Security Directory

V

VIZUAL Grafik und Code GmbH

vizual.ch

51

VIZUAL Grafik und Code GmbH is a Swiss-based agency specializing in visual and digital communication, offering services in graphic design, user-friendly websites, and practical applications. The company positions itself as a niche provider focusing on the harmonious integration of form, content, and functionality, targeting businesses and organizations seeking professional digital communication solutions. The website is built on TYPO3 CMS and incorporates modern web technologies such as jQuery, GSAP, and Flickity, reflecting a moderate to advanced digital maturity. The site is well-designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though security headers and explicit incident response policies are absent. Privacy compliance is basic with a privacy policy present but lacking a cookie consent mechanism. Overall, the website and domain registration data indicate a legitimate, professional small agency with a solid online presence.

D

Diözese St. Pölten

aufsendung.at

66

The website www.aufsendung.at serves as an informational and community engagement platform for the Diocese of St. Pölten, Austria. It focuses on the Synodal Process initiated by the Catholic Church, providing resources, event information, and contact details for church members and the general public. The site is part of a broader diocesan web presence and links to official church and charitable organizations. Technically, the site uses the siteswift CMS platform with a modern JavaScript stack including jQuery and cookie consent management via Klaro. While the site is well-structured and mobile-optimized, some SEO metadata is incomplete and accessibility features are basic. Security posture is moderate with CSRF protections and cookie consent but lacks explicit security headers and published incident response policies. Overall, the site is legitimate, trustworthy, and serves its community purpose effectively.

M

Museum am Dom / Diözese St. Pölten

museumamdom.at

61

Museum am Dom is a small, non-profit cultural institution affiliated with the Diocese of St. Pölten in Austria. It offers a variety of exhibitions focusing on Christian art and history, including annual and seasonal events. The website is built on the siteswift CMS platform and uses modern JavaScript libraries to provide a good user experience with mobile optimization and interactive galleries. Security-wise, the site implements cookie consent management and CSRF protection but lacks visible security headers and explicit privacy or terms of service pages. WHOIS data is unavailable, likely due to privacy protection, but the website's content and official affiliations support its legitimacy. Overall, the site is professional, trustworthy, and serves its target audience effectively.

D

Diözese Sankt Pölten

dsp.at

66

The website www.dsp.at represents the official online presence of the Diocese of St. Pölten, a well-established Austrian Roman Catholic diocese founded in 1784. It serves as a comprehensive portal for religious services, community engagement, cultural events, and educational resources targeted primarily at parishioners and the broader Catholic community in Austria. The site features a modern design with clear navigation, mobile optimization, and a structured content hierarchy that supports user engagement and information dissemination. Technically, the site is built on the siteswift CMS platform and leverages popular JavaScript libraries such as jQuery and Swiper.js, ensuring a responsive and interactive user experience. Privacy and cookie consent mechanisms are robustly implemented, reflecting compliance with GDPR requirements. Security posture is strong with HTTPS enforced, CSRF protections, and security headers present, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates high business credibility and trustworthiness, supported by consistent WHOIS data and legitimate domain registration.

E

Erzdiözese Salzburg

rupertusblatt.at

59

The Rupertusblatt website serves as the official weekly newspaper for the Erzdiözese Salzburg, providing religious, cultural, and social news relevant to the Archdiocese and its community. It offers subscription services, e-paper access, and community engagement features. The site is well-branded and professionally maintained, reflecting its role as a trusted regional media outlet. Technically, the site uses a modern CMS (siteswift), integrates popular JavaScript libraries for UI and interactivity, and implements a cookie consent mechanism aligned with GDPR requirements. Security practices include CSRF token usage and consent management, though HTTP security headers and SSL configuration details are not explicitly visible. The absence of WHOIS data limits domain registration transparency but does not detract from the site's evident legitimacy and professional presentation. Overall, the site is a reliable, well-structured platform serving its target audience effectively.

E

Erzdiözese Salzburg

edsbg.at

59

Erzdiözese Salzburg operates as a large, established Catholic diocese serving the Salzburg region and Tiroler Unterland in Austria. The website functions as an informational and community engagement platform, offering news, event details, and religious content tailored to its Catholic audience. The organization maintains a consistent brand presence and leverages social media channels to extend its outreach. Technically, the site uses the siteswift CMS platform with modern JavaScript libraries, ensuring a responsive and user-friendly experience. Security measures include HTTPS enforcement, CSRF protection on forms, and a comprehensive cookie consent mechanism, although explicit security headers and incident response policies are not publicly documented. Overall, the site demonstrates a good balance of content quality, technical implementation, and privacy compliance, reflecting the organization's credibility and commitment to user trust.

K

Klinikum Saarbrücken gGmbH

klinikum-saarbruecken.de

49

Klinikum Saarbrücken gGmbH operates a large, modern hospital facility located in Saarbrücken, Germany, providing comprehensive medical services across 17 specialized departments and 18 interdisciplinary centers. The institution positions itself as a regional maximal care provider with a strong emphasis on quality, patient safety, and community engagement. The website serves multiple audiences including patients, visitors, healthcare professionals, and prospective employees, offering detailed information about medical services, educational programs, and career opportunities. The presence of certifications and compliance information underscores its commitment to healthcare standards and regulatory adherence. Technically, the website is built on the TYPO3 CMS platform, leveraging a modern technology stack including jQuery, Bootstrap, and Matomo analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization, accessibility features, and SEO practices. The cookie consent mechanism and privacy policy are well implemented, reflecting GDPR compliance. The site integrates multiple social media channels and provides a newsletter signup, enhancing user engagement. From a security perspective, the site enforces HTTPS and employs cookie consent management. No critical vulnerabilities or exposed sensitive data were detected in the content. However, there is room for improvement in publishing explicit incident response policies, security headers, and vulnerability disclosure mechanisms. The WHOIS data aligns with the website's claims, indicating a legitimate and professionally managed domain. Overall, Klinikum Saarbrücken's website reflects a mature digital presence with strong business credibility and privacy compliance. Strategic enhancements in security transparency and incident response readiness would further strengthen its posture.

