Security Directory

A

Alufit International Pvt Ltd

alufit.com

63

Alufit International Pvt Ltd is a leading facade contractor in India, established in 1984 and now a wholly owned subsidiary of Schueco International KG. The company specializes in facade design, supply, and installation for large-scale projects including office complexes, luxury condos, and airports. With over 2000 employees and multiple state-of-the-art facilities, Alufit has a strong market position and reputation for quality and professionalism. The website reflects a mature digital presence built on WordPress with modern plugins and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is partial with a cookie consent mechanism but no visible privacy or terms of service pages. Contact information is clearly provided, enhancing business credibility.

R

Römisch-katholischer Pastoralraum Möhlinbach

moehlinbach.ch

51

The Römisch-katholischer Pastoralraum Möhlinbach is a regional non-profit Catholic church organization serving multiple parishes in the Möhlinbach area of Switzerland. The website provides comprehensive information about its pastoral services, community offerings, and contact details for various parish offices. The organization targets local Catholic community members and offers services such as sacraments, social support, and youth programs. Technically, the website is built on TYPO3 CMS with modern front-end libraries like Bootstrap and jQuery, providing a good user experience and mobile optimization. Security posture is solid with HTTPS enforced and no exposed sensitive data, though it lacks some security headers and explicit security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is trustworthy, professional, and well-aligned with its mission, though it could improve in privacy and security transparency.

N

Nemzeti Média- és Hírközlési Hatóság (NMHH)

buvosvolgy.hu

11

Bűvösvölgy is an educational media literacy center operated by the Hungarian National Media and Infocommunications Authority (NMHH). It provides free, experience-based media literacy programs targeted at children aged 9-16, with three physical centers in Budapest, Debrecen, and Sopron. The website is professionally designed, accessible, and provides comprehensive information about their programs, registration, and contact details. Technically, the site uses modern JavaScript libraries and Google Analytics with IP anonymization, ensuring privacy compliance. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is trustworthy, well-maintained, and serves a clear educational mission.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

bundeswaldinventur.de

45

The Bundeswaldinventur website is an authoritative German government-affiliated portal providing detailed forest inventory data and modeling for sustainable forest management. It serves forestry professionals, policymakers, researchers, and the public with comprehensive reports, seminars, and multimedia content. The site is well-branded and professionally maintained, reflecting its role as a trusted source of forestry information. Technically, it is built on TYPO3 CMS with modern JavaScript libraries and integrates Matomo analytics with privacy-conscious settings. Security posture is solid with HTTPS and no exposed sensitive data, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site demonstrates a mature digital presence with high trustworthiness and compliance with GDPR, supporting its mission to inform and guide forest-related policy and research in Germany.

D

Debrecen 2030

d2030.hu

41

Debrecen 2030 is a municipal urban and economic development program managed by the Municipality of Debrecen, Hungary. The website serves as an official communication platform to inform residents and stakeholders about ongoing and completed development projects, news, and media related to the program. The site targets local citizens and government stakeholders interested in city development and infrastructure improvements. Technically, the website uses a modern frontend stack including Bootstrap, jQuery, and various UI libraries, with a custom or unknown CMS backend. It implements GDPR-compliant consent management via InMobi's CMP and uses Google Analytics for visitor tracking. However, explicit privacy policies and terms of service are not found, and no advanced security headers are detected, indicating room for improvement in security posture. The website is accessible without WAF or blocking mechanisms and presents a professional and trustworthy image consistent with an official government program.

K

Kulturamt Bielefeld

kulturamt-bielefeld.de

44

Kulturamt Bielefeld is a government cultural office serving the city of Bielefeld, Germany. The website provides comprehensive information about cultural events, funding opportunities, educational programs, and venue management. It targets the general public interested in cultural activities and local arts. The organization holds a strong local market position as a public cultural service provider. Technically, the website is built on WordPress with modern frontend libraries such as Bootstrap and Swiper, hosted likely by Deutsche Telekom. The site is mobile optimized, accessible, and SEO-friendly with structured data. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers are missing. Privacy compliance is limited due to the absence of explicit privacy and cookie policies. Overall, the site is professional, trustworthy, and content-rich, but could improve compliance and security headers.

H

Hochschule der Bildenden Künste Saar (HBKsaar)

xmlab.org

55

The xm:lab website represents an academic and research institute affiliated with the University of Fine Arts Saar (HBKsaar) in Germany. It focuses on interdisciplinary projects combining art, design, and technology, supporting various study programs and collaborating with external research and cultural partners. The site is professionally designed, bilingual (German and English), and provides detailed information about its team, partners, and educational offerings. Technically, the website uses a modern but somewhat dated technology stack including Contao CMS, Bootstrap 3, and jQuery 1.11.2. The site is served over HTTPS with no visible blocking or WAF challenges, indicating good accessibility and security posture. However, some security best practices such as security headers and cookie consent mechanisms are missing or not detected. WHOIS data is unavailable due to query failure, but the domain's legitimacy is supported by its academic affiliation and professional content.

