Security Directory

M

Magistrat der Stadt Hanau

festspiele-hanau.de

59

The Brüder Grimm Festspiele Hanau website represents a well-established cultural event organized by the Magistrat der Stadt Hanau. It provides comprehensive information about the 41st festival season, including detailed event schedules, ticketing options, workshops, and partner acknowledgments. The site targets families, schools, and cultural enthusiasts, positioning itself as a key regional cultural event with strong local government and sponsor support. Technically, the website employs a modern tech stack including Bootstrap, jQuery, and Matomo analytics, hosted likely under the city’s infrastructure, ensuring a moderate to good performance and mobile optimization. Security posture is solid with HTTPS and privacy-respecting analytics, though some security headers are not explicitly detected. Privacy compliance is strong with clear privacy and cookie policies, and GDPR adherence is evident. Overall, the site is professional, trustworthy, and user-friendly, with no signs of malicious content or security risks.

S

Stadt Hanau

karriereportal-hanau.de

59

Stadt Hanau operates a comprehensive municipal career portal showcasing a wide range of employment opportunities across various city-owned enterprises and public services. The website serves as a central hub for job seekers interested in public sector roles in Hanau, Germany, highlighting subsidiaries in infrastructure, childcare, energy, transportation, healthcare, and more. The portal emphasizes community engagement and career development within the municipal framework. Technically, the website is built on the Imperia CMS platform, leveraging Bootstrap for responsive design and incorporating modern UI components like Swiper and Owl Carousel. The site uses Matomo analytics with a GDPR-compliant cookie consent mechanism, reflecting a mature approach to privacy. However, some outdated libraries (notably jQuery 2.2.4) and minor HTML markup issues suggest areas for technical improvement. From a security perspective, the site enforces HTTPS and employs privacy-respecting analytics but lacks visible security headers and uses an outdated JavaScript library version, which could expose it to known vulnerabilities. No explicit security or incident response policies are published, indicating room for enhanced transparency and preparedness. Overall, the website is professional, trustworthy, and well-aligned with its public sector mission. Strategic improvements in technical modernization and security hardening would further strengthen its posture and user trust.

S

Stadt Hanau

hanau-corona.de

61

The website 'Corona in Hanau' is an official municipal information portal operated by Stadt Hanau, Germany, providing comprehensive and up-to-date information related to the Coronavirus pandemic. It serves residents and stakeholders by offering resources such as testing locations, vaccination sites, hygiene rules, legal information, and support services. The site is positioned as a trusted government source with consistent branding and clear navigation. Technically, the website is built on the IMPERIA CMS platform and utilizes a modern technology stack including jQuery, Bootstrap, Matomo Analytics, and Google Maps API. The site demonstrates good mobile optimization and SEO practices, although performance is moderate. The cookie consent mechanism is robust, ensuring GDPR compliance with user opt-in for analytics tracking. From a security perspective, the site employs HTTPS and anonymizes user IPs in analytics. However, explicit security headers and incident response information are not evident, suggesting room for improvement in security posture. No vulnerabilities or exposed sensitive data were detected. Overall, the site maintains a good balance between usability, privacy, and security. The risk assessment is low given the official nature of the site and its compliance with privacy regulations. Strategic recommendations include enhancing security headers, publishing a security policy, and providing incident response contacts to further strengthen trust and resilience.

Garten- & Landschaftsgestaltung Hain GmbH is a well-established family-owned garden and landscape construction company operating since 1945 in the Rhein-Main region of Germany. The company offers comprehensive services including garden planning, implementation, maintenance, natural stone work, and swimming pond construction, targeting private, commercial, and public clients. Their market position is strengthened by multiple awards and a strong regional presence. Technically, the website is built on WordPress with modern JavaScript libraries and includes anti-spam and cookie consent tools, reflecting a moderate to good digital maturity. Security posture is solid with HTTPS and anti-spam measures, though some security headers and explicit policies could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the website is professional, trustworthy, and provides a positive user experience.

M

MRH Trowe

mrh-trowe.com

66

MRH Trowe is a large, internationally active, owner-managed insurance broker headquartered in Germany, positioned among the top 10 industrial brokers in the country. The company specializes in developing tailored and sustainable insurance solutions and consulting concepts for both business and private clients. Their business model emphasizes independence and comprehensive service, supported by a broad network and a workforce exceeding 1700 employees. The website reflects a professional and consistent brand image, showcasing multiple certifications and strong customer trust indicators such as high ratings on ProvenExpert and Kununu. Technically, the website is built on WordPress with modern plugins including Gravity Forms for data collection, CleanTalk for anti-spam, and CookieMonkey for cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced and bot detection mechanisms in place; however, the absence of visible security headers and a formal security policy or vulnerability disclosure reduces the overall security maturity. The WHOIS data is notably missing or unavailable, which introduces some uncertainty regarding domain registration legitimacy. Despite this, the website content, certifications, and business presence strongly suggest a legitimate and established business. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanisms, and a named data protection contact. Overall, MRH Trowe presents a trustworthy and professional digital presence with room for improvement in security transparency and WHOIS data clarity. Strategic enhancements in security headers and incident response disclosures would further strengthen their security posture and stakeholder confidence.

L

LookUs Scientific

journalagent.com

49

JournalAgent™ is a specialized online platform developed by LookUs Scientific, offering comprehensive article submission, peer review, and publishing solutions tailored for peer-reviewed scientific journals. The platform supports over 80 journals and thousands of academic users, providing services such as DOI assignment, multi-language support, and advanced archiving. The website demonstrates a professional and consistent brand presence with excellent content quality and user experience, primarily targeting academic and publishing sectors in Turkey.

