Security Directory

I

InfoCamere

infocamere.it

62

InfoCamere is a well-established Italian government-related organization founded in 1997, focused on digital innovation services for Chambers of Commerce and public administration. The website clearly communicates its mission to bridge businesses and public administration through digital platforms and services. It holds a strong market position as a key national player in this niche, offering official data services, digital identity solutions, and enterprise management platforms. The content is professionally presented, targeting Italian businesses and public sector entities. Technically, the website employs modern web technologies including Matomo analytics configured with privacy considerations, Flickity for UI components, and a custom CMS. The site is mobile optimized, accessible, and SEO-friendly with comprehensive metadata and structured data. Security posture is strong with HTTPS, DNSSEC, and privacy-aware analytics, though it lacks some advanced security headers and explicit cookie consent mechanisms. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site demonstrates high professionalism, trustworthiness, and compliance with GDPR, though it could improve transparency around incident response and vulnerability disclosure.

B

Bundesverband Deutscher Sachverständiger und Fachgutachter BDSF e.V.

bundesverband-gutachter.de

47

The Bundesverband Deutscher Sachverständiger und Fachgutachter BDSF e.V. is a well-established professional association in Germany, specializing in connecting clients with qualified experts and appraisers across various fields, particularly real estate and technical expertise. With over 30 years of market presence and certifications such as ISO 9001 and ISO 17024, the organization positions itself as a trusted leader in its sector. The website serves as a portal for expert search, member services, and information dissemination, targeting individuals and businesses seeking professional appraisal services. Technically, the website is built on the Joomla CMS platform, utilizing modern web technologies including jQuery, Bootstrap, and Google Maps API for enhanced user experience. Hosting is provided by a reputable provider, Host Europe, ensuring stable infrastructure. The site demonstrates good mobile optimization and SEO practices, with a moderate performance profile. Privacy and cookie compliance are well implemented, featuring a comprehensive cookie consent mechanism and GDPR-aligned privacy policy. From a security perspective, the site enforces HTTPS and employs CSRF tokens in forms, with no evident vulnerabilities in the provided content. However, some security headers are not explicitly detected and could be improved. The absence of a public security policy or incident response information suggests room for enhancement in transparency and readiness. Analytics usage is handled via Matomo, respecting user privacy with opt-in consent. Overall, the website reflects a professional and trustworthy digital presence for the association, with solid business credibility and compliance posture. Strategic recommendations include enhancing security headers, publishing explicit security policies, and considering a vulnerability disclosure framework to further strengthen trust and security maturity.

H

Hetzner Online GmbH

your-objectstorage.com

78

Hetzner Online GmbH is a well-established German hosting and data center operator founded in 1997, offering a broad range of IT infrastructure services including dedicated servers, cloud hosting, and scalable S3-compatible Object Storage solutions. The company emphasizes GDPR compliance, sustainability through 100% green electricity, and transparent pricing models. Their Object Storage product targets businesses and private customers needing flexible, secure, and scalable storage solutions with pay-as-you-go billing. Technically, the website is built on modern web technologies including HTML5, CSS3, JavaScript, and uses SilverStripe CMS. It integrates Matomo analytics for privacy-conscious user tracking and provides a responsive, accessible, and well-structured user experience. The hosting is self-managed by Hetzner, ensuring good performance and reliability. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms, and secures forms with CSRF tokens. However, explicit security headers are not clearly visible in the HTML, and no dedicated security or incident response pages are found. The WHOIS data for the domain is unavailable, which limits domain registration trust analysis but does not detract from the professional presentation and trust signals on the site. Overall, Hetzner Online demonstrates a strong security posture, excellent privacy compliance, and a mature business model. Strategic recommendations include publishing explicit security policies, enhancing security headers, and providing clear incident response contacts to further strengthen trust and compliance.

A

Allgemeiner Studierendenausschuss der Universität Münster

asta.ms

47

The website represents the Allgemeiner Studierendenausschuss (AStA) of the University of Münster, a non-profit student organization providing services, political representation, and event information to the university community. The site is well-structured, primarily in German, and targets students and university affiliates. It offers key services such as student media, housing information, and contact avenues. Technically, the site is built on Joomla CMS with Bootstrap and jQuery, hosted by Variomedia AG, and uses Matomo for privacy-conscious analytics. The site is mobile-optimized and provides a good user experience with clear navigation and consistent branding. Security-wise, HTTPS is enforced, and cookie consent mechanisms are in place, but the absence of DNSSEC and security headers indicates room for improvement. No critical vulnerabilities or blocking mechanisms were detected, and the domain WHOIS data aligns with the organization's legitimacy and history. Overall, the site scores well on business credibility and privacy compliance but could enhance its technical security posture.

Z

Zweckverband Sächsisches Industriemuseum

saechsisches-industriemuseum.com

42

The Zweckverband Sächsisches Industriemuseum is a regional cultural institution operating four industrial museums in Saxony, Germany. Their website provides information about these museums and related cultural activities, targeting the general public and museum visitors. The business model is non-profit, focusing on cultural preservation and education. The website is built on TYPO3 CMS with Bootstrap and includes Matomo analytics for visitor tracking. The technical infrastructure is modern and adequate for the institution's needs, with moderate performance and good mobile optimization. Security posture is acceptable with HTTPS usage but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism despite analytics usage. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and safe for general audiences.

