Security Directory

I

Innovation Ads Croatia

iac.hr

54

Innovation Ads Croatia is a small, established digital agency based in Rijeka, Croatia, specializing in web design, graphic design, video production, and visual identity services. With over 25 years of experience, the company positions itself as a reliable partner offering professional and creative digital solutions to local businesses and individuals. The website is built on WordPress with Elementor, indicating a modern and maintainable technical infrastructure. The presence of Google Analytics and Cloudflare DNS shows a standard digital maturity level. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and published security policies. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the website is professional and trustworthy, with room for improvement in privacy and security transparency.

P

Polskie Towarzystwo Żywienia Klinicznego Dzieci

ptzkd.org

59

Polskie Towarzystwo Żywienia Klinicznego Dzieci is a Polish non-profit clinical nutrition society focused on pediatric healthcare. Established in 2011, it provides educational courses, conferences, clinical nutrition standards, and membership services to healthcare professionals in Poland. The website reflects a professional and consistent brand presence targeting medical professionals and supporting members. Technically, the site is built on WordPress with Elementor and Slider Revolution, hosted on home.pl, and uses modern web technologies including Google Fonts and Google Maps API. The site is mobile-optimized and has good SEO and accessibility basics. Security posture is adequate with HTTPS and cookie consent management via Usercentrics, but lacks DNSSEC and explicit security headers. WHOIS data confirms domain legitimacy and consistency with the business. Overall, the site is trustworthy and well-maintained with minor security improvements recommended.

F

Fundacja Onkocafe - Razem Lepiej

onkocafe.pl

58

Fundacja Onkocafe - Razem Lepiej is a Polish non-profit foundation established in 2013, focused on supporting patients with breast and prostate cancer through education, psychological support, and advocacy. The website is professionally designed using WordPress and integrates modern technologies such as Google Tag Manager, Cookiebot for cookie consent, and reCAPTCHA for form security. The foundation maintains an active social media presence across Facebook, Instagram, Twitter, YouTube, and LinkedIn, enhancing its outreach and engagement with its target audience. The domain registration data aligns well with the organization's profile, indicating legitimacy and stability. Technically, the website is well-structured with good mobile optimization and SEO practices. However, there is room for improvement in security posture, as no security headers were detected, and DNSSEC is not enabled for the domain. Privacy compliance is partial; while cookie consent is implemented, a dedicated privacy policy page is missing, which is a compliance gap. Contact information is clearly presented, including a phone number and contact page link, but no verified company email addresses were found in the HTML content. Overall, the security posture is moderate with good HTTPS implementation and use of security tools like reCAPTCHA. The absence of a vulnerability disclosure policy and security.txt file suggests limited incident response transparency. The website content is safe, targeted at a general audience interested in cancer patient support, with no adult or questionable content detected.

F

Fokus Praha

fokus-praha.cz

51

Fokus Praha is a well-established non-profit organization based in the Czech Republic, dedicated to providing social and health support to individuals facing serious mental health challenges. The organization holds a strong market position as the largest NGO in the country focused on mental health. Their website reflects a professional and consistent brand image, with clear descriptions of their mission and services targeted at affected individuals and stakeholders. Technically, the site is built on WordPress using modern themes and plugins, including Astra and Yoast SEO, ensuring good SEO and mobile responsiveness. Security measures include HTTPS, Google reCAPTCHA, and a cookie consent mechanism, although explicit privacy and security policies are not present on the homepage. Overall, the site is accessible, trustworthy, and demonstrates a moderate to good security posture.

D

Dobrovolnické centrum, z.s.

dcul.cz

44

Dobrovolnické centrum, z.s. is a Czech non-profit organization with a 25-year history dedicated to connecting volunteers with those in need across various sectors including sports, culture, and community support. The organization operates volunteer programs supporting children, youth, seniors, and persons with disabilities, and maintains international partnerships to promote volunteering in Europe. Their digital presence is built on a WordPress platform hosted by WEDOS Internet, a.s., featuring modern web technologies and responsive design. The website is well-structured, professionally designed, and provides clear contact information and social media links, although it lacks privacy and cookie policies which are important for GDPR compliance. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Overall, the site is trustworthy and serves its community-focused mission effectively.

Iisii solutions GmbH operates a specialized online appointment booking platform (O-TIS) fully integrated with the EVIDENT TIS practice management system, targeting medical practices in Germany. Their solution enables real-time appointment scheduling, automated reminders, and patient self-service, enhancing operational efficiency and patient satisfaction. The company positions itself as an exclusive partner of EVIDENT, emphasizing seamless integration and automation to reduce manual workload in medical practices. Technically, the website is built on WordPress with modern plugins such as WPBakery Page Builder and Borlabs Cookie for GDPR compliance. The site is mobile-optimized and uses HTTPS with secure data transmission. While the technical stack is modern and the site performs moderately well, there is room for improvement in security headers and accessibility features. Security posture is solid with HTTPS and secure forms, but lacks published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website and business present a professional and trustworthy image with a strong focus on healthcare technology solutions. Strategic improvements in security transparency and technical hardening could further enhance trust and compliance.