P

Powerledger

powerledger.io

64

Powerledger is a technology company specializing in pioneering energy software solutions that enable tracking, tracing, and trading of clean energy and environmental commodities. The company positions itself as an innovator in the energy sector, targeting participants involved in clean energy markets and environmental commodity trading. Founded in 2016, Powerledger operates a professional and well-branded website that reflects its focus on energy technology solutions. The technical infrastructure of the website is built on WordPress using the Astra theme, enhanced with Elementor and Yoast SEO Premium for content management and search engine optimization. Hosting is provided via Amazon Web Services, ensuring reliable performance and scalability. The site integrates marketing and analytics tools from HubSpot, indicating a moderate level of digital maturity and user tracking capabilities. From a security perspective, the website employs HTTPS with a good SSL configuration but lacks several security headers and does not publish privacy or cookie policies, which are critical for compliance and user trust. No incident response or vulnerability disclosure information is available, which could be improved to enhance security posture. The domain registration is privacy protected but legitimate, with a stable history since 2016. Overall, Powerledger presents a credible and professional online presence with room for improvement in privacy compliance and security best practices. Strategic recommendations include publishing comprehensive privacy and cookie policies, enabling DNSSEC, implementing security headers, and providing clear incident response contacts to strengthen trust and compliance.

I

Impel Global

impel.global

71

Impel Global is a fintech company leveraging blockchain technology, specifically the XDC Network, to transform financial messaging and payment settlements. It offers ISO 20022-compliant messaging APIs, instant settlement options using crypto-backed collateral, and integration with the R3 Corda ecosystem for hybrid private/public data handling. Positioned as a modern alternative to legacy systems like SWIFT, Impel Global targets financial institutions and multinational corporations seeking faster, cost-effective, and transparent payment solutions. The website demonstrates a mature technical infrastructure built on WordPress with modern plugins and SEO optimizations. Security posture is solid with HTTPS and security best practices, though DNSSEC is not enabled and explicit security policies are absent. Overall, the platform shows strong business credibility and technical maturity, with ongoing strategic partnerships and adoption efforts.

D

DSV Marketing GmbH

skideutschland.de

55

Ski Deutschland is the official fan and information portal for the Deutscher Skiverband (German Ski Association), providing comprehensive news, event information, team and discipline details, ticket sales, and merchandise offerings. The website serves a broad audience of winter sports enthusiasts, athletes, and fans primarily in Germany. It holds a strong market position as the authoritative source for German skiing disciplines and related events. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and plugins to deliver a responsive, well-structured, and content-rich experience. The site integrates social media channels and uses analytics tools such as Google Analytics and Plausible for user insights while maintaining GDPR compliance through cookie consent mechanisms and a comprehensive privacy policy. Security posture is good with HTTPS enforced and no critical vulnerabilities detected, though some security headers could be improved. Overall, the website demonstrates high professionalism, trustworthiness, and a solid digital presence aligned with its business objectives.

S

StorX Network

storx.tech

69

StorX Network operates a decentralized cloud storage platform leveraging blockchain technology to provide secure, private, and resilient data storage solutions. Positioned as a pioneer in the DePIN space, StorX offers a range of services including S3 compatible storage, backup solutions, and self-hosted cloud options. The company targets businesses and individual users seeking advanced data privacy and integrity. The website demonstrates a mature digital presence with modern technologies, strong branding, and extensive customer testimonials and media coverage. Technically, the site uses Bootstrap, jQuery, and integrates analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and explicit security policies. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. WHOIS data shows privacy protection consistent with tech startups, with no suspicious patterns. Overall, StorX presents a credible and professional business with a strong market position in decentralized cloud storage.

The Deutsche Diabetes Stiftung is a German non-profit foundation dedicated to diabetes research, prevention, education, and support. The website serves as an information hub for people affected by diabetes, healthcare professionals, and donors. It offers resources such as health checks, prevention tips, and news about foundation activities. The foundation maintains a transparent and professional online presence with clear contact details and donation options. Technically, the site is built on Drupal 7 with modern JavaScript libraries, providing a responsive and user-friendly experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and incident response information are missing. Overall, the website is trustworthy, well-structured, and compliant with GDPR requirements.

D

Deutsche Allianz Nichtübertragbare Krankheiten (DANK)

dank-allianz.de

54

The Deutsche Allianz Nichtübertragbare Krankheiten (DANK) is a German non-profit alliance focused on preventing non-communicable diseases such as diabetes, hypertension, and cardiovascular diseases through advocacy, public awareness, and collaboration with medical societies. The website serves as an information hub presenting press releases, member organizations, and strategic goals related to health promotion and disease prevention. Technically, the site is built on the Contao CMS platform, utilizing modern JavaScript libraries like jQuery and Owl Carousel, hosted on a professional domain control provider. The site is mobile-optimized with good navigation and consistent branding, reflecting a medium-sized organization with a clear healthcare focus. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and cookie consent mechanisms, which are recommended for compliance and protection. No forms or direct contact details are prominently displayed, which may limit user engagement but reduces exposure to data collection risks. Overall, the site is trustworthy, professional, and serves its advocacy mission effectively.

