Security Directory

E

Einstein-Marathon

ulmer-jugendlaeufe.de

52

The website ulmer-jugendlaeufe.de represents the Einstein Jugendläufe, a well-established youth running event held annually in Ulm, Germany. The site is professionally designed using WordPress and Elementor, providing comprehensive information about the event, registration, and results. The business operates in the education and sports event sector, targeting children, youth, families, and schools in the region. The site integrates with partner domains and services such as einsteinmarathon.de and datasport.de for event management and registration. Technically, the website employs modern web technologies including WordPress 6.8.3, Elementor, and Rank Math SEO, hosted behind Cloudflare DNS and CDN services. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. Security posture is good with HTTPS enforced, but lacks explicit security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the security posture is moderate with no critical vulnerabilities detected, but improvements are recommended in privacy compliance and security header implementation. The domain WHOIS data aligns with the website's business purpose, showing legitimacy and consistency. No WAF or blocking mechanisms interfere with content access. Strategic recommendations include implementing comprehensive privacy and cookie policies, adding security headers, establishing a vulnerability disclosure policy, and enhancing user consent mechanisms to improve compliance and trust.

W

WileyClub

wiley-club.de

51

WileyClub is a hospitality business based in Neu-Ulm, Germany, specializing in event hosting for weddings, corporate events, seminars, and parties. The website presents a professional and modern image, offering detailed information about their services and facilities. Their market position is regional with a focus on versatile event solutions and personalized service. Technically, the site is built on WordPress using the Divi theme, with standard web technologies and a cookie consent mechanism ensuring GDPR compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers could be improved. Overall, the site is well-structured, mobile-optimized, and includes clear contact details and social media links, supporting business credibility and user trust.

L

Landesmusikrat Hamburg e. V.

lmr-hh.de

47

Landesmusikrat Hamburg e. V. is a non-profit organization representing the interests of musicians in Hamburg, Germany. The organization focuses on advocacy, networking, and support to improve working conditions for musicians. The website is professionally designed using WordPress with the Divi theme and includes accessibility features, indicating a commitment to inclusivity. The technical infrastructure is modern, leveraging Cloudflare for DNS and likely CDN services, and includes SEO optimization via Rank Math. Security posture is good with HTTPS enforced, but lacks explicit security headers and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and serves its target audience effectively but would benefit from enhanced privacy and security disclosures.

A

Appmulti AG

adon.ch

39

Appmulti AG is a Swiss media production company with over 25 years of experience, specializing in manufacturing CDs, DVDs, Blu-ray discs, USB sticks, and vinyl LPs. The company has taken over the customer base of Adon Production AG, which ceased operations in 2023. Their market position is strong within Switzerland, targeting musicians, filmmakers, and artists seeking physical media production services. The website reflects a professional and consistent brand image with clear service offerings and customer testimonials. Technically, the site is built on WordPress using the Divi theme and includes modern features like Google reCAPTCHA for form security. However, it lacks some advanced security headers and cookie consent mechanisms, which are recommended for compliance and enhanced security. Overall, the site is trustworthy and well-positioned but could improve privacy compliance and security transparency.

Association Coup de Coeur is a small Swiss-based informational website focused on promoting the benefits of various massage therapies. The site provides detailed content about different massage types, their health benefits, and wellness applications, targeting a general audience interested in health and relaxation. The business model appears to be informational and promotional, likely supporting local massage services or practitioners indirectly. Technically, the website is built on WordPress with standard web technologies such as jQuery and MediaElement.js, and it shows good SEO practices and mobile optimization. However, the site lacks explicit privacy and cookie policies, which are critical for GDPR compliance, especially given its European location. Security posture is moderate with HTTPS enabled but missing important security headers and incident response information. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security hardening.

M

Media Hotel Radio

mediahotelradio.com

60

Media Hotel Radio is an Italian web radio platform dedicated to the hospitality and tourism industry, offering professional growth content, podcasts, live streaming, and music curation services tailored for hotels. The website positions itself as a leading voice in the hospitality media sector in Italy, supported by a professional team and recognized with awards. Technically, the site is built on WordPress with common plugins like Yoast SEO and WPBakery, and it integrates multimedia and streaming technologies. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and explicit privacy policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the active and professional website presence mitigates some risk. Overall, the site is well-designed, content-rich, and trustworthy from a user perspective but would benefit from improved transparency and security practices.

G

Gutachtershop

gutachtershop24.com

49

Gutachtershop24.com is a German e-commerce website specializing in print and web products tailored for appraisers and experts. The site leverages WordPress with WooCommerce and the Divi theme, indicating a standard but professional digital infrastructure. The presence of Usercentrics for consent management shows attention to privacy compliance, although no explicit privacy policy or terms of service pages were detected in the provided content. The website is accessible without any WAF or blocking mechanisms, and the content is safe and appropriate for a general audience. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency.

