Security Directory

M

Moje Kino

mojekino.cz

41

Moje Kino is a Czech Republic based cinema club and network promoting three local cinemas: Kino Aero, Bio Oko, and Kino Světozor. The business model focuses on building a community of cinema enthusiasts through membership benefits such as premiere invitations and prepaid ticket cards. The website content is basic but relevant to the hospitality sector, targeting local moviegoers and cinema fans. The domain has been registered since 2008, consistent with the business history, indicating a stable presence in the market. Technically, the website uses legacy jQuery 1.10.1, Google Analytics, and Modernizr scripts. The site is moderately optimized for mobile and accessibility but lacks advanced SEO and modern frameworks. Performance is moderate with asynchronous loading of analytics scripts. However, the site lacks HTTPS and security headers, which weakens its security posture. No privacy or cookie policies are published, and no contact information is provided, which impacts compliance and trust. From a security perspective, the absence of HTTPS and security headers, combined with no visible privacy or cookie policies, indicates a low security maturity level. The use of Google Analytics suggests moderate user tracking without clear privacy compliance. No forms or sensitive data collection points were found, reducing immediate risk but also limiting user engagement features. Overall, the website is functional but basic, with significant room for improvement in security, privacy compliance, and user trust. Strategic recommendations include implementing HTTPS, publishing privacy and cookie policies, adding contact information, and enhancing security headers to improve the site's credibility and compliance posture.

T

Hledej Chorvatsko | pokoje a apartmány v Chorvatsku

travelplan.cz

48

The website www.ubytovanivchorvatsku.cz is a specialized online platform offering accommodation listings primarily focused on Croatia. It provides users with a comprehensive search interface to find private apartments and rooms across various Croatian regions, targeting tourists seeking affordable and direct bookings without intermediary commissions. The site features detailed listings with images, pricing, and location data, supporting a user-friendly experience with mobile responsiveness and clear navigation. Technically, the site employs common web technologies such as jQuery, Google Fonts, FontAwesome, Google Adsense, Facebook Pixel, and Google Analytics, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. The absence of WHOIS data reduces transparency and trustworthiness from a domain registration perspective. Overall, the site is functional and relevant for its niche but would benefit from enhanced privacy compliance and security practices.

G

GoDaddy Operating Company, LLC

belgrade.org

71

The website forsale.godaddy.com/forsale/belgrade.org is a professionally designed domain sales landing page operated by GoDaddy Operating Company, LLC. It offers the premium domain belgrade.org for sale with options to buy immediately or make an offer. The site targets German-speaking customers and emphasizes secure transactions, fast domain transfers, and multiple payment methods. The presence of trust indicators such as a high Trustpilot rating and verified domain badges reinforces its credibility. Technically, the site uses modern web technologies including React and Next.js, hosted on AWS, with good performance and mobile optimization. Security measures include HTTPS enforcement and reCAPTCHA on forms, though some security headers are not explicitly detected. Privacy and cookie policies are comprehensive and GDPR compliant, supporting user trust and regulatory adherence. Overall, the site demonstrates a mature digital infrastructure and a strong security posture appropriate for an enterprise-level e-commerce platform focused on domain aftermarket sales.

B

Belehrad Srbsko - história, ubytovanie, doprava

belehrad.sk

42

The website belehrad.sk is a Slovak language tourism portal focused on providing information about Belgrade, Serbia, including history, accommodation, transportation, and travel services. It targets tourists and travelers interested in visiting Belgrade and offers hotel bookings, bus tickets, flight information, and visa guidance. The site operates on a basic technical infrastructure using standard web technologies and is hosted by HostMonster. It integrates Google services such as Adsense and Analytics and implements a GDPR-compliant consent management platform. However, it lacks explicit privacy policy and terms of service pages, and no direct company contact or security incident response information is provided. The presence of an adult content link in the footer reduces the overall content safety rating. Security posture is moderate with no advanced security headers detected. Overall, the site is functional but would benefit from improvements in security, privacy transparency, and content professionalism.

V

Ventusky - Weather Forecast, Radar and Wind Maps

ventusky.com

56

Ventusky is a specialized weather forecasting and visualization platform offering live weather maps, radar, satellite imagery, and detailed forecasts powered by multiple reputable weather models. The platform targets general users and weather enthusiasts, providing free access with an optional Premium subscription for advanced features. The website demonstrates a good level of content quality and user experience with consistent branding and relevant, professional content. Technically, the site uses modern web technologies including JavaScript and Google Analytics, with moderate performance and good mobile optimization. However, explicit privacy and cookie policies are not found, and no contact information is provided on the main page, which may impact user trust and compliance. Security posture is moderate with HTTPS implied but lacking explicit security headers and incident response information. WHOIS data is unavailable, which reduces domain trustworthiness but the site content and technical setup appear legitimate. Overall, the site is safe for general audiences and provides valuable weather services.

CzechWinter.com is a niche online portal dedicated to providing accommodation listings and skiing information for tourists interested in the Czech mountain regions. The website offers direct contact to houseowners for cottages, apartments, and hotels, focusing on winter lodging and skiing activities. The business appears to be a small, regionally focused hospitality service provider established around 2008, with a modest online presence and monetization through Google AdSense advertising. From a technical perspective, the website uses basic HTML, CSS, and JavaScript with no modern frameworks or CMS detected. Hosting is provided by a Czech hosting provider as indicated by the nameservers. The site lacks HTTPS enforcement and modern security headers, which lowers its security posture. Mobile optimization and accessibility are minimal, and SEO practices are basic. There is no evidence of privacy or cookie policies, nor GDPR compliance mechanisms. Security-wise, the absence of HTTPS and security headers, combined with no visible privacy or cookie policies, indicates a low maturity level in security and compliance. No contact information or incident response channels are provided, which could hinder user trust and regulatory compliance. However, no malicious or adult content is detected, and the domain registration data is consistent and legitimate. Overall, the website serves its niche purpose but requires significant improvements in security, privacy compliance, and technical modernization to enhance trustworthiness and user experience.

