Security Directory

C

Culligan Polska

culliganwoda.pl

62

Culligan Polska is a newly established company (2024) specializing in providing high-quality water dispensers and water treatment solutions for both residential and commercial customers in Poland. As a branch of the international Culligan brand, it leverages a strong market position with a focus on convenience and safe drinking water access. The website is professionally designed, targeting businesses and households, and offers clear information about its products and services. The company maintains active social media presence and uses modern digital marketing and analytics tools to engage its audience. Technically, the website is built on WordPress CMS with a modern tech stack including jQuery, Bootstrap, and Contact Form 7 for user interactions. It integrates Cookiebot for GDPR-compliant cookie consent management, Google Tag Manager, and Piwik Pro for analytics, reflecting a mature digital infrastructure. The site is mobile-optimized and SEO-friendly, though some accessibility features could be enhanced. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for form protection. However, DNSSEC is not enabled, and some HTTP security headers are not explicitly set, representing areas for improvement. No security policy or incident response information is publicly available, and no vulnerability disclosure mechanism is found. The domain registration is consistent with the business launch, registered through a reputable registrar without privacy protection, indicating transparency. Overall, the website demonstrates a good security posture and strong privacy compliance, with comprehensive cookie management and clear business information. Strategic recommendations include enabling DNSSEC, adding explicit security headers, publishing a security policy, and establishing a vulnerability disclosure process to enhance trust and security maturity.

C

Culligan Magyarország

culligan.hu

57

Culligan Magyarország is a medium-sized business specializing in providing water dispensing and treatment solutions tailored for offices, schools, hospitals, restaurants, and various business environments in Hungary. The company is part of the global Culligan brand, offering both bottled and network water dispensers along with hospitality water systems and related services. Their market position is solid within the Hungarian B2B sector, targeting corporate and institutional clients with a focus on hydration solutions. Technically, the website is built on WordPress, leveraging modern technologies such as jQuery, Bootstrap, and popular plugins like Yoast SEO and Contact Form 7. The site integrates advanced analytics tools including Piwik PRO and Google Tag Manager, alongside a robust cookie consent mechanism via OneTrust, demonstrating a mature digital infrastructure. Mobile optimization and SEO practices are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS with good SSL configuration and includes standard security headers. The use of Google reCAPTCHA and cookie consent aligns with best practices for user data protection. No critical vulnerabilities or exposed sensitive data were detected. However, there is room for improvement by implementing a Content-Security-Policy header and enhancing accessibility features. Overall, the website presents a trustworthy and professional front with comprehensive privacy and cookie policies, clear contact information, and consistent branding. The domain registration data corroborates the legitimacy of the business, with no suspicious patterns. The risk profile is low, and the site complies well with GDPR requirements. Strategic recommendations include strengthening security headers, maintaining up-to-date software, and continuous security auditing to sustain and improve the security posture.

C

Culligan Suisse

culligan.ch

60

Culligan Suisse operates a professional website focused on water treatment solutions including water softeners, water fountains, and purifiers targeting both private individuals and businesses in Switzerland. The company positions itself as a global leader in water treatment with a long-standing presence since 1979. The website is well designed, mobile optimized, and uses modern web technologies such as WordPress CMS, jQuery, Bootstrap, and Google Tag Manager. Cookie consent mechanisms and trust widgets are implemented to enhance user trust and comply with privacy expectations. However, explicit privacy policies, terms of service, and security policies are not found in the provided content, which represents a compliance gap. Security posture is generally good with HTTPS enabled but lacks explicit security headers and incident response information. Overall, the website is trustworthy and professional but could improve transparency and security documentation.

S

Sporteo

sporteo.cc

53

Sporteo is a German-based small business specializing in international sports management, focusing on holistic sport management and brand enhancement, particularly in football. The website presents a professional and consistent brand image with good SEO optimization and structured data, indicating a mature digital presence. Technically, the site is built on WordPress with modern scripts like jQuery and lazy loading for performance, though some technical improvements are possible. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is legitimate and trustworthy but would benefit from enhanced security and compliance measures.

S

SEFE

sefe.eu

68

SEFE is a European energy company focused on securing reliable energy supply through trading, sales, infrastructure, and services across gas, power, and hydrogen sectors. The company positions itself as a key player in enhancing energy security and accelerating the transition to a low-carbon future in Europe. Their website reflects a professional and comprehensive digital presence with detailed sections on company strategy, sustainability, portfolio, and career opportunities. Technically, the website employs modern web technologies including ES6 JavaScript modules, jQuery, and integrates a GDPR-compliant cookie management platform (Usercentrics). Google Tag Manager is used for analytics and tracking, indicating a mature digital marketing approach. Security-wise, the site uses HTTPS and shows evidence of good security practices, although explicit security headers are not fully visible in the HTML content. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is common for corporate domains, and no suspicious patterns were found. Overall, the website is trustworthy, well-designed, and compliant with privacy regulations.

etermin GmbH operates an online appointment scheduling platform primarily targeting German-speaking businesses and service providers. Their solution integrates appointment booking functionality into existing websites and Google search results, positioning them as an innovative player in the SaaS scheduling market. The website is professionally designed with good content quality and clear navigation, supporting a positive user experience. Technical infrastructure includes modern JavaScript libraries such as jQuery and tracking tools like Google Analytics and Bing Ads, indicating a mature digital presence. Privacy and cookie policies are implemented with GDPR compliance, reflecting attention to regulatory requirements. However, the absence of WHOIS data raises concerns about domain registration legitimacy, which should be addressed to enhance trust. Security posture is moderate with HTTPS enforced but lacks visible security headers and explicit security policies. Overall, the website demonstrates a solid business and technical foundation but would benefit from improved transparency and security hardening.