Z

Zinngrube Ehrenfriedersdorf

zinngrube-ehrenfriedersdorf.de

43

Zinngrube Ehrenfriedersdorf operates as a regional mining heritage museum in Germany, offering guided tours, exhibitions, educational programs, and event hosting. The website is well-structured, professionally designed, and targets families, tourists, and educational groups interested in mining history. It is affiliated with the Zweckverband Sächsisches Industriemuseum, indicating a stable institutional backing. Technically, the site runs on TYPO3 CMS with Matomo analytics, providing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced, but lacks explicit security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site is trustworthy and professionally maintained, with room for improvement in security and privacy transparency.

T

Tuchfabrik Gebr. Pfau Crimmitschau

tuchfabrik-crimmitschau.de

42

The Tuchfabrik Gebrüder Pfau Crimmitschau is a cultural heritage museum located in Germany, focusing on the history and future of the textile industry in Saxony. The website serves as an informational portal for visitors, offering details on exhibitions, events, educational programs, and visitor services such as a museum shop and café. The target audience includes families, education institutions, and individuals interested in technology and fashion history. The museum operates as a small-sized entity with a regional focus. Technically, the website is built on TYPO3 CMS, utilizing modern web technologies such as Bootstrap for responsive design and Slick Slider for interactive content. Hosting is provided by a professional German hosting provider (timmehosting.de). The site demonstrates good mobile optimization, clear navigation, and moderate performance. Analytics are handled via Matomo, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks several security headers and does not implement a cookie consent mechanism, which is important for GDPR compliance. No explicit security policies or incident response contacts are published, which could be improved to enhance trust and compliance. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. Strategic improvements in privacy compliance and security hardening would further strengthen its posture and user trust.

Z

Zweckverband Sächsisches Industriemuseum

saechsisches-industriemuseum.de

41

The Zweckverband Sächsisches Industriemuseum is a regional cultural institution operating four museum sites in Saxony, Germany, dedicated to preserving and presenting industrial heritage. The website serves as an informational portal for visitors and stakeholders, highlighting the museums and their offerings. The organization positions itself as a non-profit entity focused on cultural education and heritage preservation. Technically, the website is built on TYPO3 CMS, uses Matomo for analytics, and is hosted on professional infrastructure. The site is mobile-optimized with a clear navigation structure but restricts search engine indexing via meta robots tags. Security posture is moderate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy but could improve privacy compliance and security best practices.

G

Gebietsbetreuung Stadterneuerung

gbstern.at

55

Gebietsbetreuung Stadterneuerung (GB*) is a municipal service entity of the City of Vienna dedicated to urban renewal, housing consultation, and community engagement. With a history spanning approximately 50 years, GB* operates multiple local offices and provides free advisory services to residents on housing and neighborhood matters. The website serves as a comprehensive information portal, offering news, events, thematic projects, and multimedia content to engage and inform the public. The organization maintains an active presence on social media platforms including Facebook, Instagram, and YouTube, enhancing community outreach. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs Matomo for privacy-conscious web analytics. The site features modern frontend technologies such as jQuery and Owl Carousel for interactive elements. Cookie consent mechanisms are implemented with granular user controls, reflecting compliance with GDPR requirements. The site is mobile-optimized and accessible, with clear navigation and professional design. From a security perspective, the site enforces HTTPS and uses privacy-friendly analytics. However, HTTP security headers are not visibly implemented, and no public security policy or incident response contact information is provided, which could be improved. The absence of WHOIS data due to quota restrictions limits domain registration trust verification, but the website content and structure strongly indicate a legitimate and trustworthy municipal service. Overall, the website demonstrates a mature digital presence with strong content quality, privacy compliance, and community focus. Strategic improvements in security headers and transparency around security policies would enhance trust and resilience.

D

Deutsche Telekom Stiftung

telekom-stiftung.de

69

Deutsche Telekom Stiftung is a large, well-established non-profit foundation founded in 2003, focused on improving STEM (MINT) education for children and youth in Germany. The foundation supports educational projects, develops free teaching materials, and fosters networks and educational steering. The website is professionally designed, mobile-optimized, and built on Drupal CMS with modern technologies such as Matomo analytics and Cookiebot for privacy compliance. Security posture is strong with HTTPS and privacy-respecting analytics, though some security headers and explicit security policies could be improved. Overall, the site is trustworthy, transparent, and compliant with GDPR, targeting educators, schools, and learners.

F

FondazioneConIlSud

esperienzeconilsud.it

10

Esperienze CON IL SUD is a non-profit network platform operated by Fondazione CON IL SUD, focused on promoting and sharing social projects in Southern Italy. The website serves as a hub for various community initiatives, providing visibility and fostering collaboration among stakeholders. It targets non-profit organizations, social workers, and community members interested in regional development and social innovation. The platform is positioned as a niche regional leader in the non-profit sector, leveraging its parent foundation's reputation and funding. Technically, the website is built on WordPress with modern web technologies including Bootstrap for responsive design, jQuery, and Slick Carousel for UI components. SEO is enhanced by the Yoast SEO plugin, and analytics are handled via Matomo, reflecting a commitment to privacy-conscious tracking. The site is mobile-optimized and demonstrates good performance and accessibility standards, though some improvements in security headers could be made. From a security perspective, the site uses HTTPS with a strong SSL configuration and implements a cookie consent banner for GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of explicit security policies or incident response information suggests room for maturity in security governance. The WHOIS data confirms the domain's legitimacy and consistency with the organization's identity. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for a socially focused non-profit entity. It balances content quality, technical implementation, and privacy compliance effectively, making it a reliable resource for its target audience.

