Security Directory

SPIELWIESN is a well-established annual board and society games fair held in Augsburg, Germany, with a history spanning over 30 years. It targets families, game enthusiasts, and educational communities interested in board games, role-playing, and STEM activities. The website serves as an information hub for event dates, exhibitor details, ticketing, and news updates. Technically, the site is built on Drupal 8 with common JavaScript libraries and integrates Google Analytics for visitor tracking. The site is mobile-optimized and provides a good user experience with clear navigation and rich content. However, it lacks visible privacy and cookie policies, which impacts GDPR compliance. Security posture is moderate with HTTPS usage but missing security headers and no visible incident response or security policies. Overall, the domain and website appear legitimate and trustworthy, with consistent branding and active social media presence.

T

Thüringer Energie- und GreenTech-Agentur GmbH (ThEGA)

thega.de

11

Thüringer Energie- und GreenTech-Agentur GmbH (ThEGA) is a government-supported regional energy agency based in Thüringen, Germany. The organization focuses on providing free consulting and information services related to energy transition, climate protection, renewable energies, and sustainable mobility. Their target audience includes municipalities, businesses, and private citizens within Thüringen. The agency is co-financed by the Free State of Thüringen and the European Union (EFRE), positioning it as a key player in regional energy and climate initiatives. The website reflects a professional and comprehensive digital presence with strong branding and clear navigation.

L

LANCIER Monitoring GmbH

lancier-monitoring.de

46

LANCIER Monitoring GmbH is a specialized provider of monitoring solutions for technical networks, focusing on sectors such as energy and telecommunications. Their offerings include advanced systems for fiber optic, copper cable, district heating pipe, and energy cable network monitoring, aimed at early fault detection and network reliability enhancement. The company maintains a medium-sized presence in Germany with international partnerships, notably with Skylark Energy Solutions in North America, and holds recognized certifications such as ISO 9001. The website reflects a professional and consistent brand image with good content quality and clear navigation.

P

PSI Products GmbH

psi-products.de

48

PSI Products GmbH is a specialized German company providing high-quality accessories for pipeline construction, civil engineering, and the supply industry. The company positions itself as a leading specialist provider in its niche, offering a broad range of products including sealing technology, pipe pulling accessories, corrosion protection, flange gaskets, and pipe cleaning solutions. Their business model is primarily B2B, targeting industrial clients in energy and infrastructure sectors. The website is professionally designed, multilingual (German and English), and includes an online shop for convenient ordering. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as jQuery and Slick Carousel for enhanced user experience. It integrates a consent management platform (Usercentrics) to comply with GDPR requirements and uses Google Analytics for traffic analysis with user consent. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and employs a consent mechanism for cookies and tracking. However, it lacks explicit security headers and a public vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is structured and consistent with the business, though the use of third-party name servers suggests external DNS management. Overall, the security posture is solid but could be improved with additional headers and incident response information. The overall risk assessment is low, with the website showing strong business credibility, compliance with privacy regulations, and a professional online presence. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing explicit incident response contacts to further strengthen trust and security culture.

SONNTAG | Sonntag & Partner Partnerschaftsgesellschaft mbB is a large, multidisciplinary German economic law firm offering services in auditing, tax consulting, and legal advice. With over 500 experts and offices in Augsburg, Munich, Ulm, and Nuremberg, the firm targets medium-sized enterprises and corporate clients, providing integrated solutions across finance, law, and digital tax advisory. The website reflects a mature digital presence built on WordPress with modern SEO and cookie consent mechanisms, indicating a good level of digital maturity. Security posture is solid with HTTPS and cookie consent, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the firm presents a professional and trustworthy image with comprehensive service offerings and a strong market position in Germany.

B

BioCon Valley® GmbH

bioconvalley.org

48

BioCon Valley® GmbH operates as a regional cluster and network organization focused on the life sciences and healthcare sector in Mecklenburg-Vorpommern, Germany. The company supports industry stakeholders through network management, project initiation, internationalization, and public relations, positioning itself as a key player in the regional healthcare economy. The website reflects a professional and well-structured digital presence, leveraging TYPO3 CMS and modern frontend technologies to deliver content effectively. The site is GDPR compliant with a comprehensive privacy policy and cookie consent mechanism, enhancing user trust and regulatory adherence. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. WHOIS data is unavailable, which slightly impacts trust but the overall business credibility remains high due to certifications and consistent branding.