A

Aeiforia GmbH

aeiforia.de

57

Aeiforia GmbH is a specialized consulting and training firm serving the financial services sector, particularly insurers, building societies, and fund providers focused on private and occupational pension products. The company offers a broad range of services including product development, actuarial consulting, process optimization, legal and tax advisory, IT systems consulting, sales and organizational support, as well as training and coaching. Aeiforia also provides contract management services specifically for Riester pension products, positioning itself as a niche expert in the pension market in Germany. Technically, the website is built on Joomla CMS and employs modern JavaScript libraries such as jQuery and nocaptcha for form security. The site is hosted on a reputable DNS provider (DomainControl by GoDaddy) and uses HTTPS with a good SSL configuration. The site is mobile-optimized and provides a professional user experience with clear navigation and relevant content. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The domain registration data is consistent with the business claims, supporting legitimacy. Overall, Aeiforia GmbH presents a professional and trustworthy online presence with a solid business model and technical foundation. Strategic improvements in security headers and incident response transparency would enhance their security posture and trust further.

K

Katholische Hochschulseelsorge

aki-unibe.ch

46

The website www.aki-unibe.ch represents the Katholische Hochschulseelsorge, a small non-profit educational and community support institution located in Bern, Switzerland. It provides a welcoming space for students to engage in events, counseling, group activities, and personal projects, emphasizing inclusivity regardless of religious affiliation. The site content is well-structured, informative, and targeted primarily at the academic community. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries, ensuring a good user experience and mobile optimization. However, there is room for improvement in security practices, particularly in implementing HTTP security headers and publishing privacy and cookie policies. No security incidents or vulnerability disclosures are evident, and the domain registration aligns well with the organization's identity, supporting legitimacy and trustworthiness.

G

Groupement FLO

10palettespourlaplanete.com

53

The website '10palettespourlaplanete.com' represents the FLO Palettes initiative, a French transport network specializing in the distribution of small pallet shipments combined with a unique environmental reforestation program. The business operates under the Groupement FLO umbrella and engages 60 transport companies across France to plant one tree for every ten pallets transported, emphasizing sustainability and carbon footprint reduction. The site is well-structured, professionally designed, and targets environmentally conscious transport clients and partners within France. Technically, the site uses CMS Made Simple with modern JavaScript libraries and frameworks such as Foundation and Owl Carousel, providing a responsive and user-friendly experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit incident response information. WHOIS data is unavailable, which raises concerns about domain registration transparency, but the website content and external references support legitimacy. Overall, the site is a credible and professional platform for its niche market with room for security and compliance enhancements.

C

Cheltenham Civic Society

cheltenham-battlefield-crosses.org

53

Cheltenham Battlefield Crosses is a small non-profit museum dedicated to preserving and exhibiting WWI battlefield crosses commemorating fallen servicemen from Cheltenham. Managed by Cheltenham Civic Society, the museum offers historical insights and conservation efforts for these fragile artifacts. The website serves as an informative platform for visitors and researchers, providing stories and background on the crosses and soldiers. Technically, the site is built on WordPress with modern plugins for SEO and GDPR compliance, featuring a responsive design and basic accessibility. Security posture is good with HTTPS and cookie consent mechanisms, though improvements could be made by enabling DNSSEC and adding security headers. Overall, the site is trustworthy, well-branded, and professionally maintained, though it lacks explicit contact details and formal security policies.

R

Revive.Digital

revive.digital

70

Revive.Digital is a well-established digital marketing agency based in Essex, UK, offering a comprehensive suite of services including SEO, PPC, web design, creative branding, and bespoke software development. The company positions itself as one of the largest agencies in the Southeast UK with over 15 years of experience and a team of more than 30 in-house experts. Their client base exceeds 200 businesses, emphasizing local and nationwide reach. Technically, the website employs modern web technologies such as Matomo analytics, Google Tag Manager, and popular JavaScript libraries, ensuring a responsive and user-friendly experience. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security headers and published security policies. The WHOIS data is privacy protected, which is typical for this business type and does not raise immediate concerns. Overall, the website is professional, trustworthy, and compliant with GDPR and cookie regulations.

R

RBA

rba.es

59

RBA is a leading Spanish media group specializing in the publication of magazines, books, and collectibles. The company operates multiple business divisions with dedicated websites and e-commerce platforms, serving a broad general audience interested in media and publishing products. The website presents a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses modern web technologies including Bootstrap, jQuery, Google Tag Manager, and a consent management platform (Didomi) to ensure GDPR compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though security headers are not explicitly detected and could be improved. WHOIS data is unavailable due to access restrictions from the Spanish domain registry, limiting full domain legitimacy assessment. Overall, the site is safe, compliant, and professionally maintained, with moderate user tracking and good privacy practices.

Hofheimer Wohnungsbau GmbH (HWB) is a regional real estate company focused on socially responsible housing and city development in Hofheim am Taunus, Germany. The company offers a broad range of services including residential construction, social management, property management, and community engagement. Their market position is that of a trusted local housing provider with a strong emphasis on social responsibility and sustainability, supported by published annual and sustainability reports. Technically, the website employs a moderate technology stack with jQuery and several UI libraries, delivering a well-structured, mobile-optimized, and accessible user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and updating legacy libraries. Privacy compliance is partially met with a privacy policy and cookie policy present, but lacks an active cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with the business's mission and audience.