L

Lanaco

eduisonline.com

51

Eduis, operated by Lanaco, offers a comprehensive cloud-based school management system tailored for K12 and higher education institutions. The platform supports over 500,000 users worldwide and integrates with Microsoft Office 365 to enhance educational workflows. The website demonstrates a mature digital presence with professional design, clear navigation, and relevant content targeting educational stakeholders including school staff, parents, and students. Technically, the site uses modern JavaScript libraries and analytics tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enabled and cookie consent implemented, though improvements are recommended in DNSSEC deployment and security headers. Privacy compliance is addressed with a clear privacy policy and cookie banner, supporting GDPR requirements. Overall, the domain registration and website content align well, indicating a trustworthy and legitimate business.

V

Virtua Research, Inc.

virtuaresearch.com

64

Virtua Research, Inc. is a specialized provider of market and competitive intelligence solutions tailored for publicly traded and private companies, focusing on financial research, analytics, and reporting. The company offers a suite of services including Consensus Analytics, Financial Benchmarking, and Interactive Analyst Centers, targeting investor relations, FP&A, C-suite executives, and financial professionals. Established in 2004, Virtua Research has a solid market position supported by a long-standing domain and trusted by notable clients. Technically, the website employs modern web technologies such as Bootstrap, jQuery, Owl Carousel, and Google Analytics, ensuring a responsive and user-friendly experience. The infrastructure is hosted under a reputable registrar with secure HTTPS implementation and basic performance optimizations. However, there is room for improvement in security headers and DNS security. From a security perspective, the site demonstrates good practices including HTTPS enforcement and CAPTCHA protection on forms, but lacks advanced security headers and DNSSEC. Privacy compliance is partially addressed with comprehensive privacy and terms policies, though cookie consent mechanisms are absent. No critical vulnerabilities or suspicious content were detected, indicating a generally secure posture. Overall, Virtua Research presents a professional and credible online presence with moderate technical maturity and a solid security baseline. Strategic enhancements in security headers, DNSSEC, and privacy compliance would further strengthen their digital trustworthiness and regulatory adherence.

V

Vereinigung der Österreichischen Industrie (Industriellenvereinigung)

iv.at

56

The Vereinigung der Österreichischen Industrie (Industriellenvereinigung) is Austria's largest voluntary and politically independent industrial interest association representing industry and industry-related service providers across the entire value chain. The website serves as a comprehensive platform for industry advocacy, policy positions, research publications, and member services, targeting Austrian industrial companies and policymakers. The organization holds a strong market position as a key industry voice in Austria. Technically, the website is built on a modern stack including JavaScript, jQuery, Bootstrap, and Owl Carousel, managed via Gentics CMS. It employs Matomo Analytics with privacy-respecting configurations and features a cookie consent mechanism. The site is mobile-optimized with good SEO and accessibility basics, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and respects user privacy with cookie consent and Do Not Track settings. However, it lacks visible security headers and does not publish a security policy or incident response contacts. No vulnerabilities or suspicious elements were detected. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. It demonstrates good privacy compliance and technical maturity, with room for improvement in security transparency and contact information availability.

Shinagawa Refratários do Brasil is a well-established global leader in refractory manufacturing, leveraging Japanese technology to provide high-performance solutions for industrial clients in manufacturing and energy sectors. The website reflects a mature digital presence built on WordPress, featuring modern design, responsive layouts, and compliance with privacy regulations such as GDPR. Security posture is solid with HTTPS and cookie consent mechanisms, though some minor media issues and lack of explicit security policies were noted. Overall, the site projects professionalism and trustworthiness aligned with the company's long history and market position.

D

Deutsche Adipositas-Gesellschaft (DAG) e.V.

adipositas-gesellschaft.de

53

The Deutsche Adipositas-Gesellschaft (DAG) e.V. is a leading German professional society dedicated to the field of obesity, focusing on prevention, therapy, research, and public education. The website serves as an information hub for medical professionals, researchers, and the general public interested in obesity-related topics. It offers resources such as scientific congresses, publications, guidelines, and advocacy efforts. The organization also includes the Arbeitsgemeinschaft Adipositas im Kindes- & Jugendalter (AGA), focusing on childhood and adolescent obesity. Technically, the website is built on WordPress with modern frameworks like Gantry5 and UIkit, incorporating Google reCAPTCHA for form security. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers are missing. Privacy compliance is partially met with a clear privacy policy but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-positioned in its niche.

E

Elektrobit

electrobit.com

72

Elektrobit is a well-established automotive software company specializing in embedded software products for ECU development, AUTOSAR standards, automated driving, connected vehicles, and user experience solutions. The company targets automotive industry professionals, OEMs, and suppliers with a comprehensive portfolio of software products and engineering services. Their market position is that of a specialist and innovator in automotive embedded software, supported by a professional and content-rich website that reflects their expertise and industry focus. Technically, the website is built on WordPress with modern technologies such as jQuery, Google Tag Manager, and a CDN for fast performance. The site is well-optimized for SEO, mobile-friendly, and accessible, with strong privacy and cookie compliance mechanisms in place. Security posture is robust, with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. However, the WHOIS data is unavailable or protected, which slightly reduces trustworthiness but is mitigated by the professional presentation and presence of official contact and privacy policies. Overall, the website scores highly on content quality, technical implementation, security, privacy compliance, and business credibility, making it a trustworthy and authoritative source in its domain.

B

BTC AG

btc-ag.ch

74

BTC AG is a Swiss-based company specializing in enterprise IT and energy solutions, offering services such as Enterprise Content Management, SAP solutions, business process management, and mobile and energy-related IT services. The company targets business clients and enterprises within Switzerland, positioning itself as an established player in the IT and energy sectors. The website reflects a professional and consistent brand image with a clear focus on business services. Technically, the site uses modern JavaScript libraries including jQuery, Owl Carousel, and AOS for animations, and integrates Cookiebot for cookie consent management. The site is served over HTTPS, indicating a secure connection, and includes Google Tag Manager for analytics and tracking. However, the site lacks explicit privacy and terms of service pages, which are critical for compliance and user trust. Security headers and incident response information are not evident, suggesting room for improvement in security posture. Overall, the site is functional, professional, and secure in transmission but could enhance compliance and transparency aspects.