B

Bundesanstalt für Materialforschung und -prüfung (BAM)

bam.de

61

The Bundesanstalt für Materialforschung und -prüfung (BAM) is a German federal scientific research institute specializing in material research and testing. It operates under the Federal Ministry for Economic Affairs and Energy and serves a broad audience including researchers, industry professionals, and government entities. The website provides comprehensive scientific content, official portals, and public services related to material safety and technology transfer. Technically, the site uses modern web technologies with good mobile optimization and accessibility. Security posture is strong with HTTPS and privacy-respecting analytics (Matomo) that anonymize user data and require consent. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site reflects a professional, trustworthy government entity with excellent content quality and privacy compliance.

E

Etat de Genève

ge.ch

70

The website www.ge.ch is the official online portal for the République et canton de Genève, serving as the authoritative source for government information, public services, and administrative procedures for residents and businesses in the Canton of Geneva, Switzerland. It offers comprehensive access to official news, e-demarches (online administrative procedures), publications, and institutional information, positioning itself as a critical government communication and service platform. Technically, the site is built on the Drupal CMS platform, leveraging modern web technologies including responsive design, JavaScript, and Matomo analytics for user tracking with consent. The site demonstrates good digital maturity with mobile optimization, accessibility features, and SEO best practices. Hosting details are not explicitly stated but are likely managed by government infrastructure. From a security perspective, the site enforces HTTPS and uses a consent-based cookie banner compliant with GDPR. While explicit security headers are not visible in the HTML, no vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or vulnerability disclosure page is noted as an area for improvement. The WHOIS data confirms the domain is registered to the official government entity, reinforcing legitimacy. Overall, the site is highly trustworthy, professionally designed, and well-maintained, with strong privacy compliance and a clear focus on public service. No adult or questionable content is present, and the site is fully accessible without WAF or blocking mechanisms.

W

Webagentur YAHYA

webagentur.pro

53

Webagentur YAHYA is a small Swiss web agency specializing in professional website creation using TYPO3 and WordPress, with a strong focus on responsive design and SEO. The company targets local businesses in the St. Gallen and Arbon regions, offering tailored web solutions and hosting services. The website demonstrates a good level of digital maturity, employing modern web technologies and privacy-conscious analytics via Matomo. Security posture is solid with HTTPS and no exposed sensitive data, though explicit security policies and incident response contacts are absent. Overall, the site is professional and trustworthy, but could improve privacy compliance by adding dedicated policy pages.

F

Fondazione Con il Sud

fondazioneconilsud.it

57

Fondazione Con il Sud is a private non-profit foundation dedicated to promoting social cohesion and development in Southern Italy. It operates by funding social projects, supporting community foundations, and organizing events and contests to foster community engagement. The foundation maintains a strong digital presence with regularly updated content, active social media channels, and a dedicated blog platform for projects. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates advanced SEO and analytics tools such as Yoast SEO and Matomo, ensuring good performance and compliance with privacy regulations. Security posture is solid with HTTPS enforcement, security headers, and a GDPR-compliant cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. Overall, the foundation presents a trustworthy and professional online presence aligned with its mission and audience.

V

VCÖ

vcoe.at

56

VCÖ is a well-established Austrian non-profit organization dedicated to promoting ecologically sustainable, socially just, and economically efficient mobility. Their website serves as a comprehensive platform offering research, publications, events, and advocacy aimed at improving transportation policies and practices in Austria. The organization targets a broad audience including citizens, municipalities, and policymakers, emphasizing fair mobility opportunities for all demographics. Technically, the site is built on the Contao CMS and employs modern web technologies such as jQuery, Matomo Analytics, and Google Tag Manager, ensuring a good user experience with mobile optimization and accessibility features. Security posture is solid with HTTPS and CAPTCHA protections, though some security headers and explicit policies could be improved. Overall, the website is professional, trustworthy, and content-rich, reflecting the organization's credibility and commitment to sustainable mobility.

A

Avis d’expert‧e‧s

avisdexperts.ch

55

Avis d’expert‧e‧s is a Swiss platform born from collaboration among universities and public broadcasters RTS and RSI, aggregating thousands of expert interventions analyzing current events scientifically. It targets journalists and media professionals, providing direct expert contacts and additional content access for registered users. The platform holds a strong position in the Swiss academic-media ecosystem, emphasizing scientific expertise dissemination. Technically, the website is built on Drupal 10, uses Matomo for analytics, and implements modern web standards with good mobile optimization and SEO practices. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting its role as a credible media resource.

L

Linoolmostudio

linoolmostudio.it

56

Linoolmostudio is a well-established web agency based in Bergamo, Italy, specializing in web development, SEO, social media marketing, content marketing, and digital consultancy. Founded in 2008, the company targets businesses and the tourism sector, offering tailored digital solutions to enhance brand visibility and digital presence. The website reflects a professional and consistent brand image with a comprehensive portfolio and client testimonials, indicating a strong market position locally. Technically, the site is built on WordPress with modern plugins and frameworks, including Yoast SEO, Matomo analytics, and Iubenda for privacy compliance. The infrastructure supports good performance and mobile optimization, though some accessibility improvements could be made. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, but could benefit from enhanced security headers and explicit incident response contacts. Overall, the domain registration data aligns well with the business claims, supporting high legitimacy and trustworthiness.