B

Bundesministerium für Wirtschaft und Klimaschutz

gruendungswoche.de

66

The website www.gruendungswoche.de is a German government-backed platform managed by the Bundesministerium für Wirtschaft und Klimaschutz, focused on promoting entrepreneurship and self-employment through nationwide events and workshops. It serves a broad audience including prospective founders, students, craftsmen, and social entrepreneurs. The platform operates as a non-profit initiative with a strong partner network including government bodies and competence centers. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and frameworks, offering good mobile optimization and accessibility. Security posture is moderate with HTTPS usage and secure login forms, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no visible cookie consent mechanism. Overall, the site is professional, trustworthy, and well-positioned in its niche, though improvements in security and privacy transparency are recommended.

E

Energieleitzentrale

eventlocation-energieleitzentrale.de

46

Energieleitzentrale is a specialized event location business based in Bremen, Germany, offering flexible venue spaces for corporate events, trade fairs, exhibitions, galadinners, concerts, and theater performances. The business leverages historic harbor buildings combined with modern amenities to attract medium to large-scale events with capacities up to 2,000 attendees. Their market position is regional with a focus on corporate and cultural event organizers. Technically, the website is built on WordPress using popular plugins and themes, providing a good user experience with mobile optimization and SEO best practices. Security posture is adequate with HTTPS enforced and some security tokens in forms, but lacks advanced security headers and published security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is professional and trustworthy, with active social media presence and consistent branding.

B

Because

becauseprod.com

48

Because Production Services is a Swiss-based company specializing in comprehensive production services including scouting, casting, equipment rental, location management, crew hiring, permits, and logistical support for film and commercial shoots. Founded in 2013 by experienced line producers, the company targets brands and agencies globally seeking professional production support in Switzerland. Their market position is that of a trusted local partner with a broad network and expertise in various production scales. Technically, the website is built on WordPress using a professional theme and SEO plugin, hosted by Infomaniak Network SA. The site is moderately optimized for performance and mobile devices, with good SEO practices but basic accessibility features. The technical infrastructure is modern but lacks advanced security headers and DNSSEC. From a security perspective, the site uses HTTPS and has domain transfer protection but lacks DNSSEC and visible security headers. There are no published privacy or cookie policies, nor incident response or vulnerability disclosure information, which are gaps in compliance and security transparency. No forms are present on the homepage except a mailto link, reducing attack surface but also limiting data collection transparency. Overall, the website is professional and trustworthy with a solid business foundation but would benefit from enhanced security practices and privacy compliance measures to improve its risk posture and user trust.

S

SHOTZ Production Service Germany

shotzfilm.de

48

SHOTZ Production Service Germany is a well-established film production service company based in Berlin, with over 25 years of experience and a strong market position in Germany. They specialize in organizing filming, casting, and remote production services for commercials, films, and content productions. Their business model focuses on providing Hollywood-quality production experience with versatile services to a broad creative audience. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site is built on WordPress using Elementor and optimized with NitroPack, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking published security policies and incident response information. Overall, the site is trustworthy and well-maintained but could improve compliance by adding privacy and terms of service pages.

E

Ente Pro Loco Italiane APS

enteprolocoitaliane.com

63

Ente Pro Loco Italiane APS is a non-profit organization dedicated to promoting and supporting Pro Loco entities across Italy. Their mission focuses on enhancing cultural, historical, and natural heritage while fostering community engagement through innovative initiatives. The organization operates a national network offering services, affiliations, and event organization to strengthen local traditions and community development. The website reflects a professional and consistent brand presence with partnerships involving key governmental and non-governmental bodies, reinforcing its market position as a leading cultural promoter in Italy. Technically, the website is built on WordPress using modern plugins and themes, including CookieYes for consent management and interactive media features. The site is mobile-optimized with good SEO and accessibility basics, though there is room for improvement in security headers and accessibility compliance. The infrastructure supports a moderate performance level suitable for the target audience. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies, incident response contacts, and WHOIS transparency slightly reduces trustworthiness. The missing WHOIS data suggests the domain may be newly registered or privacy-protected, which warrants monitoring. Overall, the website presents a low-risk profile with strong cultural and community focus. Strategic recommendations include enhancing security headers, publishing a security.txt file, improving accessibility, and increasing transparency around domain registration to bolster trust and compliance.

O

Olsberg GmbH

olsberg-karriere.com

57

Olsberg GmbH is a historic German family-owned manufacturing company with over 440 years of history, specializing in casting technology, fine sheet metal processing, and heat technology including design-oriented stoves. The company operates through three main business units and serves industrial clients primarily in Germany and internationally. The website is professionally designed using WordPress with modern technologies and provides comprehensive information about the company, its services, and career opportunities. Privacy and cookie policies are implemented with GDPR compliance, and contact information is clearly presented. Security posture is good with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. WHOIS data for the domain is unavailable, which raises some concerns about domain registration transparency but does not detract from the professional presentation and trust signals on the site.