I

Initiative Energieeffizienz-Netzwerke

effizienznetzwerke.org

66

The Initiative Energieeffizienz-Netzwerke website represents a German government-backed program aimed at promoting energy efficiency through collaborative networks among companies. The initiative supports businesses in reducing energy consumption and costs by facilitating knowledge exchange and providing resources. The website is well-positioned as a trusted source in the energy sector within Germany, targeting companies interested in sustainable energy practices. Technically, the site is built on WordPress 6.8.2, leveraging modern libraries such as jQuery, Bootstrap, and Cookiebot for cookie consent management. The infrastructure supports good mobile optimization, accessibility, and SEO best practices, reflecting a mature digital presence. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and includes standard security headers, demonstrating a solid security posture. The integration of Cookiebot ensures GDPR compliance and transparent cookie management. However, the absence of explicit incident response contacts and security.txt files suggests areas for improvement in vulnerability disclosure and incident handling. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no signs of malicious activity or content blocking. Strategic recommendations include implementing a security.txt file, publishing incident response contacts, and continuous monitoring of third-party scripts to maintain security and compliance.

W

WTSH Wirtschaftsförderung und Technologietransfer Schleswig-Holstein GmbH

partner-sh.de

58

The website partner-sh.de represents the Partnerprogramm of WTSH Wirtschaftsförderung und Technologietransfer Schleswig-Holstein GmbH, a regional economic development organization focused on promoting Schleswig-Holstein as a prime location for business, work, and living. The platform serves as a network hub for over 600 partner companies and institutions, facilitating collaboration, marketing, and talent acquisition. The site offers job and training portals, partner showcases, and event information, targeting businesses and prospective employees in the region. Technically, the website is built on the gradwerk CMS 6 platform, utilizing modern JavaScript libraries such as jQuery, Slick Carousel, and Tiny Slider for interactive UI components. The site is mobile-optimized, accessible, and SEO-friendly, with a comprehensive cookie consent mechanism and privacy policy compliant with GDPR. Hosting details are consistent with professional standards, and no blocking or WAF interference was detected. From a security perspective, HTTPS is enforced, and cookie consent is properly managed. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly implemented, and no public security policy or incident response information is provided. No vulnerabilities or exposed sensitive data were found in the HTML content. Overall, the website demonstrates a strong business credibility and digital maturity with excellent content quality and user experience. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to further improve trust and compliance.

N

NEUWOBA - Neubrandenburger Wohnungsbaugenossenschaft eG

neuwoba.de

48

NEUWOBA - Neubrandenburger Wohnungsbaugenossenschaft eG is a large housing cooperative based in Neubrandenburg, Germany, providing modern, affordable, and community-oriented housing solutions. The organization operates multiple subsidiaries offering social care services, property management, and new construction projects. Their market position is strong within Mecklenburg-Vorpommern, supported by over 9,000 apartments and active community engagement. The website reflects a professional and comprehensive digital presence with clear navigation and relevant content targeting local residents and cooperative members. Technically, the website is built on TYPO3 CMS with modern front-end frameworks like Bootstrap and jQuery. It incorporates various UI libraries and ensures mobile responsiveness and good SEO practices. Cookie consent and privacy policies are implemented in compliance with GDPR. Analytics usage is moderate, primarily via Google Analytics, with user tracking controlled by consent mechanisms. From a security perspective, the site enforces HTTPS and uses secure forms but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. The domain registration data aligns well with the business claims, indicating a trustworthy and legitimate online presence. Overall, NEUWOBA's website demonstrates a mature digital infrastructure suitable for its business needs, with room for improvement in security policy transparency and accessibility features. The risk profile is low, and the site is safe for general audiences.

B

BNW Bundesverband Nachhaltige Wirtschaft e.V.

bnw-bundesverband.de

61

BNW Bundesverband Nachhaltige Wirtschaft e.V. is a well-established German non-profit association founded in 1992, focused on promoting sustainable and socially responsible economic practices. It serves as a network and political voice for progressive companies committed to ecological and social transformation. The website is professionally designed using Drupal 10, optimized for mobile, and includes rich content such as member testimonials, news, and event information. The technical infrastructure is modern and hosted by Hetzner, with good performance and accessibility standards. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers and explicit incident response policies are not visible. The domain registration is consistent with the organization's history and location, indicating legitimacy and trustworthiness.

R

ROX doo

rox.hr

10

ROX doo is a well-established regional leader in consumer goods distribution, operating since 1992 with a strong presence in Croatia, Bosnia and Herzegovina, Serbia, and Slovenia. The company offers comprehensive distribution and logistics services, including transport, warehousing, and a B2B web shop, serving over 13,000 points of sale. Their market position is solidified by decades of experience and a broad supplier network. Technically, the website is built on a modern WordPress platform with up-to-date technologies such as jQuery, Bootstrap grid, and SEO optimization via Yoast. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Analytics and advertising tools like Google Analytics and Google Tag Manager are used with a cookie consent mechanism ensuring privacy compliance. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks visible security headers in the HTML content. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data confirms domain legitimacy and consistency with the business claims, supporting trustworthiness. Overall, ROX doo's digital presence reflects a mature, professional business with good technical and privacy practices. Strategic improvements in security headers and incident response transparency could further enhance their security posture and trust.