B

BTC Software Systems Sp. z o.o.

btc-ag.pl

65

BTC Software Systems Sp. z o.o. is a Polish IT company specializing in software solutions and consulting services primarily for the energy sector and digital transformation projects. The company offers a range of products including automated VAT declaration tools for SAP, data measurement platforms, virtual power plant solutions, and IT training. Their market position is that of a specialized medium-sized player with international subsidiaries and partnerships. Technically, the website employs modern JavaScript libraries such as jQuery, Owl Carousel, and AOS, and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is mobile optimized with good navigation and professional design. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and explicit security policies are lacking. Overall, the website is trustworthy and professional, with clear contact information and social media presence. WHOIS data is unavailable, likely due to privacy protection, which slightly limits domain trust assessment. Strategic recommendations include enhancing security headers, publishing security policies, and improving SEO metadata.

B

BTC Business Technology Consulting AG

btc-ag.com

75

BTC Business Technology Consulting AG is a well-established IT service provider headquartered in Oldenburg, Germany, with a significant international presence including subsidiaries in Poland, Switzerland, and Turkey. The company specializes in IT consulting and digital transformation services targeting various sectors such as energy, public sector, and general business industries. Their offerings include sustainability services, human capital management, financial solutions, GIS services, and AI integration, positioning them as a comprehensive IT partner for enterprises and government entities. The website reflects a professional and consistent brand image, supporting their market position as a large, reputable technology company. Technically, the website employs modern JavaScript libraries such as jQuery, Owl Carousel, and AOS for animations, alongside Font Awesome for icons and Piwik PRO for analytics. The site is well-optimized for mobile devices, has good SEO practices, and includes comprehensive metadata and Open Graph tags. Performance is moderate, with no major technical debt or outdated technologies detected. The absence of a detected CMS suggests a custom or proprietary platform. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes important security headers, indicating a solid security posture. However, there is no publicly visible security policy or incident response contact, which are areas for improvement. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. The WHOIS data is missing or unavailable, which raises concerns about domain registration transparency but does not directly impact the operational security or professionalism of the site. Overall, BTC AG presents a trustworthy and professional digital presence with strong business credibility and technical implementation. The main risk lies in the lack of WHOIS transparency and absence of explicit security incident response information. Strategic recommendations include publishing a security policy, establishing a vulnerability disclosure program, and verifying domain registration details to enhance trust and compliance.

B

Bosch Rexroth South Africa

boschrexroth.africa

51

Bosch Rexroth Africa is a leading supplier and solutions provider specializing in hydraulics, pneumatics, and automation technologies across the African continent. The company operates multiple subsidiaries and offers a broad range of products and services tailored to industrial, mining, manufacturing, and mobile hydraulic sectors. Their market position is strong, supported by a comprehensive product portfolio and extensive service offerings including installation, maintenance, and training. The website reflects a professional and consistent brand image targeting industrial clients and partners in Africa. Technically, the website employs modern front-end technologies such as Bootstrap, jQuery, and Owl Carousel, alongside advanced analytics and tracking tools including Microsoft Clarity, Google Tag Manager, and LinkedIn Insight. Hosting is managed via Host-H with a secure HTTPS configuration. Mobile optimization and SEO practices are good, though accessibility features are basic. The CMS appears custom or Laravel-based, indicating a tailored solution. From a security perspective, the site uses HTTPS and reCAPTCHA v3 to protect forms, but lacks DNSSEC and visible security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of privacy and cookie policies and no consent mechanism, which poses compliance risks under GDPR and similar regulations. Contact information is clearly provided, but no incident response or security contact details are published. Overall, the website is trustworthy and professional with a solid business foundation. However, improvements in privacy compliance, security headers, and DNS security would strengthen its security posture and regulatory adherence. Strategic recommendations include implementing comprehensive privacy and cookie policies, enabling DNSSEC, adding security headers, and publishing incident response contacts to enhance trust and compliance.

I

Institut za populaciju i razvoj

mentalnozdravlje.ba

46

The website mentalnozdravlje.ba represents the Institute for Population and Development, a leading non-profit organization in Bosnia and Herzegovina focused on mental health reform and public health promotion. The site serves as an informational and educational platform, collaborating with government ministries and providing resources related to mental health. The technical infrastructure is based on WordPress with Elementor, using modern web technologies and offering a responsive design. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced compliance and security measures.

A

ABM - Associação Brasileira de Metalurgia, Materiais e Mineração

abmbrasil.com.br

61

ABM - Associação Brasileira de Metalurgia, Materiais e Mineração is a well-established Brazilian non-profit association serving the metallurgy, materials, and mining sectors. The organization provides a broad range of services including educational courses, industry events, webinars, and publications, targeting professionals, companies, and students within these industries. The website reflects a professional and consistent brand presence with strong industry partnerships and a clear focus on knowledge dissemination and community engagement. Technically, the website employs modern web technologies such as Bootstrap, jQuery, and integrates analytics and user behavior tracking tools like Google Analytics and Hotjar. Hosting is managed via Amazon AWS infrastructure, ensuring reliable performance and security. Security posture is solid with HTTPS enforced and reCAPTCHA implemented on forms, although some security best practices such as security headers and incident response policies could be improved. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy, user-friendly, and serves its target audience effectively.