T

Tiszántúli Református Egyházkerület

ttre.hu

40

The Tiszántúli Református Egyházkerület website serves as the official online presence of a Hungarian regional Reformed Church district. It provides comprehensive information about church activities, news, tourism, and spiritual resources targeted primarily at Hungarian-speaking church members and the broader community interested in religious heritage. The site is well-branded and consistent with its organizational identity, featuring clear contact details and a GDPR-compliant cookie consent mechanism. Technically, the website employs a custom CMS with common JavaScript libraries such as jQuery and Alertify.js, and integrates Google Tag Manager and Google Analytics for tracking. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are absent. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It lacks advanced security documentation but does not exhibit any critical vulnerabilities or suspicious behavior. The domain WHOIS data aligns well with the organizational identity, supporting legitimacy and trustworthiness.

Ifjúsági Ház Debrecen is a small non-profit community center established in 2011 in Debrecen, Hungary, focused on providing cultural, leisure, and youth-oriented programs and services. The website serves as an information portal for events, room rentals, and community activities targeting children, youth, and young families. The business model revolves around community engagement and event hosting, supported by local partnerships. Technically, the site is built on WordPress with a moderate tech stack including jQuery and several plugins for galleries and news tickers. The site is mobile-optimized and uses HTTPS, but lacks advanced security headers and cookie consent mechanisms. Security posture is adequate but could be improved with formal policies and enhanced headers. Overall, the website is professional, trustworthy, and content-rich for its target audience, with clear contact information and consistent branding. The domain age and WHOIS data align well with the business history, supporting legitimacy.

E

ERF Medien

music-loft.ch

55

MUSIC Loft is a Swiss media platform under the ERF Medien group, focusing on deep and meaningful music and cultural conversations. The website promotes music through podcasts, events, and curated content, targeting a German-speaking audience interested in thoughtful media. The platform maintains a niche position in the media industry with a focus on music and cultural dialogue. Technically, the site is built on WordPress with modern frameworks like UIkit and uses JW Player for media playback. It integrates multiple analytics tools including Matomo and Plausible, balancing data collection with privacy compliance. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is professional, well-branded, and trustworthy with no signs of malicious activity or adult content.

Ö

Österreichischer Handballbund

oehb.at

57

The Österreichischer Handballbund operates as the official Austrian Handball Federation, providing governance, promotion, and organization of handball activities within Austria. The website serves as an information hub for players, fans, and clubs, offering news, event details, and resources related to handball. It holds a strong national position as the authoritative body for the sport in Austria. Technically, the website employs a modern technology stack including jQuery, Owl Carousel, Font Awesome, and a proprietary CMS by Internetkonzepte.at. It integrates Google Analytics and Google Tag Manager for analytics, alongside Adition for advertising and Cookiebot for GDPR-compliant cookie consent management. The site is mobile-optimized with moderate performance and good SEO practices. From a security perspective, the site enforces HTTPS, uses standard security headers, and implements a comprehensive cookie consent mechanism aligned with GDPR. However, it lacks publicly available security policies or incident response contacts, which could be improved to enhance trust and compliance. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its audience effectively. Strategic improvements in security transparency and accessibility could further strengthen its posture.

E

ERF Medien

radio-erf-plus.ch

51

ERF Medien Schweiz operates Radio ERF Plus, a Christian 24-hour radio station providing inspirational content for listeners in Switzerland. The website serves as a platform to promote the radio service, offer downloadable programming, newsletters, and facilitate donations to support broadcasting costs. The organization positions itself as a niche media provider focused on faith-based content with a clear target audience of Christian listeners. The business model is non-profit, relying on donations and community support. Technically, the website is built on WordPress with modern libraries and analytics tools, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS, cookie consent, and multiple tracking protections, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR regulations, reflecting a mature digital presence for a small media entity.

R

Rogy und Rogy Wirtschaftsprüfungs- und Steuerberatungs GmbH

rogyundrogy.at

48

Rogy und Rogy Wirtschaftsprüfungs- und Steuerberatungs GmbH is a well-established, family-run tax consulting and auditing firm based in Vienna, Austria, with over 40 years of experience. The company offers a broad range of financial services including tax declarations, social insurance consulting, business advisory, auditing, and specialized services for small and micro-entrepreneurs. Their market position is that of a trusted local expert catering primarily to small and medium-sized enterprises and self-employed individuals. The website is professionally designed, content-rich, and compliant with GDPR and cookie regulations, targeting German-speaking Austrian clients. Technically, the website uses a proprietary CMS (Internetkonzepte.at CMS) and incorporates modern JavaScript libraries such as jQuery and Owl Carousel for UI enhancements. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit incident response policies are missing. Overall, the security posture is good with no detected vulnerabilities or exposed sensitive data. The WHOIS data aligns well with the business claims, showing consistent registration details and domain age appropriate for the business history. No WAF or blocking mechanisms interfere with content access. The strategic recommendation includes enhancing security headers, publishing a security policy, and improving accessibility features to further strengthen trust and compliance. The website demonstrates a high level of professionalism and trustworthiness suitable for its business domain.

F

Franz Neubauer Ges.m.b.H.

mercedes-benz-werkstatt.at

46

Franz Neubauer Ges.m.b.H. operates as an authorized Mercedes-Benz and smart vehicle service center located in Vienna, Austria. The company provides comprehensive automotive repair, maintenance, bodywork, and parts sales services, targeting Mercedes-Benz vehicle owners seeking quality and authorized service. The website reflects a small-sized, family-owned business with a clear focus on automotive transportation services. Technically, the site uses a CMS from Internetkonzepte.at and common JavaScript libraries such as jQuery and Modernizr, delivering a moderately performant and mobile-optimized experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. Privacy compliance is basic but present, with a GDPR-compliant privacy policy and cookie banner. Overall, the website is professional, trustworthy, and well-structured, supporting the business's credibility and customer engagement.