The website www.wohnen-in-suedtirol.it serves as a regional real estate portal affiliated with the Südtiroler Raiffeisenkassen, offering property listings for buying and renting in South Tyrol, Italy. It targets individuals seeking residential and commercial properties in the region, providing a user-friendly search interface, property details, and contact mechanisms. The site maintains a professional market position as a trusted regional real estate platform backed by a reputable banking group. Technically, the site employs a mix of established JavaScript libraries and frameworks such as jQuery, Bootstrap, and Slick Carousel, with moderate performance and good mobile optimization. Security-wise, the site enforces HTTPS, implements cookie consent compliant with GDPR, and secures user login forms, though it uses an outdated jQuery version that could pose vulnerabilities. Overall, the site demonstrates a solid security posture with room for improvement in updating libraries and enhancing security headers. The domain registration data aligns well with the business claims, indicating legitimacy and a longstanding presence since 2004. No blocking or WAF challenges were detected, allowing full content accessibility and analysis.

O

Olsberg GmbH

olsberg-guss.com

44

Olsberg GmbH is a German manufacturing company specializing in high-quality cast iron products for various industrial sectors. Operating from three locations in Germany, the company offers comprehensive services including series and hand molding, surface treatment, machining, and logistics. The website reflects a professional and well-structured digital presence, leveraging WordPress with modern plugins and frameworks to deliver a responsive and user-friendly experience. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements such as DNSSEC and enhanced security headers are recommended. Overall, the site demonstrates strong business credibility and compliance with GDPR requirements.

P

PlayRight

playright.be

48

PlayRight is a Belgian collective rights management organization dedicated to managing the neighboring rights of performing artists. Established in 2010, it serves as a key entity in the Belgian media and non-profit sector, providing services such as rights management, financial support, and educational resources for artists. The website reflects a professional and consistent brand image with clear communication channels and multilingual support, targeting performing artists and stakeholders in Belgium. Technically, the site is built on WordPress with modern plugins and frameworks, offering good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response information. Overall, the site is trustworthy and well-maintained, supporting its business goals effectively.

E

European Internet Services Providers Association

euroispa.org

74

EuroISPA is a well-established pan-European association representing over 3,300 Internet Service Providers across EU and EFTA countries. Founded in 1997 and headquartered in Brussels, it serves as the voice of the ISP industry in Europe, focusing on policy advocacy, intermediary liability, cybersecurity, and data protection. The organization operates as a membership association, facilitating best practice exchanges and representing ISPs of all sizes. The website reflects a professional and consistent brand image with clear contact information and active social media presence, reinforcing its market position as a leading industry association. Technically, the website is built on WordPress using the Enfold theme, enhanced with Yoast SEO and Google reCAPTCHA for security. The site is mobile-optimized and includes structured data for SEO benefits. Performance is moderate with good SEO and basic accessibility features. Security posture is solid with HTTPS enforced and anti-bot measures in place, though it lacks some advanced security headers and explicit incident response documentation. From a security perspective, the site shows no signs of vulnerabilities or exposed sensitive data. However, the absence of WHOIS transparency and missing domain registration details slightly reduce trustworthiness. No explicit security policies or vulnerability disclosure mechanisms are published, which could be improved to enhance stakeholder confidence. Overall, the site is safe, professional, and trustworthy with room for security and compliance enhancements. The overall risk is low given the organization's nature and website content, but improving WHOIS transparency and publishing security policies would strengthen legitimacy and compliance posture.

O

Olsberg GmbH

olsberg.com

57

Olsberg GmbH is a historic German family-owned manufacturing company with over 440 years of history, specializing in three main business units: casting technology, heating technology, and fine sheet metal technology. The company offers customized, high-precision products and solutions serving various industrial sectors. The website reflects a professional and consistent brand image, supported by multiple subsidiary domains and active social media presence. Technically, the site is built on WordPress with modern libraries and frameworks, providing a good user experience and mobile optimization. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. The lack of WHOIS transparency slightly reduces trust but does not outweigh the strong business signals and compliance with GDPR. Overall, the site is well-maintained and credible.

A

Alamode Film

alamodefilm.de

66

Alamode Film is a specialized film production and distribution company focusing on sophisticated cinema and film re-releases. Their website showcases current and upcoming films, home entertainment releases, news, trailers, and company information, targeting film enthusiasts and media professionals primarily in Germany. The company maintains a professional digital presence with active social media channels and a modern WordPress-based website. Technically, the site uses contemporary plugins and libraries, ensuring moderate performance and good mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though some security headers and incident response details are missing. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the website reflects a trustworthy and professional business with room for enhanced security practices and transparency in incident handling.