J

JK.works mediatec

jk-works.de

55

JK.works mediatec is a small, established German IT service provider specializing in system administration, cloud and backup solutions, server maintenance, and web design/development. With over 20 years of experience and a Microsoft Silver Partner certification, the company targets businesses primarily in the Bremen, Wildeshausen, and Oldenburg regions. Their website reflects a professional and consistent brand image, offering clear service descriptions and accessible contact information. Technically, the site is built on OctoberCMS with a modern tech stack including Bootstrap and jQuery, delivering moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and explicit security policies. Overall, the website is trustworthy, compliant with GDPR, and free from suspicious or adult content.

Ö

Österreichische Bischofskonferenz

bischofskonferenz.at

62

The website www.bischofskonferenz.at serves as the official online presence of the Austrian Bishops' Conference, providing authoritative information, official statements, and publications related to the Catholic Church in Austria. It targets church members, interested citizens, and stakeholders seeking reliable religious and organizational content. The site is well-positioned as a governmental religious entity with a medium organizational size and a clear mission to inform and communicate church positions. Technically, the site is built on the siteswift CMS platform, leveraging modern JavaScript libraries such as jQuery, Swiper.js, and Klaro for cookie consent management. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Security-wise, HTTPS is enforced, CSRF protections are in place for forms, and a comprehensive cookie consent mechanism is implemented. However, explicit security headers and a published security policy or incident response contacts are absent, representing areas for improvement. Overall, the website exhibits a strong security posture with no visible vulnerabilities or suspicious content. Privacy compliance is well addressed through GDPR-aligned policies and consent mechanisms. The business credibility is high, supported by consistent branding, official domain registration, and clear contact information. The site is safe for general audiences with no adult or questionable content. Strategically, the site would benefit from publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance trust and compliance. Enhancing explicit security headers and accessibility features would further strengthen its technical and security posture.

K

Katholische Aktion Österreich

kaoe.at

59

The Katholische Aktion Österreich (KAÖ) is the official lay organization of the Catholic Church in Austria, focusing on social advocacy, education, and community engagement aligned with Christian values. It holds a prominent position as the largest Catholic lay organization in Austria, serving a broad audience including church members and the general public interested in Catholic social issues. The website provides comprehensive information, news, dossiers, and contact points for various dioceses and affiliated movements. Technically, the site uses a modern CMS (siteswift), jQuery, and other contemporary web technologies, with good mobile optimization and SEO practices. Security-wise, the site enforces HTTPS, uses security headers, and implements cookie consent mechanisms, reflecting a mature security posture. No critical vulnerabilities or blocking mechanisms were detected, and privacy compliance is well addressed with a detailed privacy policy and cookie consent. Overall, the site is professional, trustworthy, and safe for general audiences.

B

Braintrust GmbH

braintrust.studio

71

Braintrust GmbH operates a professional video streaming and production service based in Vienna, Austria. The company offers a comprehensive portfolio including live streaming, hybrid events, webinars, and studio rental services. Their market position is supported by long-term client relationships and a strong reputation for quality and professionalism. The website reflects a mature digital presence with modern technologies such as WordPress CMS, Matomo analytics for privacy-conscious tracking, and Google reCAPTCHA for security. Privacy compliance is well addressed with a detailed cookie consent mechanism and a comprehensive privacy policy in German. Security posture is good with HTTPS enforced and secure form handling, though some security headers could be improved. Overall, the website is professional, trustworthy, and well-optimized for SEO and user experience.

K

Katholische ArbeitnehmerInnen Bewegung Österreich

kaboe.at

60

The website www.kaboe.at represents the Katholische ArbeitnehmerInnen Bewegung Österreich, a well-established Austrian non-profit organization focused on social advocacy, labor rights, and Catholic community engagement. The site provides rich content including news, campaigns, publications, and event information, targeting workers and socially conscious audiences in Austria. Technically, the site is built on the siteswift CMS platform, leveraging modern JavaScript libraries such as jQuery, Swiper, and Magnific Popup, with a cookie consent mechanism implemented via Klaro. Security posture is good with HTTPS enforced and CSRF protections in place, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent. WHOIS data confirms the legitimacy and transparency of the organization, matching the website's claims. Overall, the site is professional, trustworthy, and well-maintained.

P

PFPRO IT Services

pfproit.de

60

PFPRO IT Services is a small German IT company based in Saarbrücken, specializing in professional web development, IT consulting, and support services. Founded in 2008, the company offers a range of services including consulting, custom web application development, IT support, remote maintenance, and emergency IT services. They also provide a cloud-based industry solution called PFPRO Cloud R6 targeting sectors like gastronomy and entertainment. The website is well-structured, professionally designed, and targets both businesses and private users in the local region. The company maintains an active presence on LinkedIn, Xing, and GitHub, enhancing its professional credibility. Technically, the website employs a modern technology stack including Bootstrap, FontAwesome, jQuery, Owl Carousel, and Matomo for analytics, combined with Usercentrics for GDPR-compliant cookie consent management. The site is mobile-optimized and uses HTTPS with good SSL configuration. However, explicit security headers are not detected, and no dedicated security policy or incident response information is provided. The website demonstrates good privacy compliance and moderate user tracking through Matomo. From a security perspective, the site shows a solid baseline with HTTPS and consent management but lacks advanced security headers and documented incident response processes. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns well with the website's business claims, showing consistent registration information and domain age appropriate for the company's founding date. Overall, PFPRO IT Services presents a trustworthy and professional online presence with good technical implementation and privacy compliance. Strategic improvements could include enhancing security headers, publishing a security policy, and providing incident response contacts to further strengthen trust and security posture.

