Security Directory

V

Verband für landwirtschaftliche nutztierartige Haltung von Wild e.V.

wildhalterverband-bw.de

60

The Verband für landwirtschaftliche nutztierartige Haltung von Wild e.V. in Baden-Württemberg is a regional association focused on agricultural wild animal husbandry. The website serves as an information hub for members and interested parties, providing resources such as training, recipes, regulations, and marketing materials. The business model centers on membership services and regional support within Baden-Württemberg, Germany. The site is primarily in German and targets agricultural stakeholders and members of the association. Technically, the website is hosted on Hetzner servers and uses a custom or proprietary CMS. It employs standard web technologies including HTML, CSS, and JavaScript, with Klaro used for cookie consent management. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. The presence of a member login area and search functionality indicates interactive elements, though some modern security best practices like CSRF tokens are not evident. From a security perspective, the site enforces HTTPS and implements cookie consent, which supports GDPR compliance. However, no explicit security headers were detected, and the login form lacks visible CSRF protection. There is no public incident response or vulnerability disclosure policy. The domain registration data aligns well with the website's regional and organizational claims, supporting legitimacy. Overall, the security posture is moderate but could be improved with additional headers and form protections. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include enhancing security headers, implementing CSRF tokens, improving mobile responsiveness, and expanding privacy and security policies. These steps will strengthen trust, compliance, and user experience for members and visitors.

L

Landesverband Erwerbsobstbau Baden-Württemberg e.V.

lveo.de

65

The Landesverband Erwerbsobstbau Baden-Württemberg e.V. operates as a regional association representing commercial fruit growers in Baden-Württemberg, Germany. The website serves as an informational and service platform for members and stakeholders, offering resources related to fruit growing, training, and public relations. The organization positions itself as a key regional player in the agricultural sector, focusing on supporting and representing its members' interests. Technically, the website is built using the Weblication® CMS, a German content management system, and employs standard web technologies such as HTML5, CSS3, and JavaScript. The site demonstrates moderate performance and good mobile optimization, with a professional design and clear navigation structure. However, there is room for improvement in accessibility and SEO optimization. From a security perspective, the website uses HTTPS but lacks visible security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is present, indicating a potential gap in security transparency and readiness. No tracking or analytics scripts were detected, suggesting minimal user tracking. Overall, the website is functional and professional but would benefit from enhanced privacy compliance, security best practices, and transparency measures to improve trust and regulatory adherence.

Q

QS Landwirtschaftliche Qualitätssicherung Baden-Württemberg GmbH (QSBW)

qsbw.de

48

QS Landwirtschaftliche Qualitätssicherung Baden-Württemberg GmbH (QSBW) is a specialized service provider focused on agricultural quality assurance and certification in the Baden-Württemberg region of Germany. With over 30 years of experience, the company supports agricultural producers in meeting certification standards through various programs such as QS-Prüfsystem Tierhaltung and Bio Baden-Württemberg. The website reflects a professional and well-structured digital presence, targeting agricultural stakeholders seeking certification and quality assurance services. The business model centers on providing neutral, independent certification and consulting services to agricultural enterprises.

S

Service und Marketing Gesellschaft Landesbauernverband Baden-Württemberg mbH

lbv-smg.de

49

The Service und Marketing Gesellschaft Landesbauernverband Baden-Württemberg mbH (SMG) operates as a subsidiary of the Landesbauernverband Baden-Württemberg e.V., providing exclusive discounts and partner offers to its agricultural members in Baden-Württemberg. The website clearly targets LBV members, offering benefits in automotive, energy, household, and retail sectors. The company has a regional niche market position with a focused business model centered on member services and partnerships. Technically, the website is built on TYPO3 CMS, hosted on Hetzner servers, and employs modern web technologies including Bootstrap and JavaScript. The site is mobile-optimized with good SEO and accessibility basics. Google Analytics is used for visitor tracking with appropriate cookie consent mechanisms in place. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent and legitimate, supporting the trustworthiness of the site. Overall, the website presents a professional and trustworthy digital presence with good privacy compliance and business credibility. Strategic improvements in security headers and incident response transparency could further enhance its security posture.