R

Roomthree Design

roomthree.com

53

Roomthree Design is a Dublin-based design agency specializing in visual communications, including website development, graphic design, brand identity, and print design. Recently integrated into the Communicraft family, they leverage enhanced expertise in user experience and advanced web development. Their market position is that of a small but established agency serving clients with complex messaging needs, particularly in the public sector and corporate domains. The website showcases a professional portfolio and clear service offerings, targeting organizations seeking bespoke design solutions. Technically, the website is built on WordPress using the Divi theme, incorporating standard web technologies such as jQuery and MediaElement.js. Google Analytics and Google Tag Manager are employed for user tracking. The site demonstrates moderate performance and good mobile optimization but lacks advanced accessibility features and comprehensive SEO optimizations. From a security perspective, the site uses HTTPS (assumed though not explicitly confirmed in provided data) but lacks visible security headers and published privacy or cookie policies, indicating compliance gaps. No incident response or vulnerability disclosure information is available. The absence of WHOIS data reduces trust in domain legitimacy, though the website content and business information appear professional and credible. Overall, the site presents a moderate risk profile with room for improvement in privacy compliance, security best practices, and transparency. Strategic enhancements in these areas would strengthen trust and regulatory adherence.

P

Plattformland Südtirol

plattformland.org

55

Plattformland Südtirol is a South Tyrolean alliance focused on sustainable development and networking for rural areas. Founded in 2013 and institutionalized as an association in 2017, it serves as a collaborative platform for key regional stakeholders including farmers, municipalities, and various organizations. The website presents a professional and well-structured digital presence, offering information on projects, events, and expert advisory boards. It targets stakeholders interested in rural development and intelligent land use within South Tyrol. Technically, the website is built on WordPress using the Enfold theme, enhanced with multilingual support (WPML), GDPR compliance tools (Complianz), and interactive elements like LayerSlider and embedded Vimeo videos. The site is mobile-optimized and employs modern web technologies, though some accessibility features could be improved. Performance is moderate with good SEO practices implemented. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, which slightly reduces trustworthiness but the website content and contact information suggest a legitimate organization. Overall, Plattformland Südtirol demonstrates a solid digital presence with good content quality and privacy compliance. Strategic improvements in security headers, incident response transparency, and WHOIS data availability would enhance trust and security posture.

A

Alamode Film

bachmannfilm.com

55

Alamode Film is a specialized film distribution and production company focused on high-quality and sophisticated cinema releases, primarily serving German-speaking audiences. The company maintains a professional online presence with detailed film promotion, social media engagement, and a dedicated e-commerce platform for DVD sales. Their market position is niche but well-defined, targeting cinephiles and cultural film enthusiasts. Technically, the website is built on WordPress with modern plugins and APIs, offering a responsive and content-rich experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some advanced security headers and policies could be improved. Overall, the site is trustworthy, compliant with GDPR, and free from suspicious content or vulnerabilities.

D

DotAsia Organisation

dot.asia

58

DotAsia Organisation operates the .Asia top-level domain registry, serving individuals, businesses, and organizations interested in Asian internet presence. The organization emphasizes community governance, transparency, and social impact through charitable initiatives. The website is professionally designed using WordPress and Divi theme, with modern SEO and accessibility features. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data is privacy protected but consistent with a legitimate registry operator. Overall, the site reflects a mature, credible, and community-focused internet registry with a solid technical foundation and good privacy compliance.

F

Film Association of South Tyrol (FAS)

fas-film.net

46

The Film Association of South Tyrol (FAS) is a professional organization representing film industry professionals in South Tyrol, Italy. It serves as a hub for filmmakers, actors, production companies, and service providers, promoting the region as a film-friendly location and supporting local film productions with international aspirations. The website is well-structured, bilingual (German and Italian), and provides clear information about the association's mission, membership, and news. The presence of partner logos and a newsletter subscription indicates active community engagement. Technically, the website is built on WordPress using WPBakery Page Builder and common JavaScript libraries such as jQuery and MediaElement.js. It employs HTTPS with a valid SSL certificate and includes a GDPR-compliant cookie consent mechanism. The site is moderately optimized for performance and mobile devices, with good SEO practices evident from meta tags and structured navigation. From a security perspective, the site uses HTTPS and cookie consent but lacks explicit security headers and does not provide visible security policies or incident response contacts. The WHOIS data for the domain is unavailable, which is unusual but the website content and professional presentation suggest legitimacy. No critical vulnerabilities or exposed sensitive data were detected. Overall, the site presents a trustworthy and professional front for the Film Association of South Tyrol, with minor improvements recommended in security headers and transparency around security policies. The missing WHOIS data warrants monitoring but does not currently indicate malicious intent.

I

Internet Society (ISOC) France

isoc.fr

43

Internet Society France is the French chapter of the global Internet Society, dedicated to protecting internet users and promoting an open, accessible, and neutral internet. The organization operates as a non-profit, engaging in advocacy, education, and community building within France and internationally. Their website reflects a professional presence with clear mission statements, event information, and membership opportunities. The organization is well-established with a domain age consistent with its founding date and maintains active social media channels for outreach. Technically, the website is built on WordPress using modern plugins such as WPBakery Page Builder and Smart Slider 3, with integration of SEO tools like Yoast. Hosting appears to be through OVH with DNS managed via AWS, indicating a robust infrastructure. The site is mobile optimized and performs moderately well, though accessibility features are basic. SEO practices are good, with proper meta tags and structured data. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security or incident response policies. There is no visible cookie consent mechanism, which is a GDPR compliance gap. No vulnerability disclosure or security.txt files are present. Overall, the security posture is adequate but could be improved with additional best practices. The risk assessment is low given the organization's non-profit nature, clear contact information, and consistent domain registration. Strategic recommendations include implementing cookie consent, adding security headers, publishing security policies, and establishing a vulnerability disclosure process to enhance trust and compliance.