K

Katholische Aktion der Erzdiözese Wien

ka-wien.at

60

Katholische Aktion der Erzdiözese Wien is a small non-profit Christian organization affiliated with the Archdiocese of Vienna. It focuses on societal and ecological engagement to foster a more just and peaceful world, targeting socially conscious Christians and community members in Austria. The website provides information on their activities, volunteer opportunities, spiritual programs, and newsletters to keep their audience engaged. Technically, the website is built on the siteswift-CMS platform, utilizing modern JavaScript libraries such as jQuery, Swiper, and Magnific Popup. It implements cookie consent management via Klaro and uses Google Analytics for visitor tracking. The site is mobile-optimized and accessible, though SEO optimization is basic. From a security perspective, the site enforces HTTPS and uses CSRF tokens in forms, but lacks advanced security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good with a clear privacy and cookie policy, including consent mechanisms. Overall, the website is professional, trustworthy, and well-maintained, with clear contact information and consistent branding. Strategic improvements could include enhanced security headers, publishing incident response contacts, and adding a vulnerability disclosure policy to strengthen security posture and trust.

K

Katholische Kirche Steiermark

graz-seckau.at

68

Katholische Kirche Steiermark operates as the official Catholic Diocese of Graz-Seckau, Austria, providing religious, educational, and community services. The website serves as a comprehensive portal for diocesan news, parish information, faith education, and community engagement. It holds a strong regional position as a trusted religious authority with a history dating back to 1218. Technically, the site is built on the siteswift-CMS platform, leveraging modern JavaScript libraries such as jQuery and Swiper.js, and integrates Google Maps and Matomo analytics. The site is mobile-optimized and accessible, with a clear navigation structure and professional design. Security posture is solid with HTTPS, security headers, and CSRF protections, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is well managed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is trustworthy, professional, and well-maintained, serving its target audience effectively.

K

Katholische Kirche Vorarlberg / Diözese Feldkirch

kath-kirche-vorarlberg.at

64

Katholische Kirche Vorarlberg / Diözese Feldkirch operates as a regional Catholic Church institution in Austria, providing religious services, community engagement, cultural heritage preservation, and educational programs. The website serves as a comprehensive portal for parishioners and the general public interested in church activities and spiritual resources. The organization positions itself as a trusted non-profit entity with a strong regional presence in Vorarlberg. Technically, the website is built on the siteswift CMS platform, utilizing modern JavaScript libraries such as jQuery, Photoswipe, and Swiper for enhanced user experience. The site demonstrates good mobile optimization and SEO practices, although some accessibility features could be improved. Security posture is solid with HTTPS enforced, CSRF protection in forms, and a GDPR-compliant cookie consent mechanism via Klaro. However, additional security headers and published security policies would strengthen the security framework. Overall, the website is professional, trustworthy, and well-aligned with its mission, though contact information and incident response details are not explicitly visible in the provided content.

I

ICM

icm.ch

48

ICM AG is an established Swiss company specializing in organizing international congresses focused on circular economy, particularly in vehicle, electronics, and battery recycling sectors. The company positions itself as a leader in this niche, providing a platform for industry experts and decision makers to network and share knowledge. The website reflects a professional and consistent brand image with good content quality and multilingual support. Technically, the site is built on WordPress with modern plugins and optimization tools, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS and basic security practices, though there is room for improvement in security headers and explicit security policies. Privacy compliance is partially addressed with cookie consent but lacks a dedicated privacy policy page. Overall, the site is trustworthy and well-maintained, supporting the company's business model effectively.

S

Sednove Inc.

extenso.live

60

Extenso.live is a technology SaaS platform developed by Sednove Inc., offering a unique no-code and low-code platform for website and application creation. The platform targets webmasters, developers, and designers seeking to build multilingual and high-performance sites without deep coding knowledge. The site demonstrates a professional market position with over 2500 sites created using Extenso, trusted by notable companies such as Bombardier and CN. Technically, the website employs a modern tech stack including jQuery, Bootstrap, RequireJS, and Google Analytics, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and secure forms, though lacking explicit security headers and privacy policies. The WHOIS data is privacy protected, common for tech companies, and no suspicious patterns were detected. Overall, the site is safe, professional, and credible but would benefit from enhanced privacy compliance and security best practices.

S

Studierendenwerk Vorderpfalz

stw-vp.de

46

Studierendenwerk Vorderpfalz is a regional non-profit organization providing social support services to students across multiple universities in the Vorderpfalz region of Germany. Their services include meals, student housing, counseling, nursery, cultural funding, financial aids, and international affairs support. The website is professionally designed, mobile-optimized, and provides detailed information about their offerings, including meal menus with allergen information and job postings. Technically, the site uses a modern CMS (platoCMS) and popular JavaScript libraries, hosted on domaincontrol.com nameservers. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and GDPR-aligned cookie consent. No contact emails or phone numbers were found in the provided content, which could be improved for better user support. Overall, the site is trustworthy, safe, and well-maintained.