T

Taskize Limited

taskize.com

63

Taskize Limited operates a modern SaaS collaboration platform designed to streamline and modernize communications within the financial sector. Positioned as a Euroclear company, Taskize serves a global client base of over 600 firms across 88 countries, focusing on increasing operational capacity, reducing regulatory risk, and improving client satisfaction. Their platform offers solutions spanning communication, interoperability, business processes, data, and AI, targeting investment operations teams and financial market participants. The website reflects a professional and consistent brand with excellent content quality and user experience. Technically, the website is built on the HubSpot CMS platform, leveraging modern web technologies and integrated analytics tools such as Google Analytics and HubSpot Analytics. The site is mobile-optimized and SEO-friendly, though there is room for improvement in accessibility and security header implementation. The presence of cookie consent mechanisms and a comprehensive privacy policy indicates good privacy compliance, including GDPR adherence. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure information, which are recommended for enhanced trust and compliance. The WHOIS data for the domain is unavailable, which slightly impacts trustworthiness, but the strong corporate association with Euroclear and professional web presence mitigate concerns. Overall, Taskize presents a credible, well-positioned business with a mature digital presence. Strategic improvements in security transparency and WHOIS data availability would further strengthen their trust profile and compliance posture.

MFEX Mutual Funds Exchange AB, now rebranded as Euroclear FundsPlace®, operates as a financial services platform integrated within the Euroclear group. The company provides a comprehensive end-to-end solution for fund distribution and processing across multiple asset classes, including private market funds. The website reflects a professional and consistent brand image aligned with Euroclear's market infrastructure, targeting financial institutions and asset managers. Technically, the site is built on modern web technologies such as Next.js and React, offering good mobile optimization and user experience. However, some technical aspects like security headers and SEO metadata could be improved. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks explicit security policies and incident response contacts. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the business content and branding suggest a legitimate financial entity. Overall, the website is functional and professional but would benefit from enhanced transparency and security practices.

B

Banque centrale du Luxembourg

bcl.lu

58

The Banque centrale du Luxembourg (BCL) website serves as the official online presence of Luxembourg's national central bank, a key member of the Eurosystem. It provides comprehensive information on monetary policy, financial stability, payment systems, research, and publications. The site targets a broad audience including financial institutions, researchers, policymakers, and the general public. The business model is government-oriented, focusing on monetary authority functions and financial oversight. The website demonstrates consistent branding and professional content aligned with its authoritative role. Technically, the site is built on Infopark CMS Fiona with Bootstrap framework, incorporating modern web technologies such as Font Awesome icons and Google Custom Search. It features embedded multimedia content and is mobile responsive. Performance is moderate with room for improvement in accessibility and SEO optimization. No critical technical flaws were detected. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks visible security headers and published security policies or incident response contacts. The absence of privacy and cookie policies reduces compliance confidence. WHOIS data is unavailable due to a malformed query, which slightly impacts domain trustworthiness but does not detract from the site's authoritative content. Overall, the website is a reliable and professional resource for central banking information in Luxembourg, with recommendations to enhance privacy compliance, security headers, and WHOIS transparency to strengthen trust and security posture.

The Macedonian Stock Exchange (Македонска Берза АД Скопје) operates as the primary regulated securities market in North Macedonia, providing official listings, trading platforms, market data, indices, and regulatory information. The website targets investors, listed companies, brokers, and financial professionals, offering comprehensive market insights and educational resources. The business model centers on facilitating capital market operations and compliance within the Macedonian financial sector. Technically, the website employs a modern web stack including jQuery, Bootstrap, and C3.js for interactive charts, hosted on a local provider (uhost.mk). The site is mobile-optimized with good SEO and accessibility basics, though some enhancements could improve accessibility compliance. The infrastructure supports dynamic market data updates and user interaction via search and contact forms. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and incident response information. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Privacy compliance is good with a clear privacy policy and cookie banner aligned with GDPR requirements. Overall, the website presents a trustworthy and professional digital presence for a financial institution, with moderate technical maturity and compliance. Strategic improvements in security headers, incident response transparency, and accessibility would further strengthen the platform.

M

META Handelsgesellschaft mbH

ehandwerkshop.org

43

E|Handwerkshop, operated by META Handelsgesellschaft mbH, is a specialized e-commerce platform serving the electrical trade sector in Germany. The website offers a broad catalog of over 300 products including training materials, promotional items, and online courses tailored for electrical professionals and apprentices. The business model focuses on B2B and B2C sales, leveraging WooCommerce on a WordPress CMS hosted by Alfahosting. The site demonstrates a good level of digital maturity with modern technologies such as React and jQuery, and provides a professional user experience with clear navigation and mobile optimization. From a security perspective, the website enforces HTTPS and uses WooCommerce's built-in security features, but lacks some advanced security headers and explicit incident response policies. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but the absence of a cookie consent mechanism and vulnerability disclosure policy indicates room for improvement. No signs of malicious content or blocking mechanisms were detected, and the domain registration details align well with the business claims, supporting legitimacy. Overall, the website is well-positioned within its niche market, offering relevant products and services with a professional online presence. Strategic enhancements in security headers, privacy compliance, and incident response transparency would further strengthen its security posture and trustworthiness.