C

Caritas Italiana

italiacaritas.it

60

Italia Caritas operates as a prominent Italian non-profit organization affiliated with Caritas Italiana, focusing on social charity, poverty alleviation, migration, and ecological issues. The website serves as an information hub providing articles, blogs, stories, and newsletters to engage the Italian-speaking public and promote charitable activities. It maintains a strong market position as a trusted source for Catholic social outreach and community support. Technically, the site is built on WordPress with modern libraries and frameworks, ensuring good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be enhanced. Overall, the site is professional, trustworthy, and compliant with GDPR, supporting its mission effectively.

A

AgenSIR

agensir.it

57

AgenSIR is the official press agency of the Italian Episcopal Conference (CEI), providing up-to-date religious news focused on the Catholic Church, Vatican, dioceses, and ecclesiastical networks. The website targets Italian-speaking audiences interested in religious and cultural news, offering a rich mix of articles, multimedia content, and event coverage. It holds a strong market position as a trusted source within its niche. Technically, the site is built on WordPress with a modern tech stack including jQuery, Matomo analytics, Facebook Pixel, and various plugins for media and advertising. The site demonstrates good SEO practices, mobile optimization, and a professional design, though accessibility features are basic. Performance is moderate, with asynchronous loading of scripts and a structured content layout. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for forms, along with click fraud protection for ads. However, it lacks explicit security headers like CSP and X-Frame-Options, which could be improved. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy page found. Overall, the website is legitimate, well-maintained, and trustworthy, with a high business credibility score. Strategic improvements in privacy policy visibility and security headers would enhance its security posture and compliance. No WAF or blocking mechanisms interfere with content access, allowing full analysis.

A

Avvenire

avvenire.it

67

Avvenire.it is a well-established Italian media website providing news and multimedia content primarily in Italian. The site targets a general audience interested in current events and media content. Technically, the website employs modern web technologies including Nuxt.js framework, Tailwind CSS for styling, and is hosted on Microsoft Azure CDN infrastructure, ensuring good performance and scalability. The site integrates Cookiebot for cookie consent management and uses Google Tag Manager and Matomo for analytics, indicating a moderate level of user tracking and privacy compliance. Security-wise, the site enforces HTTPS and uses consent mechanisms but lacks explicit security headers and published security policies, which could be improved to enhance security posture. Overall, the site is professional and trustworthy with no signs of blocking or WAF interference, but it would benefit from publishing comprehensive privacy and security policies to improve compliance and user trust.

I

Industriemuseum Chemnitz

industriemuseum-chemnitz.de

42

Industriemuseum Chemnitz is a regional museum dedicated to the industrial, economic, and social history of Saxony from the beginning of the industrial age to the present. The museum offers permanent and special exhibitions, educational programs, events, and visitor services including a museum shop and gastronomy. It targets a broad audience including families, education institutions, and culture enthusiasts. The website is built on TYPO3 CMS and uses Matomo for analytics, reflecting a moderate level of digital maturity. The site is well-designed, mobile-optimized, and provides clear navigation and rich content. Security posture is good with HTTPS enforced and no exposed sensitive data, but lacks some advanced security headers and explicit security policies. Privacy compliance is partial due to absence of a cookie consent mechanism. Overall, the website and domain registration are trustworthy and professionally managed.

S

Spätschicht

spaetschicht.eu

48

Spätschicht.eu is a German regional event website that organizes open company tours for students, job seekers, and employees to explore career and training opportunities in various cities such as Görlitz, Weißwasser/O.L., Zittau, and others. The platform is supported by local economic development agencies and chambers of commerce, emphasizing regional economic promotion and workforce development. The website is built on WordPress, utilizing popular plugins like Yoast SEO, LayerSlider, and Borlabs Cookie for SEO, content presentation, and GDPR-compliant cookie management. Matomo analytics is used with cookies disabled to respect user privacy. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though no explicit security policy or incident response information is provided. Contact is primarily via a contact form, with no direct emails or phone numbers found. Overall, the site is professional, well-structured, and trustworthy, serving a clear business purpose in the manufacturing and regional event sector.

Fondo Fon.Te. is an established complementary pension fund based in Italy, serving employees and employers primarily in commerce, tourism, and related sectors. The website provides comprehensive information about pension plans, financial management, welfare services, and member support. It maintains a professional online presence with clear branding, official contact details, and active social media channels. Technically, the site is built on WordPress with modern libraries and analytics tools, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though formal security policies and incident response details are absent. Overall, the domain registration and WHOIS data align well with the business profile, supporting legitimacy and trustworthiness.

Fondo For.Te. is a prominent Italian interprofessional fund dedicated to continuous professional training across various economic sectors. The website positions itself as a leading entity in Italy supporting the entrepreneurial fabric through training initiatives. The target audience primarily includes Italian businesses and professionals seeking to enhance their skills and comply with training requirements. The business model is non-profit, focusing on funding and facilitating continuous education. The website is well-branded, professionally designed, and provides relevant content aligned with its mission.

C

Code for Germany

codefor.de

50

Code for Germany is a non-profit civic tech network focused on promoting open data, open government, and digital sustainability in Germany. It operates through a community of approximately 300 volunteers organized in local labs and an online platform. The organization is coordinated by the Open Knowledge Foundation Deutschland e.V. and is part of the global Code for All network. Their key services include developing open source software and hardware projects, supporting municipalities in digital transformation, and advocating for transparent and sustainable digital policies. Technically, the website is built using the Hugo static site generator, employs Matomo for privacy-conscious analytics, and is well-optimized for performance and mobile devices. Security posture is solid with HTTPS and minimal tracking, though improvements are recommended in security headers and explicit cookie consent. Overall, the website is professional, trustworthy, and serves a clear community and civic purpose.