B

Bundesverband Altbauerneuerung e.V.

bakaberlin.de

44

Bundesverband Altbauerneuerung e.V. (BAKA) is a well-established non-profit organization based in Germany, focusing on sustainable building, energy efficiency, and education related to building renovation and climate protection. The website serves as a comprehensive platform offering knowledge sharing, networking, certification, and educational seminars targeted at professionals such as architects, engineers, energy consultants, and building owners. The organization leverages a modern WordPress-based infrastructure with WooCommerce for e-commerce functionalities and integrates various plugins for enhanced user experience and SEO. Security posture is solid with HTTPS enforcement, use of reCAPTCHA, and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the website reflects a professional and trustworthy digital presence aligned with the organization's mission and market position.

Ilse Bus is a regional demand-responsive public transportation service operating in rural areas of Mecklenburg-Vorpommern, Germany. It provides flexible bus rides connecting rural locations to cities, bookable via phone, internet, or smartphone apps. The service operates primarily on weekdays with some weekend availability under VVG. The website is built on WordPress using Elementor and Yoast SEO, hosted by Schlundtech, and includes accessibility and privacy compliance features. While security policies and incident response contacts are not explicitly provided, the site uses HTTPS and privacy plugins to ensure GDPR compliance. The digital infrastructure supports app-based booking and integrates Google Maps for location services. Overall, the site presents a professional and trustworthy interface for its target audience.

G

GoldKnights

goldknights.org

9

GoldKnights is a small, independent game development studio founded in 2015 and headquartered in Prague, Czechia, with operations also in the USA. The company focuses on premium game development using Unreal Engine and has released notable titles such as 'The Last Oricru'. They also operate an indie brand, Mystiqular, for smaller projects and provide outsourcing services to other game studios. The website reflects a professional presence with clear business information and consistent branding. Technically, the site is built on WordPress with a standard theme and uses jQuery, hosted by WEDOS Internet. Performance and mobile optimization are adequate but could be improved. Security posture is moderate with HTTPS enabled but lacking important security headers and DNSSEC. Privacy and compliance policies are missing, representing a compliance risk. Contact information is limited but includes verified company emails and physical addresses. No tracking or advertising scripts were detected, indicating minimal user tracking.

S

Skybound Game Studios, Inc.

invinciblevs.com

10

Invincible VS is a newly launched video game project by Skybound Game Studios, Inc., focusing on a brutal 3v3 tag fighting game set in the Invincible universe. The website serves as a promotional and community engagement platform, offering detailed character profiles, game highlights, and closed alpha registration. The business targets gamers and fans of the Invincible franchise, positioning itself within the niche superhero fighting game market. Technically, the site is built on WordPress with modern plugins and integrates Cloudflare DNS and Google Tag Manager for performance and analytics. Security posture is solid with HTTPS, CAPTCHA on forms, and an age gate for mature content, although some security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site is professional, trustworthy, and mature-content appropriate, with a domain registration consistent with the business timeline.

I

ilogs healthcare GmbH

ilogs.care

47

ilogs healthcare GmbH is a medium-sized Austrian company specializing in innovative digital services and software solutions for telecare, eHealth, and workplace safety. With over 25 years of experience, the company offers a cloud-based IoT platform (JAMES® TeleCare Plattform) and a range of products including emergency watches, apps, tablets, and smart rings. Their target audience primarily consists of B2B partners such as care organizations, senior care providers, and workplace safety entities. The company has established itself as a recognized specialist in the European eHealth market with international operations and partnerships with research institutions. Technically, the website is built on WordPress 6.8.3 using the Breakdance page builder plugin, with multilingual support via TranslatePress. The site demonstrates good content quality, mobile optimization, and a modern tech stack, although some SEO and accessibility features could be improved. Security posture is moderate with HTTPS implied but lacking explicit security headers and vulnerability disclosure policies. Privacy compliance is supported by a comprehensive privacy policy, but cookie consent mechanisms are absent. Overall, the website presents a professional and trustworthy image consistent with a legitimate healthcare technology provider. The domain WHOIS data is privacy protected, which aligns with GDPR requirements. No critical security issues or suspicious patterns were detected. Strategic recommendations include enhancing security headers, implementing a cookie consent mechanism, and publishing vulnerability disclosure information to strengthen trust and compliance.

C

CODERS.BAY

codersbay.at

60

CODERS.BAY is a technology-focused company specializing in software development and IT solutions, positioned as an award-winning and recognized player in its industry. The website is built on WordPress using a professional commercial theme and incorporates modern JavaScript libraries to enhance user experience. The technical infrastructure shows moderate digital maturity with good mobile optimization and SEO practices, including structured data and cookie consent mechanisms. Security posture is adequate with HTTPS enforced and cookie consent blocking tracking scripts until user approval; however, the absence of security headers and explicit privacy policies indicates room for improvement. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and security practices to strengthen compliance and user trust.