K

Katholische Kirche in Oberösterreich, Diözese Linz

gruessgott.at

62

The website www.gruessgott.at serves as the online presence for the GRÜSS GOTT! magazine, a publication affiliated with the Catholic Church in Upper Austria (Diözese Linz). It provides religious, cultural, and social content targeted at the general public interested in faith and church-related topics. The site offers access to current and past magazine issues, podcasts, and related articles. Technically, the site is built on the siteswift CMS platform, utilizing modern JavaScript libraries such as jQuery and Swiper.js, and integrates Piwik Pro for analytics. The site is mobile optimized and includes accessibility features. Security-wise, it employs CSRF tokens in forms and a GDPR-compliant cookie consent mechanism, but lacks explicit security headers and incident response information. The domain uses privacy protection for WHOIS data, which is justified for this non-profit entity. Overall, the site is professional, trustworthy, and safe for general audiences.

K

Katholische Kirche in Oberösterreich, Diözese Linz

meinbeitrag.at

62

meinbeitrag.at is a professionally maintained non-profit website affiliated with the Catholic Church in Upper Austria (Diözese Linz). It provides diverse content related to Christian faith, church contributions, and community engagement. The site targets individuals interested in Christianity and church activities in the region. Technically, it uses a modern CMS (siteswift), popular JavaScript libraries, and implements GDPR-compliant cookie consent mechanisms. Security posture is moderate with room for improvement in HTTP security headers and explicit incident response policies. The website is fully accessible without WAF or blocking mechanisms, and content is safe for general audiences.

M

Medienreferat der Österreichischen Bischofskonferenz

katholisch.at

67

Katholisch.at is the official web portal of the Catholic Church in Austria, operated by the Medienreferat der Österreichischen Bischofskonferenz. It provides comprehensive news, information, and resources related to the Catholic Church's activities, liturgical calendar, and religious education. The website targets the Austrian Catholic community and the general public interested in church affairs. Technically, the site uses a modern CMS (siteswift-CMS) and popular JavaScript libraries such as jQuery and Swiper.js, ensuring a responsive and user-friendly experience. Privacy and security are well addressed with HTTPS, cookie consent management via Klaro, and use of security headers. However, explicit contact information and formal security policies are not prominently displayed. Overall, the site is professional, trustworthy, and well-maintained, serving as a key informational resource for its audience.

Ö

Österreichische Ordenskonferenz

ordensgemeinschaften.at

63

The website www.ordensgemeinschaften.at represents the Österreichische Ordenskonferenz, a non-profit organization serving as the central representative body for 191 religious orders in Austria. The site provides comprehensive information about these orders, their social, educational, and cultural activities, targeting the general public interested in religious and spiritual matters. The organization positions itself as a key advocate and information hub for religious communities in Austria. Technically, the website is built on the siteswift-CMS platform and employs a modern tech stack including jQuery, Swiper.js, and Matomo analytics. It features a responsive design optimized for mobile devices and includes a robust cookie consent mechanism via Klaro. The site demonstrates good SEO practices and accessibility features, although some improvements could be made. From a security perspective, the site enforces HTTPS, implements CSRF protection on forms, and includes standard security headers. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and GDPR-aligned consent management. However, the site lacks explicit security policies, incident response information, and terms of service. Overall, the website is trustworthy, professionally maintained, and aligned with its non-profit mission. Strategic recommendations include publishing security and incident response policies, enhancing accessibility, and providing clearer direct contact information to improve user trust and compliance.

B

BEZIEHUNGLEBEN.AT

beziehungleben.at

64

BEZIEHUNGLEBEN.AT is a regional non-profit organization based in Upper Austria focused on providing relationship counseling, marriage preparation, family support, and educational seminars. The website serves as an information and service portal targeting couples, families, and individuals seeking support in these areas. The organization appears well-established with a professional online presence and clear service offerings. Technically, the website is built on the siteswift-CMS platform and uses modern JavaScript libraries such as jQuery and Magnific Popup. It implements HTTPS with good security practices including CSRF tokens and cookie consent management via Klaro. However, some security headers could be improved. Privacy compliance is strong, with clear links to comprehensive privacy and cookie policies hosted on the diocesan domain. No terms of service or explicit security policies were found. Overall, the site is trustworthy, safe, and professionally maintained.

A

ARGE AVM ÖSTERREICH (Arbeitgemeinschaft der diözesanen Medienstellen Österreichs)

medienverleih.at

58

The website medienverleih.at serves as a media platform and service facility for the dioceses of Austria, providing audiovisual media and educational content primarily focused on church-related topics for children and the general public. It acts as a central hub linking various diocesan media centers and offers resources such as explanations of religious holidays and media lending services. The site targets educational and church communities within Austria, positioning itself as a non-profit media service provider within the religious sector. Technically, the website is built on the siteswift-CMS platform and employs a modern tech stack including jQuery, Swiper.js for sliders, and a comprehensive cookie consent management system (Klaro). The site demonstrates moderate performance and good mobile optimization, with accessibility features and basic SEO practices in place. Security-wise, the site uses CSRF tokens in forms and cookie consent mechanisms but lacks visible advanced security headers and explicit security policies. From a security posture perspective, the site shows awareness of privacy compliance with GDPR-aligned cookie consent and a linked privacy policy. However, no explicit incident response or vulnerability disclosure policies are found. The absence of contact emails and phone numbers on the main page limits direct communication channels. The site is free from adult or questionable content, making it safe for general audiences. Overall, medienverleih.at is a professionally maintained, moderately secure, and privacy-conscious website serving a niche non-profit media service role within the Austrian diocesan community. Strategic improvements in security headers, explicit security policies, and enhanced contact information could further strengthen its trustworthiness and compliance.

