High-risk security reports

S

SOMA - Environmental Solutions, Lda.

soma.pt

37

SOMA - Environmental Solutions, Lda. is a Portuguese company specializing in the commercialization, design, manufacturing, and technical assistance of urban cleaning and environmental equipment. Their product portfolio includes waste collection vehicles, sweepers, washing equipment, electric ecological solutions, cranes, and a proprietary operational management system called WISEWASTE®. The company holds ISO 9001:2015 certification and is recognized for innovation, including being the first Portuguese company with Common Criteria certification for an RFID container identification system. Their target audience includes public and private urban cleaning operators, municipalities, and environmental entities. The website reflects a medium-sized enterprise with over 50 years of experience, offering a comprehensive range of products and services.

UAB VAGlita is a Lithuanian company founded in 1999 specializing in providing solutions for the waste management and municipal services sector. Their offerings include sales, rental, and repair of heavy machinery and municipal equipment, with official representation of notable brands such as BOTEK and ZOELLER. The company maintains a medium-sized team of 24 qualified employees and targets municipal service companies and related businesses. The website is built on WordPress and uses common web technologies, presenting a professional and consistent brand image. However, it lacks visible privacy and cookie policies, which impacts compliance and user trust. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and formal vulnerability disclosure mechanisms. Overall, the website is functional, professional, and trustworthy but would benefit from enhanced privacy and security practices.

O

O-K-TEH d.o.o.

o-k-teh.hr

43

O-K-TEH d.o.o. is a well-established Croatian company specializing in the sale, service, and leasing of construction and municipal machinery and vehicles, including electric and hybrid models. The company has a strong regional presence with a history dating back to 1992 and represents reputable global manufacturers. Their website reflects a professional business model targeting construction firms and municipal service providers. Technically, the website is built on WordPress with WooCommerce and uses modern plugins and tracking tools, indicating a mature digital infrastructure. Security measures include HTTPS, reCAPTCHA, and cookie consent management, though there is room for improvement in security headers and explicit security policies. Overall, the site is trustworthy, compliant with GDPR cookie requirements, and provides comprehensive contact information. The domain registration data aligns well with the business claims, supporting legitimacy.

The website faun-zoeller.co.uk is currently inaccessible, presenting a 403 Forbidden error page that blocks access to any business or service-related content. The domain is registered since 2010 with InterNetx GmbH, indicating a potentially established business presence, but the lack of accessible content prevents a full assessment of the company's offerings or market position. The site lacks any visible privacy, cookie, or terms of service policies, and no contact information or forms are available, limiting user engagement and trust. Technically, the site loads minimal resources, primarily Google Fonts, and does not reveal any CMS, analytics, or security headers, suggesting a basic or restricted setup. Security posture cannot be fully evaluated due to the blocked content, but the absence of HTTPS or security headers in the provided data is a concern. Overall, the site appears to be down or access-restricted, resulting in a low AI score and limited business credibility.

J

JOAB Försäljnings AB

joab.se

41

JOAB Försäljnings AB is a leading Nordic company specializing in truck superstructures, including liftdumpers, hooklifts, garbage trucks, fixed platforms, truck cranes, and innovative shift systems. The company has a strong market position with a history dating back to 1963, offering comprehensive services from development to after-sales support. The website reflects a mature digital presence built on WordPress with modern SEO and tracking technologies, providing a professional user experience and clear business information. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data for the www subdomain is a notable anomaly but does not detract from the overall legitimacy of the business as presented online.

O

Ove Kock

ovekock.dk

46

Ove Kock is a Danish company specializing in transportation and renovation vehicles, emphasizing dedication, development, and craftsmanship pride. The website presents a professional and consistent brand image targeting Danish customers interested in specialized vehicles. The technical infrastructure is based on WordPress with Elementor and Yoast SEO, providing a modern and responsive user experience. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks advanced security headers and incident response disclosures. The absence of WHOIS data limits domain trust verification, but the website content and structure appear legitimate and business-focused.

A

Amec shpk

amec.al

49

Amec shpk is a specialized mechanical construction and steel fabrication company based in Albania with over 27 years of experience. The company offers a range of services including assembly & welding, bending, painting, machining, oxy & plasma cutting, and laser cutting, serving various industrial sectors such as energy technology, healthcare, and welding industry. The website is built on WordPress using Elementor and modern frontend libraries, providing a professional and mobile-optimized user experience. Contact information and social media presence are clearly presented, enhancing business credibility. However, the site lacks formal privacy and cookie policies, security headers, and vulnerability disclosure information, which are areas for improvement.