H

Hochschule der Bildenden Künste Saar

hbksaar.de

50

The Hochschule der Bildenden Künste Saar (HBKsaar) is a public higher education institution specializing in fine arts and design, located in Saarbrücken, Germany. The website serves as a comprehensive portal for prospective and current students, offering detailed information on academic programs, student services, events, and institutional news. The institution holds a solid regional position as an art university with a medium-sized footprint and a history dating back to 1970. Technically, the website is built on the Contao Open Source CMS platform, utilizing a range of front-end libraries including Bootstrap 3 and jQuery 1.11.2. While the site is generally well-structured, mobile-optimized, and accessible, some outdated libraries pose potential security risks. The hosting infrastructure appears to be university-affiliated, with nameservers linked to the German Research Network and Saarland University. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and uses an outdated jQuery version, which could expose it to vulnerabilities. No dedicated security or incident response policies are publicly available. Privacy compliance is strong, with a clear privacy policy and cookie management in place. Overall, the website is professional, trustworthy, and serves its educational mission effectively. Strategic improvements in updating third-party libraries and enhancing security headers would further strengthen its security posture and compliance.

yesforever.ch is a Swiss-based small business operated by Optimize AG, offering a niche SaaS platform for creating personalized wedding websites. The platform provides tailored features such as gift registries, photo galleries, guest registration forms, and password-protected pages, targeting couples planning weddings and their guests. The business model is subscription-based with free trials and flexible pricing plans. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, Owl Carousel, and integrates analytics tools like Google Analytics and Hotjar, indicating a moderate level of digital maturity. The site is mobile-optimized and presents a professional user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and password protection for certain pages but lacks explicit security headers and published security policies, which are areas for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies and no visible consent mechanisms. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy and security disclosures to improve compliance and user trust.

M

MIDI Europe S.r.l.

isuzutrucks.ro

62

The website is the official Romanian portal for Isuzu Trucks operated by MIDI Europe S.r.l., established in 2022. It provides comprehensive information about Isuzu truck models, sales, after-sales services, and dealer networks targeting businesses and individuals interested in commercial vehicles in Romania. The site is professionally designed with consistent branding and good content quality, supporting a medium-sized transportation sector business. Technically, the site is built on Drupal CMS with modern JavaScript libraries and frameworks, offering good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies are missing. Privacy compliance is strong with clear GDPR-aligned policies and user consent. Overall, the site is trustworthy and well-positioned in its market niche.

M

MIDI Europe S.r.l.

isuzutrucks.sk

61

The website is the official Slovak regional site for Isuzu trucks, operated by MIDI Europe S.r.l. It provides detailed product information, dealer locator services, customer support links, and media updates tailored for the Slovak market. The site targets commercial vehicle buyers and users, positioning itself as a key regional distributor within the broader Isuzu European network. The business model focuses on sales, after-sales service, and brand promotion in the transportation sector. Technically, the site is built on Drupal CMS with a modern front-end stack including jQuery, Bootstrap, and Google Tag Manager for analytics. The site is mobile optimized and provides a good user experience with clear navigation and localized content. Performance is moderate, with room for improvement in SEO and accessibility. From a security perspective, the site uses HTTPS and enforces domain transfer restrictions. It includes GDPR-compliant privacy and cookie policies with user consent mechanisms. However, no explicit security headers or incident response contacts are found, indicating areas for enhancement. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the site presents a professional and trustworthy digital presence with a solid business foundation. Strategic improvements in security headers, contact transparency, and SEO could further strengthen its posture and user trust.

M

MIDI Europe S.r.l.

isuzutrucks.pl

65

The website is the official Polish portal for ISUZU trucks, operated by MIDI Europe S.r.l. It provides detailed information about various ISUZU truck models, after-sales services, dealer networks, and customer advisory services. The site targets commercial vehicle buyers and fleet operators in Poland, positioning itself as a regional distributor and service provider for ISUZU commercial vehicles. The business is well-established, with the domain registered since 2008, reflecting a mature presence in the transportation sector. Technically, the website is built on the Drupal CMS platform, utilizing common web technologies such as jQuery, Bootstrap, and Google Tag Manager for analytics. The site is mobile-optimized with a responsive design and includes accessibility features, though these could be enhanced. Performance is moderate, with no critical errors or broken elements detected. SEO and metadata are basic but sufficient for the site's scope. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, no explicit security headers were detected, and there is no public security or incident response policy. No vulnerabilities or exposed sensitive data were found in the HTML content. The overall security posture is good but could be improved by adding security headers and publicly available security policies. Overall, the website is professional, trustworthy, and compliant with privacy regulations. It effectively serves its business purpose with clear navigation and relevant content. Strategic recommendations include enhancing security headers, publishing incident response information, and improving accessibility compliance to further strengthen the site's security and user experience.

M

MIDI Europe S.r.l.

isuzutrucks.hu

62

The website is the official Hungarian portal for Isuzu Trucks, operated by MIDI Europe S.r.l. It serves as a regional distributor platform providing detailed information about Isuzu truck models, dealer locations, sales, after-sales services, and downloadable catalogs. The site targets commercial vehicle buyers and service customers in Hungary, positioning itself as a trusted regional representative of the Isuzu brand. The business model focuses on direct sales and support through a dealer network, emphasizing brand consistency and customer engagement. Technically, the website is built on the Drupal CMS platform, utilizing common front-end libraries such as jQuery, Bootstrap, and Font Awesome. Google Tag Manager is employed for analytics and marketing tracking, with a cookie consent mechanism in place to comply with GDPR requirements. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO practices are present but could be enhanced. From a security perspective, the site uses HTTPS, but no explicit security headers were detected in the HTML content. The cookie consent banner indicates awareness of privacy regulations, and no sensitive data exposure or vulnerabilities were found in the analyzed content. However, there is room for improvement in implementing security headers and publishing explicit security policies or incident response contacts. Overall, the website presents a professional and trustworthy front for Isuzu Trucks in Hungary, with solid business credibility and compliance with privacy regulations. The technical and security posture is adequate but could benefit from enhancements to security best practices and accessibility. No critical issues or blocking mechanisms were detected, allowing full content analysis.