J

Jamnica plus d.o.o.

jamnica.hr

10

Jamnica plus d.o.o. operates a professional website focused on promoting its natural mineral water and beverage products primarily targeting Croatian consumers. The company maintains a consistent brand presence with product information, recipes, and news updates. The website leverages common web technologies such as jQuery, Slick Carousel, and SVG icons, providing a good user experience with mobile optimization and clear navigation. Privacy and cookie policies are implemented with GDPR compliance, reflecting a mature approach to user data protection. However, the site lacks explicit security policies and uses an outdated jQuery version, which may pose security risks. No blocking or WAF mechanisms interfere with content accessibility, and social media integration is active, enhancing brand engagement.

G

Groupama osiguranje d.d.

groupama.hr

56

Groupama osiguranje d.d. is a Croatian insurance company operating as part of the larger French Groupama Group. The company offers a broad range of insurance products including life, motor vehicle, health, and property insurance, targeting both individual and corporate clients in Croatia. The website reflects a professional and consistent brand image aligned with its parent company. Technically, the site uses a combination of established front-end frameworks and libraries such as Bootstrap, jQuery, and Google Analytics for tracking, with a moderate performance profile and good mobile optimization. Security-wise, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security policies. Overall, the domain registration and WHOIS data support the legitimacy of the business. The site is safe for general audiences and does not contain any adult or questionable content.

K

Kazalište Trešnja

kazaliste-tresnja.hr

43

Kazalište Trešnja is a well-established theatre company based in Zagreb, Croatia, with a domain registered since 1999. The website serves as a comprehensive platform for theatrical performances, ticket sales, schedules, and ensemble information, targeting the general public interested in cultural events. The business operates as a small cultural institution with a consistent brand presence and clear contact information. Technically, the site is built on WordPress using modern libraries such as jQuery, Bootstrap, and Font Awesome, with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and GDPR compliance evident through cookie consent mechanisms and privacy policies, although security headers are lacking. Overall, the site is professional, trustworthy, and safe for general audiences.

Z

Zagrebačka filharmonija

zgf.hr

48

Zagrebačka filharmonija is a well-established Croatian cultural institution specializing in classical music performances and orchestral concerts. With a domain age dating back to 2003 and registration through a reputable Croatian registrar (CARNET), the organization demonstrates a stable and credible presence in the cultural sector. The website serves as a comprehensive portal for concert schedules, ticket sales, news, and educational projects, targeting classical music enthusiasts and the general public in Croatia. The institution maintains active social media channels and partnerships with media outlets and ticketing platforms, enhancing its outreach and engagement.

D

dodenhof

dodenhof.de

62

dodenhof is a prominent retail and e-commerce business based in Germany, offering a wide range of fashion, lifestyle, furniture, and electronics products. Positioned as a leading shopping destination in Northern Germany, it provides customers with a comprehensive online shopping experience supported by a professional website built on the Magento platform. The company leverages modern web technologies and integrates marketing and tracking tools such as Google Tag Manager, Emarsys, and Trustpilot to enhance customer engagement and analytics. Technically, the website demonstrates a mature digital infrastructure with responsive design, good SEO practices, and a robust technology stack centered around Magento and various JavaScript libraries. Hosting is managed via DomainControl DNS services, and the site enforces HTTPS, ensuring secure communications. Cookie consent mechanisms are implemented, reflecting awareness of GDPR compliance requirements, although explicit privacy and terms of service pages were not detected in the provided content. From a security perspective, the site shows good practices such as HTTPS usage and secure script loading, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious patterns were detected, indicating a stable security posture. The domain WHOIS data is consistent with an active and legitimate registration, though registrant details are minimal. Overall, dodenhof presents a professional, trustworthy, and secure online presence suitable for its retail business model. Strategic improvements could focus on enhancing privacy documentation, publishing security policies, and reinforcing security headers to further strengthen compliance and trust.

H

Hamilton House Meeting Rooms

hamilton-house.org.uk

44

Hamilton House Meeting Rooms operates as a central London venue specializing in meeting and training room rentals for corporate and private events. The business leverages its strategic location near major transport hubs such as Kings Cross, St. Pancras, and Euston stations to attract clients from across the UK. Their offerings include eleven meeting rooms and a large conference hall, complemented by catering services through a partnership with Graysons. The website reflects a professional and well-maintained digital presence, built on WordPress with modern technologies like Bootstrap and FontAwesome, ensuring good user experience and mobile responsiveness. Security posture is adequate with HTTPS enabled, though improvements are recommended in security headers and privacy compliance mechanisms. The absence of WHOIS data for the exact domain is due to it being a subdomain, but the website content and business information align with a legitimate and established entity. Overall, the site demonstrates a solid business credibility and technical foundation suitable for its market segment.