EVGE is a European non-profit association established in 2004 that organizes communities across Germany, Austria, Czech Republic, and Slovakia to certify waste disposal specialist companies. The website serves as an informational platform presenting press releases, certification standards, and training events. Technically, the site is built on WordPress with a modern theme and standard libraries, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit incident response policies. Privacy compliance is limited, with no cookie consent mechanism or detailed privacy policy beyond a basic imprint page. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

C

Cookies lišta, s.r.o.

cookiesbar.io

49

Cookies lišta, s.r.o. is a Czech Republic based company specializing in providing cookie compliance solutions aligned with the latest legislation including GDPR and the 2025 cookie law updates. Their offerings include a cookie consent management bar, privacy and cookie policy generators, legal updates, and integration support for various platforms, primarily targeting website owners and operators needing to comply with Czech and EU privacy laws. The company positions itself as a niche provider with a comprehensive, reliable, and cost-effective solution. Technically, the website is built on WordPress with integration of modern analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, Hotjar, and Smartsupp live chat. The site is well-optimized for mobile and SEO, with a professional design and clear navigation. Security posture is good with HTTPS enforced and consent mechanisms in place, though there is room for improvement in HTTP security headers and explicit security policies. The absence of WHOIS data limits domain registration transparency but the professional presentation and legal partnerships support legitimacy. Overall, the website demonstrates a mature digital presence with strong compliance focus and user trust signals.

L·Q·M Marktforschung GmbH is a specialized market and social research firm serving municipalities, public and private utilities, economic development agencies, and housing companies primarily in Germany. The company leverages a multidisciplinary team to deliver high-quality research supporting strategic decision-making. Their market position is that of a niche provider focused on the public sector and related industries. The website is built on WordPress with modern technologies such as jQuery and Owl Carousel, hosted on a reputable provider. The site demonstrates good mobile optimization, clear navigation, and professional content quality. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is strong with a comprehensive privacy policy, but no cookie consent mechanism is present. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

R

Raumagentur

raumagentur.de

49

Raumagentur is a German-based company specializing in modern workspace consulting, planning, construction, furnishing, and rental services. With over 25 years of experience, it serves a medium-sized market segment, targeting businesses seeking efficient and flexible office environments. The website is professionally designed, featuring comprehensive service descriptions, client testimonials, and a consistent brand image. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, including Google Tag Manager and LinkedIn Insight Tag. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms in place. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business claims, indicating legitimacy.

P

PRIMUS developments

primus-developments.de

44

PRIMUS developments is a German real estate development company specializing in sustainable construction using wood as a primary building material. Their projects focus on environmental sustainability by storing CO2 in buildings and promoting renewable resources. The website showcases various projects primarily located in Germany, targeting environmentally conscious investors and public sector clients. Technically, the website is built on WordPress with modern frontend frameworks such as UIkit and jQuery, and it employs performance optimizations like lazy loading. Security posture is moderate with HTTPS enabled and Wordfence security plugin usage, but lacks advanced security headers and visible incident response policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy but could improve in privacy and security transparency.

M

Michel Bau

michel-bau.de

47

Michel Bau is a German family-owned construction company specializing in high-rise, civil engineering, and environmental construction projects. The company positions itself as a specialist with experience, engagement, and modern technology, targeting clients across Germany. The website reflects a medium-sized business with a professional online presence, showcasing project stories and career opportunities. Technically, the site is built on WordPress using Elementor and Yoast SEO, with a cookie consent mechanism implemented via Borlabs Cookie and Google Tag Manager integration. Security posture is good with HTTPS enforced, but lacks some advanced security headers and explicit security policies. Privacy compliance is partial due to missing privacy and terms of service pages. Overall, the site is professional, trustworthy, and safe for general audiences.

K

Kolb Erdbau & Abbruch GmbH

kolb-erdbau-abbruch.de

48

Kolb Erdbau & Abbruch GmbH is a German construction services company specializing in earthworks, demolition, special deep foundation, area recycling, and pollutant remediation. The company targets regional construction and real estate clients, offering consulting and specialized services. The website is built on the Contao CMS platform, utilizing modern JavaScript libraries such as jQuery and Rocksolid Slider, providing a professional and responsive user experience. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers and explicit security policies are absent. Contact information is clearly presented, enhancing business credibility. Overall, the website reflects a small but professional business with a focus on local market presence and compliance with GDPR cookie regulations.

I

INGENUM

ingenum.de

44

INGENUM is a German-based company positioning itself as a partner for innovative and sustainable solutions with a focus on environmental and social responsibility. The website is built on WordPress using modern tools such as Elementor and Yoast SEO, indicating a moderate level of digital maturity. The site is well-structured, mobile-optimized, and provides a professional user experience, although it lacks explicit privacy and terms of service documentation. Security posture is adequate with HTTPS enabled and cookie consent implemented, but the absence of security headers and incident response information suggests room for improvement. Overall, the website is safe and business-oriented with no adult or questionable content detected.