N

Nadační fond Viki

nfviki.cz

41

Nadační fond Viki is a Czech non-profit foundation dedicated to supporting children and adolescents battling cancer and their families. The foundation provides financial and material aid, emotional support, and initiatives to improve patients' quality of life during and after treatment. The website is professionally designed using WordPress with modern plugins and includes clear contact information and partner references. Technically, the site uses HTTPS, cookie consent mechanisms, and Google Analytics for minimal tracking. However, it lacks a published privacy policy and terms of service, which are important for compliance. WHOIS data is unavailable, likely due to privacy protection, but the site content and partner links indicate legitimacy. Overall, the foundation maintains a good security posture with room for improvement in compliance documentation.

W

Wirtschaftsinitiative Smart Living e.V.

wislev.de

43

Wirtschaftsinitiative Smart Living e.V. is a German non-profit association focused on advancing digitalization in home and living environments to establish Germany as a leading market for Smart Living applications. The organization collaborates with approximately 40 companies, associations, and alliances, providing services such as member networking, event organization, and dissemination of studies and media related to Smart Living. The website is built on WordPress with a modern UIkit framework, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response contacts. Some hidden SEO spam links to gambling sites were detected, which could pose reputational risks. Overall, the site is professional and trustworthy but could improve privacy compliance and security practices.

S

Stavitelství Řehoř, s. r. o.

stavitelstvirehor.cz

58

Stavitelství Řehoř, s. r. o. is a Czech construction company specializing in engineering networks such as water supply, sewage, and water management structures, as well as residential and public buildings and historical reconstructions. The company holds ISO certifications (45001, 9001, 14001) indicating a commitment to quality, safety, and environmental management. Their website showcases project references and multimedia content, targeting investors, public institutions, and private clients in the Czech Republic. Technically, the site is built on WordPress with common plugins, is mobile-optimized, and uses HTTPS with a cookie consent mechanism, reflecting a moderate level of digital maturity. However, the absence of WHOIS data and security headers slightly reduces trustworthiness. Overall, the company presents a professional image with good content quality and business credibility.

S

Südniedersachsen Stiftung

suedniedersachsenstiftung.de

43

Südniedersachsen Stiftung is a regional non-profit foundation dedicated to fostering a strong and sustainable community in the Südniedersachsen region of Germany. The foundation focuses on key areas such as education, social welfare, environmental sustainability, economic development, and scientific collaboration. Their website reflects a professional and consistent brand image, targeting regional stakeholders and community members. The business model centers on supporting and coordinating regional projects to enhance the quality of life and economic prospects in the area. Technically, the website is built on a modern WordPress platform using Elementor as the page builder, supplemented by various plugins for SEO (Rank Math), event management, and cookie consent (Borlabs Cookie). The infrastructure is hosted on servers associated with kasserver.com, with a moderate performance profile and good mobile optimization. SEO and accessibility features are adequately implemented, though there is room for improvement in accessibility. From a security perspective, the site employs HTTPS and a cookie consent mechanism, but lacks visible advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected in the provided content. The absence of a privacy policy and terms of service pages is a notable compliance gap, although cookie consent is present. The WHOIS data indicates a legitimate domain registration with no privacy protection, but lacks detailed registrant information. Overall, the website presents a trustworthy and professional front for the foundation, with good business credibility and technical implementation. However, improvements in privacy compliance documentation and security best practices are recommended to enhance trust and regulatory adherence.

W

Wirtschaftsinitiative Smart Living e.V.

smartliving-germany.de

43

Wirtschaftsinitiative Smart Living e.V. is a German non-profit association focused on advancing digitalization in home and living environments, aiming to establish Germany as a leading market for Smart Living applications. The website serves as an information hub for companies, associations, and stakeholders interested in Smart Living technologies, offering resources such as showroom maps, media downloads, and event information. Technically, the site is built on WordPress with modern UIkit and Yootheme frameworks, providing a responsive and user-friendly experience. Security posture is moderate with HTTPS enabled but lacking explicit security headers and vulnerability disclosure mechanisms. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. The presence of hidden gambling-related content in the HTML is a concern for content integrity and SEO hygiene. Overall, the site is professional and trustworthy but could improve in security and privacy transparency.

Ö

öh joanneum

oeh-joanneum.at

55

öh joanneum is a student representation organization serving the FH JOANNEUM community in Austria. The website provides comprehensive information about student services including advisory, legal, housing, psychological support, and event information. It targets students primarily and operates as a non-profit entity. The site is built on WordPress with Bootstrap and uses common web technologies such as jQuery and Google Analytics with IP anonymization enabled. The technical infrastructure is moderate in performance with basic mobile optimization and accessibility features. Security posture is adequate with HTTPS enforced but lacks advanced security headers and cookie consent mechanisms. No critical vulnerabilities or suspicious content were detected. Overall, the website is trustworthy and professionally maintained, serving its intended audience effectively.