E

eazee link

eazee-link.com

60

Eazee link is a French SaaS company specializing in digital QR code menus for restaurants and bars. The platform offers a free, easy-to-use service that enables hospitality businesses to create, update, and translate their menus digitally, enhancing customer experience and operational efficiency. With over 5700 establishments using their solution, eazee link holds a strong market position in France's hospitality sector. The website is professionally designed, mobile-optimized, and rich in content, targeting restaurant owners and managers seeking digital transformation solutions. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and marketing tools such as Google Tag Manager and HubSpot. Security posture is good with HTTPS enforced and domain protections in place, though DNSSEC is not enabled. Privacy and cookie policies are comprehensive and GDPR compliant, with user consent mechanisms implemented. Overall, the site demonstrates a mature digital presence with strong business credibility and trust indicators.

G

G. Umbreit GmbH & Co. KG

umbreit.de

53

G. Umbreit GmbH & Co. KG operates a professional and comprehensive website focused on book distribution, e-commerce solutions, and related services primarily targeting book retailers, publishers, and e-commerce businesses in Germany. The company offers a broad portfolio including logistics, digital content, and customer support, positioning itself as a key regional player in the retail and e-commerce sectors. The website is built on TYPO3 CMS with modern frontend technologies and integrates Matomo analytics for privacy-conscious user tracking. Security posture is solid with HTTPS and secure forms, though improvements are recommended in cookie consent and security policy transparency. WHOIS data confirms domain legitimacy and consistency with the business profile. Overall, the site demonstrates good technical maturity, business credibility, and user experience, making it a trustworthy platform for its target audience.

I

isla

weareisla.co.uk

64

isla is a UK-based sustainable events movement focused on accelerating the transition of the events industry towards sustainability. Founded in 2020, it operates as a membership-driven community offering training, consultancy, carbon measurement tools, and best practice frameworks. The website demonstrates a strong market position as a collaborative network for agencies, brands, suppliers, venues, and in-house teams seeking to implement sustainable event practices. Technically, the site is built on WordPress with integrations such as HubSpot for forms and Google Analytics for tracking, reflecting a mature digital infrastructure. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, well-branded, and compliant with GDPR, providing clear contact channels and comprehensive policies.

L

Landesmuseum Württemberg

landesmuseum-stuttgart.de

56

The Landesmuseum Württemberg website represents a well-established cultural institution focused on showcasing regional history and art in Stuttgart, Germany. The museum offers a variety of exhibitions, educational programs, and visitor services, positioning itself as a key cultural hub in the region. The website is professionally designed, content-rich, and targets a broad audience interested in history and culture. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies and integrating Matomo analytics for user insights. The site demonstrates good mobile optimization and accessibility features, enhancing user experience across devices. Security-wise, the website enforces HTTPS and implements a comprehensive cookie consent mechanism, aligning with GDPR requirements. However, it lacks publicly available security policies, incident response contacts, and vulnerability disclosure information, which are areas for improvement. Overall, the domain and website content are consistent and legitimate, with no signs of malicious activity or suspicious patterns. Strategic recommendations include publishing security and incident response policies, enhancing security headers, and formalizing vulnerability disclosure processes to strengthen trust and compliance.

E

EDF Renewables North America

edf-re.ca

40

EDF Renewables North America operates as a leading independent power producer and service provider specializing in renewable energy projects across Canada and the U.S. Their portfolio includes wind (onshore and offshore), solar photovoltaic, energy storage, and electric vehicle charging solutions. With over 200 employees and offices in major Canadian cities, they have developed nearly 2,000 MW of renewable energy capacity and continue to expand their pipeline. The company emphasizes environmental stewardship and community engagement, aligning with the broader EDF Group's sustainability goals. Technically, the website is built on WordPress with modern JavaScript libraries and SEO optimizations, providing a professional and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS data is a minor concern but is offset by strong branding and external trust signals. Overall, the company presents a credible and mature digital presence in the renewable energy sector.

A

Aulart

aulart.com

60

Aulart is an online education platform specializing in electronic music production, offering expert-led masterclasses in production, DJing, mixing, mastering, and beatmaking. The platform targets aspiring music professionals and enthusiasts seeking to enhance their skills through structured courses and memberships. The website demonstrates a solid digital presence with modern technologies such as WordPress, WooCommerce, and Elementor, supported by various marketing and analytics tools including Google Analytics, Facebook Pixel, and PostHog. Privacy and cookie policies are implemented with GDPR compliance, reflecting attention to data protection standards. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy. Security posture is strong with HTTPS and security headers, but lacks a publicly available security policy or incident response information.

A

ANOMALIA

anomalia.cz

54

ANOMALIA is a professional training provider specializing in animation, games, and VFX education since 2008. The company offers bootcamps and mentorship from industry veterans affiliated with renowned studios such as Pixar and Disney. The website is built on WordPress with modern web technologies and includes analytics and marketing tools like Google Tag Manager and Facebook Pixel. Security posture is good with HTTPS and cookie consent mechanisms, though explicit privacy and terms pages are missing. The domain WHOIS data is privacy protected, which is common for this business type. Overall, the site presents a professional and trustworthy educational service with room for improvement in privacy disclosures and security headers.