L

LINETECHNOLOGY

blueline-recycling.com

52

BLUELINE by LINETECHNOLOGY is a German-based company specializing in modular, dynamically configurable recycling machinery for industrial residual materials. Their product portfolio covers nearly all established dry mechanical-physical processing steps, targeting industrial recycling and waste management sectors. The website is professionally designed, multilingual (German and English), and provides comprehensive information about products, applications, and company background. The digital infrastructure is built on WordPress with Elementor and includes modern SEO and privacy compliance tools such as Yoast SEO and Complianz GDPR. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No WHOIS data is publicly available, which slightly reduces trust but is likely due to privacy protection. Overall, the website presents a credible and professional business presence in the industrial manufacturing and recycling sector.

I

Institute for population and development

ipdbih.org

44

The Institute for Population and Development (IPD) is a leading non-profit organization in Bosnia and Herzegovina focused on improving public health and promoting sustainable, systemic solutions for healthier lifestyles. Established in 2001, IPD operates with a medium-sized organizational footprint and maintains partnerships with international donors and organizations such as UK Aid, CARE, World Vision, UNFPA, and the Global Fund. Their website serves as a platform for disseminating health-related information, public health projects, and community support initiatives. Technically, the website is built on WordPress with Elementor, incorporating modern web technologies and Google Analytics for user insights. The site is mobile-optimized and presents a professional design with clear navigation.

S

SWR Kindernetz

kindernetz.de

58

SWR Kindernetz is the children's content portal of the Südwestrundfunk (SWR), a major German public broadcaster. The website offers multimedia content including TV program information, audio plays, podcasts, and educational videos targeting children and families. It holds a strong market position as a trusted regional public media provider with a focus on educational and entertaining content for young audiences. The platform is well-branded and consistent with the SWR and ARD public broadcasting identity.

Signal 112 & Feuerwehrmesse Oberwart is a professional trade fair website focused on emergency services and firefighting, organized by Burgenland Messe Betriebsges.m.b.H. & Co. KG in Austria. The site targets professional visitors and exhibitors, providing event information, exhibitor directories, and an online registration portal. The website is well-structured with multilingual support and clear contact details, reflecting a regional event organizer's digital presence. Technically, the website uses a modern front-end stack including Bootstrap, jQuery, and various UI plugins like Master Slider and Owl Carousel. The site is moderately optimized for performance and mobile devices, though accessibility features are basic. No CMS or backend platform was explicitly detected. Cookie consent is implemented with a clear banner and linked privacy policy, indicating good privacy compliance. From a security perspective, the site lacks visible security headers and does not provide explicit security or incident response policies. SSL configuration details are not provided, but HTTPS is assumed. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent and legitimate, with no privacy protection or suspicious patterns. Overall, the website presents a moderate risk profile with room for improvement in security headers, incident response transparency, and technical modernization. The business credibility is solid given the clear contact information and partner links. Strategic recommendations include enhancing security policies, improving accessibility, and adding terms of service and vulnerability disclosure information.

Baumesse Oberwart is a regional trade fair event website focused on the construction and building industry in Oberwart, Austria. It provides comprehensive information for visitors and exhibitors, including event details, registration, ticketing, and newsletters. The business operates under Burgenland Messe Betriebsges.m.b.H. & Co. KG, indicating a structured event organization entity with a regional market presence. The website targets attendees and exhibitors interested in the trade fair, positioning itself as a key regional event organizer in Burgenland. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various plugins for sliders and carousels. It integrates analytics platforms such as Matomo and Open Web Analytics, and implements a cookie consent banner compliant with GDPR requirements. Hosting and domain registration are consistent with the business location in Austria, using a reputable registrar. The site shows moderate performance and good mobile optimization but lacks visible advanced security headers and explicit HTTPS enforcement in the provided data. From a security perspective, the site demonstrates basic compliance with privacy regulations through cookie consent and a privacy policy. However, it lacks visible security headers and explicit incident response or security policies. No critical vulnerabilities or exposed sensitive data were detected. The overall security posture is moderate but could be improved by implementing stronger SSL/TLS configurations, security headers, and publishing security policies. Overall, Baumesse Oberwart presents a professional and trustworthy online presence for a regional trade fair. The site is safe for general audiences, with no adult or questionable content. Strategic improvements in security and technical SEO could enhance its digital maturity and trustworthiness further.

The website genuss-burgenland.at represents a regional event organizer, Burgenland Messe Betriebsges.m.b.H. & Co. KG, promoting the Genuss Burgenland gourmet fair held in Oberwart, Austria. The site targets food enthusiasts, exhibitors, and visitors, providing event details, ticketing, exhibitor information, and newsletter subscriptions. The business operates in the hospitality sector with a focus on event management and promotion. The website content is well-structured and relevant, with good design and navigation, supporting a positive user experience.