H

Hülskens Wasserbau GmbH & Co. KG

huelskens-wasserbau.de

47

Hülskens Wasserbau GmbH & Co. KG is a well-established German company specializing in constructive water engineering with over 100 years of experience. The company offers a broad range of services including engineering water construction, sheet piling, dredging, sediment management, and specialized techniques. It operates nationwide in Germany and is part of the larger Hülskens Firmenverband group. The website targets B2B clients in infrastructure and waterway sectors as well as young professionals seeking apprenticeships. Technically, the site is built on the Contao CMS platform, uses common JavaScript libraries for UI enhancements, and is hosted on agenturserver infrastructure. The website is well-structured, mobile-optimized, and includes a cookie consent mechanism compliant with GDPR. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Contact information is clearly presented, and social media presence is active across major platforms. No terms of service or explicit security policy pages were found, which could be areas for improvement.

G

GlobalFlow GmbH

global-flow.de

45

GlobalFlow GmbH is a German-based small business specializing in strategic waste and resource management consulting for industry, commerce, and waste disposal service providers. The company positions itself as a partner for sustainable, efficient, and future-proof waste management solutions, offering modular services including coaching, training, and network memberships. The website is professionally designed with good content quality and uses modern marketing and analytics technologies such as Google Tag Manager, ConvertKit, and Stripe, hosted on Alfahosting infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking explicit security policies or incident response information. Contact is primarily via web forms and booking links, with no direct emails or phone numbers published. Overall, the website is trustworthy and safe, with no suspicious content or blocking mechanisms detected.

GERHARD HÖFLING GMBH is a well-established German company specializing in earthworks, demolition, raw materials supply, and recycling services. With over 70 years of experience, it serves a diverse clientele including builders, architects, contractors, and project developers. The company operates under the parent group Foca Gruppe, indicating a stable business structure and regional market presence. The website reflects a professional image with clear service offerings and contact information, targeting both B2B and B2C segments in the construction and real estate sectors. Technically, the website employs common web technologies such as jQuery and Owl Carousel, and integrates Google Analytics and Tag Manager for user tracking. It is hosted behind Cloudflare, providing performance and security benefits. The site is mobile-optimized with good SEO practices but lacks some advanced accessibility features. No CMS is explicitly detected. From a security perspective, the site uses HTTPS with good SSL configuration and anonymizes IPs in analytics, but lacks important security headers and a cookie consent mechanism, which are critical for GDPR compliance. There are no published security policies or incident response contacts, which limits transparency and preparedness. No vulnerabilities or exposed sensitive data were detected, but improvements are recommended to enhance security posture and privacy compliance. Overall, the website is professional and trustworthy with moderate technical maturity and security posture. Strategic improvements in privacy compliance and security policy publication would strengthen its risk profile and user trust.

B

Betriebs-Berater / BB IN-HOUSE

bb-inhouse.de

45

BB IN-HOUSE is a German digital media publication providing biweekly curated legal and economic news targeted at corporate executives and decision makers. The website is professionally designed using WordPress with a child theme and integrates GDPR-compliant cookie consent via Usercentrics. The technical infrastructure includes modern JavaScript libraries, Google Tag Manager for analytics, and Adition for advertising. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The domain registration data is consistent and transparent, supporting legitimacy. Overall, the site presents a trustworthy and professional media platform serving a niche market.

S

Studio StillSoft

studiostillsoft.com

45

Studio StillSoft is a small creative or digital studio established around 2020, focusing on showcasing selected projects through a minimalistic website design. The business appears to target a general audience interested in creative digital services, positioning itself as a niche player in the creative industry. The website is simple and visually oriented, with limited textual content and no explicit business or contact details visible on the homepage. Technically, the website uses modern JavaScript modules and CSS with a probable Vue.js framework, hosted on Websupport infrastructure. The site is mobile optimized and moderately performant but lacks advanced SEO and accessibility features. No CMS or third-party marketing/analytics tools are detected, indicating a lightweight and straightforward technical setup. From a security perspective, the site lacks critical security headers and privacy compliance mechanisms such as privacy or cookie policies. The domain registration is legitimate and consistent with the business profile, but the absence of security best practices and contact information reduces trustworthiness. No WAF or blocking mechanisms are detected, and the site content is safe for general audiences. Overall, the website scores moderately on content and business credibility but scores low on security and privacy compliance. Strategic improvements in security headers, privacy policies, and contact transparency are recommended to enhance trust and compliance.