M

MIDI Europe S.r.l.

isuzutrucks.cz

63

The website is the official Czech Republic portal for Isuzu Trucks, operated by MIDI Europe S.r.l. It provides comprehensive information about Isuzu's commercial truck offerings, sales and service networks, and customer support. The site targets commercial vehicle buyers and operators within the Czech market, positioning itself as a regional distributor and service provider for Isuzu trucks. The business model focuses on vehicle sales, after-sales service, and customer engagement through digital content and brochures. Technically, the website is built on the Drupal CMS platform, leveraging modern web technologies such as jQuery, Bootstrap, and Google Tag Manager for analytics. The site is mobile-optimized with good navigation and a professional design. Performance is moderate, with room for improvement in SEO and accessibility. The hosting and domain registration are stable and consistent with the business's operational history. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism. However, explicit security headers are not detected, and no public security or incident response policies are published. No vulnerabilities or exposed sensitive data were found in the HTML content. The privacy and cookie policies are comprehensive and clearly presented. Overall, the website presents a low-risk profile with a good level of professionalism and compliance. Strategic improvements in security headers, incident response transparency, and SEO could enhance the site's security posture and digital maturity.

M

MIDI Europe Srl

isuzu.si

61

MIDI Europe Srl operates the official Isuzu regional website for Slovenia and Italy, focusing on the promotion and sales of Isuzu pickup trucks and commercial vehicles. The website serves as a portal for vehicle information, dealer networks, after-sales services, and marketing materials. It targets both individual consumers and business clients interested in Isuzu's transportation solutions within the region. The company has maintained the domain since 2015, indicating a stable market presence. Technically, the website is built on Drupal 7 with a combination of jQuery, Bootstrap, and various UI libraries. It employs modern web practices such as HTTPS, responsive design, and cookie consent mechanisms. However, some technologies like jQuery 1.10 are outdated, and explicit security headers are not evident in the HTML content, suggesting room for security enhancements. From a security perspective, the site enforces HTTPS and uses cookie consent banners aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of a published security policy or incident response contact limits transparency in security governance. Analytics tools like Google Tag Manager and Hotjar are used with user consent, reflecting moderate user tracking. Overall, the website demonstrates a good balance of business credibility, technical implementation, and privacy compliance. Strategic improvements in security headers, updated libraries, and clearer security policies would enhance the security posture and trustworthiness further.

M

MIDI Europe Srl per Isuzu Svizzera

isuzu.ch

63

The website is the official Swiss portal for Isuzu vehicles, operated by MIDI Europe Srl for Isuzu Switzerland. It provides detailed information on Isuzu's D-Max models and trucks, dealer locations, customer support, and product catalogs. The site targets consumers and businesses interested in Isuzu vehicles within Switzerland and neighboring regions. The business model focuses on automotive sales and after-sales services, positioning itself as a regional distributor with a medium-sized market presence. Technically, the website is built on Drupal 7 CMS, utilizing common JavaScript libraries such as jQuery, Bootstrap, and Google Tag Manager for analytics. The site demonstrates good mobile optimization and basic accessibility features, with moderate performance. SEO is basic but functional, and the site uses HTTPS with a valid SSL certificate, ensuring secure communications. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, no explicit security headers were detected, and no published security or incident response policies are available. There are no visible vulnerabilities or exposed sensitive data in the provided content. The WHOIS data aligns well with the business entity, indicating legitimacy and consistency. Overall, the website presents a professional and trustworthy digital presence with good privacy compliance. Recommendations include enhancing security headers, publishing security policies, and improving accessibility and SEO for a more robust security posture and user experience.

Fahrschule Scheelen is a well-established driving school based in Emmendingen and Teningen, Germany, with over 40 years of experience and a strong local presence. The company offers comprehensive driving education services for various license classes, including cars and motorcycles, supported by modern vehicles and online learning tools. Their target audience includes both young and older individuals seeking driving licenses in the region. The website is professionally designed, mobile-optimized, and provides clear navigation and contact options, including multiple contact forms and direct phone and email contacts. Technically, the site is built on WordPress with Elementor and uses modern libraries and frameworks, hosted likely on Your-Server.de. Security posture is good with HTTPS and email obfuscation, though some security headers and cookie consent mechanisms are missing. Overall, the site reflects a credible and trustworthy business with a solid digital presence.

Y

Yetkin Mercan-Çağlayansoy | Web Consulting

yc-webconsulting.de

64

Yetkin Mercan-Çağlayansoy | Web Consulting is a small, local German web consulting and social media advisory business based in Köln. The company offers modern, secure, and responsive website creation services alongside social media consulting and support, targeting small business owners and professionals. The website demonstrates a professional presence with clear contact information, client references, and a GDPR-compliant cookie consent mechanism powered by Cookiebot. Technically, the site uses modern frontend technologies such as Bootstrap and jQuery, hosted on DomainControl nameservers, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enabled and cookie consent management, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, and the site content is safe for general audiences.