DELFI e.V. operates as a cooperative network focused on providing unified electronic passenger information and route calculation services for public transport across Germany. It serves as a key organizational and technological hub facilitating data harmonization among federal states and partners, supporting cross-regional travel chains and future-oriented information services. The website reflects a mature digital presence with a clear focus on public transport stakeholders and end users. Technically, the site employs a modern but traditional web stack including jQuery, Bootstrap, and various UI libraries, hosted on German infrastructure. The site is mobile-optimized and accessible, with good SEO practices and a professional design. Analytics are handled via Matomo with cookies disabled, indicating privacy-conscious implementation. Security posture is moderate; HTTPS is implied but no explicit security headers or policies are published. No forms collect sensitive data on the homepage, reducing attack surface. Privacy compliance is partial with a privacy policy present but lacking a cookie consent mechanism. Business credibility is high with transparent contact details, organizational information, and trust signals such as government references. Overall, the website is a reliable and professional resource for public transport information in Germany, with room for improvement in security and privacy compliance to enhance trust and regulatory adherence.

C

Confcommercio - Confederazione Generale Italiana delle Imprese, delle Attività Professionali e del Lavoro Autonomo

confcommercio.it

68

Confcommercio is the largest business representation organization in Italy, serving enterprises, professionals, and autonomous workers. The website provides news, economic studies, and information about various sectors including economy, transport, tourism, and security. The organization targets Italian businesses and professionals, offering services such as advocacy, research, and event organization. The website is built on the Liferay CMS platform, utilizing modern JavaScript libraries and analytics tools such as Matomo, Google Tag Manager, and Facebook Pixel. The site is mobile optimized and presents a professional design with clear navigation. Security posture is good with HTTPS enforced and secure login forms, but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of visible privacy and cookie policies. Overall, the site is trustworthy and legitimate, with strong business credibility but room for improvement in privacy and security transparency.

M

Métropole Nice Côte d'Azur

nicecotedazur.org

54

Métropole Nice Côte d'Azur is the official metropolitan government entity for the Côte d'Azur region in France, encompassing 51 communes. The website serves as a comprehensive portal for residents, businesses, and visitors to access information about local governance, environmental initiatives, urban planning, transportation, social services, and economic development. It holds a strong market position as the first metropolitan authority created in France, providing essential public services and community engagement. Technically, the website is built on WordPress with Bootstrap framework, leveraging modern web technologies and accessibility standards. It employs Matomo analytics for user tracking and uses tarteaucitron.js for cookie consent management, reflecting a mature digital infrastructure. The site is mobile-optimized and demonstrates good SEO practices with structured data and meta tags. From a security perspective, the site enforces HTTPS, implements key security headers, and respects user privacy with a comprehensive cookie policy and GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public security policy or incident response contact suggests areas for improvement. Overall, the website is professional, trustworthy, and well-maintained, with a high level of content quality and user experience. The lack of WHOIS registrant data is likely due to privacy protection, which is justified for a government entity. No WAF or blocking mechanisms interfere with content accessibility, enabling full analysis.

K

Keeo

keeo.com

53

Keeo is a specialized digital communication agency based in Valenciennes, France, focusing primarily on the healthcare sector. They offer a comprehensive suite of services including custom website and application development, visual identity creation, SEO, content creation, and secure hosting with cybersecurity measures. The company has an established market presence since 2005 and serves healthcare organizations with tailored digital solutions. Technically, the website is built on WordPress with modern JavaScript frameworks and privacy-respecting analytics (Matomo). The site is well optimized for SEO, mobile-friendly, and provides clear navigation and professional content. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

A

Austrian Research Promotion Agency (FFG)

digitalbarrierefrei.at

52

Digitalbarrierefrei.at is an authoritative Austrian government-supported platform managed by the Austrian Research Promotion Agency (FFG). It provides comprehensive resources, training, and services focused on digital accessibility compliance, particularly for public sector institutions in Austria. The website serves as a central hub for information on legal frameworks, accessibility criteria, complaint submission, and regional contact points across federal provinces. Technically, the site is built on the Contao Open Source CMS, uses jQuery and Matomo analytics configured for privacy, and implements a robust cookie consent mechanism with blocking until user consent. The site is well-optimized for accessibility and mobile devices, reflecting its mission. Security posture is solid with HTTPS and CSRF protections, though additional security headers and published policies could enhance trust. Overall, the site is professional, trustworthy, and highly relevant to its target audience.

B

Bundesrepublik Deutschland

govdata.de

63

GovData is the official open data portal for Germany, providing centralized access to datasets from all levels of government administration. It serves a broad audience including government agencies, researchers, developers, and the general public interested in open government data. The platform offers key services such as dataset search, SPARQL query assistance, and regional data filtering by federal states. The website is well-branded with consistent government identity and maintains a strong market position as the national open data hub. Technically, the site is built using modern web technologies including React and Next.js, with Matomo analytics for privacy-conscious user tracking. The site demonstrates excellent performance, mobile optimization, and accessibility features. Security posture is strong with HTTPS enforcement and appropriate security headers, though there is room for improvement in publishing explicit security policies and incident response information. Overall, GovData exhibits a high level of professionalism, trustworthiness, and compliance with GDPR, supported by clear privacy and usage policies. The absence of cookie consent mechanisms and vulnerability disclosure pages are minor gaps. The domain registration data aligns well with the official nature of the site, reinforcing its legitimacy. Strategic recommendations include implementing explicit cookie consent, publishing security and incident response policies, and enhancing accessibility further to maintain leadership in government open data provision.