M

MINERALplus STORK GmbH

mineralplusstork.de

49

MINERALplus STORK GmbH operates a modern slag processing plant in Zossen, Germany, specializing in recycling slag and ash from waste to energy plants. The company is jointly managed by STORK Umweltdienste GmbH and MINERALplus GmbH, both part of the EP Power Minerals group. Their services include metal recovery and production of construction materials from slag, serving industrial and construction sectors regionally. The website is professionally designed using TYPO3 CMS, with good mobile optimization and clear navigation. It employs Matomo analytics with a GDPR-compliant cookie consent mechanism. Security posture is solid with HTTPS and spam-protected emails, though additional security headers and policies could enhance protection. Overall, the site reflects a trustworthy and credible business presence with clear contact information and certification evidence.

F

Felix Höltken GmbH

felixhoeltken.de

47

Felix Höltken GmbH is a medium-sized German company specializing in Baustoffrecycling and Baustoffgroßhandel, operating since 1990 and part of the EPH-Konzern. The company provides high-quality recycled construction materials primarily for the construction and infrastructure sectors, positioning itself as a sustainable alternative to natural stone resources. The website reflects a professional and consistent brand image, targeting business clients in the construction industry. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and implements a cookie consent mechanism via Klaro, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers could be improved. Overall, the website is well-structured, accessible, and compliant with GDPR requirements, with clear contact information and no blocking mechanisms detected.

E

Euroment

euroment.com

44

Euroment is a well-established supplier of certified pulverized coal fly ash and limestone powders primarily serving the Benelux region. The company emphasizes sustainability and innovation, particularly in reducing CO2 emissions in cement-bound systems. Their website is professionally designed using TYPO3 CMS, featuring good mobile optimization, clear navigation, and comprehensive content about their products and services. The technical infrastructure includes modern technologies such as Matomo for analytics and Klaro for cookie consent management, reflecting a mature digital presence. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although security headers could be improved. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. However, the absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which slightly impacts overall trust. Contact information is primarily via a contact page without explicit emails or phone numbers visible on the site. Overall, Euroment presents a credible and professional business front with minor areas for improvement in transparency and security best practices.

M

MINERALplus GmbH

mineralplus.de

46

MINERALplus GmbH is a German company specializing in industrial waste disposal and the production of construction and mine packing materials from waste. Founded in 2000 through a merger, it operates as a subsidiary of EP Power Minerals GmbH under the EPH Group umbrella. The company serves industrial and construction sectors with certified waste treatment, recycling, and landfill services. The website is built on TYPO3 CMS, uses Matomo for analytics, and Klaro for cookie consent management, reflecting a modern and privacy-conscious technical infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. Overall, the website is professional, well-structured, and trustworthy, with no signs of malicious content or blocking mechanisms.

Y

YouthWatch

youthwatch.sk

42

YouthWatch is a Slovak non-profit organization dedicated to enhancing the quality of youth work and youth policy through trend monitoring, innovation, and development programs. Their services include educational workshops, lectures, and consulting aimed at youth workers, educators, and policymakers. The website is professionally designed using WordPress and Elementor, with a focus on accessibility and mobile optimization. The technical infrastructure is modern and hosted on Websupport with DNSSEC and HTTPS enabled, ensuring a secure browsing experience. However, the site lacks explicit privacy and cookie policies, incident response contacts, and security headers, which are areas for improvement. Overall, the domain registration and website content are consistent and legitimate, reflecting a stable and trustworthy organization.

C

Centrum environmentálních technik a technologií (CETT)

cett.eu

42

CETT (Centrum environmentálních technik a technologií) operates as a specialized hospitality and educational center located in the Czech Republic, offering conference facilities, accommodation, and environmental education programs. The business targets corporate clients, institutions, schools, and individual guests, emphasizing quality service and environmental awareness. The website reflects a professional and consistent brand image with clear service offerings and positive trust indicators such as certifications and guest ratings. Technically, the site employs modern frontend technologies including Bootstrap and Google Analytics, providing a responsive and user-friendly experience. However, some areas such as explicit cookie consent and security policies could be improved. Security posture is moderate with HTTPS usage but lacks visible security headers and incident response information. Overall, the site is trustworthy and well-positioned in its niche but would benefit from enhanced privacy and security transparency.

F

Filip Kňažek

filipknazek.eu

36

Filip Kňažek operates a personal coaching and facilitation business focused on nature-based self-development and emotional well-being. The website presents a professional and consistent brand image with clear service offerings including workshops, coaching walks, and group facilitation. The technical infrastructure is based on WordPress with Elementor and Yoast SEO, indicating a modern and maintainable platform. Security posture is adequate with HTTPS enabled, but lacks some security headers and formal privacy/cookie policies. The absence of WHOIS data is due to privacy protection, which is typical for small personal businesses. Overall, the site is trustworthy and well-positioned for its niche audience.