A

ArGe Medien GmbH im ZVEH

rein-in-die-innung.de

38

The website 'Rein in die Innung' serves as an informational and promotional platform for electrical trade guilds (Innungen) in Germany, operated by ArGe Medien GmbH within the Bundesinnungsverband (ZVEH). It targets electrical trade businesses, encouraging membership by highlighting benefits such as marketing support, technical and legal advice, training, and recruitment assistance. The site is well-branded and consistent with the trade association's mission. Technically, the site uses a modern JavaScript stack including jQuery, Raphaël for SVG maps, and integrates Google Analytics and Tag Manager for tracking, alongside Usercentrics for GDPR-compliant cookie consent. The site is hosted with domaincontrol.com DNS, indicating a professional hosting environment. Performance and mobile optimization are good, though accessibility is basic. From a security perspective, the site enforces HTTPS and uses a reputable cookie consent manager, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or sensitive data exposures were detected. Privacy compliance is strong with a comprehensive privacy policy linked. Overall, the website is trustworthy, professional, and safe, with no adult or questionable content. It effectively serves its business purpose but could improve security posture by adding security headers and incident response information.

F

forward

famab.de

55

Forward (fwd:) is a German non-profit association representing the event industry sector, focusing on political advocacy, community building, and sustainability initiatives. The organization positions itself as a key voice for the event industry in Germany, providing networking, knowledge transfer, and regional representation services. The website is professionally designed, content-rich, and targets industry members and stakeholders. Technically, the site is built on WordPress with Elementor and several plugins, showing a modern and well-maintained infrastructure. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. WHOIS data is privacy protected, consistent with GDPR regulations, and the domain appears legitimate with no suspicious indicators. Overall, the site demonstrates a mature digital presence with good compliance and trust signals.

The website ifesnet.com is currently inaccessible beyond a Cloudflare security challenge page, which prevents access to any substantive content or business information. The domain is long-established, registered since 2003 with a reputable registrar and uses Cloudflare DNS and security services. Due to the WAF challenge, no privacy policies, contact information, or business descriptions are available for analysis. The technical infrastructure relies heavily on Cloudflare's security and performance platform, including Turnstile captcha and Cloudflare Insights for analytics. The security posture appears to be strong in terms of perimeter defense, but internal security and compliance details cannot be assessed. Overall, the site is low in transparency and content quality due to the blocking mechanism, resulting in a low AI score and limited risk assessment capability.

O

Ospi

ospi-network.com

55

Ospi is a professional service and network provider with a focus on offerings such as Octanorm and related services. The website is designed using Webflow CMS and incorporates modern web technologies including Lottie animations and Google Analytics for user tracking. The site is accessible without any WAF or security blocking mechanisms, indicating good availability. However, the absence of WHOIS data raises concerns about domain registration legitimacy and trustworthiness. Contact information is clearly provided, but the site lacks privacy, cookie, and terms of service policies, which impacts compliance and user trust. Security posture is moderate with no visible security headers or detailed SSL configuration information. Overall, the website presents a professional business front but requires improvements in security and compliance documentation.

I

INOBAT

batteryman.ch

63

Battery-Man is a Swiss environmental initiative operated by INOBAT, focused on promoting battery recycling and sustainability. The website serves as an educational platform encouraging the public to collect and properly dispose of used batteries, supported by a network of collection points and an online shop for related materials. The initiative has been active since 2012 and maintains a consistent brand presence with active social media channels. Technically, the website uses modern web technologies including JavaScript libraries and video embeds, hosted likely by Qube AG. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and incident response contacts are not published. WHOIS data confirms domain legitimacy and consistency with the business claims. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

B

Bobcat Company

bobcatdobris.cz

59

Bobcat Dobříš is a prominent manufacturing hub specializing in compact loaders, excavators, and related construction and agricultural machinery. Operating as part of the global Doosan group, the company serves the EMEA region and exports worldwide. The website reflects a mature business with a strong market position, comprehensive product offerings, and a commitment to innovation and social responsibility. Technically, the site employs modern web technologies, including Google Tag Manager and cookie consent tools, ensuring a good user experience and compliance with privacy regulations. Security posture is solid with HTTPS and cookie consent, though improvements in security headers and incident response transparency are recommended. Overall, the site is professional, trustworthy, and well-aligned with the company's business objectives.

F

Futaba Czech, s.r.o.

fcz.cz

56

Futaba Czech, s.r.o. is a medium-sized manufacturing company specializing in automotive parts, operating as a subsidiary of the Japanese Futaba Industrial Co., Ltd. Founded in 2004, the company emphasizes environmentally friendly production technologies such as pressing and welding. The website presents a professional and consistent brand image with clear business information and product offerings targeting automotive industry clients and job seekers. Technically, the site uses established JavaScript libraries and a custom CMS, delivering moderate performance and good mobile optimization. Security posture is adequate with GDPR compliance and cookie consent mechanisms, though lacking visible HTTP security headers and explicit incident response contacts. The absence of WHOIS data reduces domain trustworthiness, but the overall digital presence is credible and professional. Strategic improvements in security headers, incident response transparency, and domain registration clarity are recommended to enhance trust and compliance.

A

Avant Tecno

avanttecno.com

53

Avant Tecno is a manufacturer specializing in articulated loaders and a wide range of attachments, targeting industrial and construction sectors. The website presents a professional image with a focus on product versatility and multi-functionality. The company appears to be established in Finland with a medium-sized business profile. Technically, the website is built on the concrete5 CMS platform and utilizes modern web technologies including jQuery, Google Tag Manager, and Cookiebot for cookie consent management. The site integrates Google Maps API and various marketing and analytics tools such as HubSpot and Hotjar, indicating a moderate level of digital maturity. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible advanced security headers and explicit security or incident response policies. The absence of WHOIS data for the domain reduces trust slightly, though the website content and technology usage suggest a legitimate business. Overall, the site is functional, moderately optimized, and compliant with basic privacy requirements, but could improve transparency and security posture.