S

Settelen AG

settelen.ch

53

Settelen AG is a well-established Swiss mobility service provider based in Basel, with a history dating back to 1883. The company offers a comprehensive range of services including new and used car sales, garage and repair services, car rental, moving services, and group travel by bus. It holds a strong regional market position and is recognized as a leading Toyota center in Switzerland. The website is professionally designed, content-rich, and targets both private and corporate customers in the Basel region. Technically, the site is built on TYPO3 CMS with modern frontend technologies and includes Google Analytics for visitor tracking. Security posture is good with HTTPS enabled and no visible vulnerabilities, though security headers and explicit policies could be improved. Privacy compliance is basic with clear privacy and cookie policies and consent mechanisms. Overall, the site reflects a credible and trustworthy business with strong branding and user experience.

L

Lauf- und Ausdauersport Club Eichsfeld e.V.

guidenetzwerkdeutschland.de

41

Guidenetzwerk Deutschland is a specialized network aimed at connecting visually impaired athletes with guides to facilitate participation in sports such as running and para skiing. Operated by Lauf- und Ausdauersport Club Eichsfeld e.V., the platform serves a niche community within Germany, providing registration, matchmaking, and guide training services. The website is built on TYPO3 CMS and leverages modern frontend technologies to deliver a responsive and accessible user experience. It maintains a clear focus on its target audience, with content and navigation tailored to visually impaired sports enthusiasts and their guides. Security posture is adequate with HTTPS and cookie consent mechanisms in place, though explicit security policies and incident response contacts are absent. Overall, the site demonstrates a good balance of content quality, technical implementation, and business credibility, positioning it as a trustworthy resource within its domain.

D

Dinas Lingkungan Hidup Kabupaten Bekasi

dlhkabbekasi.org

43

Dinas Lingkungan Hidup Kabupaten Bekasi operates as the official environmental agency for Bekasi Regency, Indonesia, providing public information, news, and services related to environmental management and public welfare. The website serves residents and stakeholders with updates on programs, announcements, and contact channels. Technically, the site employs modern front-end technologies such as Bootstrap, jQuery, Flickity, and Slick carousel, hosted behind Cloudflare DNS, ensuring moderate performance and mobile responsiveness. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and no privacy or cookie policies are present, indicating compliance gaps. The WHOIS data shows a domain creation date in the future relative to some content dates, which may require further verification. Overall, the site is professional and trustworthy as a government resource but would benefit from enhanced security and privacy compliance measures.

D

Dinas Lingkungan Hidup Kota Sukabumi

dlhsukabumi.org

51

Dinas Lingkungan Hidup Kota Sukabumi operates as the official environmental agency for Sukabumi City, Indonesia, providing public information, environmental news, programs, and public services through its website. The site targets local residents, government officials, and environmental stakeholders, offering a range of services including complaint management, educational programs, and procurement information. The website is well-branded and professionally designed with consistent navigation and relevant content. Technically, it employs a modern tech stack including Bootstrap, jQuery, and carousel libraries, hosted behind Cloudflare DNS. However, some libraries are outdated and no explicit CMS is detected. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data shows an anomalous future domain creation date, which raises concerns about data accuracy but does not necessarily indicate malicious intent. Overall, the site is functional and trustworthy as a government resource but would benefit from improved security and privacy practices.

D

Dinas Lingkungan Hidup Kabupaten Serang

dlhserang.org

43

Dinas Lingkungan Hidup Kabupaten Serang operates as the official environmental agency for Serang Regency, Indonesia, providing public information, news, programs, and services related to environmental management. The website serves residents, government officials, and stakeholders with relevant updates and contact channels. Technically, the site employs modern JavaScript libraries and frameworks such as jQuery, Bootstrap, Flickity, and Slick Carousel, hosted behind Cloudflare DNS services. The site is mobile-optimized with a moderate performance profile. Security posture is basic with HTTPS enabled but lacks DNSSEC and advanced security headers. Privacy and cookie policies are absent, indicating compliance gaps. WHOIS data shows an anomalous domain creation date in the future, which raises questions about registration legitimacy. Overall, the site is functional and professional but requires improvements in security and privacy compliance.

H

House Of Builders

houseofbuilders.no

62

House Of Builders operates as an innovative showroom and meeting place within the Norwegian construction industry, targeting professionals and companies in this sector. The website presents a professional image with good SEO and structured data, reflecting a small but focused business established in 2017. The technical infrastructure is based on WordPress, utilizing common libraries and plugins such as jQuery, Bootstrap, FontAwesome, and Cookiebot for cookie consent management. Google Analytics is employed for visitor tracking, indicating moderate user tracking levels. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of a published privacy policy and terms of service pages represents compliance gaps. No WAF or blocking mechanisms were detected, and no suspicious or malicious content was found.

APARTHOTEL-aarau-WEST is a small hospitality business located in Aarau, Switzerland, offering modern 1-3 room apartments suitable for short and long stays. The business also provides seminar and group rooms, targeting both leisure and business travelers. The website is professionally designed with clear navigation and includes booking tools, 360° apartment views, and comprehensive contact information. The parent company is AARGAUHOTELS.CH, indicating a regional hospitality network. Technically, the site uses Orchard CMS with a mix of modern and legacy technologies including jQuery 1.11.1, Google Analytics, and Matomo for analytics, and Google reCAPTCHA for form security. The site is mobile optimized and SEO friendly but could improve accessibility and update outdated libraries. Security posture is good with HTTPS and input validation, though additional security headers and explicit security policies are recommended. Privacy compliance is basic with a privacy policy and cookie consent banner present. Overall, the site is trustworthy and professionally maintained with moderate user tracking and no suspicious content.