M

Ministerium fuer Inneres und Kommunales NRW

open.nrw

64

Open.NRW is the official Open Government and Open Data portal of the North Rhine-Westphalia state government in Germany. It provides a comprehensive platform for transparency, citizen participation, and access to open datasets from the public sector. The portal targets citizens, municipalities, government agencies, and service providers, offering data, project information, and participation opportunities. Technically, the site is built on Drupal CMS, uses Matomo for privacy-conscious analytics, and implements cookie consent mechanisms compliant with GDPR. Security posture is strong with HTTPS and privacy features, though DNSSEC is not enabled. The domain registration aligns with the official government entity, reinforcing trust and legitimacy. Overall, the site demonstrates high professionalism, good technical implementation, and strong privacy compliance.

S

senseBox

sensebox.de

56

senseBox.de is a well-established educational technology platform focused on providing modular IoT hardware kits and software solutions for digital education, citizen science, and environmental monitoring. The business operates primarily in Germany and is affiliated with the University of Münster and the parent company Reedu GmbH & Co. KG. Their offerings include hardware kits like senseBox:home, senseBox:edu, and senseBox:mini, alongside software tools such as Blockly for programming and the openSenseMap data platform. The website demonstrates a strong market position within the niche of educational and citizen science IoT solutions, supported by reputable funding and partnerships. Technically, the website is built using the Jekyll static site generator, enhanced with Bootstrap for responsive design, FontAwesome icons, and privacy-focused analytics via Matomo. Hosting is supported by Amazon AWS DNS infrastructure. The site features a comprehensive cookie consent mechanism (Klaro) and is optimized for mobile devices with good SEO practices. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and uses privacy-respecting analytics, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or suspicious patterns were detected in the provided data. Privacy compliance is strong with GDPR-aligned policies and consent mechanisms. The absence of direct contact emails or phone numbers on the homepage is noted, with contact facilitated via a form. Overall, senseBox.de presents a professional, trustworthy, and content-rich platform with a solid business foundation and good technical implementation. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance their security posture and user trust.

E

ERCIS - European Research Center for Information Systems

ercis.org

61

ERCIS - European Research Center for Information Systems is an international academic network focused on Information Systems research and education, collaborating with over 25 countries and multiple partner institutions. The website serves as a portal for researchers, practitioners, and students engaged in digital transformation and Information Systems disciplines. The organization positions itself as a key partner network for Digital Europe, offering research clusters, educational programs, and events. Technically, the website is built on WordPress with Elementor and uses modern plugins for SEO and GDPR compliance. The presence of Matomo analytics indicates a moderate level of user tracking with privacy considerations. Security posture is good with HTTPS enabled and cookie consent implemented, though some security headers could be improved. WHOIS data is incomplete, limiting domain trust assessment, but the professional content and network presence support legitimacy. Overall, the site is well-designed, accessible, and professionally maintained.

S

Stadt Münster

smartcity.ms

48

Smart City Münster is a municipal initiative focused on advancing the city of Münster through technology, sustainability, and social inclusion. The website serves as a communication and coordination platform for smart city projects, digital citizen participation, and urban innovation. It is positioned as a leading local government project with a clear target audience of citizens and city stakeholders. The technical infrastructure is based on a modern WordPress CMS with Elementor and related plugins, providing a responsive and well-structured user experience. Security posture is solid with HTTPS and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the site reflects a professional government project with good trust indicators and no suspicious elements.

L

Landschaftsverband Westfalen-Lippe (LWL)

lwl.org

76

The Landschaftsverband Westfalen-Lippe (LWL) operates as a regional government authority in Germany, providing a wide range of public services including cultural management, social welfare, healthcare, and educational programs. The website serves as an official portal for residents and stakeholders in the Westfalen-Lippe region, offering comprehensive information and access to services. The organization holds a strong market position as a public sector entity with a large operational scope. Technically, the website is built on a Django-based CMS with integrations such as jQuery, Matomo analytics, and ReadSpeaker for accessibility. The infrastructure appears stable with good mobile optimization and accessibility features, although some SEO enhancements could be beneficial. The site employs HTTPS and standard security headers, reflecting a solid security posture. Security-wise, the site demonstrates good practices including cookie consent mechanisms and no visible vulnerabilities or exposed sensitive data. However, the absence of a Content Security Policy and reliance on third-party scripts suggest areas for improvement. Privacy compliance is well addressed with clear privacy and cookie policies aligned with GDPR requirements. Overall, the website is trustworthy and professional, with no indications of malicious activity or content safety concerns. The lack of WHOIS data is mitigated by the domain's association with an official government domain and consistent branding. Strategic recommendations include enhancing security headers, improving SEO, and maintaining regular audits of third-party components to sustain security and compliance.

K

KopfKunst, Agentur für Kommunikation GmbH

kopfkunst.net

63

KopfKunst, Agentur für Kommunikation GmbH is an established creative agency based in Münster, Germany, with over 30 years of experience delivering outstanding communication and marketing services across diverse industries. The company focuses on creative communication, branding, and campaign development, targeting businesses seeking innovative marketing solutions. The website reflects a professional and consistent brand image with rich multimedia content and clear contact information. Technically, the site is built on Webflow CMS, uses Matomo for privacy-conscious analytics, and is well optimized for performance and mobile devices. Security posture is generally good with HTTPS enforced, but lacks some security headers and cookie consent mechanisms. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which should be verified to ensure trustworthiness. Overall, the website is professional and trustworthy, but improvements in security and privacy compliance are recommended.

