with clear navigation and multilingual support, targeting general consumers and business clients interested in bakery products. The business model focuses on manufacturing and distribution within the local market, supported by downloadable product catalogs and social media presence on LinkedIn and Facebook. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and Google Analytics for tracking. It is served over HTTPS, ensuring secure communication, but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvements. Security posture is moderate with no visible vulnerabilities or exposed sensitive data, but the absence of security policies and incident response information suggests limited maturity in security governance. Overall, the website is safe, professional, and functional but would benefit from enhanced privacy compliance and security best practices to strengthen trust and regulatory adherence.

U

UNIOR TEHNA

uniortehna.ba

44

UNIOR TEHNA is a Bosnia and Herzegovina based company specializing in the wholesale and retail distribution of professional tools and equipment from internationally recognized brands. They serve both professional and hobbyist customers, offering electric tools, hand tools, welding apparatus, and abrasive materials. The company also provides authorized servicing and demo presentations to enhance customer engagement. Their market position is that of a trusted regional distributor with partnerships with over 15 global brands. Technically, the website is built on WordPress with a modern plugin ecosystem including Contact Form 7 and Google reCAPTCHA for form security. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS and anti-bot measures but lacks advanced security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

M

Megamix d.o.o.

megamix.ba

46

Megamix d.o.o. is a well-established foodservice distribution and logistics company based in Bosnia-Herzegovina, with over 30 years of experience. The company serves a broad B2B audience in the hospitality and foodservice sectors, maintaining partnerships with numerous reputable brands. Their website reflects a professional and consistent brand image, targeting businesses seeking distribution and logistics solutions. Technically, the site uses modern web technologies including Bootstrap and Google Analytics, and is mobile optimized with moderate performance. Security posture is adequate with HTTPS enabled but lacks security headers and formal privacy or cookie policies, indicating room for improvement in compliance and security best practices. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security features.

A

Adazal d.o.o.

adazal.ba

45

Adazal d.o.o. operates a well-established baucenter retail business in Bosnia and Herzegovina, offering a wide range of construction materials, home appliances, garden equipment, and tools through both physical stores and an online e-commerce platform. The company has a strong market presence with over 27 years of operation, targeting general consumers and professionals in the construction and home improvement sectors. The website is professionally designed with good navigation, mobile responsiveness, and a comprehensive product catalog, supporting a positive user experience.

M

Milkprocessing

milkprocessing.ba

49

Milkprocessing d.o.o. is a consulting company specializing in the food industry, particularly dairy, meat, and confectionery sectors, with a strong focus on food safety. Founded in 1999 and based in Sarajevo, Bosnia and Herzegovina, the company has established itself as a leader in modernizing the local dairy industry. Their website reflects a professional presence with clear service offerings and industry focus. The target audience includes food industry professionals and companies seeking consulting and equipment solutions. The business model revolves around providing expert consulting services and supplying production and UV/IC equipment.

M

MASS-light

mass-light.ba

45

MASS-light is a regional retail company specializing in lighting products with physical stores across Bosnia and Herzegovina and an online e-commerce platform. The website presents a professional catalog of lighting products, including chandeliers, lamps, and outdoor lighting, targeting consumers in Bosnia and Herzegovina. The technical infrastructure uses modern web technologies and integrates marketing and analytics tools such as Google Tag Manager and Facebook Pixel, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and CSRF tokens, but lacks publicly visible security policies or incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is functional and trustworthy but would benefit from enhanced transparency and compliance documentation.

Q

QUACERT Gesellschaft zur Zertifizierung von Qualitätsmanagement-Systemen mbH

azwv.de

47

QUACERT Gesellschaft zur Zertifizierung von Qualitätsmanagement-Systemen mbH operates a professional website focused on AZAV certification and quality management for labor market service providers in Germany. The company positions itself as a specialized certification body offering accreditation services, consulting, and training related to labor market integration and vocational education. The website content is well-structured, informative, and targeted at education and labor market institutions seeking AZAV compliance. Technically, the site uses Joomla CMS with common libraries such as jQuery and Bootstrap, providing a moderate performance and good mobile responsiveness. Security posture is adequate but could be improved by implementing security headers and cookie consent mechanisms. The domain WHOIS data is minimal but consistent with the business profile, and no blocking or WAF mechanisms interfere with content access. Overall, the site demonstrates a good level of professionalism and trustworthiness appropriate for a small specialized certification entity.

