Security Directory

The website www.a-kd.net is currently inaccessible beyond a Cloudflare Turnstile human verification challenge page, preventing access to any substantive content or business information. The domain WHOIS query returned no match, indicating the domain may be unregistered, expired, or protected by privacy services, which raises concerns about its legitimacy and operational status. Due to the lack of accessible content, no privacy, cookie, or terms of service policies are available, and no contact or business details can be identified. The technical infrastructure is limited to Cloudflare's security platform, with no visible CMS or additional technologies. The security posture cannot be fully evaluated, but the presence of a WAF challenge indicates some level of protection. Overall, the site scores low on content quality, business credibility, and privacy compliance, resulting in a low AI overall score.

4

4Ws Netdesign GbR

4ws-netdesign.de

51

4Ws Netdesign GbR is a small, established internet agency based in Oberried near Freiburg, Germany, specializing in custom web design, CMS development, and comprehensive internet solutions. With over 19 years of experience and more than 1000 customers, the company offers tailored services including their proprietary CMS "Private Section" and various web management tools. The website is professionally designed with clear navigation and relevant content targeting a broad audience including businesses and private users. Technically, the site uses older JavaScript libraries such as Prototype.js and Scriptaculous, which may require modernization to improve security and performance. The site lacks advanced security headers and cookie consent mechanisms, indicating room for improvement in privacy compliance and security posture. Contact information is clearly provided with a physical address and obfuscated email to reduce spam. Overall, the website is functional, trustworthy, and reflects a credible business presence in the regional technology services market.

The analysed website content for defenceiq.com is currently inaccessible due to an AWS WAF CAPTCHA security challenge that blocks direct access to the actual site content. This challenge page only presents a human verification puzzle with no business, contact, or policy information visible. The domain is registered with Amazon Registrar, Inc. since 2002, indicating a mature and legitimate registration. However, without access to the main site content, no detailed business or security posture analysis can be performed. The technical infrastructure leverages AWS WAF for protection, which is a strong security measure but limits content visibility for external analysis. Overall, the site is protected but currently not analyzable beyond the WAF challenge.

The website at https://www.bigbrother-radio.de/kontakt.asp currently serves as a minimal redirect page with an embedded Amazon affiliate tracking pixel and a JavaScript redirect to itself. There is no visible business content, contact information, or policies present on the page. The domain uses Cloudflare nameservers, indicating the use of Cloudflare services likely for security and performance. However, the minimal content and presence of a redirect script suggest the page is either under construction, intentionally minimal, or protected by a Cloudflare WAF challenge. The lack of metadata, structured data, or business information limits the ability to assess the company's market position or services. From a technical perspective, the site uses basic JavaScript and Cloudflare hosting but lacks modern SEO, accessibility, or performance optimizations. Security posture is limited due to absence of visible HTTPS details and security headers, though Cloudflare presence suggests some baseline protection. Overall, the site appears low maturity with significant gaps in content, security, and compliance.

T

Technologická gramot

technologicka-gramotnost.cz

51

The website technologicka-gramotnost.cz is an educational platform focused on providing free lectures about modern technologies to high school students across the Czech Republic. It positions itself as a niche educational initiative aiming to inspire youth to engage with technological advancements. The site is hosted on the Wix platform, leveraging Wix's website builder and associated technologies, which provides a moderate level of technical maturity and mobile optimization. However, the site lacks advanced SEO and accessibility features. Security posture is basic with HTTPS enabled but missing important security headers and policies. No privacy or cookie policies are present, and no contact or incident response information is provided, which limits transparency and compliance. Overall, the site appears legitimate but would benefit from improved security and compliance measures.

A

AFC Consulting Group AG

afc.net

55

AFC Consulting Group AG is a well-established consulting firm specializing in the food value chain, including agriculture, food industry, and related sectors. With over 50 years of experience and more than 500 clients served in over 5,000 projects, AFC holds a leading market position in Germany. Their business model encompasses multiple consulting divisions such as management consulting, personal consulting, public services, risk and crisis consulting, technology, and quality & lab services. The website presents a professional and comprehensive overview of their services, target audience, and expertise.

E

eBay Inc.

ebay.de

68

eBay Deutschland operates as a localized branch of the global e-commerce giant eBay Inc., providing a robust online marketplace platform for consumers and businesses in Germany. The platform facilitates both auction-style and fixed-price sales, connecting millions of buyers and sellers. It holds a leading market position in the German e-commerce sector with a well-established brand and extensive service offerings. The website is professionally designed, mobile-optimized, and provides comprehensive user policies in compliance with GDPR, reflecting a mature digital presence. Technically, the website leverages modern web technologies including React and Node.js, hosted likely on Amazon AWS infrastructure with NS1 DNS services. The site demonstrates fast performance, good accessibility, and strong SEO practices. Security is robust with HTTPS enforcement and comprehensive security headers, ensuring data protection and user trust. The absence of vulnerabilities and the presence of secure forms indicate a high security maturity level. From a security posture perspective, eBay.de shows strong adherence to best practices, though it lacks a publicly visible security policy or incident response contact channels. The domain WHOIS data is consistent and transparent, reinforcing legitimacy. Analytics and marketing tools are extensively used with privacy compliance, supporting business intelligence and customer engagement. Overall, eBay.de is a highly credible, secure, and professionally managed e-commerce platform with a strong market presence in Germany. Strategic recommendations include enhancing public security disclosures and maintaining vigilant security updates to sustain trust and compliance.