P

pacemaker.ai

pacemaker.ai

66

pacemaker.ai is a German-based technology company specializing in AI-driven solutions for supply chain optimization and sustainability management. Their offerings include advanced demand forecasting, carbon footprint calculations, and compliance reporting aligned with EU regulations such as CSRD and the EU Taxonomy. The company positions itself as a trusted partner with TÜV and ISO 27001 certifications, serving medium to large enterprises across transportation, energy, and manufacturing sectors. The website reflects a mature digital presence with professional design, clear navigation, and integration of modern web technologies including Webflow CMS and advanced analytics tools. Technically, the site leverages a modern tech stack with strong security practices such as HTTPS enforcement, CAPTCHA protections, and consent management for GDPR compliance. However, the absence of a clearly accessible privacy policy and lack of public WHOIS data slightly diminish transparency. The security posture is strong overall, supported by certifications and secure form handling, but could be improved by publishing incident response contacts and vulnerability disclosure mechanisms. Overall, pacemaker.ai demonstrates a solid business and technical foundation with a focus on sustainability and AI innovation. Strategic improvements in privacy transparency and WHOIS data disclosure would enhance trust and compliance. The company is well-positioned in its niche with a professional online presence and reputable partnerships.

D

DMO GmbH

dmo.de

56

DMO GmbH operates a modern, regional data center located at the Münster Osnabrück Airport, focusing on high availability, sustainability, and digital resilience. The company is a joint venture of items GmbH & Co. KG and TKRZ Stadtwerke GmbH, leveraging extensive IT expertise and regional energy partnerships. Their services emphasize energy efficiency, secure infrastructure, and compliance with international standards such as ISO 27001 and DIN EN 50600 VK3. The website reflects a mature digital presence with professional design, clear navigation, and GDPR-compliant privacy and cookie policies. Embedded HubSpot forms and Leadinfo tracking support customer engagement and marketing efforts. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Overall, the site and business demonstrate high trustworthiness and professionalism.

V

viadee Unternehmensberatung AG

viadee.de

69

viadee Unternehmensberatung AG is a well-established German IT consulting firm founded in 1994, specializing in software development, process automation, organizational development, and IT security. The company serves a broad range of industries with a strong presence in Münster, Köln, and Dortmund. Their website reflects a mature digital infrastructure with modern technologies such as Alpine.js, Matomo analytics, and Usercentrics for privacy compliance. The security posture is solid with HTTPS enforced and privacy mechanisms in place, though some security headers could be improved. Overall, the website and domain data indicate a trustworthy and professional business with a strong market position and comprehensive service offerings.

D

Digital Hub münsterLAND e.V.

digitalhub.ms

50

Digital Hub münsterLAND e.V. is a regional digital innovation hub based in Münster, Germany, focused on fostering digital business models and innovation through collaboration between SMEs, startups, and the tech community. The organization offers a broad range of services including startup matching, accelerator programs, coworking spaces, and community events, positioning itself as a key player in the Münsterland digital ecosystem. The website reflects a professional and well-structured digital presence with clear navigation and rich content tailored to its target audiences of Mittelstand companies, startups, and tech enthusiasts. Technically, the website employs modern web technologies such as Bootstrap, Font Awesome, jQuery, and Matomo analytics, ensuring a responsive and accessible user experience. The site is served over HTTPS with a cookie consent mechanism in place, demonstrating attention to privacy compliance. However, some security best practices like explicit security headers and secure form submission methods could be improved. From a security perspective, the site shows a good baseline with HTTPS and cookie consent but lacks visible security headers and formal incident response or vulnerability disclosure policies. The absence of WHOIS data for the domain reduces trust slightly but does not detract significantly from the overall legitimacy given the professional presentation and active community engagement. Overall, the website is a trustworthy and well-maintained digital platform supporting the regional innovation ecosystem. Strategic improvements in security headers, form handling, and transparency around security policies would further enhance its security posture and trustworthiness.

L

LIEBLANG Dienstleistungsgruppe

lieblang.com

46

LIEBLANG Dienstleistungsgruppe is a well-established German building services company with nearly 75 years of experience, specializing in professional cleaning and facility maintenance services across Germany. The company operates a large network with 16 locations, 138 service points, and over 6,800 employees, positioning itself as a leading provider in the real estate services sector. Their service portfolio includes routine cleaning, specialized cleaning, facade cleaning, and consulting, tailored to client needs. Technically, the website employs modern analytics tools such as Matomo and HubSpot, and implements a comprehensive cookie consent mechanism, reflecting a mature digital presence. Security-wise, the site uses HTTPS and cookie consent but lacks explicit security headers and published security policies, indicating room for improvement. The absence of WHOIS data reduces domain trustworthiness, but the professional content, certifications, and clear contact information support the legitimacy of the business. Overall, the website is well-designed, mobile-optimized, and user-friendly, serving its target audience effectively.

F

fit GmbH

fit.de

57

fit GmbH is a German manufacturing and retail company with a diversified portfolio of consumer brands focused on personal care and household products. The website presents a professional and well-structured digital presence built on TYPO3 CMS, featuring multiple brand pages, career opportunities, and press information. The company targets a general consumer audience primarily in Germany. Technically, the website employs modern JavaScript libraries and privacy-conscious analytics via Matomo, with a cookie consent mechanism that supports opt-out and revocation, indicating good privacy practices. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though explicit security policies and headers could be improved. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements.