T

Tenneco

tenneco.com

72

Tenneco is a well-established enterprise specializing in the design, manufacture, and marketing of transportation industry products, including emissions control, suspension, powertrain, and performance solutions. The company positions itself as a global leader with a strong focus on innovation and customer-centric values. The website reflects a mature digital presence built on Adobe Experience Manager, featuring professional design, clear navigation, and mobile optimization. The technical infrastructure includes modern tracking and consent management tools such as Google Tag Manager and OneTrust, supporting compliance and analytics needs. Security posture is solid with HTTPS enforced and domain transfer protections in place, though there is room for improvement in DNS security and published security policies. Overall, the website and domain data indicate a trustworthy and credible business with a strong market position in the transportation sector.

P

Purem GmbH

purem.com

69

Purem GmbH, a subsidiary of the Eberspächer Group, specializes in exhaust gas cleaning and acoustic systems aimed at enabling clean and quiet mobility for passenger cars and commercial vehicles. The company positions itself as a key player in the automotive supplier sector, focusing on innovative solutions to improve air quality and reduce noise emissions globally. The website reflects a professional and consistent brand image aligned with its parent company, targeting automotive industry stakeholders and environmentally conscious customers. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes consent management tools, indicating a mature digital infrastructure. Security posture is solid with HTTPS and consent mechanisms, though explicit security headers and incident response information are absent. The missing WHOIS data for the domain is a notable concern but is mitigated by the strong brand presence and external references to the reputable parent company. Overall, the site demonstrates good business credibility and technical implementation with room for improvement in transparency and security disclosures.

M

Muhr und Bender KG

mubea.com

66

Muhr und Bender KG (Mubea) is a globally recognized supplier and innovative lightweight specialist primarily serving the automotive industry, with additional focus on aviation and micromobility sectors. The company offers a broad range of products including springs, stabilizers, precision steel tubes, and composite components, positioning itself as a market leader in lightweight automotive components. The website reflects a mature digital presence built on Drupal 11, featuring modern frontend technologies and a comprehensive content structure targeting industry professionals, partners, and potential employees. Technically, the site employs a robust CMS with responsive design, accessibility considerations, and SEO best practices. Analytics are implemented via Etracker, and cookie compliance mechanisms are in place, demonstrating attention to privacy regulations such as GDPR. However, explicit security headers and incident response policies are not publicly documented, representing an area for improvement. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. The absence of WHOIS domain registration details reduces trustworthiness slightly, but the professional presentation and extensive business information mitigate concerns. Overall, the site is secure, compliant, and professionally maintained, supporting Mubea's reputation as a reliable industry partner. Strategic recommendations include enhancing security headers, publishing a security policy and incident response contacts, and implementing a security.txt file to facilitate vulnerability disclosures. These steps would further strengthen trust and compliance posture.

A

Autoneum. Mastering Sound and Heat.

autoneum.com

71

Autoneum is a global market leader specializing in acoustic and thermal management solutions for the automotive industry. The company presents a professional and well-structured website built on WordPress, leveraging modern SEO and analytics tools to engage its target audience of automotive professionals and suppliers. The website content emphasizes Autoneum's leadership position and key services, including product brochures, supplier portals, and career opportunities. Technically, the site uses a mature tech stack with popular plugins and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are missing. The absence of WHOIS data raises concerns about domain registration transparency, but the overall business credibility and website professionalism mitigate immediate trust issues. Strategic recommendations include enhancing security headers, publishing clear privacy and security policies, and providing direct contact information for incident response.

B

Bobcat Company

bobcat.com

72

Bobcat Company Europe is a leading manufacturer and distributor of compact construction machinery and attachments, serving primarily the European market. The company emphasizes performance, robustness, and versatility in its products, targeting construction professionals and industrial users. The website is professionally designed, localized in German, and provides comprehensive product and dealer information, reflecting a mature digital presence. Technically, the site leverages modern JavaScript frameworks like Vue.js and BootstrapVue, integrates advanced media hosting via Cloudinary, and employs consent management tools to comply with privacy regulations. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response details are not publicly disclosed. The absence of WHOIS registration data is a notable anomaly but does not detract significantly from the overall legitimacy given the brand's global recognition and consistent online presence. Strategic recommendations include publishing detailed security and incident response policies and improving transparency around vulnerability disclosures and data protection officer contacts.

S

Schleswiger Unternehmertag

schleswiger-unternehmertag.de

53

The Schleswiger Unternehmertag website serves as a digital platform promoting a regional entrepreneurial event held in Schleswig, Germany. The event focuses on leadership, crisis management, and networking among local businesses, targeting entrepreneurs and business leaders in the Schleswig and Schleswig-Flensburg regions. The website features multimedia content including videos and images from past events, providing attendees and interested parties with insights and event highlights. The business model centers on event organization and regional business community engagement, positioning itself as a recurring and established event in the local market. Technically, the website is built on WordPress using the Elementor page builder, enhanced with Borlabs Cookie for GDPR-compliant cookie management. It integrates YouTube videos with privacy-enhanced embedding and uses modern web technologies such as jQuery. Hosting is provided by RZone, indicated by the nameservers. The site demonstrates good mobile optimization, SEO practices, and basic accessibility features, though there is room for improvement in accessibility compliance. From a security perspective, the website enforces HTTPS with a good SSL configuration and includes several security headers such as Content-Security-Policy and X-Frame-Options. The presence of a cookie consent mechanism and a comprehensive privacy policy indicates a strong commitment to privacy compliance. However, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure information, which are recommended for enhanced security posture. Overall, the website is professional, trustworthy, and well-aligned with its business purpose. It does not exhibit any signs of malicious activity or content blocking. Strategic recommendations include publishing a dedicated security policy, adding incident response contact details, and considering a vulnerability disclosure policy to further strengthen trust and security transparency.