A

Awaluddin Muuri Indonesia

awaluddinmuuri.id

51

The website awaluddinmuuri.id serves as an official informational platform dedicated to Awaluddin Muuri, an Indonesian bureaucrat. It provides detailed biographical data, educational background from the Institut Pemerintahan Dalam Negeri (IPDN), and career highlights including strategic positions such as Penjabat Bupati Cilacap. The site targets a general audience interested in government and public service information within Indonesia. Technically, the site is built on WordPress with common plugins like Yoast SEO, jQuery, and Bootstrap, hosted behind Cloudflare DNS. The site demonstrates good SEO practices and mobile optimization but lacks advanced security headers and DNSSEC. Security posture is moderate with HTTPS enabled but missing some best practices. Privacy compliance is weak due to the absence of privacy and cookie policies. No contact or incident response information is provided, limiting user trust and compliance. Overall, the site is functional, informative, and professionally presented but requires improvements in privacy and security policies to enhance trust and compliance.

P

Prakasita Sekar Mataram

prakasitasekarmataram.id

53

PT Prakasita Sekar Mataram is a small Indonesian company specializing in the production of traditional herbal medicines (jamu), botanical drinks, and natural cosmetics rooted in Javanese cultural philosophy. The company emphasizes natural ingredients and modern production standards to deliver safe and environmentally friendly health and beauty solutions. The website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and Yoast SEO, hosted behind Cloudflare DNS but without DNSSEC enabled. The site is well-structured, mobile-optimized, and SEO-friendly but lacks critical privacy and security policy disclosures. No contact emails or phone numbers are provided, limiting direct communication channels. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. Overall, the site is accessible, content-rich, and safe for general audiences but would benefit from enhanced privacy compliance and security practices.

A

Ari Wibowo Indonesia

ariwibowo.id

50

The website ariwibowo.id is a personal brand and informational site dedicated to Ari Wibowo, covering his career as a model, actor, singer, and successful culinary entrepreneur. The site targets a general Indonesian audience interested in his professional journey and related news. Technically, the site is built on WordPress with a modern theme and uses Cloudflare DNS for domain resolution. It is mobile optimized and includes SEO enhancements via Yoast SEO plugin. Security posture is basic with HTTPS enabled but lacks DNSSEC and security headers, and no privacy or cookie policies are present. WHOIS data shows the domain is newly registered with some inconsistencies in the creation date, which may warrant further verification. Overall, the site is functional and professional but could improve in compliance and security transparency.

K

Kementerian Pariwisata dan Ekonomi Kreatif Republik Indonesia

kemenparekraf.id

43

The website represents the official online presence of the Kementerian Pariwisata dan Ekonomi Kreatif Republik Indonesia, a government ministry responsible for tourism and creative economy policy formulation and implementation in Indonesia. The site provides news, organizational information, and program details targeting the general public and government stakeholders. Technically, the site is built on WordPress with a modern tech stack including Bootstrap and jQuery, hosted with Cloudflare DNS services. The website is mobile optimized and SEO friendly but lacks privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. WHOIS data shows inconsistencies such as a future domain creation date and registrant being a registrar company, which slightly reduces trustworthiness. Overall, the site is professional, content-rich, and trustworthy as a government resource but would benefit from improved privacy compliance and security hardening.

U

Universitätsklinikum Ulm

uniklinik-ulm.de

65

Universitätsklinikum Ulm is a prominent university hospital in Germany, providing advanced medical care, research, and education. The website reflects a well-structured institution focused on patient services, clinical studies, and academic excellence. The digital infrastructure is built on TYPO3 CMS with modern frontend technologies, ensuring a responsive and accessible user experience. Privacy compliance is robust, leveraging Usercentrics for consent management and self-hosted Matomo for analytics, indicating a strong commitment to data protection. Security posture is good with HTTPS enforced, though the absence of certain security headers suggests room for enhancement. Overall, the domain registration and website content align well, confirming legitimacy and trustworthiness.

K

Kompetenzzentrum Soziale Dienste Seerücken

sdseeruecken.ch

67

Kompetenzzentrum Soziale Dienste Seerücken is a regional government entity providing social services to the communities in the Seerücken area of Switzerland. The website serves as an information hub for residents, offering news, service descriptions, and contact details. It maintains a professional and accessible design, supporting multiple municipalities with links to partner sites. The technical infrastructure includes modern JavaScript libraries such as jQuery and Font Awesome, and it is built on the GOViS CMS platform. The site is mobile-optimized and implements accessibility best practices. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities. Privacy compliance is robust, featuring a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. Analytics are handled via Matomo, emphasizing privacy. However, the site lacks explicit security policy and incident response contact pages, which could enhance trust and preparedness. Overall, the site is trustworthy, well-maintained, and suitable for its public service role.

G

Gemeinde Turbenthal

turbenthal.ch

68

Gemeinde Turbenthal operates as the official municipal government website for the Turbenthal community in Switzerland, providing residents and visitors with access to local government services, community news, events, and administrative information. The site is well-positioned as a trusted local authority with a focus on energy sustainability, as evidenced by its Energiestadt Gold certification. The website targets local residents and stakeholders seeking municipal services and information.