F

Forum Werteorientierung in der Weiterbildung e. V.

forumwerteorientierung.de

48

Forum Werteorientierung in der Weiterbildung e. V. is a German non-profit organization dedicated to promoting ethical and value-oriented practices in the continuing education sector. The organization provides a quality seal and a professional code of conduct to its member organizations, aiming to enhance transparency and integrity in the education market. The website serves as an informational platform showcasing members, partners, sponsors, and providing updates on seminars and news relevant to the sector. Technically, the website is built on WordPress with common plugins and libraries such as jQuery and Owl Carousel, hosted on rzone.de servers. It demonstrates moderate performance and good mobile optimization. Security-wise, the site uses HTTPS and implements a cookie consent banner, but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. Overall, the site is professional, trustworthy, and compliant with basic privacy regulations, though it could improve in security policy transparency and technical security hardening.

D

Dachverband der Sozialversicherungsträger

sozialversicherung.at

71

The website www.sozialversicherung.at serves as the official portal for the Austrian social insurance umbrella organization, the Dachverband der Sozialversicherungsträger. It provides comprehensive information and services related to social insurance benefits, healthcare providers, employers, and contact options. The portal targets insured persons, employers, healthcare providers, and the general public, positioning itself as a central government service platform. The content is well-structured, primarily in German, and includes privacy and cookie policies compliant with GDPR. Technically, the site uses modern JavaScript libraries including jQuery 3.6.0 and Jakarta Faces framework, with analytics powered by Piwik PRO. The site is hosted securely with HTTPS and includes cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is good with no evident vulnerabilities or exposed sensitive data, although explicit security headers could be improved. Contact information is available mainly via contact forms and physical address; no direct emails or phone numbers are explicitly listed in the HTML. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance appropriate for a government entity.

The website www.sammeln-baerchen.de serves as a promotional platform for Bärchen® products, operated by BIPEM GmbH & Co. KG. It facilitates consumer engagement through a point collection system tied to product purchases, allowing users to upload receipts, collect points (Tatzen), redeem prizes, and participate in prize draws. The site targets German consumers, particularly families or individuals interested in Bärchen® products. The business model focuses on marketing and brand loyalty enhancement through interactive campaigns. Technically, the site employs a modern frontend stack including jQuery, Bootstrap, FontAwesome, and Swiper, managed via the StormCMS content management system. The site is mobile-optimized with a responsive design and includes cookie consent mechanisms compliant with GDPR. However, some areas such as security headers and incident response policies are not explicitly detailed. From a security perspective, the site uses HTTPS (implied by domain and standard practice), but no explicit security headers were detected in the HTML content. There is no visible incident response or vulnerability disclosure information. The cookie consent and privacy policy implementations indicate a good level of privacy compliance. No critical vulnerabilities or suspicious content were found. Overall, the website presents a professional and trustworthy front for the promotional campaign, with good content quality and user experience. Security posture is moderate with room for improvement in headers and explicit policies. The domain registration data aligns well with the business claims, supporting legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and maintaining regular audits of third-party components.

A

ASVÖ Salzburg

asvoe-sbg.at

52

ASVÖ Salzburg is a regional non-profit umbrella sports association representing over 380 member clubs in Salzburg, Austria. It provides advisory and service functions, supports sports clubs with legal, tax, and sports-specific questions, and manages various projects and funding programs. The website reflects a well-established organization with a clear focus on community sports development and member support. The target audience includes sports clubs, officials, trainers, and athletes within the Salzburg region. Technically, the website is built on TYPO3 CMS, utilizing modern JavaScript libraries such as jQuery, fancybox, and slick slider for enhanced user experience. The site is mobile-optimized and includes a cookie consent mechanism via Usercentrics, demonstrating compliance with GDPR requirements. Google Analytics 4 is used for visitor tracking with consent. From a security perspective, the site enforces HTTPS and uses a consent management platform for privacy compliance. However, it lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns well with the website's claims, supporting legitimacy and trustworthiness. Overall, the website presents a professional and trustworthy digital presence for a regional non-profit sports association, with good content quality, technical implementation, and privacy compliance. Security posture is adequate but could be improved by adding security headers and incident response information.

W

WOMEN'S EHF EURO 2024

catchthespirit2024.com

50

The website catchthespirit2024.com serves as the official digital platform for the Women’s EHF EURO 2024 Handball Championship, providing comprehensive event information including news, schedules, host city details, ticketing links, and multimedia content. It targets handball fans and event attendees, positioning itself as the authoritative source for the championship. The site leverages WordPress CMS with popular plugins such as Elementor and Yoast SEO, and integrates Cookiebot for GDPR-compliant cookie consent management. External partnerships for ticketing and merchandise are clearly linked, enhancing the user journey for event participation. Technically, the site employs modern web technologies including jQuery, Bootstrap, and Google Tag Manager for analytics. The site is mobile-optimized and SEO-friendly, with multilingual support via WPML. Security posture is adequate with HTTPS enforced and domain transfer protections in place, though the absence of DNSSEC and security headers suggests room for improvement. Privacy compliance is partial due to missing explicit privacy and terms of service pages. No direct contact information or incident response details are published, which could impact user trust and compliance. Overall, the website presents a professional and trustworthy front for the event, with good content quality and user experience. However, enhancing privacy disclosures, security headers, and contact transparency would strengthen compliance and security posture. The domain registration is consistent with the event timeline and shows no suspicious patterns, supporting legitimacy.