K

Klidem - institut pro ekoterapii, z.ú.

klidem.com

49

Klidem - institut pro ekoterapii, z.ú. is a Czech non-profit organization focused on promoting mental health through ecotherapy. They provide therapy, coaching, educational courses, workshops, and custom services to individuals, groups, and professionals. The organization actively collaborates with other ecotherapy-related entities in the Czech Republic and internationally. Their website presents a professional image with consistent branding and clear descriptions of their services and team. Technically, the site is built on WordPress using modern themes and plugins, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to missing privacy and cookie policies and absence of explicit contact information. Overall, the site is trustworthy and serves its niche well but would benefit from enhanced compliance and security practices.

I

IPčko.sk

ipcko.sk

42

IPčko.sk is a well-established Slovak non-profit organization providing anonymous, free, and 24/7 crisis psychological support through multiple channels including phone, chat, email, and personal visits. The website reflects a mature digital presence with a clear focus on accessibility and user support. The organization has a strong market position in Slovakia as a trusted crisis helpline service. Technically, the site is built on WordPress with modern plugins and frameworks, hosted on a reputable provider with DNSSEC and HTTPS enabled, ensuring good security and performance. Security posture is strong with best practices observed, though some improvements in privacy compliance and explicit security policies are recommended. Overall, the site is professional, trustworthy, and user-friendly, serving a critical social function.

N

NaZemi

nazemi.cz

45

NaZemi is a well-established Czech non-profit organization founded in 2005, focusing on sustainability, transformative education, and community engagement. Their website reflects a mature digital presence with clear navigation, multilingual support, and a professional design. They offer educational programs, facilitation services, community spaces, and an e-commerce platform for publications. Technically, the site is built on WordPress with WooCommerce and uses modern frameworks like Bootstrap, supported by privacy-conscious analytics such as Matomo and Google Tag Manager with consent management. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. Contact information and privacy policies are clearly presented, supporting trust and compliance. Overall, the site is credible, secure, and user-friendly, serving a niche audience interested in sustainability and education.

P

PDCS, o.z.

pdcs.sk

41

PDCS is a Slovak non-governmental organization specializing in conflict resolution, civic participation, and social dialogue. The organization offers educational courses, facilitation, consulting, and project support primarily targeting individuals, groups, and organizations interested in societal development and democratic processes. The website reflects a professional and consistent brand image with clear communication of services and contact information. Technically, the site uses modern web technologies including Vue.js and Bootstrap, and integrates privacy-respecting analytics via Plausible. Security posture is strong with HTTPS and security headers implemented, though there is room for improvement in privacy compliance with the absence of a cookie consent mechanism and a dedicated privacy policy page. Overall, PDCS demonstrates a credible and trustworthy online presence aligned with its non-profit mission.

N

NaZemi

generacesymbiocen.cz

47

Generace Symbiocén is a Czech non-profit educational program targeting young people aged 17-23, focusing on societal and environmental transformation, particularly addressing the climate crisis. The program is operated by NaZemi, a well-established organization in global education and social change. The website is built on WordPress using Elementor and integrates various plugins including Everest Forms and Instagram Feed. It uses Matomo for analytics and embeds YouTube videos for content delivery. The site is professionally designed with good navigation and mobile optimization, providing relevant and engaging content for its target audience. However, it lacks explicit privacy and cookie policies, consent mechanisms, and security headers, which are important for compliance and security posture. WHOIS data confirms the domain is recently registered in 2022, consistent with the program's founding, and is hosted on Czech servers. Overall, the site is trustworthy and credible but could improve in privacy compliance and security best practices.

The website at search.worldcat.org currently presents minimal accessible content, consisting solely of an empty JSON object within the HTML body. The WHOIS data for the domain is malformed and lacks critical registration details such as registrar, creation date, expiry date, and registrant information. This severely limits the ability to assess the legitimacy and business profile of the domain. Technically, the site lacks metadata, structured data, forms, contact information, and security headers, indicating a low level of digital maturity and security posture. The absence of privacy and cookie policies further highlights compliance gaps. Overall, the site appears to be either blocked by a web application firewall or is serving minimal content, resulting in a low trust and security score.