The website y-our.co is currently inaccessible due to a Cloudflare Turnstile CAPTCHA challenge page that blocks direct access to its content. No business information, contact details, or policies are visible, preventing a full assessment of the company's operations or services. The site appears to be protected by Cloudflare's security mechanisms, but this also limits the ability to analyze its technical and security posture comprehensively. Given the lack of accessible content and registrant information, the legitimacy and trustworthiness of the domain cannot be confidently established.

M

MS 97, s.r.o.

skolatreneru.cz

9

Trenérská škola Olympia, operated by MS 97, s.r.o., is an accredited educational institution specializing in fitness and bodybuilding trainer certifications authorized by the Czech Ministry of Education. The website presents a professional image with detailed course offerings, seminars, and a team of qualified lecturers. It targets individuals seeking recognized qualifications in personal training within the Czech Republic and the EU. The business model focuses on delivering accredited training programs and issuing certificates that enable graduates to operate professionally in the fitness industry. The site integrates modern web technologies hosted on AWS Cloudfront and built on the Webnode platform, ensuring moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit privacy and terms of service pages. The absence of WHOIS data due to privacy protection slightly reduces transparency but is common for small businesses. Overall, the website is trustworthy, safe, and professionally maintained, with room for improvement in compliance documentation and contact transparency.

A

ASSIST spol. s r. o.

assist.cz

10

ASSIST spol. s r. o. is a Czech Republic-based software development company with over 33 years of market presence. The company specializes in delivering high-quality software solutions and fostering career development opportunities for IT professionals. Their website reflects a mature business with a medium-sized workforce of over 100 employees and a portfolio exceeding 500 applications. The company targets clients seeking thoughtful application solutions and programmers interested in challenging career paths. Technically, the website is built on modern web technologies including Webflow CMS, GSAP animations, and Google Tag Manager for analytics. It is well-optimized for performance, mobile responsiveness, and accessibility, providing an excellent user experience. Security-wise, the site enforces HTTPS and avoids exposing sensitive data, but lacks some advanced security headers and explicit incident response information. Privacy compliance is partially addressed with a comprehensive GDPR policy, though cookie consent mechanisms are absent. Overall, the website demonstrates professionalism and trustworthiness, with minor areas for improvement in security and privacy transparency.

The website www.ict-group.cz represents a small Czech IT service provider specializing in IT management, protection, outsourcing, and related IT services. The site is built using Thrive Themes tools and incorporates multiple third-party marketing and tracking technologies such as Google Tag Manager, Facebook Pixel, Microsoft Clarity, and Adform. The content is primarily in Czech and targets business clients seeking IT solutions. The technical infrastructure is moderately modern with HTTPS enabled, but lacks advanced security headers and visible privacy or cookie policies, which impacts compliance and trust. The absence of WHOIS data and registrant information reduces domain trustworthiness and raises concerns about domain legitimacy. Overall, the website is functional but requires improvements in transparency, security best practices, and compliance to enhance its credibility and security posture.

A

Autodesk

autodesk.cz

71

Autodesk is a globally recognized leader in design and make technology, providing software solutions across architecture, engineering, construction, manufacturing, and entertainment industries. The website reflects a mature digital presence with extensive localization, professional design, and advanced technical infrastructure. The use of Adobe Experience Manager as CMS and integration of monitoring tools like Dynatrace and Tealium indicate a high level of digital maturity. Security posture is strong with HTTPS enforcement and modern cookie practices, though explicit security policies and incident response information are not readily visible. The absence of WHOIS data is noted but likely due to privacy or registry policies rather than malicious intent. Overall, Autodesk's website is professional, secure, and trustworthy, serving a broad professional audience worldwide.

RetroFest.cz is a small-scale, niche event website dedicated to a 2015 retro computing conference organized by students of the Czech Technical University in Prague under the Silicon Hill club. The site serves primarily as an informational portal for event details, partner acknowledgments, and archival content such as lecture recordings. The business model revolves around community engagement and educational event hosting within the technology and education sectors. The website's market position is limited to a specialized audience interested in retro hardware and software history. Technically, the website is a simple static HTML site with basic CSS and JavaScript, including Google Analytics for visitor tracking. The hosting is provided by ACTIVE 24, and the domain is registered consistently with the academic affiliation. However, the site lacks modern web standards such as HTTPS, security headers, and mobile optimization, which limits its technical maturity and security posture. From a security perspective, the absence of HTTPS and security headers, along with loading external scripts over HTTP, exposes the site to potential man-in-the-middle attacks and data interception risks. No privacy or cookie policies are present, which is a compliance gap under GDPR. The site does not collect user data via forms, reducing some risk, but the use of Google Analytics without consent mechanisms is a privacy concern. Overall, the website is functional for its intended purpose but requires significant improvements in security, privacy compliance, and technical modernization to enhance trustworthiness and user safety. Strategic recommendations include implementing HTTPS, adding privacy and cookie policies, improving mobile responsiveness, and adopting security best practices.