L

Landesnetzwerk Weiterbildungsberatung Baden Württemberg

lnwbb.de

46

The Landesnetzwerk Weiterbildungsberatung Baden Württemberg (LN WBB) is a regional network providing free, neutral, and personalized continuing education counseling services to individuals in Baden-Württemberg, Germany. The website serves as a portal to locate advisory centers, access FAQs, and obtain information about continuing education opportunities. It targets individuals seeking guidance on professional development and lifelong learning. The business operates as a non-profit network with a focus on accessibility and regional presence. Technically, the website is built on WordPress 6.8.1 using the Enfold theme and several plugins including Yoast SEO for search optimization, Borlabs Cookie for consent management, and Maps SVG for interactive maps. The site demonstrates good mobile optimization, accessibility features, and SEO practices. The use of modern JavaScript libraries and structured data enhances its digital maturity. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms. However, no explicit security headers were detected, and there is no published security policy or incident response contact. No vulnerabilities or exposed sensitive data were found in the analyzed content. The domain registration is consistent with the website's purpose and age, supporting legitimacy. Overall, the website presents a professional, trustworthy, and user-friendly platform for continuing education counseling in the region. Strategic improvements include publishing privacy and security policies, enhancing security headers, and adding vulnerability disclosure information to strengthen compliance and trust.

B&W NetworX GmbH & Co. KG is a small regional IT service provider based in Sinzheim, Germany, specializing in Windows and Unix/Linux technologies. Their business model focuses on delivering IT consulting, infrastructure services, data protection consulting, and ERP solutions to local businesses. The website is professionally designed with clear navigation and content relevant to their target audience. Technically, the site runs on WordPress 4.9.23 with common plugins such as Contact Form 7 and a cookie notice, indicating basic digital maturity. However, the WordPress version is outdated, which may expose the site to security vulnerabilities. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and published security policies. The absence of WHOIS data is a significant concern, as it prevents verification of domain legitimacy and age, impacting trustworthiness. Overall, the site is functional and professional but would benefit from technical and security improvements.

E

Elisa Oyj (implied by social media links and registrar)

mesta.net

45

Mesta.net is a Finnish media website specializing in entertainment news, including television, movies, books, and music. The site targets Finnish-speaking audiences interested in cultural content and provides news articles, reviews, and interviews. The website is built on WordPress and integrates common digital marketing and tracking tools such as Google Tag Manager and OneTrust for cookie consent. Social media presence is linked primarily to Elisa Oyj's official channels, suggesting a connection or partnership. The domain is well-established, created in 1999, and uses HTTPS for secure communications.

Kelvin Power Tools is a well-established UK-based specialist supplier of professional power tools and accessories, serving trade users since 1977. The company offers a wide range of top brands including Bosch, DeWalt, Festool, and Paslode, positioning itself as a trusted retailer in the construction and professional tools market. Their website reflects a mature e-commerce platform with a focus on customer service, free delivery, and product variety. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and multiple analytics and tracking tools such as Google Analytics, Bing UET, and Smartlook. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. However, some security best practices like security headers and cookie consent mechanisms are missing, which could be improved. From a security perspective, the site uses HTTPS and integrates reCAPTCHA v3 for form protection, indicating a reasonable security posture. The absence of WHOIS data limits the ability to fully verify domain legitimacy, but the website content and trust signals such as Trusted Shops ratings and secure payment options support its credibility. Overall, Kelvin Power Tools presents a professional and trustworthy online presence with room for improvement in privacy compliance and security hardening. Strategic recommendations include implementing security headers, cookie consent, and publishing explicit security policies to enhance user trust and regulatory compliance.

E

EMAS geprüftes Umweltmanagement

emas.de

44

The website www.emas.de serves as an authoritative information portal for the European Eco-Management and Audit Scheme (EMAS), primarily targeting organizations interested in environmental management and sustainability in Germany and Europe. It provides comprehensive resources including news, events, publications, and access to software and platforms supporting EMAS implementation. The site is well-positioned as a government/non-profit sector resource with strong trust indicators such as official branding and testimonials from recognized organizations. Technically, the website is built on TYPO3 CMS with modern frontend technologies including jQuery, Bootstrap, and Slick Carousel. It is hosted on DomainControl nameservers, uses HTTPS, and demonstrates good mobile optimization and accessibility. SEO practices are well implemented with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS and uses secure forms with validation. However, it lacks explicit security headers and does not publish incident response or vulnerability disclosure information, which are areas for improvement. No vulnerabilities or malicious content were detected. Overall, the website presents a low risk profile with a strong professional and trustworthy presence. Strategic recommendations include implementing cookie consent mechanisms, adding security headers, and publishing security policies to enhance compliance and trust.