S

stkprochlapy – Web pacientské organizace STK pro chlapy pro muže s urologickým nádorovým onemocněním

stkprochlapy.cz

43

The website stkprochlapy.cz represents a patient organization dedicated to supporting men with urological cancers in the Czech Republic. It provides information on prevention, diagnosis, treatment, and patient support, positioning itself as a specialized non-profit entity in the healthcare sector. The site targets Czech-speaking men affected by urological tumors and their families, offering guidance and updates relevant to their health journey. Technically, the website is built on WordPress 6.8.3, utilizing modern plugins such as Colibri Page Builder Pro, Swiper.js, and Fancybox, with Google Analytics integrated for visitor tracking. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, HTTPS is enabled, and a cookie consent mechanism is implemented, indicating GDPR awareness. However, no explicit privacy policy or terms of service pages were found, and no security headers were detected, which are areas for improvement. WHOIS data is unavailable, likely due to privacy protection, which slightly reduces trust but is understandable for a patient support organization. Overall, the website is functional, informative, and moderately secure, serving its niche audience effectively.

T

Tourist-Information Winsener Elbmarsch

winsener-elbmarsch.de

44

The website www.winsener-elbmarsch.de serves as the official regional tourism portal for the Winsener Elbmarsch area in Germany, providing comprehensive information about local attractions, events, accommodations, and services. It targets tourists and visitors interested in exploring the region near Hamburg, offering resources such as event calendars, transport options, and cultural highlights. The site is positioned as a trusted local tourism information source with a focus on promoting regional heritage and leisure activities. Technically, the site is built on WordPress 6.8.3 using the Enfold theme and several plugins including Revolution Slider and Usercentrics for cookie consent management. The infrastructure reflects a moderate level of digital maturity with good mobile optimization and SEO practices. The site uses HTTPS with strong SSL configuration, though security headers are not explicitly detected in the HTML content. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and cookie consent compliance. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were identified. The domain WHOIS data aligns well with the website content, indicating legitimacy and consistency. Overall, the site is a well-maintained regional tourism platform with good content quality and user experience. Strategic improvements in security headers, explicit security policies, and enhanced accessibility could further strengthen its posture. No adult or questionable content is present, making it suitable for general audiences.

T

Tenis Olten Czech

tenis-olten.cz

40

Tenis Olten Czech operates a local tennis center in Dolní Jirčany, Czech Republic, offering six multifunctional tennis courts with artificial JUTA grass surfaces. The business targets tennis players and sports enthusiasts in the region, providing court rentals, coaching, and additional sports like volleyball and nohejbal. The website is built on WordPress using Oxygen Builder and integrates modern JavaScript libraries such as Swiper.js and jQuery. It features a reservation system link and detailed pricing information, supporting a straightforward business model focused on local sports facility management. Security posture is generally good with HTTPS enforced and no visible vulnerabilities, but lacks advanced security headers and formal privacy or cookie policies, indicating compliance gaps. WHOIS data is unavailable, limiting domain legitimacy verification, but the website content and structure appear professional and trustworthy for a small local business. Overall, the site scores moderately well in content quality, technical implementation, and business credibility, but privacy compliance needs improvement.

A

Aufstieg im Handwerk

aufstieg-im-handwerk.de

50

Aufstieg im Handwerk is a German educational website dedicated to providing information and resources about kaufmännische (commercial) career advancement within the handwerk (crafts/trades) sector. The site offers detailed content on advanced training programs such as Fachwirt HwO and Betriebswirt HwO, targeting professionals seeking leadership roles in handwerk businesses. The platform also provides information on financial funding options and course finders, positioning itself as a niche resource for career development in this industry. Technically, the website is built on WordPress with modern plugins like Yoast SEO and WPBakery Page Builder, hosted on netcup infrastructure. It employs Matomo analytics for privacy-conscious user tracking and complies with GDPR through the Complianz cookie consent plugin. Security posture is solid with HTTPS enforced and no exposed sensitive data, though security headers could be improved. Overall, the site is professional, well-structured, and trustworthy, with good SEO and mobile optimization.

Z

Zentralstelle für die Weiterbildung im Handwerk e. V.

zwh.de

55

ZWH (Zentralstelle für die Weiterbildung im Handwerk e. V.) is a German educational service provider focused on lifelong learning in the handwork sector. The organization supports the development and strengthening of vocational education and implements innovative projects related to labor market integration, digitalization, and sustainability. The website reflects a professional and consistent brand presence with a clear focus on its target audience of handwork professionals and educational stakeholders in Germany. Technically, the site is built on WordPress using Elementor and Yoast SEO, with privacy-conscious analytics via Matomo. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site is well-structured, accessible, and compliant with GDPR requirements.

A

Amour Getaways

amourgetaways.com

44

Amour Getaways is a specialized hospitality service provider focusing on unique, romantic travel adventures and events primarily in Puerto Rico and surrounding tropical locations. The company targets couples and groups seeking intimate and exclusive travel experiences, offering services such as tropical getaways, concierge services, romantic vacations, and exclusive retreats. Their market position is niche, catering to luxury and personalized travel experiences with a small business scale. Technically, the website is built on WordPress with modern plugins including Gravity Forms for contact and lead capture, Google Tag Manager, and Google Analytics for tracking. The site demonstrates moderate performance and good mobile optimization, with basic accessibility features. SEO is adequately addressed with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and employs some best practices such as IP anonymization in analytics and spam prevention in forms. However, it lacks visible security headers and published privacy or cookie policies, indicating compliance gaps. The absence of WHOIS data for the domain is unusual and reduces trust slightly, though the site content and contact information appear legitimate. Overall, the website presents a professional and trustworthy front for a small hospitality business but should improve privacy compliance and security hardening to enhance trust and regulatory adherence.