K

KulturKirche2025 – Die Kirchen in der Kulturhauptstadtregion Chemnitz 2025

kulturkirche2025.de

45

KulturKirche2025 is a cultural initiative centered on churches in the Chemnitz region, aligned with the European Capital of Culture 2025 program. The website serves as a platform to promote cultural exhibitions, spiritual events, and community projects, targeting visitors, pilgrims, and local cultural participants. The business model is non-profit and community-focused, emphasizing cultural heritage and spiritual engagement. Technically, the site is built on WordPress with modern plugins such as Advanced Custom Fields Pro and WPML for multilingual support. The infrastructure is hosted on rzone.de nameservers, indicating a professional hosting environment. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks explicit security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is accessible, well-structured, and provides relevant cultural content but would benefit from enhanced privacy and security documentation.

D

Die Zulassungssoftware der Zukunft

zulex.de

44

ZULEX is a specialized cloud-based software provider focused on digitizing vehicle registration processes in Germany. Positioned as the only independent Zulassungssoftwareanbieter and a member of the Kraftfahrtbundesamt's i-Kfz project, ZULEX offers comprehensive services including new registrations, deregistrations, re-registrations, and address changes. Their platform is accessible 24/7 via browser without installation, targeting Zulassungsbetriebe, car dealerships, fleet operators, and large customers. The website demonstrates a professional and consistent brand presence with strong trust signals such as certifications and customer testimonials. Technically, the website is built on WordPress with Elementor and Yoast SEO, integrating modern tools like HubSpot forms and GDPR-compliant cookie management. The hosting is managed via kasserver.com, and the site uses HTTPS with good SSL configuration. Performance is moderate with good mobile optimization and accessibility features. Analytics and tracking are implemented via Fathom and SalesViewer, with transparent cookie consent mechanisms. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content, indicating a legitimate and consistent domain registration. Overall, ZULEX presents a secure, professional, and compliant digital presence suitable for its business domain. Strategic improvements include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further strengthen trust and compliance.

E

EVS/ESC Galaxy

evsgalaxy.net

46

EVS/ESC Galaxy is a niche educational platform dedicated to providing resources, brochures, and international training courses for EVS and ESC coordinators. The website serves a specialized audience involved in European voluntary service coordination, offering curated content and tools to support their activities. The business operates primarily in the education and non-profit sectors, with a small organizational size and a founding date consistent with the domain registration in 2017. The site is hosted by WEDOS Internet, a Czech hosting provider, aligning with the regional focus of the content. Technically, the website is built on WordPress with a modern theme and plugins, including jQuery and Page Builder Framework. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. The absence of advanced security headers and DNSSEC indicates room for improvement in security hardening. No analytics or tracking scripts were detected, suggesting minimal user tracking. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No contact or incident response information is provided, limiting transparency and user trust. The domain WHOIS data is consistent and legitimate, with no privacy protection or suspicious patterns. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security best practices, and clearer contact information to improve trust and regulatory adherence.

M

MarkerCS

markercs.cz

45

MarkerCS is a small non-profit organization focused on providing non-formal education training primarily for youth workers and teachers in Slovakia and the Czech Republic. Their website offers detailed information about their training programs, educational principles, and testimonials from past participants, positioning them as a niche educational provider supported by the Erasmus+ program. Technically, the website is built on WordPress using the Astra theme and Elementor page builder, hosted by a Czech registrar and hosting provider. The site is moderately performant, mobile-optimized, and SEO-friendly but lacks some advanced accessibility features. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but the absence of security headers and formal privacy and cookie policies indicates room for improvement. Overall, the website is professional and trustworthy but could enhance compliance and security transparency.

The website 'Šlabikár neformálneho vzdelávania' serves as an educational platform focused on improving the quality of non-formal education for youth workers primarily in Slovakia and the Czech Republic. It offers a methodological guide and an interactive e-learning tool developed through a partnership between YouthWatch, ANEV, and Luducrafts, supported by Erasmus+. The site targets youth educators and non-profit organizations involved in youth work, providing free resources to enhance educational practices. Technically, the site uses modern JavaScript libraries, Google Analytics for tracking, and is served over HTTPS with a valid SSL certificate. However, it lacks visible privacy and cookie policies and does not provide direct contact information, which impacts privacy compliance and user trust. Security posture is moderate with some best practices like CSRF token usage but missing security headers. WHOIS data is unavailable due to EURid privacy policies, but the domain and content appear legitimate and consistent with the stated mission. Overall, the site is professionally designed and functional but could improve transparency and security practices.

Y

YoDel

yodel.sk

42

YoDel is a small-scale educational conference focused on new approaches to working with young people, primarily targeting youth workers and educators in Slovakia. The website provides detailed program information and workshop descriptions, demonstrating a clear business purpose and target audience. Technically, the site is built on WordPress using Elementor and Yoast SEO, with modern fonts and some SEO optimization. However, Google Analytics is installed but not configured, and no privacy or cookie policies are present, which impacts privacy compliance. Security posture is moderate with HTTPS enabled but lacking security headers and explicit security policies. Overall, the site is professional and functional but could improve in privacy and security transparency.