C

cryptofest

cryptofest.cz

68

The website is a public GitHub repository page for the project 'cryptofest/web'. It serves as a platform for source code hosting and collaboration within the developer community. The repository is hosted on GitHub, a leading platform in software development, indicating a credible and established presence. The site targets developers and contributors interested in the project. Technically, the site leverages modern web technologies including React and GitHub's asset delivery network, ensuring good performance, mobile optimization, and accessibility. Security posture is strong with HTTPS enforced and domain registration protected against unauthorized changes, although DNSSEC is not enabled. However, the site lacks explicit privacy, cookie, and terms of service policies, as well as direct contact information, which are areas for improvement. Overall, the site is trustworthy for its intended purpose but could enhance compliance and user trust by adding relevant policies and contact details.

S

Silicon Hill

installfest.cz

45

Installfest.cz is a well-established community-driven event focused on Linux and open-source software, organized primarily by the Silicon Hill club at the Czech Technical University. The website serves as an information hub for the annual InstallFest conference, targeting both beginners and experts in the Linux and open-source community. The event offers installation assistance, lectures, and online participation, positioning itself as a key community event in the Czech Republic's technology education sector. Technically, the website uses modern web technologies such as Vue.js and JavaScript modules, hosted by a reputable Czech provider, Active24. The site is mobile-optimized and well-structured, providing a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS and avoids exposing sensitive data but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. Overall, the domain registration data aligns well with the website's history and content, supporting its legitimacy and trustworthiness.

S

Studentska Unie ?VUT

avc.sh

45

AVC Silicon Hill is a student audiovisual center affiliated with the Students' Union of Czech Technical University (ČVUT). It provides technical support for small to medium-sized events including audio, video, and lighting services, both live and online, with a strong focus on education and training in audiovisual technologies. The organization collaborates with several partners and maintains an active presence on social media platforms. Technically, the website uses modern web technologies and is hosted by OVH SAS, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS and no exposed sensitive data, but lacks advanced security headers and privacy compliance documentation. Overall, the domain registration and WHOIS data align well with the organization's identity, supporting legitimacy and trustworthiness.

K

Knappschaft-Bahn-See

kbs.de

63

Knappschaft-Bahn-See is a large German government social insurance and healthcare institution providing integrated services including pension, health, and nursing insurance, as well as medical networks and specialized services like the Minijob-Zentrale and Seemannskasse. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content targeting insured individuals, companies, healthcare providers, and seafaring businesses. Technically, the site uses a government-specific CMS, self-hosted Matomo analytics, and Usercentrics for consent management, indicating a strong commitment to privacy and compliance. Security posture is solid with HTTPS and secure forms, though explicit security policies and incident response contacts are not published. Overall, the domain WHOIS data aligns well with the website content, confirming legitimacy and trustworthiness.

N

NEW.EGO GmbH

newego.de

68

NEW.EGO GmbH is a premium internet agency based in Munich, Germany, specializing in TYPO3 CMS solutions and digital B2B communication services. Founded in 2005, the company serves medium-sized businesses and hidden champions primarily in the DACH region. Their key offerings include TYPO3 consulting, development, hosting, SEO, and comprehensive digital strategy services. The company holds multiple TYPO3 certifications and industry awards, reflecting a strong market position and trusted reputation. Technically, the website is built on TYPO3 CMS with a modern tech stack including JavaScript, CSS, and privacy-focused analytics tools like self-hosted Matomo. The site is well-optimized for performance, mobile responsiveness, and SEO, with a professional design and clear navigation. Security best practices such as HTTPS and cookie consent mechanisms are implemented, though explicit security headers and incident response policies are not publicly detailed. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring comprehensive privacy and cookie policies aligned with GDPR. The company demonstrates strong business credibility through detailed contact information, client testimonials, and certifications. Overall, the website presents a trustworthy and professional digital presence suitable for its B2B audience.