M

Metropolitan Workshop

metwork.co.uk

47

Metropolitan Workshop is a well-established architectural and urban planning practice founded in 2005, with offices in London and Dublin. The company offers professional services in architecture, urbanism, and design, targeting clients interested in these sectors. Their website reflects a professional and consistent brand image, with clear navigation and relevant content tailored to their audience. The business operates primarily within the real estate sector and maintains a small company size with a focused market position. Technically, the website is built on WordPress and leverages modern web technologies including Google Analytics, Google Tag Manager, Vimeo embeds, and Google Maps API. The site is mobile-optimized and performs moderately well, though there is room for improvement in accessibility and SEO. Hosting is provided by GoDaddy, consistent with the domain registrar information. From a security perspective, the website uses HTTPS with an excellent SSL configuration but lacks several recommended security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy and cookie policy present but no explicit cookie consent mechanism. Contact information is comprehensive, but no dedicated security policy or incident response details are available. Overall, the website presents a low-risk profile with strong business credibility and good technical implementation. Strategic improvements in security headers, privacy consent mechanisms, and incident response transparency would enhance the security posture and compliance standing.

A

Aargau Verkehr AG (AVA)

aargauverkehr.ch

61

Aargau Verkehr AG (AVA) is a regional public transportation company operating in the Aargau region of Switzerland. The company provides transit schedules, operational updates, and ticketing services primarily targeting local commuters and travelers. The website is professionally designed using Joomla CMS with Helix Ultimate framework and integrates modern web technologies such as Bootstrap and jQuery. It features a cookie consent mechanism compliant with GDPR and uses Google Analytics for traffic analysis. Security posture is good with HTTPS enforced and CSRF protections in place, though additional security headers could enhance protection. No critical vulnerabilities or suspicious content were detected. Overall, the website reflects a credible and established transportation service provider with a solid digital presence.

B

bewegt-sein.ch Praxis für Osteopathie | Jacqueline Labèr

bewegt-sein.ch

42

bewegt-sein.ch is a small healthcare practice specializing in osteopathy and physiotherapy services located in Bubikon, Switzerland. The website provides detailed information about the practitioner Jacqueline Labèr, her qualifications, and the range of osteopathic treatments offered, targeting local clients seeking holistic healthcare solutions. The business operates a private practice with a focus on musculoskeletal and pediatric conditions. Technically, the website uses a traditional web stack with jQuery, Google Maps API, and several UI libraries such as Owl Carousel and Magnific Popup. The site is moderately optimized for mobile and SEO, with a clear navigation structure and good content quality. However, there is no detected CMS or advanced platform integration. From a security perspective, the website uses HTTPS but lacks visible security headers and published privacy or cookie policies, which are important for GDPR compliance. No incident response or vulnerability disclosure information is provided. The site does not use analytics or tracking scripts, indicating minimal user tracking. Overall, the website is professional and trustworthy for its business purpose but would benefit from enhanced privacy compliance and security best practices to improve user trust and regulatory adherence.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

charta-fuer-holz.de

43

The website www.charta-fuer-holz.de represents the 'Charta für Holz 2.0' initiative managed by the Fachagentur Nachwachsende Rohstoffe e.V. (FNR), a German non-profit agency focused on promoting sustainable wood use and forestry. The site serves as an information hub for government bodies, industry stakeholders, researchers, and the public, offering resources, event information, and project updates related to renewable raw materials and wood construction. The business model is non-profit and government-supported, positioning the organization as a key player in Germany's sustainable forestry sector. Technically, the website is built on TYPO3 CMS with modern front-end technologies including jQuery, Foundation CSS, and Slick Carousel. It is mobile-optimized and provides a good user experience with clear navigation and professional design. Analytics are implemented via Matomo with cookies disabled, reflecting a privacy-conscious approach. However, the site lacks a cookie consent mechanism and some security headers, which are areas for improvement. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. No major vulnerabilities or security incidents are evident. The absence of a published security policy or incident response contact reduces transparency but does not indicate immediate risk. WHOIS data is consistent and supports the legitimacy of the domain and organization. Overall, the website is professional, trustworthy, and well-aligned with its mission. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, and publishing security and incident response policies to enhance compliance and trust.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

holzbauplus-wettbewerb.info

62

The website holzbauplus-wettbewerb.info serves as the official platform for the Bundeswettbewerb HolzbauPlus 2025/26, a German federal competition promoting sustainable wood construction projects. It is managed by the Fachagentur Nachwachsende Rohstoffe e.V. (FNR) under the auspices of the German Federal Ministry of Food, Agriculture and Homeland. The site provides comprehensive information about competition goals, categories, jury, archives, and an online application portal. The content is professionally presented, targeting builders, planners, and stakeholders interested in sustainable building practices in Germany. Technically, the website is built on TYPO3 CMS with modern frontend frameworks such as Foundation and uses privacy-conscious Matomo analytics with cookies disabled. The site is mobile-optimized and demonstrates good SEO and accessibility basics. HTTPS is enforced, but security headers are missing, and no cookie consent mechanism is present, indicating areas for improvement in security and privacy compliance. From a security perspective, the site shows a solid posture with secure forms and no visible vulnerabilities or exposed sensitive data. However, the absence of security headers and cookie consent could be addressed to enhance compliance and protection. The WHOIS data is malformed and lacks detailed registrant information, likely due to privacy protection, but the website's official nature and government affiliation support its legitimacy. Overall, the website is trustworthy, professionally maintained, and serves an important government function promoting sustainable construction. Strategic recommendations include implementing security headers, adding cookie consent for GDPR compliance, and publishing security and incident response policies to further strengthen trust and compliance.