B

Bary

bary.app

46

Bary is a French company specializing in digital transformation for the transportation sector, offering a bespoke B2B e-commerce platform that enables transporters to sell their services online. Supported by major transport groups and federations, Bary positions itself as a trusted partner for transport companies seeking to modernize and grow their business. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to transporters and shippers. Technically, the site is built on WordPress with modern libraries and frameworks, integrating marketing and analytics tools such as HubSpot and Google Analytics, and implements GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site demonstrates high business credibility and compliance with privacy regulations.

T

Tempologis

tempologis.fr

42

Tempologis is a French transportation and logistics group comprising subsidiaries Auto Express Moderne (AEM) and Transports Pluviaud Organisation (TPO). The company offers tailored transport and logistics solutions including road freight, specific transport, warehousing, packaging, and related services. It is a member of the ASTRE network, enhancing its market reach and service quality. The website demonstrates a mature digital presence with modern technologies, SEO optimization, and GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. WHOIS data is unavailable, which slightly impacts domain trust but does not detract from the business legitimacy evidenced by certifications and customer testimonials.

B

Baufragen Software GmbH

baufragen-software.com

51

Baufragen Software GmbH is a specialized software provider focused on the construction industry, offering platforms such as Baufragen.de and Bauspot.de that serve as expert knowledge bases and social media platforms for construction professionals. The company targets a broad audience including architects, planners, craftsmen, real estate professionals, and building authorities, positioning itself as a key player in digital transformation within the construction sector. Founded in 2016 and based in Germany, the company maintains a professional online presence with over 270,000 users engaged in its digital community. Technically, the website employs modern web technologies including jQuery, Cookiebot for GDPR-compliant cookie consent, and Google Tag Manager for analytics and marketing. The site is hosted by Cronon GmbH and uses HTTPS, ensuring secure communications. While the site demonstrates good mobile optimization and SEO practices, there is room for improvement in accessibility and security headers implementation. From a security perspective, the site benefits from HTTPS and a robust cookie consent mechanism but lacks visible security policies or incident response information. No critical vulnerabilities or suspicious activities were detected. The WHOIS data aligns well with the business claims, indicating a legitimate and consistent domain registration. Overall, Baufragen Software GmbH presents a trustworthy and professional digital footprint with good compliance to privacy regulations and a solid technical foundation. Strategic improvements in security headers, incident response transparency, and contact information visibility could further enhance trust and security posture.

A

ASKÖ Sport GmbH

abc-ooe.at

45

ASKÖ Sport GmbH operates the ABC Bewegungscenter Oberösterreich, a regional sports and event center located in Linz, Austria. The company provides a range of services including sports activities, seminar facilities, accommodation, and restaurant services, targeting a general audience interested in sports and events. The website reflects a medium-sized regional business with consistent branding and clear contact information, supporting its market position as a trusted local service provider. Technically, the website is built on the Internetkonzepte.at CMS platform and utilizes modern JavaScript libraries such as jQuery, Owl Carousel, and integrates Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile optimized with good navigation and SEO practices, although some accessibility features are basic. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, indicating basic privacy compliance. However, it lacks explicit security policies, incident response information, and security headers, which are recommended to enhance its security posture. No vulnerabilities or exposed sensitive data were detected, and the WHOIS data confirms the legitimacy of the domain and company. Overall, the website presents a professional and trustworthy digital presence with moderate technical and security maturity. Strategic improvements in security policies, technical modernization, and enhanced privacy compliance would further strengthen the site's reliability and user trust.

I

Internetkonzepte.at GmbH

internetkonzepte.at

46

Internetkonzepte.at GmbH is a small Austrian technology company specializing in custom web and software development, content management systems, hosting, and related IT services. With over 20 years of experience and numerous client references, the company holds a solid market position in the Austrian and German-speaking business sectors. Their website reflects a professional and consistent brand image, targeting businesses seeking tailored internet solutions. The company emphasizes security and support, with a 24/7 support offering and a strong partnership with their hosting provider myNET.at. Technically, the website employs a modern tech stack including jQuery, Font Awesome, and Matomo analytics, running on a proprietary CMS developed by the company. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is strong with HTTPS and no visible vulnerabilities, but lacks some advanced security headers and formal policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the security posture is good, with no detected vulnerabilities or blocking mechanisms. The WHOIS data confirms the legitimacy and consistency of the business registration. Strategic improvements include implementing cookie consent, publishing security and incident response policies, and adding security headers to enhance protection and compliance.

Ö

ÖFT - Österr. Fachverband für Turnen

oeft.at

49

Turnsport Austria is the official Austrian federation representing approximately 450 gymnastics clubs with over 90,000 members across various disciplines including artistic gymnastics, rhythmic gymnastics, trampoline, sport aerobics, and more. The organization serves both grassroots and elite sports communities, providing event organization, training, and certification services. The website reflects a well-maintained digital presence with comprehensive event calendars, news updates, and social media integration, targeting athletes, coaches, clubs, and sports enthusiasts in Austria. Technically, the site uses a custom CMS by Internetkonzepte.at, leveraging modern JavaScript libraries such as jQuery and Owl Carousel, and is mobile responsive with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating stable and accessible infrastructure. Overall, the site demonstrates a mature digital footprint appropriate for a national sports federation.