D

Diözese Linz

spirituelle-wegbegleiter.at

64

The website represents the Spirituelle Wegbegleiter:innen initiative under the Diözese Linz, a religious non-profit organization in Austria. It offers spiritual guidance, training courses, and community events focused on meditation, fasting, pilgrimage, and grief counseling. The site is well-positioned regionally as a trusted spiritual resource with a clear target audience of individuals seeking spiritual support and education. The business model is non-profit and community-oriented, supported by the Catholic Church in Upper Austria. Technically, the website uses a modern CMS (siteswift), with a tech stack including jQuery, Swiper.js, and a consent management platform (Klaro). It integrates Google Analytics and Piwik Pro for analytics with privacy-conscious configurations such as IP anonymization and opt-in consent. The site is mobile-optimized, accessible, and SEO-friendly, with good performance characteristics. Security posture is solid with HTTPS enforced, CSRF protection on forms, and a comprehensive cookie consent mechanism. However, some security headers are missing and no explicit security or incident response policies are published. No vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professional, and compliant with GDPR. It effectively serves its community with relevant content and maintains a good balance between usability, privacy, and security.

K

Katholische Jugend Österreich

72h.at

59

72 Stunden ohne Kompromiss is a well-established non-profit youth social action initiative in Austria, organized by Katholische Jugend Österreich in partnership with youngCaritas and Hitradio Ö3. The website serves as an information and registration portal for youth groups participating in social projects, supported by live streams and social media engagement. The site is built on the siteswift CMS platform and uses modern JavaScript libraries to enhance user experience. While the site is professionally designed and content-rich, it lacks explicit privacy and terms of service pages, which are important for compliance and user trust. Security measures such as CSRF tokens and cookie consent management are implemented, but security headers are not detected, indicating room for improvement in security posture. WHOIS data is unavailable due to quota restrictions, limiting domain legitimacy verification. Overall, the website is trustworthy, safe, and serves its community-focused mission effectively.

S

Sednove Inc.

sednove.com

61

Sednove Inc. is a Canadian technology company specializing in custom digital solutions for businesses, including software, dashboards, system interconnection, mobile applications, and secure hosting. The company targets businesses needing rapid adaptation and digital transformation, positioning itself as a niche provider with a strong focus on tailored solutions. The website reflects a mature and professional business with a consistent brand and reputable client base. Technically, the site uses modern JavaScript libraries and frameworks, a CMS named Extenso, and is hosted with a registrar Tucows Domains Inc. The site is mobile optimized and SEO friendly but lacks some advanced security headers and privacy compliance features. Security posture is good with HTTPS and domain transfer protections but could be improved by enabling DNSSEC and adding explicit security policies. Overall, the website is trustworthy and professional, though it lacks explicit privacy and cookie policies, which impacts compliance scores.

S

Sednove

where2watch.ca

57

Where2watch.ca is a Canadian media platform focused on providing users with comprehensive movie search capabilities, including information about movies, actresses, directors, and filmmakers. The platform offers listings for new movies in theaters, streaming services, TV schedules, and rankings across various streaming platforms. The website targets general audiences interested in movie discovery and viewing options within Canada. Technically, the site employs a modern tech stack including jQuery, Google Tag Manager, and Google Maps API, hosted by Wild West Domains Canada, Inc. The site is mobile optimized and SEO friendly, though some accessibility features are basic. Security posture is moderate with HTTPS enabled but lacks advanced security headers and DNSSEC. Privacy compliance is weak due to absence of privacy and cookie policies. Business credibility is moderate with consistent WHOIS data and a clear business model. Overall, the site is functional and professional but would benefit from enhanced privacy and security practices.

I

Investitionsbank des Landes Brandenburg (ILB)

ilb.de

61

The Investitionsbank des Landes Brandenburg (ILB) is a regional development bank focused on promoting and financing public and private investment projects within Brandenburg, Germany. The institution offers a broad portfolio of funding programs across sectors such as economy, infrastructure, labor, and housing. The website reflects a well-established public entity with a clear mission to support regional development through financial products and advisory services. The target audience includes private companies, public clients, individuals, associations, universities, and chambers, indicating a comprehensive service scope. Technically, the website employs a modern technology stack including Bootstrap, jQuery, and various JavaScript libraries to deliver a responsive and accessible user experience. The presence of a consent management platform (Klaro) and integration with Google Analytics demonstrates a mature digital infrastructure with privacy compliance in mind. The site is mobile-optimized and features clear navigation and professional design, supporting excellent user experience. From a security perspective, the site enforces HTTPS and uses bot protection (Friendly Captcha) and session management via Apache Tomcat. While no explicit security headers were detected in the HTML content, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant. However, the site could improve by publishing a security.txt file and providing explicit incident response contacts. Overall, the ILB website is a trustworthy, professional platform representing a government-affiliated financial institution. It balances user experience, privacy, and security effectively, supporting its role as a key regional development bank. Strategic recommendations include enhancing HTTP security headers, formalizing vulnerability disclosure processes, and increasing transparency on data retention policies to further strengthen security and compliance.

P

Popakademie Baden-Württemberg

popakademie.de

63

Popakademie Baden-Württemberg is a specialized higher education institution in Germany focusing on music business, creative industries, and popular music. It offers unique academic programs and serves as a competence center for regional, national, and international music and cultural projects. The institution maintains a strong digital presence with comprehensive content, clear navigation, and consistent branding. Technically, the website uses modern JavaScript libraries and a proprietary CMS, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and cookie consent mechanisms, though lacking explicit security policy and incident response information. Overall, the website reflects a professional and trustworthy educational institution with strong compliance to privacy regulations.