F

Fachagentur Nachwachsende Rohstoffe e.V. (FNR)

klav.de

45

KLAV is a German government-affiliated competence center focused on reducing food waste across the supply chain sectors including primary production, processing, trade, and out-of-home catering. It operates as part of the National Strategy to reduce food waste and collaborates with economic actors, policymakers, and scientists. The website is professionally designed using TYPO3 CMS and modern frontend technologies, providing comprehensive information, seminar offerings, and sector dialogue facilitation. The technical infrastructure is solid with good mobile optimization and accessibility. Security posture is strong with HTTPS and privacy-conscious analytics (Matomo with disabled cookies), though explicit cookie consent and security policies are missing. Contact information is clearly presented, enhancing trust and credibility. Overall, KLAV presents a trustworthy and authoritative online presence aligned with its governmental mission.

M

My Blog

world-of-leading-golf.com

47

The website 'Exploring Golf: Legends and Iconic Tournaments' is a small-scale WordPress blog dedicated to providing educational content about golf history, legendary players, major tournaments, and related cultural aspects. It targets golf enthusiasts and general sports fans seeking knowledge about the sport's heritage. The site offers well-structured, relevant content with good design and navigation, optimized for mobile devices. Technically, it uses a modern WordPress stack with popular libraries and frameworks such as Bootstrap and jQuery, ensuring a moderate performance and good SEO practices. Security-wise, the site enforces HTTPS and avoids exposing sensitive data but lacks important security headers and formal privacy or cookie policies, which impacts compliance and trust. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. Overall, the site is functional and informative but would benefit from enhanced privacy compliance, security hardening, and clearer business contact information to improve trust and credibility.

S

Stadt Hennigsdorf

hennigsdorf.de

66

The website represents the Musikschule Hennigsdorf, a municipal music school serving children, youth, and adults in the city of Hennigsdorf, Germany. It is positioned as the second largest music school in the Oberhavel district, offering a wide range of musical education services including early childhood music education, instrumental and vocal lessons, and ensemble participation. The site targets local residents interested in music education and cultural engagement. The business model is public and community-focused, operated under the city administration. Technically, the site uses a mature but somewhat dated technology stack centered around jQuery and various UI libraries, hosted on an IKISS CMS platform. The site is well-structured with good accessibility and mobile optimization, though some modernization opportunities exist. SEO and metadata are well implemented, supporting good discoverability. From a security perspective, the site uses HTTPS (implied by domain and no warnings), has a cookie consent mechanism, and no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security headers and incident response information, and uses an older jQuery version which could pose risks. Privacy compliance is strong with a clear privacy policy and cookie banner, aligned with GDPR requirements. Overall, the site is trustworthy and professional, with no signs of malicious content or blocking mechanisms. Recommendations include updating libraries, enhancing security headers, and adding security policy disclosures to improve the security posture and compliance transparency.

The Smart Built Environment Awards website serves as a professional platform to recognize excellence in the built environment sector, focusing on property management, community management, facilities management, and PropTech. The site is positioned as a regional leader in its niche, offering nomination, sponsorship, and event booking services. The business targets industry professionals and stakeholders primarily in the UAE and surrounding regions. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and various UI libraries, with integration of Google Analytics and Facebook Pixel for marketing and tracking. The site is mobile optimized and presents a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers, and does not provide visible privacy or cookie policies, which impacts compliance and trust. Overall, the domain registration is consistent with the business claims and shows no suspicious patterns.

voll.werbung GmbH operates a website focused on advertising and marketing services, targeting business clients primarily in Austria. The website is built on WordPress using the Enfold theme and includes minimal content with links to terms and data protection documents. The technical infrastructure is modern with jQuery and WordPress core up to date, but lacks advanced security headers and explicit privacy or cookie policies. No contact information or social media presence is visible on the homepage, which limits direct engagement and trust signals. The site is accessible without any WAF or blocking mechanisms, and HTTPS is properly configured, ensuring secure communication.

The Middle East Waste & Recycling Awards (MEWAR Awards) website serves as a professional platform to recognize and celebrate excellence in waste management and recycling within the Middle East region. Established in 2018, the awards event is organized by Waste & Recycling magazine and hosts industry leaders, sponsors, and partners to promote sustainable environmental practices. The website provides information about the awards, categories, key dates, sponsors, and media content such as videos and galleries. The target audience includes professionals and organizations involved in waste management and recycling sectors. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and popular UI libraries like Slick Carousel and Flickity for interactive elements. It integrates Google Analytics and Google Tag Manager for user tracking and analytics. The site is mobile responsive and has a moderate performance profile. However, it lacks a known CMS and some advanced SEO and accessibility features. From a security perspective, the website uses HTTPS but lacks DNSSEC and important security headers, which are recommended for enhanced protection. No privacy, cookie, or terms of service policies are published, which impacts compliance and user trust. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. The domain registration is consistent with the business timeline and shows no suspicious patterns, indicating legitimacy. Overall, the website is functional and professional but would benefit from improved privacy compliance, security hardening, and clearer contact information to enhance trust and regulatory adherence.