V

vdek - Verband der Ersatzkassen e.V.

vdek-arztlotse.de

51

The vdek-Arztlotse website is a healthcare information platform operated by the vdek - Verband der Ersatzkassen e.V., a German health insurance association. It provides comprehensive search and rating services for doctors, dentists, and psychotherapists across Germany, targeting patients and the general public seeking medical professionals. The platform is well-positioned within the German healthcare sector as a trusted source of medical provider information. Technically, the website employs modern web technologies including HTML5, CSS, JavaScript, and uses Adobe Experience Manager as its CMS. It integrates Piwik (Matomo) analytics for user tracking and demonstrates good mobile optimization, accessibility, and SEO practices. The site is served over HTTPS, ensuring secure communications. From a security perspective, the site follows basic best practices such as HTTPS enforcement and secure form handling. However, it lacks explicit security headers and a cookie consent mechanism, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's public healthcare association identity, indicating legitimacy and consistency. Overall, the website presents a low risk profile with good business credibility and technical maturity. Strategic recommendations include implementing security headers, adding cookie consent for GDPR compliance, publishing a security policy, and providing direct contact information for improved transparency and trust.

V

Verband der Ersatzkassen e.V. (vdek)

vdek-kliniklotse.de

70

The vdek-Kliniklotse website is an official healthcare information portal operated by the Verband der Ersatzkassen e.V. (vdek), providing a comprehensive search platform for hospitals across Germany. It leverages official quality reports to offer patients and their families detailed information about hospital services, specialties, and quality metrics. The site also offers additional resources such as checklists for hospital stays and links to related vdek services like care and doctor locators. The target audience is primarily German-speaking patients seeking reliable healthcare information. Technically, the website employs a modern frontend stack including Bootstrap, jQuery, and FontAwesome, ensuring good mobile responsiveness and accessibility. It uses Matomo analytics with user consent, reflecting a privacy-conscious approach. The site is well-structured with clear navigation and professional design, although no CMS or hosting provider details are explicitly identified. From a security perspective, the site uses HTTPS and implements a detailed cookie consent mechanism with categories for necessary and statistical cookies. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The WHOIS data indicates a consistent and legitimate domain registration aligned with the business entity. Overall, the website presents a trustworthy, professional, and privacy-compliant platform with good content quality and technical implementation. Strategic improvements could include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

Č

Česká Národní AI Platforma (CNAIP)

cnaip.cz

61

CNAIP (Česká Národní AI Platforma) is a key national platform driving the development and collaboration of artificial intelligence in the Czech Republic. It connects academia, industry, government, and non-profit sectors to foster a robust AI ecosystem. The platform organizes major AI events, including the Dny AI festival and AI Awards, positioning the Czech Republic as a European AI leader. Technically, the website is built on modern frameworks like Next.js and React, with good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are missing. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent. Overall, CNAIP presents a professional and trustworthy digital presence supporting its mission.

H

Hanseatische Krankenkasse (HEK)

hek.de

65

Hanseatische Krankenkasse (HEK) is a German statutory health insurance provider offering a wide range of health-related services including digital health management, family support, preventive care, and alternative medicine. The company holds a strong market position as a top-rated Krankenkasse with multiple awards and a professional online presence. The website is built on TYPO3 CMS and leverages modern web technologies such as Bootstrap, jQuery, and Matomo analytics, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not publicly available. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements.

H

hkk Krankenkasse

hkk.de

62

hkk Krankenkasse is a well-established statutory health insurance provider in Germany with over 120 years of history. The company offers affordable health insurance plans with strong additional benefits and digital services, targeting a broad audience including employees, self-employed individuals, families, and retirees. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to its customers. Technically, the site is built on TYPO3 CMS and incorporates modern web technologies and consent management tools, ensuring compliance with privacy regulations. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Overall, the site demonstrates high business credibility and trustworthiness.

K

KKH

kkh.de

66

KKH is a statutory health insurance provider based in Germany offering comprehensive health coverage and related services for individuals and families. The website presents a professional and well-structured digital presence with detailed navigation of services including prevention, family health, dental care, nursing, and rehabilitation. The company targets the general German population seeking statutory health insurance solutions. Technically, the website uses modern web technologies including Bootstrap, SVG graphics, and Adobe Experience Manager CMS, with mobile optimization and accessibility features well implemented. Security posture is solid with HTTPS enforced and secure form handling, though the absence of security headers and explicit privacy and cookie policies indicates room for improvement. Analytics are conducted via eTracker with respect for cookie blocking and Do Not Track signals. Overall, the website is trustworthy and professional, reflecting a large enterprise in the healthcare sector. Strategic recommendations include publishing comprehensive privacy and cookie policies, implementing security headers, and providing vulnerability disclosure information to enhance compliance and security transparency.

D

Deutsche Rentenversicherung Knappschaft-Bahn-See

knappschaft.de

65

The website www.knappschaft.de represents the Deutsche Rentenversicherung Knappschaft-Bahn-See, a statutory health insurance provider in Germany. It offers a wide range of health insurance services, including family planning, preventive care, digital health services, and membership management. The site targets the general German population seeking reliable health insurance and related healthcare services. The business is well-established and government-affiliated, reflected in the professional and comprehensive content presented on the site. Technically, the website uses the Government Site Builder CMS, integrates Matomo for analytics, and employs Usercentrics for GDPR-compliant cookie consent management. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security best practices such as HTTPS and consent management are implemented, though explicit security headers could be improved. The security posture is strong with no visible vulnerabilities or exposed sensitive data. The WHOIS data confirms domain legitimacy and consistency with the business claims. No WAF or blocking mechanisms interfere with content accessibility, enabling full analysis. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations, making it a reliable digital presence for a government health insurance entity.