A

ASKÖ Tirol

askoe-tirol.at

40

ASKÖ Tirol is a well-established regional sports association based in Innsbruck, Austria, dedicated to promoting diverse sports activities, health, and fitness programs within the Tirol region. The organization supports local sports clubs, organizes championships, and offers educational courses and community events. The website reflects a professional and community-focused business model with a strong regional presence and partnership ecosystem anchored by the ASKÖ Bundesorganisation. Technically, the website uses a traditional CMS platform with modern JavaScript libraries and is mobile-optimized, though there is room for improvement in security headers and incident response transparency. Security posture is solid with HTTPS enforced and no visible vulnerabilities, but lacks advanced security policies or vulnerability disclosure mechanisms. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information and social media engagement, making it a reliable resource for its target audience.

A

ASKÖ Steiermark

askoe-steiermark.at

10

ASKÖ Steiermark is a regional non-profit sports association based in Graz, Austria, focused on promoting diverse sports activities, memberships, training, and community engagement within the Styria region. The organization operates under the umbrella of the ASKÖ Bundesorganisation, providing services such as sports center facilities, educational programs, and project funding. The website reflects a well-structured and professional digital presence, targeting sports clubs, athletes, and the general public interested in sports in Styria. Technically, the site uses a moderate tech stack including jQuery, FontAwesome, and a proprietary CMS by Internetkonzepte.at, with good mobile optimization and basic accessibility features. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is strong with clear cookie consent and a comprehensive privacy policy. Overall, the site is trustworthy and professionally maintained, with clear contact information and partner relationships.

A

ASKÖ Salzburg

askoe-salzburg.at

47

ASKÖ Salzburg is a well-established regional non-profit sports association based in Salzburg, Austria, focused on promoting diverse sports activities, supporting local sports clubs, and providing training and community programs. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to sports enthusiasts and community members in the region. Technically, the site uses a modern JavaScript stack including jQuery and FontAwesome, built on the Internetkonzepte.at CMS platform, and is mobile-optimized with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response disclosures. Overall, the site is trustworthy, GDPR compliant, and provides comprehensive contact information and partner links.

A

ASKÖ Oberösterreich

askoe-ooe.at

52

ASKÖ Oberösterreich is a regional non-profit sports association dedicated to promoting diverse sports activities and supporting sports clubs in Upper Austria. The organization provides a wide range of services including club support, sports education, fitness and health programs, and competitive sports event organization. It serves sports clubs, athletes, and community members, positioning itself as a key regional player in sports promotion. The website reflects a professional and consistent brand image aligned with its mission. Technically, the website uses a moderate technology stack including jQuery, FontAwesome, Owl Carousel, and a proprietary CMS by Internetkonzepte.at. The site is mobile optimized and performs moderately well, with basic SEO and accessibility features. Privacy and cookie policies are present and GDPR compliant, though explicit security policies and incident response contacts are not found. From a security perspective, the site enforces HTTPS and uses secure external scripts but lacks advanced security headers and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the website's claims, indicating a legitimate and established organization. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic improvements in security headers, incident response transparency, and accessibility could enhance its security posture and user trust.

A

ASKÖ Niederösterreich

askoenoe.at

48

ASKÖ Niederösterreich is a well-established regional non-profit sports association dedicated to promoting diverse sports activities and supporting sports clubs in Lower Austria. The organization offers a variety of projects, training programs, and community services aimed at athletes, sports clubs, and enthusiasts. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to its target audience. Technically, the website employs a modern technology stack including jQuery, Font Awesome, and several UI libraries, running on a custom CMS by Internetkonzepte.at. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Privacy and cookie policies are implemented with GDPR compliance, and social media integration is active, primarily via Facebook. From a security perspective, the site uses HTTPS and has basic security best practices in place, though it lacks advanced security headers and explicit incident response or vulnerability disclosure policies. No critical vulnerabilities or exposed sensitive data were detected. WHOIS data confirms the legitimacy and consistency of the domain registration with the business entity. Overall, the website presents a low-risk profile with a solid foundation for business credibility and user trust. Strategic improvements in security headers, incident response transparency, and vulnerability disclosure could further enhance the security posture and compliance maturity.

A

ASKÖ Kärnten

askoe-kaernten.at

47

ASKÖ Kärnten is a well-established regional sports association based in Kärnten, Austria, focused on promoting diverse sports activities, fitness programs, and supporting local sports clubs. The organization targets sports enthusiasts and community members, providing events, courses, and youth development initiatives. The website reflects a professional and consistent brand presence with clear navigation and relevant content in German. Technically, the site uses a custom CMS (Internetkonzepte.at CMS) with common JavaScript libraries and social media integration, delivering a moderate performance and good mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks advanced security headers and incident response disclosures. Overall, the domain registration aligns with the business claims, indicating legitimacy and trustworthiness.

A

ASKÖ Burgenland

askoe-burgenland.at

50

ASKÖ Burgenland is a regional non-profit sports association based in Austria, focused on promoting diverse sports activities, supporting local sports clubs, and organizing events and training programs. The organization serves athletes, trainers, and the general public within the Burgenland region, positioning itself as a key regional player in sports promotion and community engagement. The website reflects this mission with comprehensive content about services, events, and funding opportunities. Technically, the site uses a custom CMS (Internetkonzepte.at CMS) and incorporates modern JavaScript libraries such as jQuery, Owl Carousel, and Fancybox, indicating a moderate level of digital maturity. The site is mobile optimized and provides clear navigation and relevant content. Security-wise, the site enforces HTTPS and uses trusted external libraries but lacks explicit security headers and published security policies. Privacy compliance is strong with clear GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and well-maintained, with room for improvement in security policy transparency and technical enhancements.