S

Správa železnic, státní organizace

novymostvyton.cz

10

The website novymostvyton.cz serves as an official information portal for the new Výtoň railway bridge project managed by Správa železnic, a Czech government transportation authority. It provides detailed project descriptions, visualizations, news updates, and public engagement resources, targeting commuters, urban planners, and the general public interested in Prague's infrastructure development. The site is well-branded, professionally designed, and consistent with government standards. Technically, the site is built on the Liferay CMS platform and employs modern JavaScript libraries such as jQuery, Slick Carousel, and Unite Gallery. It integrates Google Tag Manager, Facebook Pixel, and LinkedIn Insight Tag for analytics and marketing purposes. The site is mobile-optimized with good accessibility and SEO practices, although some advanced security headers are not explicitly detected. From a security perspective, the site uses HTTPS with good SSL configuration and avoids exposing sensitive data. However, it lacks a published security policy, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced transparency and trust. Cookie consent is implemented in compliance with GDPR, and contact information is clearly provided. Overall, the website demonstrates a solid digital presence for a government infrastructure project with good content quality, technical implementation, and business credibility. Strategic improvements in security policy publication and advanced security headers would further strengthen its posture.

The Zentrum Allergie und Umwelt (ZAUM) is a reputable academic research institute jointly funded by the Technical University of Munich and Helmholtz Zentrum München. It specializes in allergy and environmental health research, aiming to advance scientific understanding and therapeutic development. The website reflects a mature digital presence with clear navigation, professional design, and comprehensive content targeted at researchers, students, and the public. Technically, the site uses TYPO3 CMS and integrates privacy-respecting analytics (Matomo), with good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, compliant with GDPR, and well-aligned with its academic mission.

F

Felix Burda Stiftung

felixburda.de

56

The Felix Burda Stiftung is a well-established German non-profit organization dedicated to the prevention and early detection of colorectal cancer. Founded in 2001 by Dr. Christa Maar and Prof. Dr. Hubert Burda, it honors their son Felix Burda who died of colorectal cancer. The foundation is a recognized leader in health awareness campaigns, digital health tools, and advocacy within Germany. Their website reflects a mature digital presence built on Drupal 10, featuring comprehensive content, multimedia, and strong privacy compliance mechanisms including GDPR-aligned cookie consent. Contact information and social media presence are transparent and professional. Security posture is good with HTTPS and consent-based tracking, though some security headers could be improved. Overall, the site is trustworthy, user-friendly, and serves a broad audience interested in health prevention.

G

Global Pixel

globalpixel.pt

54

Global Pixel is a well-established Portuguese company specializing in web development, graphic design, and digital marketing services with over 15 years of experience. The company targets businesses and organizations seeking professional digital solutions, offering a broad range of services including website creation, online stores, SEO, social media management, and advertising campaigns. Their market position is solidified by a diverse portfolio of reputable clients and a consistent brand presence. Technically, the website employs modern web technologies such as HTML5, CSS3, JavaScript, and integrates popular analytics and marketing tools like Google Analytics, Google Tag Manager, and Facebook Pixel. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with a strong SSL configuration and incorporates security best practices such as CSRF tokens and CAPTCHA for forms. However, it lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a low risk profile with strong business credibility and privacy compliance. Strategic improvements in security policy transparency and header implementation would enhance the security posture further.

I

Integrovaná doprava Žilinského a Trenčianskeho kraja, s.r.o.

idsplus.sk

56

Integrovaná doprava Žilinského a Trenčianskeho kraja, s.r.o. operates as a regional integrated public transportation provider in Slovakia, focusing on the Žilina and Trenčín regions. The company aims to increase public transport usage by offering coordinated services, ticketing, and information through digital platforms such as the IDS PLUS mobile application. The website reflects a professional and consistent brand presence with clear communication of services and partnerships with regional transport operators and EU projects. Technically, the website employs a modern technology stack including Bootstrap, jQuery, DataTables, and Google services such as reCAPTCHA and Analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security measures include HTTPS enforcement and CAPTCHA integration, though some security headers and explicit policies could be improved. From a security perspective, the site shows a mature posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with GDPR-aligned cookie consent and a comprehensive privacy policy. However, the absence of a terms of service page and incident response information suggests room for enhancement in governance and transparency. Overall, the website is trustworthy, professionally maintained, and serves its target audience effectively. Strategic improvements in security headers, incident response disclosure, and vulnerability disclosure policies would further strengthen its security and compliance posture.

I

Integrovaná doprava Žilinského a Trenčianskeho kraja, s.r.o.

idzk.sk

46

Integrovaná doprava Žilinského a Trenčianskeho kraja, s.r.o. operates as a regional integrated public transportation service provider in Slovakia, focusing on the Žilinský and Trenčiansky regions. The company aims to increase public transport usage by offering integrated ticketing, transport information, and a mobile application (IDS PLUS) to facilitate travel. The website reflects a professional and consistent brand presence with clear communication targeting the general public and transport users in the region. Technically, the site employs modern web technologies including Bootstrap, jQuery, and Google services, ensuring a responsive and user-friendly experience. Security posture is solid with HTTPS and reCAPTCHA usage, though it lacks some advanced security headers and explicit incident response information. Privacy compliance is well addressed with GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy, well-maintained, and aligned with its business objectives.