The website 'Wasser-Risiko-Check' is a public service platform operated by Stadtentwässerungsbetriebe Köln, aimed at providing residents and building owners in selected municipalities of North Rhine-Westphalia with an online tool to assess flood risks related to heavy rain, high water, and groundwater. The platform offers an interactive map, a questionnaire, and downloadable PDF forms to help users understand their building's vulnerability and potential protective measures. The project is publicly funded and cooperates with multiple local municipalities, positioning itself as a niche governmental risk advisory service. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, OpenLayers for mapping, and Usercentrics for GDPR-compliant consent management. The site is mobile-optimized and provides a user-friendly interface with clear navigation. However, no CMS or advanced frameworks were detected, and hosting appears to be managed via generic servers. Performance is moderate with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS and integrates consent management, but lacks explicit security headers and detailed security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is well addressed with clear privacy and cookie policies. Business credibility is supported by clear branding, contact email, and governmental cooperation, though no phone contacts or social media links are provided. Overall, the website is a trustworthy, well-structured public service tool with good content quality and privacy compliance. Security posture is adequate but could be enhanced by adding security headers and incident response information. The domain WHOIS data is minimal but not suspicious, consistent with a public service project. Strategic recommendations include improving security headers, adding terms of service, and enhancing transparency around security policies.

S

StEB Köln

hw-karten.de

49

The website hw-karten.de is a government-affiliated platform operated by StEB Köln, providing flood hazard maps and related public safety information primarily for residents and local authorities in Germany. It offers interactive GIS-based mapping services focusing on flood, groundwater flooding, and heavy rain events. The site is well-branded with consistent government imagery and provides links to official resources and publications. Technically, the site is built using modern JavaScript frameworks such as Vue.js and Vuetify, with mapping functionality powered by OpenLayers and Visdom libraries. The hosting appears to be managed via known server providers, with no blocking or WAF detected, ensuring full accessibility.

weber.cloud, operated by weber.digital GmbH, is a German-based managed hosting and cloud solutions provider founded in 2016. The company operates its own data center in Balingen, Germany, emphasizing data sovereignty, GDPR compliance, and high-quality managed hosting services including specialized TYPO3 hosting, shop hosting, AI hosting, and professional services. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive content targeting businesses, online shops, and public institutions. Technically, the site uses modern web technologies such as Bootstrap, jQuery, and analytics tools like Google Analytics and Facebook Pixel, with a strong focus on privacy and cookie consent mechanisms. Security posture is good with HTTPS enforced and secure form handling, though DNSSEC is not enabled and some security headers are missing. The domain registration is consistent and transparent, reinforcing trustworthiness. Overall, the website reflects a mature, professional cloud hosting provider with strong regional presence and compliance focus.

M

Metropolregion Hannover Braunschweig Göttingen Wolfsburg GmbH

metropolregion.de

41

Metropolregion Hannover Braunschweig Göttingen Wolfsburg GmbH is a regional development organization focused on networking people, companies, science, and municipalities within the metropolitan region of Germany. The website serves as a platform to facilitate cooperation, project development, and information dissemination in key sectors such as mobility, healthcare, and real estate. The organization positions itself as a regional leader fostering innovation and collaboration across multiple domains. Technically, the website is built on WordPress using Oxygen Builder, integrates modern consent management via Usercentrics, and employs Google Tag Manager and GetResponse for analytics and marketing. The site is mobile-optimized with good SEO practices and consistent branding. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though there is room for improvement in publishing explicit privacy, terms, and security policies. Overall, the website reflects a professional and trustworthy regional government entity with moderate digital maturity and compliance.

BORGIS a.s. is a Czech company established in 1997, operating from Prague. The website provides minimal corporate information including company registration details and a link to a whistleblowing platform, indicating a focus on corporate governance or compliance-related services. The site is basic in design and content, targeting a general audience likely consisting of stakeholders or business partners. Technical infrastructure is simple, relying on standard HTML and CSS, hosted likely by Active24 as inferred from registrar and nameserver data. No advanced CMS or frameworks are detected, and the site lacks modern performance or accessibility optimizations. Security posture is weak with no visible security headers or HTTPS confirmation in the provided data, and no privacy or cookie policies are published, indicating compliance gaps. The WHOIS data is consistent and shows a long-established domain, supporting the legitimacy of the business. Overall, the website serves as a basic informational portal with limited digital maturity and security features.

B

Bojangles Franchise

bojanglesfranchising.com

44

Bojangles Franchise operates a professional website promoting its breakfast and chicken franchise opportunities, targeting experienced entrepreneurs interested in the hospitality sector. The brand emphasizes its Southern heritage and offers franchise training and support. The website is built on WordPress with Elementor and integrates multiple analytics and tracking tools such as Google Analytics, Facebook Pixel, and Hotjar. The site is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. However, the absence of WHOIS data and lack of explicit privacy, cookie, and security policies indicate areas for improvement in transparency and compliance. Security posture is generally good with HTTPS enabled, but could benefit from enhanced security headers and published incident response information.