G

GERMAX Gerli GmbH

germax.net

50

GERMAX media is a well-established marketing and advertising agency based in Aachen, Germany, founded in 2000. The company offers a broad range of services including web design, corporate design, consulting, and campaign management, targeting businesses and public institutions. Their website reflects a professional and consistent brand image with a comprehensive portfolio and client testimonials, indicating a strong market position in the regional media sector. Technically, the site uses a variety of JavaScript libraries and plugins to deliver a responsive and visually appealing experience, though it appears to be custom-built rather than relying on a popular CMS. Security-wise, the site lacks DNSSEC and explicit security headers, and no cookie consent mechanism is implemented despite a detailed privacy policy. The domain registration is consistent with the business claims, showing a mature and legitimate online presence.

V

vaClavinek s.r.o.

imrvere.com

43

Imrvére is a small hospitality business based in Frýdlant nad Ostravicí, Czech Republic, offering restaurant dining, catering, and food delivery services. The company operates a professionally designed WordPress website using the Divi theme and WooCommerce for e-commerce capabilities. The site is well-structured with good SEO practices and mobile optimization, targeting a general audience interested in unique gastronomic experiences. Technically, the website leverages modern web technologies and integrates Google Analytics for user tracking. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though it lacks some security headers and published security policies. The absence of WHOIS registration data is a notable concern, potentially indicating privacy protection or registration issues, which slightly impacts trustworthiness. Overall, the website presents a credible and professional business presence with room for improvement in privacy compliance and security transparency.

T

tolk.ai - Generative AI powered Chatbot and Livechat solutions

tolk.ai

65

tolk.ai is a French technology company specializing in generative AI-powered chatbots and livechat solutions for customer relations. Their platform offers no-code deployment, integration with various web services, and analytics capabilities to enhance customer experience and operational efficiency. The company targets businesses seeking advanced AI automation for pre- and post-sales customer support. The website demonstrates a professional digital presence with good SEO, structured data, and moderate use of analytics and marketing tools. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security policies and cookie consent mechanisms are absent. WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is justified for this business type. Overall, tolk.ai presents as a credible and modern SaaS provider in the AI customer service space.

A

AGIR 53

agirenmayenne.fr

46

AGIR 53 operates a regional platform 'AGIR en Mayenne' dedicated to providing resources and support for businesses engaged in Corporate Social Responsibility (RSE) and sustainable transitions in the Mayenne region of France. The platform offers a variety of services including training, financing information, an annuaire (directory), events, and webinars, targeting local enterprises seeking to integrate sustainable practices. The website is co-constructed by reputable regional partners, the Chamber of Commerce and Industry (CCI) of Mayenne and Laval Économie, reinforcing its credibility and regional focus. Technically, the site is built on a modern WordPress CMS with Elementor and Yoast SEO plugins, ensuring good SEO and user experience. The site is mobile optimized and uses GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the platform presents a professional, trustworthy, and well-maintained digital presence supporting regional sustainable business initiatives.

U

UDES

udes.fr

46

UDES is a prominent French non-profit organization representing employers in the social and solidarity economy sector. It aggregates 22 employer groups across 17 professional branches, representing over 200,000 enterprises and nearly 2.7 million employees. The website reflects a professional and consistent brand presence, targeting employers and stakeholders in the ESS sector with services including representation, social dialogue, publications, and events. Technically, the site is built on Drupal 7 with a modern front-end stack including Bootstrap and jQuery, delivering a responsive and accessible user experience. While performance is moderate, the site benefits from HTTPS and integration with Google Tag Manager and Analytics, though some libraries like jQuery are outdated. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and incident response information. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. WHOIS data is missing, which slightly impacts trust but the overall site professionalism mitigates concerns. Overall, UDES presents a credible and authoritative online presence for its sector, with recommendations to improve security headers, update libraries, and enhance privacy compliance to strengthen trust and resilience.

I

Institut français NL

institutfrancais.nl

45

Institut français NL is a medium-sized non-profit organization dedicated to fostering Franco-Dutch cooperation in culture, education, research, and the French language. The organization offers a variety of programs including artist residencies, language courses, scholarships, and professional mobility initiatives. The website reflects a well-established institution with a clear mission and a broad network of partners across the Netherlands. Technically, the site is built on WordPress with modern SEO and analytics tools, hosted by OVH with DNSSEC enabled, indicating a secure and stable infrastructure. Security posture is good with HTTPS enforced and use of hCaptcha for form protection, though additional security headers and policies could enhance the overall security framework. Privacy compliance is strong with clear policies and cookie consent mechanisms in place. Overall, the website is professional, trustworthy, and well-positioned to serve its target audience effectively.