W

WeCanHelp gGmbH

bildungsspender.de

42

Bildungsspender.de is a well-established German charity shopping platform operated by WeCanHelp gGmbH. It enables users to support thousands of charitable institutions by shopping at a large network of partner shops without additional cost. The platform also offers a fee-free Mastercard and direct donation options, positioning itself as a leading charity e-commerce facilitator in Germany. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content in German. Technically, it uses a modern stack including Bootstrap 4, jQuery, and FontAwesome, hosted on kasserver.com. Security posture is adequate with HTTPS enabled and obfuscated contact emails, but lacks explicit security headers and a cookie consent mechanism. WHOIS data is consistent and trustworthy, supporting the legitimacy of the domain and business. Overall, the site demonstrates good business credibility and technical maturity with room for security and privacy improvements.

O

Ozkaya Engineering and Consultancy Ltd (t/a Gourmetica)

gourmetica.co.uk

51

Gourmetica is a UK-based growth marketing agency specializing in the hospitality sector, offering a comprehensive suite of services including branding, SEO, website design, social media management, advertising, and photography. The company is a brand of Ozkaya Engineering and Consultancy Ltd, founded in 2023, and positions itself as a niche player with strong industry knowledge and proven client case studies. Technically, the website is built on the HubSpot CMS platform, leveraging modern JavaScript libraries and Google Analytics for tracking, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks some security headers and formal security policies. Privacy compliance is partial, with a cookie consent mechanism but missing privacy and terms of service pages. Overall, the website presents a professional and trustworthy image with room for improvement in compliance and security transparency.

E

European Medical Journal

emjreviews.com

74

The European Medical Journal (EMJ) operates a professional, open-access medical publishing platform dedicated to delivering insights and advancements across multiple therapeutic areas. The website targets healthcare professionals and researchers, offering journals, podcasts, webinars, and medical calculators. The platform is built on WordPress with a modern tech stack including jQuery, Bootstrap, and various analytics and marketing tools. The site demonstrates good design quality, mobile optimization, and SEO practices. Security posture is solid with HTTPS and reputable third-party scripts, though explicit security headers and privacy policies are lacking. WHOIS data is missing or unavailable, which raises concerns about domain legitimacy despite the professional appearance and content. Overall, the site is functional and trustworthy from a content and technical perspective but would benefit from improved transparency in domain registration and privacy compliance.

C

Carl von Ossietzky Universität Oldenburg

uni-oldenburg.de

62

Carl von Ossietzky Universität Oldenburg is a well-established public university in Germany, founded in 1973, offering a broad range of academic programs and research activities. The website serves as an information portal for students, researchers, staff, and international visitors, providing access to study programs, research news, events, and administrative resources. The university emphasizes research excellence, international cooperation, and lifelong learning. Technically, the site is built on TYPO3 CMS with modern frontend libraries and is served securely over HTTPS. The site is well-structured, mobile-optimized, and accessible, with good SEO practices. However, explicit privacy and cookie policies are not clearly presented, and no incident response or vulnerability disclosure information is available, which are areas for improvement. Overall, the site reflects a professional and trustworthy academic institution with a solid digital presence.

Campus Halensis serves as the official news and information portal for Martin-Luther-Universität Halle-Wittenberg, providing timely updates on academic events, research, and campus life primarily targeting students, faculty, and researchers. The website is well-branded and consistent with the university's identity, offering content in German with an English language option. It functions as a communication channel to keep the university community informed and engaged. Technically, the site uses a moderate technology stack including jQuery, Magnific Popup, Slick Carousel, and Piwik/Matomo for analytics, hosted likely on university infrastructure. The site is mobile-optimized with good navigation and content structure, though accessibility features are basic. Performance is moderate, and SEO practices are adequately implemented. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is good, with a clear privacy policy and cookie banner. The WHOIS data aligns well with the university's domain infrastructure, indicating legitimacy and trustworthiness. Overall, the website is a professional, trustworthy academic portal with good content quality and privacy practices. However, improvements could be made in security header implementation, incident response transparency, and accessibility compliance to enhance the security posture and user experience.

C

Carl von Ossietzky Universität Oldenburg

uol.de

62

Carl von Ossietzky Universität Oldenburg is a well-established public university in Germany, founded in 1973, offering a broad range of academic programs and research activities. The website serves students, researchers, academic staff, and the general public with comprehensive information about study programs, research, campus life, and international cooperation. The university positions itself as a research-oriented institution with a strong regional and international presence.

K

Kompetenzzentrum Technik-Diversity-Chancengleichheit e. V.

kompetenzz.de

50

Kompetenzzentrum Technik-Diversity-Chancengleichheit e. V. is Germany's largest network dedicated to technology, diversity, and equal opportunity. The organization operates as a non-profit entity focusing on educational activities, networking, and advocacy to promote equal opportunities in technical and social fields. Their website reflects a mature and professional presence with a comprehensive range of services including data tools, workshops, and seminars aimed at various stakeholders such as educational institutions and policymakers. Technically, the website employs a modern tech stack including Bootstrap, jQuery, Matomo analytics, and Google reCAPTCHA, ensuring a secure and user-friendly experience. The site is mobile-optimized, accessible, and SEO-friendly, with a custom CMS indicated. Hosting and DNS are managed via GoDaddy's DomainControl, a reputable provider. From a security perspective, the site enforces HTTPS, integrates reCAPTCHA on forms, and manages cookie consent effectively. However, it lacks explicit security policies and incident response information publicly available, and security headers are not detected, which could be improved. No vulnerabilities or suspicious activities were found. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations such as GDPR. Strategic recommendations include publishing a security policy, enhancing security headers, and adding a vulnerability disclosure mechanism to further strengthen the security posture.