C

Canada Learning Code

canadalearningcode.ca

52

Canada Learning Code is a Canadian national non-profit organization dedicated to providing technology education and career development support to Canadians, particularly adults aged 18 and over. The organization offers subsidized workshops, career coaching, certifications, and community engagement programs such as the Career Collective. The website demonstrates a strong market position with partnerships involving major corporations and government entities, supported by a decade-long history of collaboration. Technically, the website is built on WordPress with a modern tech stack including Gravity Forms, Google Tag Manager, and various analytics and tracking tools. The site is well-optimized for SEO, accessibility, and mobile responsiveness, providing an excellent user experience. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though some security headers could be more explicitly implemented. Privacy compliance is good, with clear privacy and cookie policies and consent mechanisms in place. The absence of WHOIS data slightly reduces trust but is mitigated by strong trust signals on the site. Overall, the website is professional, trustworthy, and well-maintained.

A

Agencija za mobilnost i programe Europske unije

europskesnagesolidarnosti.hr

52

The website www.europskesnagesolidarnosti.hr serves as the official Croatian portal for the European Solidarity Corps (Europske Snage Solidarnosti), an EU program aimed at fostering solidarity through volunteering and community projects. Managed by the Agencija za mobilnost i programe Europske unije, the site provides comprehensive information, support, and resources for youth and organizations engaged in solidarity activities. It holds a strong market position as a government-backed platform promoting EU initiatives in Croatia. Technically, the website employs modern web technologies including Google Analytics, YouTube API, and a custom CMS. It is hosted by a Croatian registrar and uses HTTPS with good performance and accessibility features. The site is mobile optimized and SEO friendly, with structured data enhancing search visibility. From a security perspective, the site enforces HTTPS and implements cookie consent and accessibility options, but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or suspicious content were detected. WHOIS data confirms domain legitimacy and consistency with the business entity. Overall, the website is professional, trustworthy, and well-aligned with its mission. Strategic improvements could focus on enhancing security headers, publishing security policies, and expanding incident response transparency to further strengthen trust and compliance.

F

Freizeit Guru

freizeit-guru.li

49

Freizeit Guru is a specialized leisure activity portal focused on Liechtenstein and its surrounding regions, offering over 250 curated activities for various seasons and group sizes. The platform targets a broad audience including families, groups, and individuals seeking recreational options. It holds a strong regional market position as a comprehensive guide for local leisure activities. Technically, the website is built on WordPress using the GeneratePress theme and several modern plugins for SEO, search filtering, and user engagement features. The site demonstrates good digital maturity with mobile optimization, structured data, and SEO best practices. Security posture is adequate with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is professional, trustworthy, and serves its business purpose effectively.

E

ENGAIZ Inc.

engaiz.com

68

ENGAIZ Inc. is a Canadian technology company specializing in digital risk and trust management solutions powered by agentic AI. Founded in 2018, the company targets businesses seeking advanced compliance, cybersecurity, and risk management services. Their market position is that of a niche provider leveraging AI to deliver innovative digital risk solutions. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the website is built on WordPress using Elementor and several plugins for SEO, analytics, and user experience enhancements. The infrastructure is hosted likely via GoDaddy, with HTTPS enabled and moderate performance. Mobile optimization and SEO practices are well implemented, though accessibility is basic. From a security perspective, the site uses HTTPS and cookie consent mechanisms, but lacks explicit published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the business information, supporting legitimacy. Overall, ENGAIZ presents a trustworthy and professional online presence with room for improvement in explicit security disclosures and DNS security enhancements. The risk profile is low, with recommendations to publish security policies, implement security.txt, and enable DNSSEC to further strengthen trust.

B

Beinfeld Productions- Antique Arms Show

antiquearmsshow.com

9

Beinfeld Productions operates the Antique Arms Show, a long-standing event focused on antique arms and collectible knives, with a history spanning over 60 years. The website targets collectors and enthusiasts, offering a large-scale event with over 1,300 tables featuring dealers and craftsmen. The business model centers on event production and exhibitor services, positioning itself as a premier antique arms show in the United States. Technically, the website is built on WordPress with WooCommerce and uses modern front-end libraries such as Bootstrap, jQuery, and various carousel plugins. It is mobile optimized and employs SEO best practices, though accessibility features are basic. Security posture is moderate with HTTPS enabled but lacks visible security headers and privacy compliance mechanisms. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and partner affiliations suggest a legitimate business presence. Overall, the site is professional and trustworthy but would benefit from improved security and privacy transparency.