The website represents the Festival International du Film Ornithologique de Ménigoute, a well-established non-profit cultural event focused on wildlife and nature documentaries, particularly ornithology. Founded in 1985 and organized by Association MAINATE, it serves a general audience interested in nature and film. The site provides comprehensive information about the festival's program, activities, and participation opportunities, supported by social media and newsletter engagement. Technically, the site is built on the Contao CMS platform with modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit security policies. WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of organization. Overall, the site is professional, trustworthy, and well-maintained.

T

Terre et Humanisme

terre-humanisme.org

49

Terre et Humanisme is a well-established French non-profit association dedicated to promoting agroecology and permaculture through education, solidarity projects, and expertise. With over 30 years of activity, it serves both individuals and professionals, leveraging a strong network of partners and animators. The website is professionally designed, content-rich, and provides multiple engagement channels including training, immersion stays, and an online store. Technically, the site is built on WordPress with modern plugins and integrations such as Google reCAPTCHA and Sendinblue for newsletters, hosted by Nuxit. Security posture is good with HTTPS and consent mechanisms, though improvements like DNSSEC and CSP headers are recommended. Overall, the site is trustworthy, compliant with GDPR, and provides a positive user experience.

L

Les Nouvelles Voix

lesnouvellesvoixasso.org

56

Les Nouvelles Voix is a French non-profit association dedicated to supporting emerging leaders in climate and social justice through a structured multi-month program aimed at enhancing their leadership, public visibility, and networking capabilities. The organization positions itself as a niche player in the ecological transition sector in France, collaborating with reputable partners and foundations to amplify its impact. The website is built on a WordPress platform with modern JavaScript libraries such as GSAP and jQuery, hosted by Gandi SAS, and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact information is limited to a contact form without explicit emails or phone numbers. Overall, the site is professional, trustworthy, and safe for general audiences, but could improve in privacy compliance and security best practices.

C

Centre For Shaiva Studies

shaivastudies.in

48

The Centre For Shaiva Studies is a small, specialized academic research institute based in India, focusing on the advanced study of Shaiva traditions. It offers fellowships, publishes critical editions, and conducts lectures to promote scholarly understanding of Shaivism. The website is professionally designed using WordPress with the Avada theme and Yoast SEO, providing a good user experience and clear navigation. Contact information and physical address are clearly presented, enhancing business credibility. However, the site lacks published privacy and cookie policies, security policies, and incident response contacts, which are important for compliance and trust. The security posture is good with HTTPS and no exposed sensitive data, but could be improved by adding security headers and formal policies. Overall, the site is safe, accessible, and trustworthy, serving its academic and cultural mission effectively.

Medias Libres is a French independent media coordination platform operated by the Coordination Permanente des Médias Libres (CPML). It serves as a collaborative hub for media outlets that reject both public and commercial private audiovisual media, aiming to foster a third sector of media through shared experiences and collective action. The website is built on WordPress and hosted by Scaleway SAS, reflecting a modest but stable technical infrastructure. The site is well-structured with good content relevance and navigation, targeting French-speaking media professionals and activists interested in alternative media.

M

Mauges Communauté

rencontres-tepos.fr

42

Rencontres TEPOS is a professionally managed event website dedicated to the 15th national meetings focused on energy transition in rural territories in France. The site is operated by Mauges Communauté in partnership with the réseau Cler, targeting local authorities, associations, and enterprises engaged in sustainable energy initiatives. The website provides rich multimedia content, event information, and partner details, reflecting a mature digital presence for a specialized community event. Technically, the website is built on WordPress with a modern theme and uses common web technologies such as Google Analytics and YouTube embeds. The hosting is provided by OVH, a reputable provider. The site is mobile-optimized and includes cookie consent mechanisms aligned with GDPR requirements. Security posture is good with HTTPS enforced, though some security headers could be improved. No critical vulnerabilities or suspicious indicators were found. Privacy policies and cookie consent are clearly presented, supporting compliance. Contact information is transparent and professional, enhancing trustworthiness. The domain registration is consistent with the event's timeline and purpose. Overall, the website demonstrates a solid security and compliance posture suitable for its business model and audience, with room for minor improvements in security headers and incident response disclosures.

L

L’Ecole Nationale Supérieure Agronomique de Toulouse (ENSAT)

ensat.fr

55

ENSAT is a reputable public engineering school in France specializing in agronomy, environment, food, and oenology education. It serves a medium-sized student body and maintains strong partnerships with regional and international institutions. The website reflects a professional educational institution with clear communication channels and certifications. Technically, the site uses a Java-based CMS (Ametys) with modern front-end libraries and implements cookie consent mechanisms compliant with GDPR. Security posture is good with HTTPS enforced, though security headers could be improved. WHOIS data is unavailable, likely due to privacy protection, but this does not detract from the site's legitimacy. Overall, ENSAT presents a trustworthy and well-maintained digital presence.