D

Datamatic Sistemi & Servizi S.p.A.

sistemieservizi.net

48

Datamatic Sistemi & Servizi S.p.A. is an Italian company specializing in healthcare IT solutions, cybersecurity and digital forensics, IT storage, and marketing & communication services. The company targets healthcare institutions, law enforcement, public and private organizations, offering a comprehensive portfolio of technology-driven services. Their market position is that of a versatile and professional group with vertical expertise in multiple sectors. The website reflects a medium-sized enterprise with consistent branding and professional content. Technically, the website uses a modern tech stack including jQuery, Bootstrap, Flexslider, and Google Tag Manager for analytics. It is built on Vida CMS 3.0 and shows good mobile optimization and SEO practices. Performance is moderate, with room for improvement in accessibility features. The site is fully accessible without any WAF or blocking mechanisms. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, indicating GDPR compliance. However, it lacks visible security headers, published security policies, incident response contacts, and vulnerability disclosure information. The absence of WHOIS data raises concerns about domain registration transparency, which impacts the overall trustworthiness assessment. Overall, the website is professional and trustworthy based on content and design, but the missing WHOIS data and limited security disclosures suggest areas for improvement. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and verifying domain registration details to improve legitimacy and trust.

Z

Z Sea Line

zsealine.com

63

Z Sea Line is a maritime transportation company specializing in the shipping of crude oil and energy products, operating since 2019 under the Zeren Group Holding Companies. The company positions itself as a reliable partner in global shipping with a focus on sustainable and cost-effective maritime logistics. Their website reflects a professional and business-oriented approach targeting industry professionals and businesses in the energy and transportation sectors. Technically, the website employs a modern frontend stack including jQuery, Bootstrap, and various UI libraries, hosted behind Cloudflare DNS. The site is mobile optimized with good navigation and design quality, though no CMS or advanced backend platform is detected. Performance is moderate with no evident broken elements. However, the site lacks advanced SEO and accessibility features. From a security perspective, the website uses HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers. There are no privacy or cookie policies, nor vulnerability disclosure mechanisms, indicating compliance and security maturity gaps. No analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security hardening, and transparency policies to improve trust and regulatory adherence.

Z

ZEREN Energy

zerenenergy.com

62

ZEREN Energy is a relatively new company founded in 2022, operating in the European energy trading sector with a focus on natural gas. The company offers a range of services including forward contracts, market access and capacity products, financial derivatives, and physical delivery of natural gas across multiple European countries. The website reflects a professional business presence with consistent branding and clear contact information, targeting energy market participants in Western, Central, and Southeastern Europe. Technically, the website uses a modern frontend stack including jQuery, Bootstrap, and various UI libraries, hosted behind Cloudflare DNS and CDN services. The site is mobile optimized and performs moderately well, though SEO and accessibility features are basic. No CMS or backend platform was detected from the provided data. From a security perspective, the site uses HTTPS with a good SSL configuration and has domain transfer protections enabled. However, it lacks important security headers and DNSSEC is not enabled. There are no visible privacy or cookie policies, nor any incident response or vulnerability disclosure information, which indicates gaps in compliance and security transparency. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security hardening, and transparency measures to improve trust and regulatory adherence.

M

MYZ Trading

myztrading.com

63

MYZ Trading is a newly established energy trading company founded in 2024, specializing in the global supply and trading of crude oil, petrochemical products, and investments. The company serves a diverse clientele including national oil companies, multinational corporations, and industrial firms, emphasizing sustainability and responsible business practices. The website reflects a professional and consistent brand image aligned with its parent company, Zeren Group Holding. Technically, the site employs a modern tech stack with popular JavaScript libraries and frameworks, hosted behind Cloudflare DNS, and uses HTTPS for secure communication. However, the absence of security headers and DNSSEC indicates room for improvement in security hardening. Privacy compliance is weak due to missing privacy and cookie policies, and no explicit contact information is provided, which may affect user trust and regulatory compliance. Overall, the website is functional, well-designed, and content-rich but requires enhancements in security and privacy transparency to strengthen its digital maturity and trustworthiness.

T

Turkticaret.net Yazilim Hizmetleri Sanayi ve Ticaret A.S.

myzcocharge.com

61

MYZ Co Charge is a Turkish-based service providing a mobile application platform to help electric vehicle owners locate nearby charging stations with real-time availability. The company targets EV drivers in Turkey, offering convenience through its app available on both the Apple App Store and Google Play. The business is newly established in late 2024, positioning itself in the growing energy and transportation sector focused on sustainable mobility solutions. Technically, the website uses modern frontend technologies such as Bootstrap, jQuery, and Swiper, hosted behind Cloudflare DNS services, ensuring decent performance and mobile responsiveness. However, DNSSEC is not enabled, and security headers are missing, indicating room for improvement in security hardening. The website is accessible without WAF or blocking challenges, and contact information including a corporate email and physical address is clearly provided, enhancing business credibility. Privacy and terms of service documents are present but cookie consent mechanisms are absent, which may affect GDPR compliance. Overall, the site demonstrates a good balance of content quality, technical implementation, and business credibility, scoring 74 out of 100 in AI evaluation.