A

ASKÖ Bundesorganisation

askoe.at

50

ASKÖ Bundesorganisation is the largest Austrian sports umbrella organization dedicated to promoting sports and physical culture across Austria. It serves a broad audience including sports clubs, athletes, and community members, offering services such as sports promotion, health-oriented activities, youth sports, education, and events. The organization maintains a strong network of regional subsidiaries and partners, reinforcing its market position in the non-profit sports sector. Technically, the website is built on the Internetkonzepte.at CMS and employs modern web technologies including jQuery, Font Awesome, and various UI and carousel libraries. The site is mobile-optimized with good navigation and SEO practices, though some accessibility features are basic. Performance is moderate, with asynchronous loading of scripts enhancing user experience. From a security perspective, the website enforces HTTPS and uses some best practices such as async script loading and no visible sensitive data exposure. However, it lacks explicit security headers and a published incident response policy. Privacy compliance is strong, with clear GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the website presents a professional, trustworthy, and well-maintained digital presence for a large non-profit organization. It is safe for general audiences and demonstrates good privacy and security hygiene, though there is room for improvement in security headers and incident response transparency.

Ö

ÖFT - Österr. Fachverband für Turnen

turnsport.at

49

Turnsport Austria is the official Austrian gymnastics federation representing approximately 450 clubs and over 90,000 members across multiple gymnastics disciplines. The organization serves both grassroots and elite sports communities, providing event organization, trainer licensing, and promoting safe sport and anti-doping initiatives. The website is well-structured, professionally designed, and provides comprehensive information and news relevant to its audience. Technically, the site uses a modern tech stack including jQuery, Font Awesome, and Owl Carousel, and is built on the Internetkonzepte.at CMS platform. It is mobile optimized and SEO friendly. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies are lacking. Privacy compliance is strong with a clear privacy and cookie policy and consent mechanism. Overall, the site is trustworthy and credible, reflecting a mature non-profit sports federation.

W

WestLotto

westlotto.de

70

WestLotto.de is the official state lottery operator for North Rhine-Westphalia (NRW), Germany, providing a range of lottery and gaming services including LOTTO, Eurojackpot, KENO, TOTO, and GlücksSpirale. The website targets adult residents of NRW and positions itself as a secure and reliable state-run gaming platform. The business model is focused on regulated lottery services under government oversight, with a strong regional market presence.

S

Stiftung Deutsche Sporthilfe

sporthilfe.de

54

Stiftung Deutsche Sporthilfe is a well-established non-profit organization dedicated to supporting young and elite athletes in Germany. With a history dating back to 1967, it plays a pivotal role in private sports funding, contributing significantly to Germany's international sports successes. The website reflects a professional and comprehensive presentation of their services, partnerships, and events, targeting donors, sponsors, and sports enthusiasts. Technically, the site is built on TYPO3 CMS with modern integrations such as Google Tag Manager, reCAPTCHA, and consent management, ensuring a good digital maturity level. Security posture is strong with HTTPS, secure forms, and privacy compliance, though explicit security policies and vulnerability disclosures are absent. Overall, the site is trustworthy, well-branded, and provides a positive user experience with clear navigation and rich content.

L

Ludwig & Co

ludwig-holz.de

52

Ludwig & Co is a well-established German company specializing in the import and trade of wood products, particularly for construction and packaging. With over 100 years of experience, the company positions itself as a leading expert in the wood industry, offering a range of products including Sperrholz/LUCOply, Nadelschnittholz, and Sibirische Lärche. The website reflects a professional and consistent brand image, emphasizing sustainability certifications such as FSC® and PEFC. Technically, the site is built on Joomla CMS with modern UIkit framework and includes GDPR-compliant cookie consent mechanisms. Security practices include HTTPS enforcement and email obfuscation, though some HTTP security headers are not explicitly detected. Contact information is comprehensive, listing multiple experts with direct phone and email contacts. No social media or analytics tracking is evident, indicating a privacy-conscious approach.

Gewerbeverein Turbenthal und Umgebung is a local business association representing approximately 130 members from the municipalities of Turbenthal, Wila, Wildberg, and Zell in Switzerland. The association focuses on supporting local businesses across various sectors including retail, manufacturing, hospitality, and services. Their activities include organizing events such as the Gewerbeausstellung GEWA trade exhibition, providing networking platforms, and contributing to the local economy by fostering employment and training young professionals. The website is well-structured, primarily in German, and targets local businesses and residents in the Tösstal region. It uses the ClubDesk CMS platform and integrates modern web technologies such as jQuery, FontAwesome, and Owl Carousel.

M

Ministerium für Ernährung, Ländlichen Raum und Verbraucherschutz Baden-Württemberg

efre-bw.de

62

The EFRE Baden-Württemberg website serves as the official regional government portal for the European Regional Development Fund (EFRE) in the German state of Baden-Württemberg. It provides comprehensive information on funding programs, project examples, current news, and guidance for applicants. The site targets a broad audience including citizens, businesses, and public institutions interested in regional development funding. The portal is well-positioned as a trusted government resource, supported by official branding and EU co-funding acknowledgments. Technically, the website employs a modern technology stack including jQuery, Matomo analytics, and custom CMS solutions tailored for Baden-Württemberg's government portals. It demonstrates good mobile optimization, accessibility compliance, and moderate performance. The hosting and DNS infrastructure aligns with regional academic and government networks, enhancing trustworthiness. From a security perspective, the site enforces HTTPS, uses captcha mechanisms to prevent automated abuse, and implements cookie consent in line with GDPR requirements. While no explicit security policy or incident response contacts are published, the site shows good baseline security hygiene with no visible vulnerabilities or exposed sensitive data. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include publishing a dedicated security policy, enhancing security headers, and providing incident response contacts to further strengthen trust and security maturity.