P

PerPetum Energy

perpetumenergy.com

56

PerPetum Energy is a medium-sized company specializing in electrical decarbonization solutions, including photovoltaic energy, wind power, EV charging, energy storage, and flexibilization services. The company targets industrial consumers, developers, infrastructure owners, public entities, and communities aiming for CO2 emission-free energy transitions. Their business model encompasses development, EPC contracting, investment, operation, and maintenance of renewable energy projects. The website is professionally designed, multilingual, and content-rich, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and tracking tools, offering good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent but lacks explicit security headers and incident response information. WHOIS data is missing or inconsistent, which slightly impacts trust but the website content and social media presence support legitimacy. Overall, the site demonstrates a strong business and technical foundation with room for security and transparency improvements.

Q

QUARTIS, s.r.o.

batavan.cz

47

Batavan.cz is a Czech cosmetics brand with over 20 years of history, operated by QUARTIS, s.r.o. The company specializes in manufacturing and retailing cosmetic products including foot care, body care, anti-cellulite, and spa products. The website is professionally designed using WordPress with WooCommerce and Elementor, supporting multiple languages and providing a smooth user experience. The business targets general consumers interested in wellness and beauty products within the Czech Republic. The site includes comprehensive privacy and cookie policies, with a consent mechanism compliant with GDPR. Contact information and company registration details are clearly presented, enhancing trust and credibility. Technically, the site uses modern web technologies and integrates Google Analytics and Facebook SDK for marketing and analytics purposes. Security posture is good with HTTPS enforced, though some security headers could be improved. No signs of blocking or WAF interference were detected, and the domain registration data aligns well with the business claims, supporting legitimacy.

E

EDP

edpenergia.es

69

EDP Energia is a large energy company operating in Spain, focusing on providing sustainable and innovative energy solutions for businesses. Their website highlights key services such as solar energy installations, electricity and gas supply, electric vehicle charging infrastructure, and energy efficiency services. The company positions itself as a leader in the energy sector with a strong emphasis on renewable energy and business customer support. Technically, the website uses a modern CMS (webControl CMS 3.5) and integrates various marketing and analytics tools including Google Tag Manager, Google Analytics, and Visual Website Optimizer. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses Google reCAPTCHA, but lacks visible security headers and published security policies or incident response contacts. Privacy compliance is basic with no explicit privacy or cookie policies detected on the analyzed page. Overall, the website is trustworthy and professional but could improve transparency and security posture by adding privacy policies, cookie consent mechanisms, and security disclosures.

P

PerPetum Energy

perpetum.be

10

PerPetum Energy is a renewable energy company specializing in electrical decarbonization solutions including photovoltaic energy, wind power, EV charging, energy storage, and flexibilization services. The company targets industrial consumers, developers, infrastructure owners, public entities, and communities aiming to reduce CO2 emissions. The website is built on WordPress with modern plugins and tracking tools, offering a professional and content-rich user experience. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly visible. The absence of WHOIS registration data raises some concerns about domain legitimacy, but the website content and business presence appear credible and professional.

M

MojoHost, B.V.

mojohost.eu

58

MojoHost, B.V. is a European hosting provider specializing in dedicated servers, VPS, cloud compute, cloud storage, and CDN services, primarily targeting businesses and technical users in Europe. The company emphasizes quality service, local payment options, and European IP address space, with a strong brand presence since 1999. Their website reflects a professional and consistent brand image with comprehensive service offerings and customer support portals. Technically, the site is built on WordPress with modern plugins and SEO optimizations, delivering a good user experience with mobile responsiveness and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The WHOIS data is privacy protected, which is typical for hosting providers, and no suspicious patterns were detected. Overall, the site is trustworthy and well-positioned in the European hosting market.

Z

Zaclys

zaclys.com

66

Zaclys is a French-based provider of open-source, privacy-respecting web and cloud services targeting individuals, families, small organizations, and professionals. With over 42,000 users and a subscription-supported business model, Zaclys offers a broad portfolio of services including cloud storage, email, social networking (Mastodon), collaborative tools, and video conferencing. The website is professionally designed using WordPress and Divi, with a focus on accessibility and user experience. Technically, the site employs modern web technologies and plugins to support user management and GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and vulnerability disclosures are absent. The WHOIS data is missing, which raises some concerns about domain registration transparency, but the website content and service offerings appear legitimate and trustworthy. Overall, Zaclys presents a mature, privacy-conscious service provider with a strong community and partnership ecosystem.