Inform Oberwart is a regional event website promoting the 54th Inform Oberwart trade fair and family festival held in Oberwart, Austria. The site provides comprehensive information for visitors, exhibitors, and ticket buyers, positioning itself as a key regional event organizer under the Burgenland Messe Betriebsges.m.b.H. & Co. KG brand. The business targets families and local communities with a focus on event participation and visitor engagement. Technically, the website employs a modern front-end stack including Bootstrap, jQuery, and various UI plugins, supported by Matomo and Open Web Analytics for user tracking with a compliant cookie consent mechanism. Security posture is moderate with no HTTPS status visible in the content but cookie consent and privacy policies are implemented. No advanced security policies or incident response contacts are found, indicating room for improvement in security governance. Overall, the website is professional, trustworthy, and well-structured, serving its purpose effectively with a good user experience and clear business credibility.

mojenovosti.com is a regional Serbian-language news portal established in 2013, focusing on Republika Srpska, Serbia, and the ex-Yugoslav region. It offers a broad range of news categories including politics, economy, culture, sports, and multimedia content. The site encourages user-generated content and provides advertising services, positioning itself as a small but active media outlet in its market niche. Technically, the website uses a custom CMS with common web technologies such as jQuery, Bootstrap, and Google Adsense for monetization. Hosting is provided by BitLab, a regional hosting provider, which aligns with the website's regional focus. Security posture is moderate with HTTPS enabled but lacks advanced security headers and policies. Privacy and cookie policies are absent, indicating compliance gaps with GDPR and related regulations. Contact information is available but limited to basic email, phone, and physical address. Overall, the website is functional and professional but would benefit from enhanced security and privacy compliance measures.

Burgenland Messe Betriebsges.m.b.H. & Co. KG operates a regional trade fair and exhibition center in Oberwart, Austria, focusing on events such as educational fairs, gourmet exhibitions, building trade shows, and emergency services expos. The website serves as an informational portal linking to partner event sites and providing contact details and company information. The target audience includes local residents, students, professionals, and enthusiasts interested in education, career development, gastronomy, construction, and emergency services within the Burgenland region. Technically, the website employs a standard modern stack including Bootstrap, jQuery, and popular UI plugins like Owl Carousel and Master Slider. The site is mobile optimized with a cookie consent mechanism compliant with GDPR. However, no advanced CMS or analytics tools are detected, indicating a straightforward, content-focused implementation. Performance is moderate with basic SEO and accessibility features. From a security perspective, the site uses HTTPS (assumed from domain and typical practice though SSL details not explicit), and implements cookie consent. However, no explicit security headers or incident response policies are publicly disclosed. No vulnerabilities or sensitive data exposures are evident. WHOIS data aligns well with the business claims, showing no privacy protection or suspicious registration patterns. Overall, the website is professional and trustworthy for its regional event business purpose. Strategic improvements could include enhanced security headers, public security policies, and more comprehensive privacy disclosures to strengthen compliance and trust.

B

BitLab

privreda.org

44

Privreda.org is a regional business portal focused on companies and entrepreneurs in Republika Srpska and the Federation of Bosnia and Herzegovina. Operated by BitLab, the portal provides a categorized business directory, promotional services including company web page creation, advertising on the portal and social media, and additional marketing and hosting services. The website is well-established with a domain age since 2002, indicating a stable market presence. The portal targets local businesses seeking increased visibility and digital presence within the regional market. Technically, the website uses a custom CMS with common web technologies such as jQuery, Bootstrap, Font Awesome, and Slider Revolution. Hosting is provided by BitLab, the same organization listed as the domain registrant, ensuring consistency. The site is moderately performant and mobile optimized, with basic SEO and accessibility features. Advertising is integrated via Google Adsense and Twitter widgets, with minimal user tracking. From a security perspective, the site uses HTTPS and secure form tokens but lacks advanced security headers and DNSSEC. No privacy, cookie, or terms of service policies are published, indicating gaps in compliance and transparency. Incident response and vulnerability disclosure information are absent. The WHOIS data aligns well with the website content and hosting, supporting legitimacy. Overall, the website is a functional and moderately professional business portal with good business credibility but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

B

BitLab d.o.o.

eposao.info

48

ePosao.info is an established online job board platform founded in 2006, primarily serving the Balkan region including Bosnia and Herzegovina, Serbia, Croatia, and Montenegro. The platform facilitates job seekers and employers by providing job listings, candidate searches, and human resource management tools. The website is developed and hosted by BitLab d.o.o., a regional IT service provider. The platform targets a regional audience with multilingual support and a focus on quick and easy recruitment processes. Technically, the website uses a custom CMS with common web technologies such as jQuery, Bootstrap, and Font Awesome, but includes some outdated components like Flash-based upload plugins and older jQuery versions. Security posture is moderate with HTTPS enabled but lacking modern security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the website is functional and trustworthy but would benefit from modernization and improved compliance.

Kordić Holding is a Croatian company specializing in event management, advertising, ticket distribution, rent-a-car services, and international road transport of passengers and goods. Established in 2015, it holds a strong regional presence, particularly in Southern Croatia, with a diversified service portfolio targeting both business and individual clients. The website reflects a professional business with clear service offerings and client engagement channels including social media and contact forms. Technically, the website uses modern frontend technologies such as Bootstrap, jQuery, Owl Carousel, and FontAwesome, ensuring a responsive and visually appealing user experience. However, there is room for improvement in SEO, accessibility, and performance optimization. The site lacks a CMS indication and advanced analytics tools, suggesting a simpler infrastructure. From a security perspective, the site uses HTTPS and Google reCAPTCHA for form protection but lacks critical security headers and DNSSEC. No privacy or cookie policies are published, indicating compliance gaps with GDPR and related regulations. The WHOIS data is consistent and transparent, supporting the legitimacy of the domain and business. Overall, the website is functional and professional but would benefit from enhanced security measures, privacy compliance, and technical optimizations to improve trust and user experience.

I

interstruct AG

interstruct.com

55

interstruct AG is a Berlin-based digital creative agency specializing in UX/UI design, web development, and digital strategy. The company positions itself as a specialist in transforming complex business challenges into impactful digital platforms, focusing on measurable results and user-centric solutions. Their key services include consulting, concept development, UX/UI design, content creation, technical implementation, and analytics. The website reflects a mature, professional business with a consistent brand and clear market positioning in the technology sector.