S

Stadt Ingelheim am Rhein, Forschungsstelle Kaiserpfalz Ingelheim

karlsjahr2014-ingelheim.de

44

The website karlsjahr2014-ingelheim.de serves as an informational and promotional platform for the Karlsjahr 2014 cultural event in Ingelheim am Rhein, commemorating 1200 years since the death of Charlemagne. It is managed by local government and cultural institutions, providing detailed schedules, exhibition information, and visitor guidance. The site targets tourists, history enthusiasts, families, and educational groups. The business model focuses on cultural heritage promotion and education, positioning itself as a local government-supported event site.

A

AmRest

careeratamrest.com

66

AmRest Career website serves as a professional portal for career opportunities within AmRest, a large hospitality company operating multiple restaurant brands. The site highlights employee stories, career growth paths, and company culture, targeting job seekers and hospitality professionals. Technically, the website is built on SilverStripe CMS, uses modern front-end technologies including Swiper.js and Google Fonts, and is hosted with Azure DNS services. The site is mobile optimized with good SEO practices but lacks some accessibility features and explicit security headers. Security posture is moderate with HTTPS enabled and domain transfer protection, but DNSSEC is not enabled and no security policies are published. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy with a strong social media presence but could improve in security and privacy transparency.

S

scio s.r.o.

sciokuchyne.cz

61

ScioKuchyně is a Czech-based food service provider specializing in healthy and balanced meals primarily for school children and adults. The company emphasizes fresh, nutrient-rich ingredients and sustainable practices, positioning itself as a niche provider in the education sector. The website reflects a professional and consistent brand image aligned with its parent company, scio s.r.o., and targets institutions and individuals seeking quality catering services. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics, hosted likely by Webglobe with Umbraco CMS. The site is mobile-optimized and SEO-friendly but lacks explicit security headers and detailed security policies. Privacy compliance is addressed with cookie consent and a privacy policy page, indicating GDPR awareness. No direct contact emails or phone numbers are present, which could limit user trust and support accessibility. Overall, the domain registration data supports legitimacy and consistency with the business profile.

S

scio s.r.o.

scioedu.cz

62

ScioEdu is an educational platform focused on comprehensive development of individuals, primarily targeting teachers and pedagogical professionals in the Czech Republic. It offers supplementary pedagogical studies and teacher courses, leveraging experience from the ScioŠkoly network and partnerships with educational associations. The website is professionally designed with clear navigation and content relevant to its audience. Technically, it uses modern JavaScript libraries, Google Tag Manager for analytics, and is hosted by Webglobe, with a CMS likely Umbraco. Security posture is good with HTTPS and cookie consent mechanisms, though security headers and incident response information are absent. Overall, the site is trustworthy and compliant with GDPR, with transparent business information and partner collaborations.

S

ScioArt

scioart.cz

55

ScioArt is an innovative basic art school based in Prague, Czech Republic, targeting children aged 5 to 18 years. The institution focuses on interdisciplinary art education, fostering creativity, experimentation, and project-based learning. The website reflects a professional and consistent brand image aligned with its educational mission. Technically, the site is built on the Wix platform, utilizing standard Wix scripts and assets, with moderate performance and good mobile optimization. Security posture is basic, with HTTPS enabled but lacking advanced security headers and privacy policies. The absence of WHOIS data for the domain raises concerns about domain legitimacy and registration transparency. Overall, the site presents a moderate risk profile with recommendations to improve security headers, privacy compliance, and domain registration verification.

S

Silicon Hill

siliconhill.cz

41

Silicon Hill is a prominent student club operating within the Strahov dormitories primarily serving CTU students and other university residents. It provides a broad range of services including network infrastructure management, educational courses, event organization, and community facilities such as a gym and workshop spaces. The club has a strong partnership network with major technology companies and the university itself, positioning it as a key player in the student community ecosystem. Technically, the website employs standard web technologies with JavaScript and CSS but lacks advanced frameworks or CMS. The site is moderately optimized for performance and accessibility but could improve mobile responsiveness and SEO. Security posture is moderate; while CSRF tokens are present, there is no evidence of HTTPS enforcement or security headers in the provided data. The absence of WHOIS data is a concern for domain legitimacy verification, though the detailed and consistent website content suggests a legitimate organization. Privacy and cookie policies are missing, indicating compliance gaps. Overall, the site is functional and professional but would benefit from enhanced security and privacy measures.