W

Wirtschaftsförderungs- und Regionalentwicklungsgesellschaft Flensburg/Schleswig mbH

oeconomia-flensburg.de

40

The website oeconomia-flensburg.de represents a regional economic event organized by the Wirtschaftsförderungs- und Regionalentwicklungsgesellschaft Flensburg/Schleswig mbH. It focuses on sustainability and transformation topics relevant to the regional economy of Flensburg, Germany. The platform serves as a networking and knowledge-sharing event for entrepreneurs, decision-makers, and experts, positioning itself as a key regional economic forum with a professional and consistent brand presence. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and a specialized video player for event media. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate, with no major technical issues detected. However, no CMS or hosting provider details are explicitly identified. From a security perspective, the site uses HTTPS but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance and overall security posture. No incident response or vulnerability disclosure information is provided, indicating room for improvement in transparency and security readiness. Overall, the website is trustworthy and professional, with a clear business focus and good content quality. The main risks relate to privacy compliance and security best practices, which should be addressed to enhance user trust and regulatory adherence.

Barcamp Flensburg organizes an annual unconference event focused on open knowledge exchange and community discussions, with the upcoming 8th edition themed 'Veränderung' (Change). The event targets open participants interested in regional and societal topics, fostering a collaborative environment with multiple sessions and an evening program. The website is built on TYPO3 CMS and uses modern web technologies such as Leaflet.js for mapping. The site is well-structured, mobile-optimized, and provides clear navigation and sponsor information, reflecting a small but professionally managed community event. Security posture is moderate with HTTPS likely enabled but lacking visible security headers and cookie consent mechanisms. No explicit contact emails or phone numbers are provided on the analyzed page, which limits direct communication channels. Overall, the website is trustworthy and serves its purpose effectively but could improve in privacy compliance and security best practices.

3

3d-berlin vr solutions GmbH

guide3d.com

59

3d-berlin vr solutions GmbH is a German technology company specializing in digital wayfinding and information systems for complex buildings, operating since 2010. Their product portfolio includes solutions such as easyGuide, easyMaps, carFinder, and mapsEngine, targeting organizations requiring efficient navigation and information management within large facilities. The company maintains a professional online presence with a well-designed website hosted on Squarespace, integrating modern web technologies and multilingual support via Weglot. Security posture is solid with HTTPS and HSTS enabled, alongside a GDPR-compliant cookie consent mechanism. However, the absence of published privacy policies, terms of service, and explicit contact information limits transparency. WHOIS data is unavailable, raising concerns about domain registration legitimacy despite the company's apparent established market presence. Overall, the website reflects a mature digital infrastructure with room for improvement in compliance documentation and trust signals.

infomax websolutions GmbH is a small German company specializing in digital solutions for the tourism sector. The website primarily serves as a minimal landing page with a prominent link redirecting users to another domain (infomax-online.de), indicating limited direct content or engagement on this site. The business model appears focused on providing B2B digital services tailored to tourism industry clients. Technical infrastructure is basic, hosted on Hetzner servers, with no detected CMS or advanced technologies. The site lacks critical security and privacy features such as HTTPS, security headers, privacy policies, and contact information, which significantly impacts its security posture and trustworthiness. Overall, the website is minimalistic with poor content quality and limited user engagement features.

D

DiscoverCars.com

discovercars.com

74

DiscoverCars.com is a global online car rental comparison and booking platform offering users the ability to save up to 70% by comparing deals from over 1000 suppliers across more than 10,000 locations worldwide. The website emphasizes free cancellation and 24/7 multilingual customer support, positioning itself as a trusted intermediary in the transportation sector. The platform targets travelers seeking convenient and cost-effective car rental options globally. Technically, the website employs a modern technology stack including Google Tag Manager, Google Analytics, Bing Ads, reCAPTCHA Enterprise, and CookiePro for consent management. The site is well-optimized for desktop and mobile, with good SEO and accessibility features. Performance is moderate, with a professional and consistent design that enhances user experience. From a security perspective, the site uses HTTPS with strong SSL configuration and implements security best practices such as reCAPTCHA and cookie consent banners. However, explicit security policies, incident response contacts, and vulnerability disclosure programs are not publicly available, representing areas for improvement. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a high level of professionalism and trustworthiness, though the absence of WHOIS data and domain registration details slightly reduces the confidence in domain legitimacy. Strategic recommendations include publishing detailed security policies, establishing incident response contacts, and enhancing transparency around vulnerability disclosures to further strengthen security posture and user trust.

B

bookingkit

bookingkit.net

69

bookingkit is a mature, medium-sized SaaS company specializing in booking, marketing, and administration software for the European tours, activities, and attractions industry. The company positions itself as a market leader in Europe, offering a comprehensive platform that integrates booking generation, channel management, and centralized administration to simplify operations and increase sales for its customers. The website is professionally designed, multilingual, and optimized for SEO and mobile devices, reflecting a high level of digital maturity. The technical infrastructure leverages WordPress CMS with modern marketing and analytics tools such as Facebook Pixel, Hotjar, and HubSpot, ensuring robust data collection and user engagement capabilities. Security posture is strong with HTTPS, domain locking, and no visible vulnerabilities, although DNSSEC is not enabled. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms, aligned with GDPR requirements. Overall, bookingkit demonstrates a high level of business credibility and operational professionalism, making it a trustworthy platform in its niche.