The website klosterkilbi.ch represents the traditional Swiss festival 'Klosterkilbi' organized by the Musikgesellschaft St. Urban. It serves as an informational platform for visitors and participants, providing event dates, program details, and links to social media. The site is built on the ClubDesk Vereinssoftware platform, utilizing modern JavaScript libraries such as jQuery, Featherlight, and Owl Carousel to enhance user experience. The design is consistent and mobile-optimized, offering clear navigation and relevant content for its regional audience. Security posture is adequate with HTTPS usage and no visible vulnerabilities, though security headers and explicit policies are absent. Privacy compliance is basic with a privacy policy and cookie consent implemented, but GDPR compliance is not explicitly confirmed. Overall, the site is trustworthy and professionally maintained, reflecting a small community organization with a long-standing tradition.

The website represents the official online presence of the municipality of Fischbach in the canton of Luzern, Switzerland. It serves as an informational portal providing residents and visitors with access to community news, political information, administrative services, and local events. The site is clearly targeted at local citizens and stakeholders, offering relevant municipal content in German. The business model is that of a government service provider, focusing on transparency and community engagement. Technically, the website employs modern front-end technologies including Bootstrap 5 for responsive design, jQuery, and Swiper.js for interactive elements. It uses Matomo for analytics, reflecting a privacy-conscious approach. The site is mobile-optimized and shows good navigation clarity and content relevance. However, no CMS or hosting provider details were detected, and accessibility features are basic. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, indicating GDPR compliance. No critical vulnerabilities or exposed sensitive data were found. However, security headers are missing, and there is no explicit security or incident response policy published. The WHOIS data confirms the domain's legitimacy as an official municipal site with consistent registration details. Overall, the website is professional, trustworthy, and well-suited for its purpose. Strategic improvements could include adding security headers, publishing terms of service and incident response contacts, and enhancing accessibility compliance to further strengthen security posture and user trust.

G

Gemeinde Ermatingen

ermatingen.ch

48

Gemeinde Ermatingen operates as the official municipal government website for the community of Ermatingen in Switzerland. It provides residents and visitors with comprehensive information about local government services, community events, public notices, and administrative contacts. The website targets local citizens and stakeholders, serving as a central hub for municipal communication and service delivery. The business model is typical of a government entity, focusing on transparency, accessibility, and community engagement. From a technical perspective, the website employs a modern technology stack including jQuery, Bootstrap, Isotope, Fancybox, and Matomo analytics, indicating a moderate level of digital maturity. The site is mobile optimized and features interactive elements such as digital tours and event calendars. The CMS appears to be a custom or specialized system (Simpli CMS), supporting structured content management. Security posture is adequate with HTTPS enforced and no visible exposure of sensitive data. However, the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and defense-in-depth strategies. The use of Matomo analytics reflects a privacy-conscious approach to user tracking, though GDPR compliance could be enhanced by adding explicit cookie consent and privacy notices. Overall, the website is trustworthy and professional, with clear contact information and consistent branding. The risk level is low, but strategic enhancements in security policies, privacy compliance, and technical hardening are recommended to maintain and improve trust and regulatory adherence.

S

Stiftung Mercator

aufruhr-magazin.de

56

AufRuhr Magazin is a non-profit media publication operated under the Stiftung Mercator umbrella, focusing on social, cultural, and environmental topics such as European integration, climate protection, and cultural education. The website serves a general audience interested in these areas, providing articles, videos, and newsletters to disseminate educational content. The business model is centered on non-commercial media outreach supported by a reputable foundation, positioning itself as a niche but trusted source in its domain. Technically, the website is built on WordPress using the Nucleus theme and incorporates modern web technologies including jQuery, Yoast SEO, and Borlabs Cookie for GDPR-compliant cookie management. It employs push notifications via OneSignal and uses Matomo and Facebook Pixel for analytics and marketing. The site is mobile-optimized with good SEO practices and moderate performance. From a security perspective, the site enforces HTTPS and implements JavaScript error logging and cookie consent mechanisms. However, explicit security headers like CSP or X-Frame-Options are not evident, and no formal security policy or incident response contacts are published. No vulnerabilities or exposed sensitive data were detected, indicating a solid security posture for a non-profit media site. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with a strong affiliation to Stiftung Mercator enhancing its credibility. Strategic recommendations include enhancing security headers, publishing a security policy, and improving accessibility compliance to further strengthen its security and user trust.

א

אוריין בע״מ

orian.com

62

Orian Ltd. is a publicly traded Israeli logistics company offering comprehensive supply chain management solutions. The company operates as part of an international group, providing sea and air freight, domestic transportation, customs brokerage, e-commerce logistics, and specialized services such as cargo insurance and clinical trials logistics. The website is professionally designed, primarily in Hebrew, targeting business clients and investors. Technical infrastructure includes modern JavaScript libraries, Google Analytics, and Tag Manager, indicating a mature digital presence. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks explicit security headers and detailed privacy compliance mechanisms. The absence of WHOIS data raises concerns about domain registration legitimacy, though the business content and investor relations links support its authenticity. Strategic improvements in privacy policies, security headers, and incident response disclosures are recommended to enhance trust and compliance.

The Deutsche Stiftung für Engagement und Ehrenamt operates the DSEE Lernportal, a dedicated educational platform aimed at supporting volunteers and engaged individuals in non-profit organizations. The portal offers a variety of learning resources including courses, webinars, and video content focused on topics such as digitalization, financing, member recruitment, and organizational management. The platform is positioned as a trusted resource within the German volunteer sector, providing free access to educational materials and fostering community growth. Technically, the website is built on the Totara LMS platform, which is based on Moodle, utilizing modern JavaScript libraries such as YUI and jQuery, and includes accessibility and mobile optimization features. The infrastructure supports a good user experience with moderate performance and solid SEO practices. The site enforces HTTPS and employs secure session management, though it lacks some advanced security headers and a formal security policy page. From a security perspective, the site demonstrates a good posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. However, there is no explicit incident response or vulnerability disclosure information available. The domain registration aligns well with the organization's identity, enhancing trustworthiness. Overall, the DSEE Lernportal is a professionally maintained, secure, and privacy-conscious platform serving the non-profit volunteer community in Germany. Strategic improvements in security policy transparency and incident response readiness could further strengthen its security posture and user trust.