A

Asociace virtuální a rozšířené reality

avrar.cz

54

The website avrar.cz represents the Asociace virtuální a rozšířené reality, a Czech association focused on virtual and augmented reality technologies. It serves as a community hub for professionals, entrepreneurs, institutions, academics, and enthusiasts in the VR/AR sector. The association organizes the Czech VR Fest, the largest industry festival and conference in Central Europe, positioning itself as a leading entity in this niche market. The site provides information about membership, events, and news related to VR/AR innovation in the Czech Republic. Technically, the website uses modern JavaScript frameworks (Vue.js), integrates social media SDKs, and employs Google Analytics and Facebook Pixel for tracking. Hosting is provided by WEDOS, a reputable Czech hosting provider. Security posture is adequate with HTTPS enforced and secure form handling, but lacks visible security headers and public security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no explicit consent mechanisms. Contact information is limited to web forms without direct email or phone contacts. Overall, the site is professional, well-branded, and trustworthy, but could improve transparency and security practices.

I

ISO777

wpusersplugin.com

57

ISO777 is an established online gambling platform specializing in slot games and related betting services, operating primarily in Indonesia and broader Asian markets. The platform offers a variety of gaming options including slot games, live casino, sports betting, and tournaments with attractive bonuses and promotions. It is part of the HIU777 Group, indicating a structured business entity with a focus on trusted and fair gaming experiences. The website is professionally designed with good user experience and mobile optimization, supporting multiple languages and currencies. Technically, it uses modern JavaScript frameworks, Cloudflare DNS, and integrates live chat support for customer service. However, the site lacks visible privacy and cookie policies, terms of service, and advanced security headers, which are critical for compliance and user trust in the gambling industry. The domain is well-established since 2010, registered via GoDaddy, and uses Cloudflare DNS, but DNSSEC is not enabled. Overall, the site is functional and credible but requires improvements in privacy compliance and security posture to meet industry best practices.

R

re3data.org

re3data.org

58

re3data.org operates as a globally recognized registry of research data repositories, serving the academic and research community by providing comprehensive metadata and indexing of over 3400 repositories worldwide. The platform supports researchers, institutions, and funders by facilitating discovery and access to research data repositories, positioning itself as a leading non-profit service in the education and technology sectors. The website demonstrates a professional and consistent brand presence, with a clear focus on open science and data sharing. Technically, the website employs a modern technology stack including JavaScript, jQuery, Bootstrap, and Chart.js to deliver a responsive and user-friendly experience. The site is well-structured with good navigation, mobile optimization, and accessibility features. While performance is moderate, the site effectively supports its core functionalities such as search and browsing of repositories. From a security perspective, the site uses HTTPS and avoids exposing sensitive data, but lacks visible advanced security headers and explicit security policies or incident response information. No vulnerability disclosure or security.txt files were found, indicating room for improvement in transparency and security maturity. Privacy compliance is strong with a comprehensive privacy policy and terms of use, though no cookie consent mechanism was detected. Overall, re3data.org presents a trustworthy and credible online presence with high content quality and business credibility. The lack of WHOIS data due to privacy protection is justified given the non-profit academic nature of the service. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure policies, and implementing cookie consent mechanisms to further strengthen compliance and trust.

Z

Zweckverband Abfallwirtschaft Südwestsachsen

za-sws.de

50

The Zweckverband Abfallwirtschaft Südwestsachsen (ZAS) is a public-law waste management association founded in 1993, serving the Erzgebirgskreis and Zwickau counties in Germany. It operates as a regional waste disposal authority responsible for waste management infrastructure, disposal security, landfill remediation, and waste balance reporting. The website provides comprehensive information and services for residents and businesses in the region, including waste calendars, contact forms, and downloadable official documents. The site is professionally designed with clear navigation and consistent branding, targeting local citizens and commercial entities requiring waste management services. Technically, the website uses standard web technologies including HTML5, CSS, JavaScript with jQuery and fancyBox libraries for UI enhancements. While no CMS or hosting provider details are evident, the site shows moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. The site employs HTTPS and a cookie consent mechanism with Google Analytics tracking, indicating a moderate level of digital maturity. From a security perspective, the site lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is good with a clear privacy policy and cookie consent banner. The WHOIS data aligns well with the organization's identity, showing a consistent and legitimate domain registration without privacy protection, appropriate for a public entity. Overall, the website presents a trustworthy and professional digital presence for a regional government waste management authority. Strategic improvements could focus on enhancing security headers, mobile accessibility, and publishing security and incident response policies to strengthen trust and compliance.