E

Evosys Laser GmbH

evosys-laser.de

55

Evosys Laser GmbH is a medium-sized German manufacturing company specializing in the development and production of customized laser welding systems for plastics. With a global presence supported by subsidiaries in China and the USA, the company offers comprehensive services including consulting, research and development, and contract manufacturing. Their website reflects a professional and consistent brand image, targeting industrial clients requiring high-precision laser plastic welding solutions. Technically, the website is built on WordPress with modern plugins and self-hosted analytics, demonstrating a mature digital infrastructure. Security posture is solid with HTTPS and consent management, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact channels.

K

Kallinich Media Digital GmbH

kallinich-media.de

52

Kallinich Media Digital GmbH is a German-based marketing and digital agency specializing in brand development, communication, web design, SEO, social media marketing, and e-commerce solutions. The company positions itself as a future-oriented agency focused on authentic storytelling and digital transformation for businesses seeking to connect with their customers effectively. The website demonstrates a professional and consistent brand presence with comprehensive service offerings and strong trust indicators such as Google Partner certification and positive customer reviews. Technically, the website is built on TYPO3 CMS with modern frontend technologies including Bootstrap, GSAP, and Swiper.js, ensuring a responsive and engaging user experience. Consent management is handled via Usercentrics, and analytics are implemented through Matomo, Hotjar, and Leadinfo, reflecting a moderate level of user tracking balanced with privacy compliance. The site is well-optimized for SEO and mobile devices, with structured data enhancing search visibility. From a security perspective, the site uses HTTPS and employs best practices such as CAPTCHA for form submissions and consent management. However, explicit security headers and a published security policy or incident response contact are absent, representing areas for improvement. No vulnerabilities or suspicious WHOIS patterns were detected, supporting the site's legitimacy. Overall, the website is professional, secure, and compliant with GDPR, offering a trustworthy digital presence for Kallinich Media Digital GmbH. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining transparency in data protection practices.

W

Wootwoot e.U.

wootwoot.at

48

Wootwoot e.U. is a small Austrian company specializing in web design, IT optimization, and IT sales, primarily serving clients in Graz and surrounding areas. The company emphasizes tailored IT solutions and professional web design services. The website reflects a professional and consistent brand image, with a clear focus on technology services. The technical infrastructure is based on WordPress CMS using the Avada theme, enhanced with popular plugins such as Yoast SEO for search engine optimization, Borlabs Cookie for cookie consent management, and Matomo for analytics. The site is mobile-optimized and includes accessibility features, demonstrating a commitment to inclusive user experience. From a security perspective, the website employs HTTPS with good SSL configuration and integrates cookie consent mechanisms, which aligns with basic privacy compliance requirements. However, the absence of a publicly accessible privacy policy, terms of service, and explicit security or incident response policies indicates room for improvement in compliance and transparency. No critical vulnerabilities or suspicious content were detected, and the WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website presents a moderate to good security posture and technical maturity, with a professional design and user experience. Strategic enhancements in privacy documentation, security policies, and visible contact information would strengthen trust and compliance, supporting the company's credibility and customer confidence.

R

Renefit

renefit.it

61

Renefit is a regional digital employee benefits provider based in South Tyrol, Italy, offering a Mastercard-based voucher card accepted at over 25,000 locations. The company operates in partnership with Raiffeisen Landesbank Südtirol and Eurotarget, providing a digital wallet and app for easy management and use of employee benefits. The website is well-structured, professionally designed, and provides comprehensive information including FAQs, support contacts, and a contact form. Technically, the site uses modern frameworks like Nuxt.js and Vue.js, with privacy-respecting Matomo analytics. Security posture is strong with HTTPS and security headers, though improvements like a cookie consent mechanism and security.txt are recommended. WHOIS data confirms legitimacy with consistent registrant information matching the business profile.

K

Konverto AG

konverto.eu

78

Konverto AG is a well-established IT service provider based in Italy, specializing in comprehensive IT solutions including cybersecurity, cloud services, connectivity, software development, and managed IT services. With over 20 years of experience, Konverto serves primarily business clients in the South Tyrol region and beyond, offering tailored solutions to optimize digital workplaces and secure IT infrastructures. The website reflects a professional and trustworthy business with strong partner alliances and customer testimonials. Technically, the site is built on modern frameworks such as Nuxt.js and Vue.js, with a TYPO3 CMS backend, ensuring good performance, mobile optimization, and SEO. Security posture is solid with HTTPS and privacy-respecting analytics, though explicit security policies and incident response contacts are not published. Overall, Konverto demonstrates a mature digital presence aligned with its business claims and market position.

C

Caritas Italiana

caritas.it

63

Caritas Italiana is a prominent Italian non-profit organization operating as the pastoral body of the Italian Episcopal Conference (CEI). The organization focuses on social assistance, humanitarian aid, advocacy, and research related to poverty, immigration, and social inclusion. It holds a leading position in Italy's social and pastoral sectors, targeting a broad audience including vulnerable populations and the general public interested in social justice and humanitarian issues. The website reflects a mature digital presence with comprehensive content, consistent branding, and a strong social media footprint. Technically, the website is built on WordPress with modern technologies such as Bootstrap, jQuery, and FontAwesome. It employs Matomo for privacy-conscious analytics and includes cookie consent mechanisms compliant with GDPR. The site is mobile-optimized and SEO-friendly, though accessibility features could be enhanced. Security posture is strong with HTTPS enforced and no evident vulnerabilities, though some security headers could be improved. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. There are no indications of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, publishing a formal security policy, and improving accessibility compliance to further strengthen the site's security and user experience.