3

3B Scientific

3bscientific.com

62

3B Scientific operates a professional German-language website focused on medical simulation, anatomical models, and scientific educational tools. The company targets medical educators, healthcare professionals, and scientific educators with a robust e-commerce platform and comprehensive product offerings. The website demonstrates a mature digital presence with active social media channels and a newsletter signup, indicating strong market positioning in healthcare education and training. Technically, the site uses modern frameworks such as Bootstrap and jQuery, integrates Google Tag Manager and HubSpot for marketing and analytics, and implements cookie consent mechanisms compliant with GDPR. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The absence of WHOIS data is a notable gap but does not detract significantly from the site's legitimacy given consistent branding and professional content. Overall, the site is well-structured, user-friendly, and trustworthy.

Z

ZOLL Medical Corporation

zoll.com

76

ZOLL Medical Corporation is a well-established healthcare technology company specializing in advanced medical devices and software solutions aimed at saving lives across various care settings including emergency, critical, and non-acute care. The company operates globally with a strong market presence and a comprehensive portfolio of products and services tailored to healthcare professionals, EMS, hospitals, and military sectors. Their website reflects a professional and consistent brand image with clear navigation and relevant content targeting their audience effectively. Technically, the website employs modern technologies such as Google Tag Manager, Bootstrap, and Azure DNS hosting, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections in place, though there is room for improvement in security headers and incident response transparency. Privacy compliance is well addressed with accessible privacy and cookie policies and consent mechanisms. Overall, the domain registration data supports the legitimacy and trustworthiness of the business, aligning with its long operational history.

C

Contextly

context.ly

61

Contextly is a technology company specializing in AI-powered content recommendation systems tailored for publishers. Their platform enhances reader engagement by providing related posts, evergreen content detection, and personalized channels, positioning them as a valuable tool in the digital publishing ecosystem. The website reflects a professional and consistent brand image with clear navigation and relevant content aimed at content producers and publishers. Technically, the website employs modern frontend technologies including jQuery, Foundation CSS framework, and Slick Carousel for UI components, along with Typekit for fonts. Hosting and analytics are supported by Cloudflare and Plausible Analytics, indicating a moderate to good level of digital maturity. The site is mobile optimized and SEO friendly, though accessibility features are basic. From a security perspective, the site uses HTTPS and demonstrates GDPR/CCPA compliance by not tracking readers and avoiding outbound paid links. However, explicit security headers and policies are not published, and no incident response or vulnerability disclosure information is available. Analytics usage is privacy-conscious with minimal user tracking. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic improvements in security policy transparency, cookie consent mechanisms, and incident response readiness would enhance trust and compliance.

C

C&Rsenal

candrsenal.com

42

C&Rsenal is a niche media and e-commerce website focused on firearms history and related educational content. The site offers blog posts, videos, and an online shop targeting firearms enthusiasts and collectors. The business appears small and specialized, with a consistent brand presence and active social media channels. Technically, the site is built on WordPress with WooCommerce, leveraging common web technologies such as jQuery and Font Awesome. Performance and mobile optimization are adequate, though there is room for improvement in accessibility and SEO. Security posture is moderate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is functional and professional but would benefit from enhanced security and privacy measures.

The Bund Deutscher Landschaftsarchitekt:innen (bdla) is a professional association representing landscape architects in Germany. The website serves as a comprehensive platform offering information about membership benefits, events, news, educational resources, and professional services. It positions itself as a leading voice in the landscape architecture sector with a strong focus on networking, professional development, and advocacy. The site is well-maintained with active content updates and multilingual support.

Formula Student Germany operates as a premier educational competition focused on the design and construction of prototype racing cars, emphasizing electric and autonomous vehicle technologies. It serves students, educational institutions, and automotive industry partners by providing a platform for practical engineering experience and industry networking. The website reflects a well-established presence with consistent branding and comprehensive content about the competition's structure and disciplines. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries, hosted behind Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS and no visible vulnerabilities, though improvements in security headers and explicit policies could enhance trust. Privacy compliance is adequate with a clear privacy policy but lacks cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-suited for its educational and industry audience.

H

HyperGenGamingLabs

empireofsight.com

61

Empire of SEI is an online 2D MMORPG gaming platform operated by HyperGenGamingLabs, targeting gamers interested in immersive multiplayer role-playing experiences. The website offers game client downloads, player rankings, and community engagement through social media and chat platforms. The business model focuses on community building and game distribution within a niche MMORPG market segment. Technically, the site is built on modern web technologies including Next.js and React, providing a responsive and visually appealing user experience. However, performance is moderate and accessibility features are basic. Security posture is adequate with HTTPS enabled but lacks important security headers and cookie consent mechanisms. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, though the active social presence and content quality suggest a legitimate operation. Overall, the site is functional and professional but would benefit from enhanced security and privacy compliance measures.