G

Gilston Digital SA

miru.digital

49

Miru.digital is a Swiss-based SaaS platform operated by Gilston Digital SA, specializing in PDF document archiving, consultation, and distribution with advanced full-text search capabilities. The company positions itself as a Swiss-made, secure, and easy-to-use solution targeting businesses and organizations requiring efficient document management. The website reflects a professional and consistent brand image with clear pricing tiers and client references, indicating an established niche presence in the document management technology sector. Technically, the site is built on WordPress with modern frameworks like Bootstrap and includes essential security features such as HTTPS and cookie consent management. However, it lacks explicit privacy and terms of service documentation, which are critical for compliance and user trust. Security posture is generally good, with use of Google reCAPTCHA and no visible vulnerabilities, but could be improved by adding security headers and incident response information. Overall, the website is trustworthy and professionally maintained, though it would benefit from enhanced privacy and security disclosures to align with best practices.

C

Comvation AG

cubetech.ch

64

Comvation AG is a Swiss digital and web agency based in Bern and Thun, specializing in developing customized digital products including web applications, websites, online shops, SEO, and consulting services. The company positions itself as a passionate and human-centric digital partner, serving businesses seeking tailored digital solutions. Their website demonstrates a professional and modern design with rich content, customer testimonials, and client references, indicating a strong market presence in their regional niche. Technically, the site leverages modern frameworks such as Astro, integrates Google Tag Manager and reCAPTCHA for analytics and security, and employs cookie consent mechanisms to comply with privacy regulations. Security posture is generally good with HTTPS enforced and secure form handling, though explicit security headers and published security policies are absent. The absence of WHOIS data for the domain introduces some uncertainty regarding domain legitimacy, but the overall business credibility and digital maturity are solid. Strategic recommendations include enhancing security headers, publishing incident response contacts, and verifying domain registration details to improve trust.

S

swipe GmbH

recycling-map.ch

60

Recycling Map is a Swiss-based digital platform operated by swipe GmbH that aggregates over 12,000 recycling collection points across Switzerland. It serves as an informational resource for residents and municipalities to locate recycling stations for various materials, providing detailed data such as location, opening hours, and accepted recyclable goods. The platform supports user engagement through feedback mechanisms and favorites management, positioning itself as a niche environmental service provider within the Swiss market. Technically, the website leverages modern web technologies including Laravel backend inferred from routing patterns, Font Awesome for icons, Cookiebot for consent management, and Google Tag Manager for analytics. The site is well-optimized for mobile devices, uses HTTPS with strong security headers, and integrates a comprehensive cookie consent mechanism, reflecting a mature digital infrastructure. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, CSRF protection, and transparent cookie disclosures. However, it lacks a dedicated security policy or incident response contact information, which could be improved to enhance trust and compliance. No vulnerabilities or suspicious activities were detected in the provided content. Overall, Recycling Map presents a professional, trustworthy, and privacy-conscious web presence with strong compliance to GDPR and cookie regulations. Strategic improvements in security transparency and incident response readiness are recommended to further strengthen its security posture and user trust.

L

Leitmotiv Online Medien GmbH & Co. KG

backstagepro.de

48

Backstage PRO is a well-established German professional network platform dedicated to the music industry, connecting musicians, bands, event organizers, and related businesses. It offers a comprehensive suite of services including booking opportunities, a musician marketplace, industry news, and premium cooperation campaigns. The platform is supported by notable partners such as Musikhaus Thomann, enhancing its market credibility and reach. The website is professionally designed, content-rich, and targets music professionals seeking networking and business opportunities within the German music scene. Technically, the site employs modern web technologies including Google Analytics 4, Google Tag Manager, and cookie consent management, with a mobile-optimized experience and good SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is well addressed with accessible privacy and cookie policies and a consent mechanism. Overall, the platform demonstrates a mature digital presence with strong business credibility and user trust.

T

TixforGigs

tixforgigs.de

70

TixforGigs is an online ticketing platform specializing in event ticket sales, artist promotion, and venue information primarily targeting the German-speaking market. The website offers a comprehensive event search and ticket purchasing experience with user account management and security features such as captcha and two-factor authentication. The platform demonstrates a moderate to good level of digital maturity with a modern tech stack including jQuery and Knockout.js, and a responsive design optimized for mobile devices. Security posture is adequate with HTTPS enforced and captcha protections, though some security headers are missing, suggesting room for improvement. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site is professional, trustworthy, and safe for general audiences, though the lack of WHOIS data slightly reduces domain trustworthiness. Strategic recommendations include enhancing security headers and improving transparency around business contact information.

N

naturstrom AG

naturstrom.de

51

Naturstrom AG operates as a renewable energy provider in Germany, offering green electricity, green gas, heating solutions, and electric mobility services. The company positions itself as a leading supplier in the sustainable energy sector with a broad product portfolio aimed at private customers and businesses committed to the energy transition. The website reflects a mature digital presence with a professional design and clear messaging focused on sustainability and customer engagement. Technically, the website is built on TYPO3 CMS and integrates modern analytics and consent management tools such as Matomo, Etracker, and Cookiebot. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience across devices. Hosting is provided by Schlundtech, a reputable German hosting provider, supporting the site's performance and reliability. From a security perspective, the site enforces HTTPS and employs consent-based loading of tracking scripts, respecting user privacy and GDPR requirements. However, explicit security policies and incident response contacts are not published, which could be improved to enhance transparency and trust. No critical vulnerabilities or suspicious patterns were detected in the analysis. Overall, Naturstrom.de presents a trustworthy and professional online presence with strong privacy compliance and a solid technical foundation. Strategic improvements in security policy disclosure and contact information could further strengthen its credibility and user trust.