I

Internetagentur dd-media.de Inh. Guido Kamm

dd-media.de

48

Internetagentur dd-media.de is a small, owner-operated German internet agency founded in 1995, specializing in web design, custom CMS development, and secure web hosting primarily serving the Heringen (Werra) region. The company positions itself as a regional expert with a strong focus on professional and individualized digital solutions. The website reflects a mature digital presence with a consistent brand and clear service offerings. Technically, the site uses modern web technologies including Bootstrap, PHP, and JavaScript, with a custom CMS and Matomo analytics for privacy-conscious tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enforced and GDPR-compliant cookie consent via Usercentrics, though it lacks explicit security headers and incident response information. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

D

designhouse®

designhouse.de

52

designhouse® is a well-established German branding and communication agency with over 25 years of experience. The company specializes in creating strong brands and communication concepts using words, images, colors, and forms, targeting businesses seeking comprehensive multimedia branding solutions. Their website showcases a rich portfolio of projects, indicating a solid market position in the media and creative services sector. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Slider Revolution, and WPML, reflecting a mature digital infrastructure. The site is mobile optimized and employs standard tracking tools like Google Analytics and Facebook Pixel. Security posture is adequate with HTTPS enforced and IP anonymization enabled, but lacks some recommended security headers and explicit privacy and terms policies. Contact information is not directly visible, which may affect user trust and compliance. Overall, the website is professional and trustworthy but could improve in privacy transparency and security best practices.

W

Wilhelm Zuleeg GmbH

zuleeg.de

66

Wilhelm Zuleeg GmbH operates a professional e-commerce website specializing in high-quality, sustainable fabrics made in Germany. The website targets sewing enthusiasts and businesses seeking premium textile materials and accessories. The company leverages the Shopify platform, ensuring a modern and performant online shopping experience. The site includes comprehensive privacy and cookie policies, indicating GDPR compliance and a focus on user data protection. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy, although the website content and platform usage support its authenticity. Security measures such as HTTPS, hCaptcha, and cookie consent mechanisms are implemented, but explicit security policies and incident response contacts are not found.

The Karlsruher Physikkurs website serves as an educational platform providing physics course materials, multilingual publications, and information about workshops and events related to physics education. It targets educators, students, and academic communities interested in physics. The site is hosted on KIT DNS infrastructure, indicating an affiliation with Karlsruhe Institute of Technology or related academic entities. The technical infrastructure is based on sitely.app CMS with standard web technologies and includes Google Analytics for tracking and Amazon affiliate links for monetization. Mobile optimization and accessibility are basic but functional. Security posture is moderate with HTTPS implied but lacking explicit security headers and formal privacy or cookie policies. No contact information or incident response details are provided, limiting user trust and compliance transparency. Overall, the site is a niche educational resource with good content quality but needs improvements in privacy, security, and contact transparency to enhance trust and compliance.

M

Mein Tierdiscount

meintierdiscount.de

57

Mein Tierdiscount is a well-established German online retailer specializing in pet supplies, including food, accessories, and care products for dogs, cats, small animals, reptiles, birds, and farming animals. With over 15 years of experience and more than one million customers, the company offers a broad product range from over 300 brands, emphasizing quality and customer service. The website is professionally designed, mobile-optimized, and provides clear navigation and comprehensive product information. Technically, the site uses modern web technologies including JavaScript, jQuery, Brotli compression, and Cloudflare for DNS and CDN services, ensuring good performance and security. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are not publicly disclosed. Overall, the site demonstrates a high level of business credibility and compliance with privacy regulations, making it a trustworthy platform for pet owners in German-speaking regions.

T

TIROLISH

tirolish.de

66

TIROLISH is a small Austrian e-commerce business specializing in the online retail of regional Tirol food products such as cheese and speck. The website targets consumers primarily in Austria and Germany who seek authentic Tirol specialties delivered to their homes. The business leverages the Shopify platform with integrations for marketing, analytics, and GDPR compliance, reflecting a mature digital infrastructure for a small retailer. The website is professionally designed, mobile-optimized, and SEO-friendly, supporting a positive user experience and trustworthiness. Security posture is strong with HTTPS, security headers, and cookie consent mechanisms, though explicit security policies and incident response information are absent. Overall, TIROLISH presents a credible and trustworthy online presence with room for enhanced security transparency.

A

Abele Optik

abele-optik.de

70

Abele Optik is a well-established German retail company specializing in eyewear products including glasses, sunglasses, contact lenses, and related care products. With a strong physical presence of 75 stores across Germany and an integrated online shop, the company targets consumers seeking quality optical products and professional services. The website reflects a mature digital infrastructure built on modern web frameworks such as Nuxt.js and Vue.js, hosted on Bunny.net, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, although some security headers and formal security policies are absent. The presence of Trusted Shops certification and active social media channels enhance trust and credibility. Overall, the website is professional, user-friendly, and compliant with basic privacy regulations, though explicit privacy and terms of service documents were not found in the analyzed content.

T

terminplaner.de steht zum Verkauf

terminplaner.de

41

The website terminplaner.de is currently a parked domain page indicating that the domain is for sale via a fixed price and escrow service provided by ELITEDOMAINS. The site does not represent an active business but rather serves as a marketplace listing for domain buyers interested in acquiring this domain. The technical infrastructure is basic, hosted on DigitalOcean with standard HTML, CSS, and JavaScript technologies. The site is mobile optimized but lacks advanced SEO and accessibility features. Security posture is minimal with no HTTPS verification visible in the provided data and no security headers detected. Privacy and cookie policies are absent, and no contact or incident response information is provided, limiting compliance and trustworthiness. Overall, the domain appears legitimate but currently inactive as a business entity.