O

on-collect solutions AG

on-collect.de

39

on-collect solutions AG operates a legaltech cloud platform specializing in debt collection and receivables management, primarily serving companies in the energy sector in Germany. The company combines software as a service with consulting and legal expertise to optimize the entire customer lifecycle in receivables management. Their platform integrates seamlessly with ERP systems and offers automated processing, digital file management, and comprehensive reporting. The website positions on-collect as a pioneer in legaltech with over 200 customers using their SaaS solution. Technically, the website is built on WordPress with Elementor and Bootstrap, leveraging modern JavaScript libraries and Matomo for privacy-conscious analytics. The site is mobile-optimized and demonstrates good SEO practices, though some accessibility features could be enhanced. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, but lacks some security headers and formal security policies. Overall, the security posture is good but could be improved by adding explicit privacy and cookie policies, incident response information, and security headers. The domain WHOIS data is consistent with the business claims, supporting legitimacy. No blocking or WAF challenges were detected, allowing full content analysis. Strategic recommendations include enhancing privacy compliance, publishing security and incident response policies, and implementing security headers to strengthen trust and compliance with GDPR and related regulations.

E

e-rechtsanwälte.eu

e-rechtsanwaelte.de

42

e-rechtsanwälte.eu is a specialized legal consultancy firm focusing on energy law, IT law, internet law, and data protection, primarily serving energy suppliers and medium-sized industries in Germany. The website presents a professional image with clear navigation and a modern design, leveraging WordPress with Elementor and Bootstrap frameworks. The firm offers a range of legal services including contract law, insolvency law, and organizational liability. Technically, the site uses HTTPS, Matomo analytics with cookies disabled, and a cookie consent mechanism, indicating a moderate level of digital maturity. However, the absence of a published privacy policy and terms of service pages suggests room for improvement in compliance transparency. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but the lack of security headers is a minor concern. Overall, the website is trustworthy and professional, though enhancing privacy and security disclosures would strengthen its compliance and user trust.

F

Flurbereinigungsverband Oldenburg-Ostfriesland

fbv-oo.de

43

Flurbereinigungsverband Oldenburg-Ostfriesland is a public law corporation operating in Germany, focused on land consolidation and related administrative services for its members in the Oldenburg and Ostfriesland regions. The organization provides essential services such as financial management and maintenance of communal facilities, positioning itself as a regional governmental entity with a clear mandate and defined governance structure. The website reflects a professional and consistent brand image, targeting members and stakeholders involved in land management and public administration. Technically, the website is built on WordPress with standard SEO and accessibility plugins, hosted on a German hosting provider. It demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. The absence of advanced analytics or tracking tools suggests a privacy-conscious approach, albeit with room for improvement in cookie consent mechanisms. From a security perspective, the site uses HTTPS with no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security headers and published security policies or incident response information, which could enhance trust and compliance. The WHOIS data aligns well with the website content, indicating a legitimate and consistent domain registration. Overall, the website is safe, professional, and trustworthy, with recommendations to improve privacy compliance and security posture to meet higher standards and regulatory expectations.

A

arvenio marketing GmbH

creedle.io

47

creedle.de is a German-based digital platform focused on creating a Christian digital ecosystem called creedle. The platform aims to make Jesus digitally visible by connecting Christians, churches, and seekers through multiple applications (creedlec) integrated into a central search engine. The project started in 2022 with a roadmap to complete the first system version by 2027. The business is positioned as a niche technology provider in the Christian digital content space, supported by arvenio marketing GmbH and partnerships with organizations like the Deutsche Bibelgesellschaft. Technically, the website is built on WordPress using the Avada theme and Fusion Builder, with modern plugins for multilingual support and cookie consent. Security posture is strong with HTTPS and security headers, though privacy and incident response policies are missing. Overall, the site is professional, well-branded, and trustworthy, but could improve compliance documentation and explicit contact information.

E

ELBE DECKEN

elbedecken.de

37

ELBE Decken is a specialized German manufacturer and supplier of prestressed concrete floor slabs, operating under the umbrella of Heidelberg Materials, a major global construction materials company. The company offers a broad product range and comprehensive services including manufacturing, delivery, consulting, planning, and project support. Their market position is strong within Germany, targeting construction professionals such as builders, architects, and investors. The website reflects a professional and well-branded digital presence with clear navigation and relevant content tailored to their audience. Technically, the site is built on WordPress with modern plugins and themes, optimized for SEO and mobile use, and hosted by Goneo. Security measures include HTTPS, Google reCAPTCHA, and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the site is trustworthy, compliant with GDPR, and provides sufficient contact and business information.