Č

Česká obec sokolská

sesokolemdozivota.cz

38

The website 'Se sokolem do života' is an educational and non-profit project operated by Česká obec sokolská, focused on promoting physical activity and development of motor skills among children in the Czech Republic. It holds a leading position in its niche with a strong tradition and a clear mission to motivate children to integrate movement into their daily lives. The website provides educational materials, workshops, and activities primarily targeting children and educators. Technically, the site is built on WordPress with Elementor and related plugins, offering a modern and responsive design with good SEO practices. However, the Google Analytics plugin is present but not configured, indicating incomplete analytics setup. Security posture is moderate with HTTPS enabled but lacking security headers and explicit privacy and cookie policies, which are compliance gaps. Overall, the site is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening.

S

SLEZAK Elektroanlagen GmbH

slezak.de

43

SLEZAK Elektroanlagen GmbH is a well-established German family-owned company specializing in electrical installations, switch cabinet construction, and industrial electrical services. Founded in 1987, the company operates with approximately 35 employees including apprentices, serving residential, commercial, and industrial clients. Their website reflects a professional and consistent brand image, highlighting their certifications and commitment to training the next generation of electricians. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and FontAwesome, optimized for mobile devices and SEO via the Yoast plugin. Hosting appears to be managed through a German provider consistent with the company's location. The site uses HTTPS and includes privacy consent mechanisms on its contact form, though lacks a cookie consent banner and explicit security headers. From a security perspective, the site demonstrates good practices such as encrypted connections and user consent for data collection, but could improve by implementing additional security headers and publishing incident response policies. No vulnerabilities or suspicious activities were detected. The domain registration data aligns well with the business claims, supporting legitimacy. Overall, the website presents a trustworthy and professional digital presence with room for enhancement in security policies and privacy compliance. Strategic improvements in these areas would strengthen the company's risk posture and customer trust.

H

Hotel Pod Kokšínem

hotelpodkoksinem.cz

58

Hotel Pod Kokšínem is a small hospitality business located in the Czech Republic, specializing in accommodation and services tailored for golf enthusiasts, cyclists, families, and pet owners. The hotel offers unique stay packages, quality restaurant services, and facilities for corporate events, positioning itself as a regional leader in leisure and tourism within the Brdy region. The website reflects a professional and consistent brand image with clear contact channels and multiple awards enhancing its credibility. Technically, the site is built on WordPress with modern plugins and integrations such as Google reCAPTCHA, providing a moderate to good user experience with mobile optimization and SEO considerations. Security posture is adequate with HTTPS and form protections but lacks some HTTP security headers and a cookie consent mechanism, which are recommended for compliance and enhanced security. The absence of WHOIS data for the domain is a notable risk factor, reducing trust in domain legitimacy despite the professional presentation of the website. Overall, the site is safe, family-friendly, and well-structured, serving its target audience effectively.

A

Artur Baasch GmbH

baasch-steinburg.de

51

Artur Baasch GmbH is a well-established regional Meisterbetrieb specializing in heating systems and bathroom renovation services in the Kreis Steinburg area of Germany. The company has a long history dating back to 1951 and offers a comprehensive range of services including new bathroom construction, 3D bathroom planning, heating installation, modernization, and maintenance. The website reflects a professional business model targeting residential and commercial customers seeking expert advice and quality workmanship. The presence of partner logos from reputable brands enhances trust and market positioning. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms via the Complianz plugin. Google Analytics is used with IP anonymization, reflecting attention to privacy compliance. Hosting appears to be with a German provider, consistent with the business location. From a security perspective, the site uses HTTPS and has implemented cookie consent, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data shows no privacy protection but lacks detailed registrant information, which is common for small businesses. Overall, the domain and website appear legitimate and consistent with the business claims. The overall risk assessment is low with recommendations to enhance security headers, add incident response information, and consider a vulnerability disclosure policy. The website quality is good with clear navigation, relevant content, and professional design, supporting business credibility and customer trust.

F

Frisch & Neubert GmbH

frisch-neubert.de

50

Frisch & Neubert GmbH is a well-established German company specializing in modern home technology services, particularly in heating, sanitation, and ventilation. Founded in 1994 and based in Itzehoe, the company serves private and commercial clients with a team of approximately 30 employees. Their website reflects a professional and consistent brand image, showcasing partnerships with reputable manufacturers and offering clear contact channels. Technically, the site is built on WordPress with modern frameworks like Bootstrap and includes GDPR-compliant cookie management via Borlabs Cookie. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site is accessible, well-structured, and compliant with privacy regulations, supporting a trustworthy online presence.