F

fritz-kola

fritz-kola.de

65

Fritz-kola is an independent German beverage company established in 2003, specializing in high-quality soft drinks with a unique taste. The website reflects a medium-sized retail business with consistent branding and a focus on product quality. Technically, the site employs modern JavaScript technologies, including Usercentrics for consent management, Google Analytics for traffic analysis, and Sentry for error tracking, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and domain transfer protections, but lacks advanced DNS security and security headers. Privacy compliance is partially addressed through cookie consent but lacks a visible privacy policy or terms of service. Overall, the site is professional and trustworthy but could improve transparency and security practices.

B

Bundesstiftung Baukultur

bundesstiftung-baukultur.de

49

Bundesstiftung Baukultur is a German independent foundation dedicated to promoting architectural culture and quality in the built environment. Established in 2007, it operates as a non-profit entity offering publications, events, competitions, and networking opportunities to professionals, students, and the public. The website is well-structured, professionally designed, and provides comprehensive information about its mission, activities, and contact details. Technically, the site runs on TYPO3 CMS, uses Matomo analytics with privacy-conscious settings, and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the domain and website appear legitimate and trustworthy, serving a government-related non-profit sector in Germany.

F

Forum Musikwirtschaft

forum-musikwirtschaft.org

61

Forum Musikwirtschaft is a professional umbrella organization representing six major associations within the German music industry sector. The website serves as an informational platform to communicate the interests and activities of these associations. The site is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard JavaScript polyfills, indicating a moderate level of technical maturity. The website is mobile optimized and uses HTTPS, ensuring secure communication. However, the absence of privacy and cookie policies, contact information, and detailed WHOIS data limits the overall trust and compliance posture. Security measures such as security headers are not evident, though some scripts indicate attempts to harden fetch and XHR requests. Overall, the site is professional and relevant to its target audience but would benefit from enhanced transparency and compliance documentation.

L

Live DMA

live-dma.eu

56

Live DMA is a well-established European non-profit network founded in 2012 that represents live music venues, clubs, and festivals across multiple countries. The organization focuses on strengthening the live music sector through cooperation, advocacy, and knowledge sharing. Their website reflects a professional and consistent brand image, providing information about their membership, projects, and tools such as mentorship programs and audience development resources. The target audience includes live music associations and event organizers in Europe. Technically, the website is built on WordPress with modern plugins and analytics integrations, hosted by OVH SAS. While the site is performant and mobile-optimized, there is room for improvement in accessibility and security headers. Security posture is solid with HTTPS and no visible vulnerabilities, but lacks explicit incident response or security policy disclosures. Privacy compliance is partially met with a comprehensive privacy policy but no cookie consent mechanism. Overall, the website is trustworthy and professional, with a strong market position in the live music advocacy sector.

I

Interessengemeinschaft Veranstaltungswirtschaft e. V.

igvw.org

49

The Interessengemeinschaft Veranstaltungswirtschaft e. V. (IGVW) is a non-profit association representing the event industry across Germany, Austria, and Switzerland. The organization focuses on setting industry standards, public representation, education, and research within the event sector. Their website is professionally designed, content-rich, and targets industry professionals and associations in the DACH region. The business model centers on collaboration among industry stakeholders to promote quality and compliance standards. Technically, the website is built on WordPress using a modern tech stack including plugins for event management, downloads, and SEO optimization. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. From a security perspective, the site enforces HTTPS and implements cookie consent but lacks explicit advanced security headers. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS data limits domain trust assessment, but the website's professional presentation and content suggest legitimacy. Overall, the site presents a low risk profile with strong business credibility and good technical implementation. Recommendations include enhancing security headers, maintaining plugin updates, and improving WHOIS transparency to boost trust further.

B

Bundesstiftung Livekultur

bundesstiftung-livekultur.org

45

The Bundesstiftung Livekultur website represents a German non-profit cultural foundation dedicated to preserving and promoting live music culture, including pop, club, and festival scenes. The foundation focuses on securing cultural spaces and developing funding concepts to sustain live culture as a valued part of Germany's cultural landscape. The website content is professionally presented in German, targeting cultural actors, event organizers, and the general public interested in live music culture. The foundation appears to have been established around 2021, consistent with the website's content and publication dates. Technically, the website is built on WordPress 6.8.3 with common plugins such as Yoast SEO and jQuery. The site is accessible, mobile-optimized, and includes structured data for SEO enhancement. However, some technical improvements are recommended, including the implementation of security headers and a cookie consent mechanism to enhance privacy compliance. No analytics or tracking scripts were detected, indicating a privacy-conscious approach. From a security perspective, the site uses HTTPS with good SSL configuration but lacks visible security headers and explicit security policies or incident response contacts. The WHOIS data is unavailable or malformed, likely due to privacy protection, which is common for non-profit organizations. No suspicious indicators or vulnerabilities were found in the content or technical setup. Overall, the site demonstrates a solid security posture but could improve transparency and compliance with privacy regulations. The overall risk assessment is low, with the site appearing legitimate and professionally maintained. Strategic recommendations include adding cookie consent, security headers, clear contact information for security incidents, and publishing terms of service and security policies to enhance trust and compliance.