The website represents the Savez opština i gradova Republike Srpske, a governmental and non-profit organization supporting municipalities and cities in Republika Srpska, Bosnia and Herzegovina. It provides information on organizational structure, program areas, projects, news, and events, targeting local governments and citizens. The site demonstrates a stable market position as a local government representative with strong international partnerships. Technically, the website uses a modern frontend stack including Bootstrap 4, jQuery, Owl Carousel, and integrates third-party services such as Google Analytics and Mailchimp. It enforces HTTPS and uses client-side redirection to ensure secure connections. However, no CMS or hosting provider is explicitly identified, and some security best practices like DNSSEC and security headers are missing. From a security perspective, the site has a moderate posture with HTTPS enforced and domain transfer protection enabled. However, it lacks DNSSEC, explicit security headers, privacy and cookie policies, and incident response contacts. No vulnerabilities or malware indicators were found in the content. The site is safe for general audiences with no adult or questionable content. Overall, the website is professional and credible but would benefit from enhanced privacy compliance, improved security headers, and formalized policies to strengthen trust and regulatory adherence.

S

Stadt Filderstadt

filderstadt.de

62

The website www.filderstadt.de serves as the official municipal portal for the city of Filderstadt, Germany. It provides comprehensive information and services for residents, tourists, and businesses, including citizen offices, appointment booking, economic development, education, and tourism. The site is well-structured with extensive navigation and a consistent branding approach, reflecting a professional municipal government presence. The target audience primarily includes local citizens, visitors, and commercial entities within the region. Technically, the website employs a modern technology stack featuring jQuery, jQuery UI, FontAwesome, and other JavaScript libraries, built on the dvv-Mastertemplates CMS platform. It is hosted on German-based servers with secure HTTPS configuration. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. From a security perspective, the site uses HTTPS and deferred script loading, but lacks explicit security headers such as Content-Security-Policy and X-Frame-Options in the provided data. No vulnerabilities or exposed sensitive data were detected. However, the absence of a published security policy, incident response contacts, and vulnerability disclosure mechanisms indicates room for improvement in security transparency and readiness. Overall, the website is safe, trustworthy, and suitable for general audiences, with no adult or questionable content. The WHOIS data aligns with a legitimate municipal entity, reinforcing the site's credibility. Strategic recommendations include publishing a clear privacy policy, enhancing security headers, and providing incident response information to strengthen compliance and user trust.

P

Promotim d.o.o.

promotim.ba

44

Promotim d.o.o. is a Bosnian technology company specializing in innovative web development and online marketing solutions since 2003. The company offers a range of services including web development, e-commerce platforms, web applications, and social media marketing, supported by their proprietary CMS platform PromoCMS. Their market position is strong locally with a portfolio of notable clients including news agencies and government entities. Technically, the website uses modern web technologies such as Bootstrap, jQuery, and Owl Carousel, and integrates Google Analytics for tracking. However, the site lacks published privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS implied but no visible security headers or incident response information. Overall, the website is professional and well-structured but could improve in privacy and security transparency.

D

Deutscher Landkreistag

landkreistag.de

66

The Deutscher Landkreistag (DLT) is a prominent German government association representing 294 counties, covering 96% of the country's area and serving 68% of its population. The website serves as an information hub for news, publications, events, and digital projects related to county-level governance and administration. It targets municipal officials, policymakers, and stakeholders in local government. The organization operates as a non-profit entity focused on advocacy and support for counties in Germany. Technically, the website is built on Joomla CMS with the Gantry 5 framework, leveraging modern JavaScript libraries such as jQuery and Owl Carousel for interactive content. The site is mobile-optimized and provides a good user experience with clear navigation and multimedia integration. Cookie consent mechanisms are implemented, reflecting GDPR compliance. However, explicit security policies and incident response information are not published. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but lacks visible security headers and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's claims, showing consistent registration and legitimacy. Overall, the website is professional, trustworthy, and well-maintained, serving its government audience effectively. Strategic improvements could include publishing detailed security policies, enhancing accessibility, and adding vulnerability disclosure mechanisms to strengthen security posture and transparency.

B

Biserje

biserje.ba

48

Biserje is an online cultural magazine based in Bosnia and Herzegovina, focusing on the intersection of tradition and modernity in culture and society. It serves a niche audience interested in Bosnian history, Islam, art, and social topics. The website is powered by WordPress with a modern tech stack including Elementor and Yoast SEO, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS enforced but lacks comprehensive security headers and incident response information. Privacy compliance is limited, with no cookie consent mechanism detected. Overall, the site is legitimate, professionally presented, and trustworthy within its domain.

D

Deutsche Gesellschaft Club of Rome

clubofrome.de

49

The Deutsche Gesellschaft Club of Rome is a well-established non-profit organization focused on sustainability, future studies, and fostering knowledge exchange to promote a life-supporting future. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that aligns with the organization's mission. Technically, the site is built on WordPress with modern plugins and integrations such as Google Analytics and Iubenda for privacy compliance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The domain registration data is consistent and supports the legitimacy of the organization. Overall, the site presents a trustworthy and professional image suitable for its target audience.