Penzion a Bistro U Kapra is a small hospitality business based in Třeboň, Czech Republic, offering accommodation and a bistro specializing in fish and local cuisine. The website presents a clear business focus with detailed descriptions of rooms, bistro offerings, and contact information, targeting tourists and local visitors. The domain is well-established since 2005, supporting business credibility. Technically, the website uses modern web technologies including HTTPS, Google reCAPTCHA, and Google Maps integration, hosted on WEDOS infrastructure. However, it lacks explicit privacy and cookie policies, and security headers are not evident, indicating areas for compliance and security improvement. Overall, the site is functional, safe, and professionally presented but could enhance trust and compliance by adding missing policies and security best practices.

S

SERDA d.o.o. Sarajevo

serda.ba

47

SERDA d.o.o. Sarajevo operates as a regional development agency focused on supporting regional growth, EU project management, and business environment improvements in Bosnia and Herzegovina. The website reflects a professional presence with clear information about ongoing projects, events, and contact details, targeting regional governments, businesses, and EU stakeholders. Technically, the site uses modern web technologies including Bootstrap, jQuery, and Google Analytics, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced but lacks advanced security headers and visible privacy compliance mechanisms. Overall, the site is trustworthy and credible but would benefit from enhanced privacy and security policies to align with GDPR and best practices.

C

CAS Software AG

fair.digital

46

fair.digital is a German-based initiative founded in 2019 by CAS Software AG, focused on certifying digital products and services that adhere to principles of data protection, transparency, and fairness. The website serves as a platform to promote these certified products and provide information to manufacturers and users seeking GDPR-compliant and fair digital solutions. The initiative positions itself as a niche certification authority in the European digital technology sector, emphasizing digital sovereignty and user rights. Technically, the website is built on WordPress with modern plugins such as WooCommerce and WPBakery, hosted by InterNetX GmbH. It demonstrates good mobile optimization and a professional design, though some accessibility features could be improved. Security-wise, the site uses HTTPS and domain locking but lacks a cookie consent mechanism and explicit security policies, which are recommended for full GDPR compliance. Overall, the website is trustworthy, well-branded, and provides clear contact information via email and address, though no phone contact is provided.

S

SIS - Schweriner IT- und Servicegesellschaft mbH

sis-schwerin.de

46

SIS - Schweriner IT- und Servicegesellschaft mbH is a medium-sized municipal IT service provider based in Schwerin, Germany, serving local governments, schools, and public institutions primarily in Westmecklenburg. With over 280 employees, the company offers a broad range of IT services including application management, IT infrastructure, user support, digital education, and information security management. The website reflects a professional and comprehensive digital presence with clear service descriptions and a focus on regional digital transformation. Technically, the site is built on WordPress with modern plugins and analytics tools, showing good SEO and mobile optimization. Security posture is solid with HTTPS and privacy policies in place, though some improvements like cookie consent and security headers are recommended. Overall, the company demonstrates a strong market position as a trusted IT partner for public sector clients in its region.

The analyzed content corresponds to an internal Chrome browser error page (chrome-error://chromewebdata/) rather than an externally hosted website. This page serves as a placeholder or offline error page within the Chrome browser environment and includes embedded scripts for the Chrome offline dinosaur game. There is no business-related content, contact information, or policies present. The page is minimal and does not represent a commercial or organizational website. The technical infrastructure is limited to Chromium internal scripts and canvas-based game rendering, with no external dependencies or analytics. Security posture is minimal due to the nature of the page being an internal error display with no external exposure. Privacy compliance and business credibility cannot be assessed as no relevant data or policies exist.

The website utcsoftballcamps.com currently serves a 404 error page indicating that the main content is missing or unavailable. There is no metadata, structured data, or business information present on the site. The domain is registered with Amazon Registrar, Inc. since 2016 and is valid until 2026, suggesting the domain is legitimate but the website is not currently operational or properly configured. The lack of HTTPS information and security headers, combined with no privacy or cookie policies, indicates a poor security posture and lack of compliance with data protection regulations. Overall, the site is not accessible for users or search engines, severely limiting its business and security credibility.