C

clubsAREculture

clubsareculture.de

40

clubsAREculture is a German-based cultural advocacy platform dedicated to supporting music clubs as vital cultural spaces. The website provides news, studies, newsletters, and event information related to club culture and live music, targeting cultural activists, policymakers, and the general public interested in the preservation and promotion of club culture. The platform operates as a small non-profit entity within the media sector, focusing on advocacy and information dissemination. Technically, the website is built on WordPress 6.8.3, utilizing a modern tech stack including jQuery, Modern Events Calendar Lite, and the Ashe theme. The hosting appears to be managed by Your-Server.de, with a moderate performance profile and good mobile optimization. SEO and accessibility are basic to good, with room for improvement in accessibility features. From a security perspective, the site uses HTTPS and updated software versions but lacks explicit security headers and a vulnerability disclosure policy. No cookie consent mechanism was detected, which is a compliance gap given GDPR relevance. Contact information is limited to a contact form, with no explicit emails or phone numbers found. Social media presence is active across major platforms. Overall, the website is functional, professional, and trustworthy within its niche but would benefit from enhanced security practices, privacy compliance improvements, and more transparent contact information to strengthen user trust and regulatory adherence.

A

Ad Shop AB

glasmonter.se

53

Glasmonter.se is an established Swedish e-commerce business specializing in the sale of glass showcases and cabinets primarily targeting professional customers such as companies, schools, museums, and private individuals valuing high quality and functional products. The company operates under Ad Shop AB and has been active since 2003, offering delivery and assembly services alongside standard and custom products. The website demonstrates a solid market position with trust indicators including a high credit rating and a professional online presence. Technically, the site is built on ASP.NET Web Forms with common JavaScript libraries and includes modern tracking and marketing tools with GDPR-compliant consent mechanisms. Security posture is adequate with HTTPS and reCAPTCHA usage, though it lacks advanced security headers and published security policies. The absence of WHOIS data for the domain is a notable concern that impacts trustworthiness and should be investigated further. Overall, the site provides a good user experience with clear business information and no adult or questionable content.

Skrivbord.se is a Swedish e-commerce website specializing in the sale of office desks, including height-adjustable and fixed desks for home and workplace offices. The site leverages the Shopify platform, integrating modern payment methods such as Klarna and Apple Pay, and targets consumers and businesses in Sweden seeking quality office furniture. The website is professionally designed with good content quality and user experience, optimized for mobile devices and SEO. However, the absence of WHOIS registration data for the domain raises concerns about domain legitimacy and ownership transparency. Security posture is generally good with HTTPS and secure payment integrations, but lacks explicit security headers and a visible cookie consent mechanism. Contact information including phone and physical address is provided, enhancing business credibility.

L

Home

lunchbox.schule

44

The website lunchbox.schule is an online platform designed to facilitate the ordering of healthy lunch menus and snack packages for school students. It targets schools and their students or parents, providing a convenient online booking system that requires yearly registration due to data privacy considerations. The platform is niche-focused within the education sector, aiming to promote healthy eating habits in schools. The website is powered by TYPO3 CMS and incorporates JavaScript libraries including jQuery and custom QR code scanning scripts, indicating a moderate level of technical maturity. The presence of Matomo analytics shows an intent to monitor user interactions, although privacy compliance measures such as cookie or privacy policies are absent. Security posture is moderate; the site uses HTTPS and secure form submission but lacks visible security headers and anti-CSRF protections. No WHOIS registrant data is publicly available due to TLD restrictions, but the domain appears legitimate and consistent with the business purpose. Overall, the site is functional and safe but would benefit from enhanced privacy disclosures and security hardening.

The domain www.medtargetsystem.com is currently unregistered or inactive as indicated by the absence of WHOIS registration data and the complete lack of website content. No metadata, scripts, forms, or business information are present, making it impossible to assess the company's operations, market position, or services. The website is effectively non-existent, providing no value to users or stakeholders. From a technical perspective, the absence of any HTML content or metadata indicates no active infrastructure or digital presence. No technologies, frameworks, or hosting details can be identified. The lack of HTTPS or security headers further confirms the domain is not operational. Security posture is minimal due to the lack of any active website or domain registration. There are no vulnerabilities to assess, but the absence of HTTPS and security best practices is a critical issue. No privacy or compliance policies are present, and no contact or incident response information is available. Overall, the domain appears abandoned or unregistered, representing a high risk for trust and legitimacy. Strategic recommendations include registering the domain properly, deploying a secure website with full compliance and security policies, and establishing clear business and contact information to build credibility.

S

Sveučilišni računski centar (Srce)

srce.hr

54

Sveučilišni računski centar (Srce) is a central academic infrastructure institution affiliated with the University of Zagreb, providing comprehensive computing, networking, identity management, data repository, and digital education services to the Croatian academic and research community. The website reflects a mature digital presence with a professional design, clear navigation, and extensive content tailored to its target audience of students, researchers, and academic institutions. Technically, the site is built on Drupal 9 with modern libraries and frameworks, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS, cookie consent, and anti-bot measures, though explicit security headers could be enhanced. Privacy compliance is well addressed with detailed policies and consent mechanisms. Overall, the site demonstrates high business credibility and trustworthiness, despite the WHOIS data being privacy protected, which is justified for this type of institution.

Sherpas TECH, s.r.o. is a Czech-based technology and marketing company specializing in retention marketing, email marketing strategies, CRM data engineering, and advanced customer analytics. The company targets B2B clients seeking to integrate technology with marketing to improve campaign performance and customer engagement. Their website reflects a professional and consistent brand image, showcasing client references and a clear service portfolio. Technically, the site employs modern tools such as Google Analytics, Google Tag Manager, and Google reCAPTCHA Enterprise, ensuring a secure and data-driven user experience. Security posture is strong with HTTPS and form protections, although explicit security policies and incident response information are absent. Overall, the website is well-structured, GDPR-compliant with cookie consent mechanisms, and provides multiple contact channels, supporting trust and credibility.