H

Hans Otte

hans-otte.de

53

Hans Otte is a well-established mid-sized German company specializing in energy-efficient building services including heating, sanitary installations, climate technology, and photovoltaic systems. Founded in 1988, the company serves residential and commercial clients primarily in Schleswig-Holstein and surrounding regions. The website reflects a professional business with clear service offerings, references, and partner affiliations. Technically, the site is built on WordPress with modern plugins for SEO, cookie consent, and user engagement, indicating a mature digital infrastructure. Security posture is good with HTTPS and consent mechanisms in place, though improvements are recommended in security headers and privacy policy publication. Overall, the site is trustworthy and well-positioned in its market niche.

C

Christoph Heide

christoph-heide.de

54

Christoph Heide is a well-established German company specializing in building technology services including sanitation, heating, ventilation, and electrical installations. Founded in 1927, the company serves residential and commercial customers primarily in the Heide/Dithmarschen region. Their website reflects a professional and consistent brand presence, highlighting key services such as heat pumps, bathroom renovations, and photovoltaic systems. The company holds certifications like Vaillant Kompetenzpartner and offers guarantees that enhance customer trust. Technically, the website is built on WordPress with modern plugins and technologies such as Slider Revolution, CookieYes for consent management, and Google Site Kit for analytics. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Hosting appears to be on Microsoft Azure, indicated by specific cookies. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, some security headers are not explicitly detected and could be improved. No critical vulnerabilities or exposed sensitive data were found. Incident response and explicit security policies are not published, which could be enhanced. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic improvements in security headers and incident response transparency would further strengthen their posture.

D

demokratie.today - Deutschlands Nr.1 Consul-Dienstleister

demokratie.today

51

demokratie.today is a specialized service provider focused on delivering Consul citizen participation software, positioning itself as Germany's leading Consul platform provider. The website targets German municipalities and government entities aiming to enhance democratic engagement and citizen collaboration. The business model revolves around software services and consulting for democratic participation, with a clear market position supported by social media presence and structured data implementation. Technically, the site is built on WordPress with modern plugins for SEO, performance, and multilingual support, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements are recommended in security headers and formal privacy documentation. Overall, the site is professional, trustworthy, and compliant with basic GDPR requirements, though it lacks explicit privacy and terms of service pages. Strategic recommendations include enhancing security headers, publishing privacy and incident response policies, and maintaining regular security audits to strengthen trust and compliance.

N

NordNews

nordnews.de

43

NordNews.de is a regional news media website focused on delivering the latest news and updates from northern Germany. The site provides news articles, police reports, local event coverage, and job listings, targeting the general public interested in regional information. The website uses WordPress CMS with popular plugins such as Yoast SEO and Perfecty Push Notifications, indicating a moderate level of digital maturity. The technical infrastructure supports mobile optimization and SEO best practices, although some accessibility features are basic. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and explicit privacy or cookie policies. Overall, the site is functional and professional but could improve in privacy compliance and security transparency.

L

Liechtensteinisches Handelsgewerbe

einkaufland.li

52

Einkaufland Liechtenstein is a retail association representing local shops in Liechtenstein, aiming to promote a pleasant shopping atmosphere with personal service and a diverse product range. The website serves as a platform for member directories, gift voucher sales, and local business promotion, targeting residents and visitors of Liechtenstein. The business model focuses on supporting regional retail through collective marketing and services. Technically, the website is built on WordPress with WooCommerce and Elementor, leveraging modern plugins like Slider Revolution and Cloudflare Turnstile for security. The site is well-structured, mobile-optimized, and uses HTTPS, reflecting a mature digital presence. Security posture is solid with HTTPS and captcha protections, though some security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professional, and compliant with GDPR, with clear contact information and social media presence. Strategic recommendations include enhancing security headers and publishing explicit security policies to further strengthen trust and compliance.

L

Landesspital Liechtenstein

landesspital.li

49

Landesspital Liechtenstein is a central healthcare provider in Liechtenstein, offering a broad range of medical services including emergency care, internal medicine, surgery, orthopedics, and specialized competence areas such as anesthesia and radiology. The hospital has a long-standing history of over 125 years and positions itself as a trusted institution for the local population. The website reflects a professional and comprehensive digital presence, supporting patient and visitor information, career opportunities, and detailed department descriptions. Technically, the site is built on WordPress with modern themes and plugins, optimized for performance and mobile use, and integrates privacy-respecting analytics via Plausible. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some improvements in security headers and incident response transparency are recommended. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations.

I

ITX Norge

itx.no

10

ITX Norge is a Norwegian technology company specializing in cloud-based contact center solutions that unify multiple communication channels such as telephony, email, SMS, chat, and social media into a single platform. The company emphasizes local data storage and support within Norway, targeting businesses seeking efficient and integrated customer service tools. Their market position is that of a leading Norwegian provider in this niche, offering a SaaS model with a comprehensive suite of features including CRM and live shopping capabilities. Technically, the website is built on WordPress with modern plugins like Elementor and Yoast SEO, supported by various marketing and analytics tools such as Google Tag Manager, Google Analytics, and Adform. The site is well-optimized for SEO and mobile devices, with good design and user experience. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security policies and some security headers, suggesting room for improvement in security posture. Overall, the domain registration aligns well with the business history, indicating legitimacy. The website is professional and trustworthy, though it would benefit from publishing privacy and terms of service policies to enhance compliance and user trust.