株

株式会社カビネット

kabinett.com

58

株式会社カビネット is a Japanese IT company specializing in cloud services, software system development, and design content production. Established in 1998, it serves primarily business clients in Japan with a focus on delivering customer value through IT and communication. The company maintains a professional web presence with clear service descriptions, case studies, and recruitment information, positioning itself as a reliable mid-sized IT service provider. Technically, the website uses modern JavaScript libraries such as jQuery and Slick Carousel, and integrates Google Analytics for visitor tracking. The site is mobile-optimized and well-structured with good SEO practices. However, there is no visible cookie consent mechanism, which is a compliance gap given the use of tracking scripts. From a security perspective, the website uses HTTPS and displays trust certifications like the Privacy Mark and Secom Trust Systems badge, indicating a commitment to privacy and security. Nonetheless, the absence of DNSSEC, security headers, and explicit security or incident response policies suggests room for improvement in security posture. Overall, the website is professional, trustworthy, and functional with moderate technical sophistication. Strategic improvements in privacy compliance and security practices would enhance its risk profile and user trust.

T

Thurgau Golf

thurgaugolf.ch

51

Thurgau Golf is a regional sports organization dedicated to promoting golf in the Thurgau canton of Switzerland. The organization primarily focuses on organizing annual golf championships including the Thurgauer Golf Meisterschaft and Senioren Meisterschaft, fostering youth development, and supporting senior players. The website serves as an information hub for tournament details, results, and organizational information, targeting golf enthusiasts and players in the region. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site is mobile optimized and includes SEO best practices such as structured data and meta tags. Security posture is solid with HTTPS enforced and a GDPR-compliant cookie consent mechanism, though it lacks advanced security headers and explicit incident response policies. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

H

Haus der Flüsse - Natura 2000-Informationszentrum des Biosphärenreservates Mittelelbe

haus-der-fluesse.de

58

Haus der Flüsse is a regional informational and educational center dedicated to the Biosphärenreservat Mittelelbe in Germany. It provides visitors with educational exhibits, accessibility services, and organizes events related to nature conservation. The website is well-structured, professionally designed, and targets a broad audience including families, educational groups, and people with disabilities. The business operates as a non-profit or government-affiliated entity with a strong emphasis on accessibility and environmental awareness. Technically, the site is built on TYPO3 CMS with modern frameworks like Bootstrap and jQuery, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in publishing explicit security policies and incident response information. Overall, the site is trustworthy, compliant with GDPR, and provides clear contact information.

G

Gartenreich - Biosphärenreservat Mittelelbe

gartenreich.net

58

The website www.gartenreich.net represents the Gartenreich Dessau-Wörlitz, a UNESCO World Heritage site located within the Biosphärenreservat Mittelelbe in Germany. It serves as an informational and cultural heritage platform promoting the historical and environmental significance of the region. The site targets general audiences interested in cultural tourism, environmental education, and heritage preservation. The business model is primarily informational and non-commercial, focusing on education and tourism promotion. Technically, the website is built on TYPO3 CMS with modern frontend libraries such as Bootstrap 4.6, jQuery 3.6, Slick Carousel, and Fancybox. The site is mobile-optimized and includes accessibility features like contrast mode and font size adjustments. Performance is moderate with good SEO and accessibility practices. However, no explicit security headers were detected, and no analytics or tracking scripts were found in the provided content. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, the absence of WHOIS registration data raises concerns about domain legitimacy and trustworthiness. No incident response or vulnerability disclosure policies are publicly available. The site shows no signs of malware or phishing but would benefit from enhanced security headers and transparency regarding security policies. Overall, the website is professionally designed and trustworthy in content but has gaps in domain registration transparency and security policy disclosures. Strategic improvements in security headers, WHOIS registration clarity, and incident response documentation are recommended to enhance trust and compliance.

B

Biosphärenreservat Mittelelbe

mittelelbe.com

58

The website www.mittelelbe.com represents the Biosphärenreservat Mittelelbe, a well-established and significant biosphere reserve in Germany, focusing on nature conservation, education, and tourism. It is part of a larger UNESCO Biosphärenreservat Flusslandschaft Elbe partnership and provides rich content about its projects, visitor information, and events. The site targets nature enthusiasts, tourists, and educational groups, operating primarily as a non-profit or government-affiliated entity. Technically, the website is built on TYPO3 CMS with modern web technologies including Bootstrap and jQuery. It is mobile-optimized, accessible, and includes a cookie consent mechanism compliant with GDPR. The site loads moderately fast and has good SEO and accessibility features. However, no explicit security headers were detected, and no contact emails or phone numbers are directly visible, which could be improved. Security-wise, the site uses HTTPS and has a cookie consent banner, indicating a good baseline security posture. The absence of WHOIS data for the domain is a notable anomaly that reduces trustworthiness and should be investigated further. No signs of malware, phishing, or adult content were found, and the site appears safe for general audiences. Overall, the website is professional and trustworthy in content and presentation but would benefit from enhanced transparency in domain registration and improved security headers. Strategic recommendations include verifying domain registration details, publishing a vulnerability disclosure policy, and adding explicit contact information to improve business credibility and user trust.