J

JackLeckerman Company

jackleckerman.com

63

JackLeckerman Company is a specialized business intelligence event organizer focusing on the pharmaceutical and biotechnology sectors primarily in Latin America, Europe, and North America. The company organizes global summits, strategic conferences, open forums, and professional training programs tailored to industry needs. Their market position is strong within their niche, supported by a professional website featuring event recaps, promotional videos, and active social media engagement. The business operates from Slovakia and has been established since 2016, with a clear focus on fostering collaboration and innovation in healthcare markets. Technically, the website is built on WordPress using the Divi theme and incorporates modern web technologies such as jQuery, MediaElement.js, Google reCAPTCHA, Hotjar analytics, and Chatra live chat. Hosting is provided by a Slovakian provider (websupport.sk), and the site is secured with HTTPS. The site demonstrates good mobile optimization, SEO practices, and basic accessibility features, although there is room for improvement in security headers and DNSSEC implementation. From a security perspective, the site uses HTTPS and includes anti-spam measures like Google reCAPTCHA. Cookie consent mechanisms are implemented, and privacy policies are clearly available, indicating good privacy compliance. However, explicit security policies and incident response information are absent, and security headers are not detected, which could be enhanced to improve the security posture. No vulnerabilities or suspicious activities were identified in the analysis. Overall, the website presents a professional and trustworthy digital presence for JackLeckerman Company. The domain registration data aligns well with the business claims, and the site provides comprehensive contact information and social proof. Strategic recommendations include enhancing security headers, enabling DNSSEC, and publishing explicit security and incident response policies to further strengthen trust and compliance.

A

AFNOR

marque-nf.com

60

The website marque-nf.com represents the NF certification mark, a leading European certification brand managed by AFNOR Group. It serves consumers, manufacturers, and service providers by providing certification services that attest to product and service quality and compliance with relevant standards. The site is professionally designed, multilingual (French and English), and well-structured to facilitate user navigation and information discovery. The business is well-established with a domain age dating back to 1999, reinforcing its credibility and market presence. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder and Yoast SEO, ensuring good SEO and content management capabilities. It employs Google Tag Manager and reCAPTCHA for analytics and security, respectively, and uses Didomi for cookie consent management, indicating compliance with privacy regulations. Performance is moderate with good mobile optimization, though accessibility could be improved. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks DNSSEC and explicit security headers, which are recommended for enhanced protection. No vulnerabilities or exposed sensitive data were detected. The absence of a security.txt file and incident response contacts suggests room for improvement in vulnerability disclosure and incident management. Overall, marque-nf.com is a trustworthy, professional website representing a reputable certification entity. Strategic recommendations include enhancing DNS security, implementing security headers, publishing vulnerability disclosure information, and improving accessibility compliance to strengthen security posture and user trust.

A

Alice Salomon Hochschule Berlin

ash-berlin.eu

66

Alice Salomon Hochschule Berlin (ASH Berlin) is the largest German state university specializing in social work, health, education, and upbringing, offering 20 Bachelor and Master degree programs. The institution targets students, researchers, and continuing education participants, including international students. The website reflects a professional and comprehensive digital presence with rich content about academic programs, research, events, and student support services. The business model is that of a public higher education institution with a strong emphasis on social responsibility and international cooperation. Technically, the website is built on TYPO3 CMS and uses modern web technologies such as jQuery, Bootstrap, and MediaElement.js. It is mobile-optimized, accessible, and SEO-friendly. The site employs Matomo analytics with a cookie consent mechanism, indicating a privacy-conscious approach. No blocking or WAF challenges were detected, and the site is served over HTTPS with good security practices, although some security headers could be improved. Security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the WHOIS data is privacy protected and unavailable, which is common for EU domains but limits transparency. The website maintains GDPR compliance with a comprehensive privacy policy and cookie consent. Overall, the site is trustworthy, professional, and well-maintained. The main risk is the lack of publicly available WHOIS registrant data, but given the institutional nature and consistent content, this is not a significant concern. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and adding a security.txt file to improve vulnerability disclosure transparency.

C

Czech Soles Production

czechsoles.com

40

CzechSoles.com operates as a niche adult entertainment website specializing in foot fetish content, offering a large catalog of videos, photo galleries, custom clips, and live webcams. The site targets an adults-only audience with explicit disclaimers and age verification statements. The business model is subscription-based with additional custom content sales, positioning itself as a specialized media provider within the adult entertainment industry. The website demonstrates consistent branding and a professional presentation with a focus on quality multimedia content. Technically, the site uses common JavaScript libraries and integrates Google reCAPTCHA Enterprise for bot protection, but lacks advanced security headers and explicit privacy consent mechanisms. Payment processing is handled by a reputable third party, CCBill, enhancing transactional trust. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency.

F

Femdom Empire

femdomempire.com

9

Femdom Empire is a niche adult entertainment website specializing in femdom fetish videos. Established in 2011, it operates a subscription-based business model offering weekly updates and access to exclusive video content. The site targets an adult audience interested in hardcore dominatrix and fetish video content. Technically, the website uses a custom CMS with a variety of JavaScript libraries including jQuery, Fancybox, and Flexslider to provide a multimedia-rich user experience. Hosting is provided by MojoHost, and the domain is registered with GoDaddy, reflecting a stable and consistent digital infrastructure. Security posture is moderate with HTTPS usage and age verification mechanisms, but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy present but no explicit cookie policy. Overall, the site is professionally designed with good navigation and content relevance but could improve in security and privacy transparency. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing detailed security and incident response policies, and improving privacy and cookie consent mechanisms.