B

Blaetterbuch - professionell online blättern

blaetterbuch.de

46

Blaetterbuch is a specialized technology provider offering professional online flipbook solutions that digitize print media such as flyers, catalogs, and brochures with realistic page-turning effects. Their service targets businesses seeking to extend the reach of their print publications into digital formats accessible across all major browsers and mobile devices. The company positions itself as a niche provider with a comprehensive service including hosting, customization, and integration of multimedia elements like videos and links. Technically, the website employs a modern web stack including Bootstrap, jQuery, and popular UI libraries such as Owl Carousel and Revolution Slider. The site is mobile-optimized and features a custom CMS backend indicated by dynamic content calls. While performance is moderate, the site is well-structured with good SEO and accessibility basics. From a security perspective, the site uses HTTPS (assumed from URL), implements cookie consent mechanisms, and provides a comprehensive privacy policy compliant with GDPR. However, explicit security headers and incident response policies are not evident, suggesting room for improvement in security posture. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no signs of blocking or malicious content. Strategic recommendations include enhancing security headers, publishing a security policy, and improving technical performance for a stronger security and user experience profile.

E

ENORM Design

enorm.design

44

ENORM Design is a specialized design agency based in Cologne, Germany, focusing on corporate and brand design, editorial design, and cultural and corporate communication. The company serves a diverse clientele including museums, medium-sized enterprises, publishers, associations, savings banks, and publicly listed corporations, primarily in the art, culture, and finance sectors. The website demonstrates a strong market position with notable awards and a comprehensive portfolio showcasing their expertise. Technically, the website is built on TYPO3 CMS and employs modern JavaScript libraries and frameworks, providing a good user experience with mobile optimization and clear navigation. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements can be made by adding security headers and cookie consent mechanisms. The absence of WHOIS data reduces domain registration trust but does not detract significantly from the overall legitimacy given the professional content and legal disclosures. Overall, ENORM Design presents a credible and professional digital presence aligned with its business objectives.

E

ENORM Digital GmbH

enorm.media

52

ENORM Digital GmbH is a specialized internet agency based in Cologne, Germany, focusing on online advertising, digital media planning, and real-time advertising services. The company serves a diverse clientele including museums, medium-sized enterprises, publishers, associations, and financial institutions, particularly in the cultural and financial sectors. Their business model revolves around delivering targeted online campaigns, programmatic buying, and media optimization to increase brand visibility and lead generation. The website reflects a professional and consistent brand image with comprehensive service descriptions and client references, positioning ENORM as a trusted niche player in the German online advertising market. Technically, the website is built on the TYPO3 CMS platform and leverages modern web technologies such as jQuery, Gumby Framework, and Google Maps API. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be enhanced. Performance is moderate, with room for improvement in loading speed and security header implementation. The presence of multiple external marketing and advertising tools, including Google Analytics and Facebook Pixel, indicates a mature digital marketing infrastructure. From a security perspective, the site uses SSL encryption as stated in its privacy policy, but lacks visible HTTP security headers and a dedicated security policy or incident response contact. Forms are implemented securely using POST methods, and no sensitive data is exposed in the HTML. Privacy compliance is well addressed with a comprehensive privacy statement aligned with GDPR requirements, although a cookie consent mechanism is absent. Overall, the security posture is adequate but could benefit from enhancements in header security and transparency. The domain WHOIS data is unavailable or protected, which is common for small digital agencies and justified for privacy reasons. Despite this, the website provides sufficient legal and contact information, client logos, and consistent branding to establish legitimacy and trustworthiness. No signs of malicious activity or suspicious patterns were detected. The overall risk assessment is low, with recommendations focusing on improving security headers, cookie consent, and incident response transparency to further strengthen trust and compliance.

E

ENORM Agentur für Design und Kommunikation Köln

enorm.net

47

ENORM Agentur für Design und Kommunikation Köln is a small regional agency specializing in design, digital communication, and media services. Their website presents a professional and consistent brand image targeting businesses seeking tailored solutions in corporate design, digital projects, and online advertising. The technical infrastructure is based on TYPO3 CMS with a modern JavaScript stack and Google Analytics for user tracking. While the website is accessible and well-structured, it lacks critical compliance elements such as privacy and cookie policies, and no contact information is provided on the homepage. The absence of WHOIS data raises concerns about domain registration transparency, although the website content and technical setup appear legitimate. Security posture is moderate with HTTPS enabled but missing advanced security headers and policies.

1

1&1 Internet Inc

preporod.info

47

Preporod.info is a Bosnian language online news and community portal focusing on regional news, Islamic community affairs, and cultural topics. The website serves a niche audience interested in Bosnian and Islamic community news, providing regularly updated articles, interviews, and event information. The business operates as a small media outlet with a clear focus on community engagement and information dissemination. Technically, the website uses modern frontend technologies including Bootstrap, jQuery, Owl Carousel, and integrates Google Analytics and Facebook SDK for user tracking. Hosting is provided by HostEurope with a dedicated server setup. The website is mobile optimized and has a good user experience with clear navigation and consistent branding. Security posture is moderate with HTTPS enabled and domain transfer protection active, but lacks DNSSEC and security headers. Privacy and cookie policies are missing, which impacts compliance and user trust. No contact emails or phone numbers are explicitly provided, limiting direct communication channels. Overall, the domain registration is transparent and consistent with the business profile, registered with a reputable registrar in 2019. The website content is safe for general audiences with no adult or explicit content detected.

Hydrogroup d.o.o. is a Bosnia and Herzegovina based company specializing in pools, wellness, fountains, and hydromassage pools. Established in 2000, it offers comprehensive services including design, supply, installation, maintenance, and consumables. The company has a solid regional presence with over 350 reference projects and partnerships with leading global brands. The website is built on WordPress with a moderate technical infrastructure including Bootstrap and jQuery, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and Wordfence plugin, but lacks explicit security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.