B

BOECK Jagd & Outdoor

boeck-jagd-outdoor.de

44

BOECK Jagd & Outdoor operates a German-language e-commerce website specializing in hunting, outdoor, camping, and survival equipment. The site targets outdoor enthusiasts, hunters, and sports shooters with a niche retail business model. The platform is built on the Gambio e-commerce framework and integrates PayPal for payment processing, indicating a moderate level of digital maturity. The website is well-structured with good navigation and mobile optimization, providing a positive user experience. However, explicit privacy policies and terms of service are not found in the provided content, which may impact compliance and user trust. Security posture is adequate with HTTPS and secure payment integration but lacks visible security headers and incident response information. Overall, the site appears legitimate and professionally maintained but would benefit from enhanced privacy and security disclosures.

N

NailCrest

nailcrest.de

61

NailCrest operates a German-language e-commerce website specializing in premium black gin and related gift products. The site targets adult consumers interested in exclusive alcoholic beverages and gift sets. The business model is retail-focused, leveraging Shopify's platform for online sales and customer engagement. The website features professional design, clear navigation, and positive customer reviews, indicating a strong market position within its niche. Technically, the site uses modern web technologies and reputable third-party services such as Klaviyo for marketing and Judge.me for customer reviews, hosted on Shopify's secure infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers could be improved. Privacy compliance is limited due to the absence of visible privacy and cookie policies, which should be addressed to meet GDPR standards. Overall, the site is trustworthy and professionally managed but would benefit from enhanced transparency in privacy and contact information.

G

GEROBUG - Schädlingsabwehr Shop

gerobug.de

68

GEROBUG is an established German e-commerce retailer specializing in pest control and insect repellent products targeted at private consumers. The website emphasizes affordability, effectiveness, and fast delivery, supported by over 800,000 satisfied customers. The business operates primarily online using the Shopify platform, integrating multiple third-party services for customer reviews, marketing automation, and analytics. The site is well-structured with comprehensive GDPR and cookie compliance mechanisms, reflecting a mature approach to privacy and user consent. However, explicit security policies and incident response information are not publicly available, indicating room for improvement in transparency and security communication.

W

Wasserpfeifen und mehr

wasserpfeifenundmehr.de

52

Wasserpfeifen und mehr operates a specialized e-commerce platform focused on selling premium water pipes, shishas, shisha tobacco, and related accessories primarily to the German market. The company positions itself as a niche leader offering exclusive and high-quality products, supported by strong customer service and a VIP loyalty program. The website content is professionally presented with clear navigation and comprehensive product information, targeting mature shisha enthusiasts. Technically, the site leverages the Gambio CMS platform, integrates modern JavaScript libraries, and uses PayPal for secure payment processing. Hosting is provided by Estugo Webhosting, with stable DNS configurations. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration data aligns well with the business claims, enhancing trustworthiness.

S

Swisa Beauty

swisabeauty.de

66

Swisa Beauty operates an e-commerce platform specializing in Dead Sea salt and Aloe Vera skincare products targeting consumers interested in natural and therapeutic cosmetics. The website is built on Shopify, leveraging modern web technologies and third-party integrations for marketing, analytics, and customer reviews. The business maintains GDPR compliance with comprehensive privacy and cookie policies, including a consent mechanism. Security posture is solid with HTTPS and secure payment processing, though explicit security headers and incident response policies are not publicly disclosed. Overall, the website presents a professional and trustworthy online presence with good technical infrastructure and user experience.

G

Geschenk & Korb OHG

geschenkundkorb.de

47

Geschenk & Korb OHG operates a specialized e-commerce platform focused on selling curated gift baskets and gift boxes for various occasions, primarily targeting customers in Germany and the EU. The company emphasizes quality, personalized service including greeting cards and scheduled delivery, and caters to both private and corporate clients. The website reflects a mature business with over 25 years of experience, supported by trust seals and customer testimonials. Technically, the site uses standard web technologies with responsive design and structured data for SEO, though it lacks advanced security headers. The security posture is adequate with HTTPS and cookie consent but could be improved with additional headers and published security policies. Overall, the site is professional, trustworthy, and privacy-conscious with no signs of malicious activity or content blocking.

D

Delidia

delidia.de

69

Delidia operates as a German-based e-commerce platform specializing in organic delicacies, offering products directly from producers with a focus on social responsibility by involving people with disabilities in packaging. The website is built on the Shopify platform using the Flex theme, indicating a modern and scalable technical infrastructure. The site is optimized for mobile and desktop users with good SEO practices and moderate performance. Security posture is strong with HTTPS enforced and standard security headers present, although explicit privacy and cookie policies are missing, which impacts compliance. No signs of WAF or content blocking were detected, and the site content is safe for general audiences.