M

Max-Planck-Institut für Chemie

mpic.de

10

The Max-Planck-Institut für Chemie website serves as the digital presence of a reputable German research institute focused on atmospheric chemistry, climate science, and related fields. The site provides scientific content, information about research groups, publications, events, and career opportunities. It targets scientists, students, and the general public interested in environmental and chemical research. Technically, the website employs modern web technologies including RequireJS, Bootstrap, and Slick Carousel, hosted on GWDG infrastructure with a CMS from JustRelate CX Cloud. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS and CSRF protections, but lacks explicit security headers and published security policies. Privacy compliance is limited by the absence of visible privacy and cookie policies. Overall, the domain registration and hosting align with the Max-Planck-Gesellschaft, confirming legitimacy. Recommendations include publishing privacy and cookie policies, enhancing security headers, and providing incident response contacts to improve trust and compliance.

F

Forschungsinstitut für Nachhaltigkeit (RIFS)

rifs-potsdam.de

60

The Forschungsinstitut für Nachhaltigkeit (RIFS) is a medium-sized research institute affiliated with the GFZ Helmholtz Zentrum Potsdam, focusing on sustainability and societal transformation research. The website is professionally designed using Drupal 10 and incorporates modern web technologies such as Bootstrap 5, Matomo analytics, and lazy loading for performance optimization. It offers comprehensive content including news, dossiers, and research results targeted at academics, policymakers, and sustainability stakeholders. Privacy and cookie policies are well implemented with GDPR compliance and user consent mechanisms. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the website presents a trustworthy and authoritative digital presence for the institute.

K

Kombiverkehr Deutsche Gesellschaft für kombinierten Güterverkehr mbH & Co. KG

einfach-intermodal.de

56

Kombiverkehr Deutsche Gesellschaft für kombinierten Güterverkehr mbH & Co. KG operates a professional blog website 'Einfach intermodal' focused on intermodal freight transport in Germany. The site provides industry news, project updates, and insights targeted at logistics professionals and transport stakeholders. The company is positioned as a significant player in the German intermodal transport sector, offering digital services such as customer portals and data platforms. Technically, the website is built on WordPress with modern plugins for SEO, cookie management, and user experience enhancements. Hosting is provided by Hetzner, a reputable German hosting provider. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the website is professional, compliant with GDPR, and trustworthy, serving as a credible information source for its target audience.

Windenergie, s.r.o. is a small Czech Republic-based company specializing in wind energy projects and renewable energy solutions. The website showcases various wind farm projects and references, targeting businesses and stakeholders interested in sustainable energy development. The company appears to be a regional player in the wind energy sector with a focus on project development and management. The website is built on WordPress using the OceanWP theme and Elementor page builder, indicating a moderate level of digital maturity with basic mobile optimization and SEO features. Security posture is adequate with HTTPS enforced and a cookie consent banner present, but lacks advanced security headers and explicit incident response contacts. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie banner. Overall, the website is functional but basic in content quality and technical sophistication.

D

DF MARKETING, s.r.o.

dfmarketing.cz

66

DF MARKETING, s.r.o. is a Czech Republic-based small marketing agency specializing in online marketing, sales support, multimedia production, web development, and training services. The company positions itself as a professional and reliable partner with a client-centric approach, supported by testimonials and a Google Partner badge. Their website reflects a modern, well-structured digital presence with clear service offerings and contact information. Technically, the site employs modern web technologies including Google Tag Manager and Analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers are absent and no explicit security policies or incident response contacts are published. WHOIS data is unavailable, likely due to privacy protection, which is common for small businesses. Overall, the website is trustworthy and professionally maintained, with room for security enhancements.

S

Správa a údržba silnic Pardubického kraje

suspk.cz

61

Správa a údržba silnic Pardubického kraje is a regional public organization responsible for the management and maintenance of roads in the Pardubický kraj region of the Czech Republic. Established in 2002, it provides comprehensive road maintenance services including summer and winter upkeep, repair of road surfaces, traffic signage maintenance, and technical assistance. The organization holds multiple ISO certifications (9001, 14001, 45001) and a Moody's AA3 rating, indicating a mature and credible entity within the transportation sector. Their digital presence includes a well-structured website with clear navigation, social media engagement, and compliance with GDPR through privacy and cookie policies.

S

Správa železnic, státní organizace

sprava-zeleznic.cz

60

Správa železnic is the Czech Republic's state organization responsible for managing the national railway infrastructure. The website serves a broad audience including passengers, suppliers, carriers, and contractors, providing comprehensive information on projects, services, and operational updates. The organization holds a significant market position as the primary railway infrastructure manager in the country, offering services such as infrastructure management, modernization projects, and energy supply for railways. The website content is professionally presented, primarily in Czech, with English alternatives, and includes detailed navigation and rich resources.

H

Hillsborough Transit Authority

gohart.org

52

The Hillsborough Transit Authority (HART) operates as the regional public transit provider for Hillsborough County, Florida, offering a variety of transportation services including buses, streetcars, vans, and alternative transit options. The website serves as an information hub for residents and visitors, providing schedules, fare information, service alerts, and customer support resources. HART positions itself as a key transportation authority with a focus on accessibility and community service.