The website for ucasoftballcamps.com is currently inaccessible, returning a 404 error page indicating that the requested content is missing or unavailable. There is no visible content, metadata, or structured data to analyze, and no contact or business information is provided on the site. The domain is registered with Amazon Registrar, Inc. since 2021 and is valid until 2026, which suggests a legitimate registration but the lack of website content severely limits business and security insights. Technically, the site lacks any detectable technologies, scripts, or frameworks, and no security headers or HTTPS status could be confirmed from the provided data. The absence of privacy, cookie, or terms of service policies indicates non-compliance with common privacy regulations. Overall, the website quality and trustworthiness are very low due to missing content and lack of business information.

The domain cameronsoftballcamps.com is registered with Amazon Registrar, Inc. since March 2022 and is currently active with no privacy protection. However, the website content is inaccessible, returning a 404 error page indicating that the resource is not found. There is no metadata, structured data, or any business-related content available to analyze. The lack of contact information, privacy policies, or terms of service suggests the website is either under development or abandoned. Technically, the site lacks HTTPS and security headers, which are critical for secure web presence. Overall, the digital maturity is very low, and the site does not provide any meaningful business or security information.

The domain csufsoftballcamps.com is currently non-functional, serving only a standard 404 error page indicating that the requested resource is not found. There is no accessible website content, metadata, or structured data to analyze. The domain is newly registered in October 2023 via Amazon Registrar, Inc., with no privacy protection or registrant details available. Due to the lack of content and business information, the website does not present any identifiable business model, services, or market position. Technically, the site lacks any detectable technologies, frameworks, or CMS, and no security headers or HTTPS status could be confirmed from the provided data. The security posture is minimal with no evidence of best practices or compliance policies. Overall, the site is not currently operational and provides no value to visitors or stakeholders.

The website chastainsoftballcamps.com currently serves a 404 error page indicating that the requested content is missing or unavailable. There is no accessible business information, contact details, or policy documentation on the site. The domain is registered with Amazon Registrar, Inc. since 2021, which is consistent with a small business or camp operation, but the lack of website content severely limits the ability to assess the business or its market position. Technically, the site lacks visible security headers, HTTPS enforcement details, or any modern web technologies. The security posture is weak due to missing SSL and absence of security best practices. Overall, the site is not functional for end users and does not provide any trust or compliance signals.

The domain goldensunsoftballcamps.com is registered since 2009 with a reputable registrar and hosted on AWS DNS servers, indicating a legitimate registration and cloud hosting infrastructure. However, the website currently returns a standard HTTP 404 Not Found error page with no accessible content, metadata, or business information. This lack of content prevents any meaningful analysis of the business, its services, or its compliance posture. The absence of privacy policies, cookie consent mechanisms, contact information, and security headers indicates a very low digital maturity and security posture. Without HTTPS or security best practices implemented, the site is vulnerable to interception and lacks trust signals for visitors.

The website alysonhabetzsoftballcamps.com currently serves only a 404 error page indicating that the requested content is not found or unavailable. There is no accessible business information, contact details, or policy documentation on the site. The domain is newly registered in August 2024 through Amazon Registrar, Inc., and uses AWS DNS servers. The lack of content and policies suggests the site is either under development or abandoned. Technically, the site lacks HTTPS confirmation and security headers, which are critical for secure web presence. No tracking or analytics technologies are detected, indicating minimal digital maturity. Security posture is weak due to missing HTTPS and absence of security best practices. Overall, the site presents a high risk for users due to lack of content and security features.

The website albanystatesportscamps.com currently serves a 404 error page indicating that the requested content is not found. There is no accessible business content, metadata, or contact information available on the site. The domain is registered since 2017 with Amazon Registrar, Inc., which suggests a legitimate registration, but the lack of website content severely limits business and security analysis. The technical infrastructure appears minimal with no detected CMS, scripts, or security headers. No privacy or cookie policies are present, and no contact or social media information is available. The site does not exhibit any signs of WAF or security blocking mechanisms. Overall, the website is non-functional from a user perspective and lacks essential compliance and security features.

S

SSP AG

ssp.ag

48

SSP AG is a leading German architectural and engineering firm specializing in integral planning, with approximately 200 employees across multiple offices in Bochum, Karlsruhe, Aachen, Berlin, and Münster. The company emphasizes attractiveness, adaptability, and energy efficiency in its projects, positioning itself as a top integrative planning office in Germany. Their website reflects a professional and modern digital presence built on WordPress, enhanced with SEO and cookie management tools, and supported by a GDPR-compliant privacy framework. The site is well-structured, mobile-optimized, and regularly updated with news and project highlights. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. WHOIS data is privacy-protected, which is common and justified for this business type, and no suspicious patterns were detected. Overall, SSP AG demonstrates a mature digital infrastructure aligned with its market position and business needs.