H

Heinrich Krieger KG

dialog-krieger.de

46

Dialog Krieger, operated by Heinrich Krieger KG, is a specialized service provider focusing on modern conflict management and public participation facilitation in Germany. The company emphasizes transparent and fair dialogue processes, primarily serving municipalities, companies, and initiatives. Their website reflects a professional and consistent brand image, highlighting certified mediators and structured citizen engagement services. The technical infrastructure is based on WordPress CMS with common plugins and a hosting provider identified as netcup, ensuring reliable performance and moderate mobile optimization. Security posture is adequate with HTTPS enabled and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is trustworthy, GDPR compliant, and provides sufficient contact information and business insights.

S

SCHWING Stetter

schwing-stetter.com

49

SCHWING Stetter is a well-established German manufacturer specializing in concrete technology products such as truck-mounted concrete pumps, truck mixers, batching plants, and industrial pumping systems. The company maintains a strong global presence with multiple regional partner sites and subsidiaries, targeting construction industry professionals and industrial clients. Their website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on TYPO3 CMS, uses modern JavaScript frameworks, and integrates privacy-conscious analytics via Matomo. Cookie consent is managed effectively through Cookiebot, ensuring GDPR compliance. Security posture is solid with HTTPS enabled and basic security headers, though there is room for improvement in DNSSEC and advanced security headers. No critical vulnerabilities or suspicious patterns were detected. Overall, the website and domain registration data indicate a legitimate and credible business with a mature digital infrastructure.

B

BEYER-Mietservice KG

beyer-mietservice.de

43

BEYER-Mietservice KG operates a professional and established European construction machinery rental business, offering a wide range of equipment including aerial work platforms, cranes, forklifts, and generators. The website presents a clear business focus with detailed product listings and a consistent brand presence. Technically, the site uses modern web technologies such as Google Tag Manager and lazy loading for images, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks important security headers and formal privacy and cookie policies. The WHOIS data is minimal but does not indicate privacy protection or suspicious registration, supporting legitimacy. Overall, the site is functional and professional but could improve privacy compliance and security best practices.

H

Hauptverband der Deutschen Bauindustrie e.V.

leisegehtsnicht.de

49

The website 'Leise geht's nicht.' represents the Hauptverband der Deutschen Bauindustrie e.V., a key industry association for the German construction sector. It serves as an informational platform highlighting the industry's role in infrastructure, digitalization, climate protection, and housing development. The site targets stakeholders including government, industry professionals, and the general public, emphasizing the societal importance and challenges of construction projects. Technically, the site is built on TYPO3 CMS with Matomo analytics, demonstrating a modern and professional digital infrastructure. The site is mobile-optimized and well-structured, though some accessibility and security header improvements are possible. Security posture is strong with HTTPS and no visible vulnerabilities, but lacks published security policies or vulnerability disclosure mechanisms. Overall, the site is trustworthy, professional, and compliant with GDPR through linked policies on the bauindustrie.de domain.

E

Evangelische Kirche von Westfalen, Landeskirchenamt

ekvw.de

49

The Evangelische Kirche von Westfalen is a major regional Protestant church organization in Germany, providing religious, educational, and social services. The website serves as an information and engagement platform for members and the public, featuring news, events, and resources. The organization holds a strong market position as the fourth largest evangelical church in Germany, targeting a broad general audience interested in faith and community activities. Technically, the website is built on TYPO3 CMS, with modern web standards, responsive design, and accessibility features. It integrates third-party services for analytics and media content while maintaining GDPR compliance through a comprehensive cookie consent mechanism. Security posture is solid with HTTPS and privacy-respecting analytics, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and well-maintained, reflecting the organization's credibility and commitment to transparency.

E

www.ekir.de

ekir.de

42

The website www.ekir.de appears to be a German language site with a strong emphasis on accessibility, integrating a comprehensive accessibility tool (digi·access) that offers multiple profiles and customization options for users with various disabilities. The site is built on WordPress CMS and uses common plugins such as Yoast SEO for search engine optimization and MashShare for social sharing. Hosting is provided by Cancom, as indicated by the nameservers. The site includes cookie consent management via Usercentrics, ensuring compliance with cookie regulations. However, explicit privacy policy and terms of service pages were not found in the provided content, which is a gap in compliance and transparency. Contact information such as emails, phone numbers, or physical addresses are not present in the analyzed content, limiting direct communication channels.