Digitális Erőmű is a Hungarian educational and cultural institution focused on providing digital pedagogical resources and interactive exhibition spaces. It serves teachers, students, and the local community by offering modern educational tools such as the Digipédia system and hosting various exhibitions and events. The website reflects a regional cultural hub with a clear focus on education and community engagement. Technically, the site is built on WordPress and uses common front-end libraries like jQuery and Bootstrap, delivering a moderate performance with good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though it lacks advanced security headers and explicit incident response information. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

Nemzeti Filmtörténeti Élménypark is a Hungarian cultural institution dedicated to preserving and presenting the history of Hungarian film through interactive exhibitions, educational programs, and event services. The website serves as an information portal for visitors, schools, and event organizers, highlighting key attractions and services. It maintains a strong national cultural identity with affiliations to government and cultural bodies. Technically, the site is built on WordPress with common front-end libraries and includes standard tracking tools like Google Analytics and Facebook SDK. The site is mobile-optimized and provides basic accessibility features. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and explicit incident response information. Privacy compliance is addressed with clear policies and cookie banners. Overall, the site is professional, trustworthy, and well-suited for its cultural and educational mission.

O

Open Roberta Initiative

open-roberta.org

61

Open Roberta is an educational initiative under the Fraunhofer IAIS umbrella, focusing on teaching programming and robotics in a playful manner. The website serves as a portal for learners, educators, and makers interested in programming education. Technically, the site is built on WordPress with the Divi theme, leveraging common JavaScript libraries for UI enhancements. The site is well designed, mobile optimized, and provides clear navigation, although it lacks visible contact and privacy-related pages. Security posture is good with HTTPS enforced, but could be improved by adding security headers and formal policies. Overall, the site appears legitimate and professional, but would benefit from enhanced privacy compliance and security transparency.

C

CAF ACLI SRL - CENTRO ASSISTENZA FISCALE ACLI

mycaf.it

57

CAF ACLI SRL operates as a fiscal assistance center in Italy, providing a broad range of tax-related services including tax declarations, document management, appointment scheduling, and online assistance through its myCAF platform. The website targets individuals seeking convenient and comprehensive fiscal support, leveraging digital tools to enhance user experience. The company maintains a solid market position with a medium-sized operation and a consistent brand presence. Technically, the website employs a mature technology stack based on ASP.NET WebForms and popular JavaScript libraries, integrating Google Analytics and Cookiebot for analytics and compliance. The site is mobile-optimized with good navigation and content relevance. Security posture is adequate with HTTPS enforced and privacy-conscious analytics configurations, though it lacks explicit security policies and advanced security headers. Overall, the site is trustworthy, professional, and compliant with GDPR, with room for improvement in security transparency and incident response readiness.

C

Caf Acli

cafacli.it

10

CAF ACLI is an Italian fiscal assistance center providing consultancy and support services related to tax declarations, IMU, TARI, and other fiscal obligations. The website targets Italian taxpayers and individuals seeking professional fiscal assistance. It offers detailed information on tax deadlines and services, positioning itself as a trusted intermediary in the Italian fiscal services market. Technically, the website is built on ASP.NET with a modern JavaScript stack including jQuery and UI libraries, integrated with Google Analytics, Facebook Pixel, and Cookiebot for tracking and consent management. The site demonstrates good mobile optimization and SEO practices but lacks explicit privacy and terms of service pages. Security posture is adequate with HTTPS and cookie consent mechanisms, though additional security headers and policies could improve the overall security maturity. Overall, the website is professional, trustworthy, and compliant with basic privacy regulations, but could enhance transparency and security documentation.

S

SEA Corporate

milanairports.com

10

SEA Corporate operates the Milan Linate and Milan Malpensa airports, providing comprehensive airport management and passenger services. The company holds a significant market position as a major transportation hub in Italy, targeting general travelers and business clients. The website reflects a professional corporate presence with clear branding and consistent messaging focused on airport operations and sustainability. The digital infrastructure is built on Drupal CMS with modern web technologies, ensuring good performance and mobile optimization. Security measures include HTTPS, cookie consent management via Cookiebot, and integration with Google Tag Manager for controlled script deployment. However, some security headers and explicit incident response contacts are not evident in the provided data. Overall, the site demonstrates a mature digital presence with strong privacy compliance and user tracking transparency.

S

Saturnales

saturnales.ch

59

Saturnales is a well-established student association based in Geneva, Switzerland, with a history spanning over 120 years. The organization is composed of third-year students from medical, dental, and biomedical science faculties who organize annual events, including parties and social gatherings, targeting the student community and local attendees. Their business model revolves around event management, ticket sales, and merchandise offerings, positioning them as a key player in the local student event scene. The website reflects a consistent brand identity and provides essential contact information and social media links to engage their audience. Technically, the website is built using the Infomaniak Site Creator platform and leverages modern frontend technologies such as jQuery, Bootstrap, and animation libraries. Hosting is provided by Infomaniak, a reputable Swiss hosting provider. The site demonstrates moderate performance and good mobile optimization, though accessibility and SEO could be improved. The cookie consent mechanism is implemented, indicating some level of privacy compliance. From a security perspective, the site enforces HTTPS and disables right-click on images to protect content. However, it lacks important security headers and does not provide explicit security policies or incident response contacts. No privacy policy or terms of service pages were found, which may impact compliance and user trust. Overall, the security posture is moderate but could benefit from enhancements in headers, policies, and transparency. The overall risk assessment is low to moderate, with no signs of malicious content or blocking mechanisms. Strategic recommendations include implementing comprehensive privacy and security policies, adding security headers, improving accessibility, and enhancing transparency to build greater trust with users and comply with regulations.