Études is a small architectural firm based in the Czech Republic, founded in 2018, focusing on innovative and sustainable architectural solutions. The company offers a range of services including renovation, restoration, consulting, project management, and digital engagement through an app and newsletter. The website is built on WordPress and hosted by a Czech hosting provider, reflecting a moderate level of technical maturity with good mobile optimization and accessibility. However, the site lacks critical privacy and security policies, contact information, and security headers, which impacts its overall security posture. No evidence of analytics or advertising tools was found, indicating minimal user tracking. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in privacy compliance, security best practices, and contact transparency are recommended to enhance trust and compliance.

Sonntag & Partner Partnerschaftsgesellschaft mbB operates as a specialized IT consulting and software development firm based in Augsburg, Germany. The company focuses on delivering tailored solutions in digital transformation, IT compliance, process management, and project management. Their market position is that of a boutique consultancy with a strong emphasis on compliance and innovative technologies such as AI and low-code development. The website reflects a professional and consistent brand image targeting business clients seeking expert IT services. Technically, the website is built on WordPress with modern plugins and libraries, including jQuery and Borlabs Cookie for consent management. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features could be enhanced. Performance is moderate, with no critical errors or broken elements detected. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, explicit security headers are not detected in the HTML content, and no dedicated security policy or incident response contacts are provided. No vulnerabilities or exposed sensitive data were found, indicating a solid baseline security posture. Overall, Sonntag IT Solutions presents a trustworthy and professional online presence with strong compliance and business credibility. Strategic improvements in security headers and incident response transparency would further enhance their security posture and client trust.

S

SONNTAG Family Office

sonntag-fo.de

63

SONNTAG Family Office is a German-based family office service provider specializing in independent wealth management and asset structuring for high net worth individuals and families. The company positions itself as a trusted advisor in Augsburg and the broader South Germany region, focusing on preserving wealth and creating value. The website reflects a professional and consistent brand image, targeting affluent clients seeking neutral and independent financial consulting services. Technically, the website is built on WordPress with modern plugins such as All in One SEO Pro and Borlabs Cookie for cookie consent management. The use of FontAwesome icons and jQuery indicates a standard but effective technology stack. Security-wise, the site enforces HTTPS and implements cookie consent, but lacks visible security headers and published privacy or security policies, which are areas for improvement. Overall, the website is functional and professional but would benefit from enhanced transparency and security documentation to improve trust and compliance. The domain registration data aligns well with the business claims, supporting legitimacy and consistent market presence.

D

DOJ (Dienst für offene Jugendarbeit)

kinder-und-jugendfoerderung-wirkt.ch

47

The website 'Kinder und Jugendförderung wirkt' is a Swiss non-profit platform dedicated to promoting the development and well-being of children and youth across various cantons. It serves as an informational and support hub for actors involved in youth promotion, providing resources, consultation, and visibility to regional initiatives. The platform is backed by recognized governmental and non-profit organizations, enhancing its credibility and trustworthiness. Technically, the site is built on WordPress with modern SEO and analytics tools, offering a responsive and user-friendly experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, compliant with privacy regulations, and well-positioned within its niche.

H

HeroShift

heroshift.app

71

HeroShift is a specialized software solution focused on automated shift planning, absence management, and time tracking for emergency services, nursing, and healthcare sectors in Germany. The platform offers cloud-based, GDPR-compliant tools designed to reduce administrative overhead and improve operational efficiency. The website is professionally designed using WordPress and Elementor, providing a clear and user-friendly experience with good mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some security best practices like explicit security headers and incident response information are missing. Overall, the site reflects a trustworthy and professional business with room for improvement in privacy compliance and security transparency.

S

SERAPIS Medical GmbH

serapis-medical.de

61

SERAPIS Medical GmbH is a specialized healthcare transportation service provider based in Ludwigsburg, Germany. The company focuses on qualified patient transport, emergency medical support, and international patient repatriation. Their website reflects a professional and consistent brand image, targeting patients and healthcare providers who require reliable medical transport services. The business operates a small-scale model with a clear regional focus and offers key services such as ambulance service, regular patient transport, and medical repatriation with professional care. Technically, the website is built on a modern WordPress platform using Elementor and JupiterX theme, supported by plugins like Complianz for GDPR compliance. The site is mobile-optimized and performs moderately well, with good SEO and basic accessibility features. The technical infrastructure is sound, though some improvements in security headers and incident response documentation could enhance the security posture. Security-wise, the site enforces HTTPS and uses a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security maturity. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. The risk level is low, but strategic enhancements in security policies and transparency would strengthen the company’s security and compliance posture further.

A

AusfallReserve RD GmbH

ausfallreserve.com

66

AusfallReserve RD GmbH is a specialized service provider in the healthcare sector focusing on emergency medical services in Germany. The company offers personnel services to maintain emergency medical coverage during staff shortages, positioning itself as a reliable and responsible partner in the rescue service industry. Their business model centers on providing qualified staff as a flexible reserve, supported by continuous training and development opportunities. The website reflects a professional and consistent brand image targeting healthcare organizations and professionals. Technically, the site is built on WordPress with a modern theme and essential SEO and privacy plugins, hosted under a reputable registrar. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though some advanced security headers and policies could be improved. Overall, the site is accessible, well-structured, and compliant with GDPR requirements, with clear contact information and partner integrations for recruitment and training.

S

Signatur A/S

signatur.dk

58

Signatur A/S is a Danish-owned agency specializing in recruitment and media advertisement services, operating since 1989. They provide a unique integrated platform combining recruitment systems and media services, targeting Danish organizations, especially municipalities. The website reflects a professional and consistent brand with strong client testimonials and a clear service offering. Technically, the site is built on WordPress with modern JavaScript libraries and includes GDPR-compliant cookie management via Cookiebot. Security posture is solid with HTTPS and email obfuscation, though some security headers and incident response information are missing. Overall, the site is trustworthy and well-maintained, with minor areas for improvement in security transparency and accessibility.

B

BEOS AG

giesserei-garching.de

46

The website represents a real estate project called GIESSEREI Garching, managed by BEOS AG, offering flexible and sustainable office and commercial spaces near Munich. The business targets companies seeking innovative hybrid workspace solutions in a prime location with strong infrastructure. The site is professionally designed, mobile-optimized, and uses modern web technologies including WordPress, Yoast SEO, and Matomo analytics. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Security posture is good with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Overall, the domain and hosting setup are consistent and legitimate, supporting the business credibility.

P

pxmedia.PRO

pxmedia.pro

59

pxmedia.PRO is a German B2B service provider specializing in done-for-you marketing and recruitment solutions aimed at medium-sized companies in the DACH region. With over 15 years of experience, the company focuses on helping clients systematically acquire profitable new customers and qualified employees to enable sustainable growth. The website demonstrates a professional and consistent brand presence with strong customer testimonials and a clear value proposition. Technically, the site is built on WordPress with the Divi theme and uses modern tools such as Google Analytics and Borlabs Cookie for tracking and consent management. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is basic, with no explicit privacy policy page found, which is a notable gap. Overall, the domain registration is privacy protected but consistent with the business claims, and no suspicious patterns were detected.

M

Maslaton Rechtsanwaltsgesellschaft mbH

quartermike4.de

55

Quarter Mike 4 is a specialized aviation consultancy led by Prof. Dr. Martin Maslaton, offering expert services in pilot training, language proficiency, UAV operations, flight simulation, aviation transactions, and regulatory approvals. The business targets aviation professionals and companies primarily in Germany, leveraging deep expertise and legal partnerships to provide comprehensive aviation-related consulting. The website is built on a modern WordPress and Elementor platform, featuring professional design and rich multimedia content. Security posture is adequate with HTTPS enabled, but lacks some security headers and formal privacy policies. No blocking or WAF mechanisms were detected, allowing full content access.

U

Udruga Djeca prva

djeca-prva.hr

57

Udruga Djeca prva is a Croatian non-profit organization dedicated to supporting children, youth, and families, especially those in vulnerable conditions. Established in 1994, it has a long-standing presence with a domain registered since 2002. The organization provides psychosocial counseling, social services, humanitarian aid, and runs various programs involving families and professionals from education and social care sectors. The website reflects a professional and consistent brand image, with clear communication of its mission and services. Technically, the site is built on WordPress with modern plugins and is hosted behind Cloudflare, ensuring good performance and security. The presence of GDPR-compliant cookie consent and privacy policies indicates strong privacy awareness. Security posture is solid with HTTPS and no evident vulnerabilities, though some security headers could be improved. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.

D

Datalab.MN d.o.o.

datalab.me

53

Datalab.MN d.o.o. operates a professional website promoting the PANTHEON ERP business information system, targeting enterprises in Montenegro and Southeast Europe. The company offers comprehensive ERP software solutions, digitalization tools, cloud hosting, and support services, positioning itself as a regional leader with a strong user base and over 20 years of market presence. The website is well-structured, multilingual, and rich in content, including testimonials, knowledge bases, and webinars, reflecting a mature digital presence. Technically, the site is built on WordPress with modern plugins and frameworks, employs HTTPS with reCAPTCHA for form security, and demonstrates good SEO and mobile optimization. Security posture is solid but could be enhanced with additional HTTP headers. WHOIS data is privacy protected, which is common for business domains, and no suspicious patterns were detected. Overall, the site presents a trustworthy and professional business front with effective digital infrastructure.

D

Datalab

datalab.al

57

Datalab is a well-established Slovenian technology company specializing in ERP software solutions, primarily through their flagship product PANTHEON. The company has a strong regional presence with sister sites across multiple Balkan countries, indicating a broad market reach. Their website is built on a modern WordPress CMS with a professional design and good SEO practices, integrating essential marketing and analytics tools such as Google Tag Manager, Google Analytics, Hotjar, and Cookiebot for GDPR-compliant cookie consent. Security posture is solid with HTTPS and reCAPTCHA implemented, though there is room for improvement in security headers and explicit security policies. The absence of clear privacy and terms of service pages slightly impacts privacy compliance scores. Overall, the website reflects a mature digital infrastructure suitable for a medium-sized enterprise in the technology sector.