D

Deutsche Gesellschaft für Züchtungskunde e.V. (DGfZ)

dgfz-bonn.de

54

The Deutsche Gesellschaft für Züchtungskunde e.V. (DGfZ) is a German non-profit scientific association focused on animal breeding and livestock production. It serves as a cross-species link between science, administration, and practice, representing Germany in European animal production organizations. The website provides comprehensive information about events, publications, and organizational news, targeting professionals and stakeholders in the agricultural and scientific communities. The organization maintains a professional online presence with clear navigation and relevant content in German. Technically, the website is built using the Intersolute CMS platform, hosted by Intersolute, and employs standard web technologies including HTML5, CSS3, and JavaScript with jQuery. The site is mobile-optimized and performs moderately well, with good SEO practices and basic accessibility features. Security is adequate with HTTPS enforced and nonce attributes used in scripts, but lacks explicit security headers and incident response contacts. From a security and compliance perspective, the site includes a privacy policy and terms of service, indicating GDPR awareness, but does not implement a cookie consent mechanism. No security incident response or vulnerability disclosure information is provided. The domain WHOIS data is consistent and legitimate, matching the hosting provider and organizational claims. Overall, the site is trustworthy and professional but could improve in security transparency and privacy compliance. The overall risk is low, with recommendations to enhance security headers, implement cookie consent, and provide incident response contacts to strengthen compliance and trust.

The Erzbistum Bamberg Stellenportal is a professionally designed job portal dedicated to employment opportunities within the Archdiocese of Bamberg and its affiliated organizations. It serves a niche market focused on church-related and social sector jobs in Germany. The platform offers job listings, search functionality, a job newsletter, and initiative application options, targeting job seekers interested in meaningful work within this religious and non-profit sector. The website branding is consistent and trustworthy, reflecting the organization's identity clearly. Technically, the site is built on a modern Angular framework (version 18.2.14) and hosted on Amazon AWS infrastructure, leveraging CDN services for performance. The site is mobile-optimized and performs well with good SEO practices. However, accessibility features are basic and could be improved. No common CMS is detected, indicating a custom-built solution. From a security perspective, the site enforces HTTPS and does not expose sensitive data. However, it lacks important security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. There is no visible incident response or vulnerability disclosure information. No tracking or advertising scripts are present, indicating minimal user tracking. Overall, the site is safe, professional, and trustworthy but has compliance gaps regarding privacy and cookie policies. Strategic improvements in security headers, privacy disclosures, and contact information would enhance the site's security posture and compliance standing.

The website deepseacru.org/lander is a parked domain landing page primarily serving as a placeholder with an offer for domain brokerage services via GoDaddy. It lacks substantive business content, contact information, or operational details, indicating it is not an active business site but rather a domain holding page. The technical infrastructure is minimal, leveraging standard parking platform technologies including React-based UI components and TrustArc for cookie consent management. The site includes external scripts for advertising and consent but does not implement advanced security headers or visible SSL configurations. Security posture is basic, with no detected vulnerabilities but also lacking best practices such as DNSSEC or security headers. Privacy compliance is addressed at a basic level through a cookie consent banner and a linked privacy policy hosted on a third-party domain. Overall, the site presents low business credibility and limited user engagement potential.

C

Charles Darwin Foundation

darwinfoundation.org

52

The Charles Darwin Foundation website serves as a comprehensive platform for promoting conservation and scientific research efforts focused on the Galapagos Islands. The organization is positioned as a reputable non-profit entity dedicated to safeguarding biodiversity through various marine, land, and community programs. The website demonstrates a high level of digital maturity with modern technologies, responsive design, and integrated analytics and marketing tools. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure, though improvements can be made by implementing security headers and publishing explicit privacy and cookie policies. The absence of WHOIS registrant data is likely due to privacy protection, which is justified for a non-profit organization. Overall, the website is trustworthy, professional, and well-optimized for its audience.

F

Flanders Marine Institute

marinespecies.org

64

The World Register of Marine Species (WoRMS) is a reputable scientific database providing authoritative classification and cataloguing of marine species names. Hosted and developed by the Flanders Marine Institute in Belgium, the platform serves marine biologists, researchers, and environmental organizations worldwide. It offers extensive taxonomic data, webservices, and collaborative scientific tools, positioning itself as a leading global resource in marine biodiversity data. Technically, the website employs a custom-built infrastructure with modern JavaScript libraries such as jQuery and Bootstrap for responsive design. The hosting by a recognized scientific institute ensures stable and secure infrastructure, with HTTPS enforced and no evident security challenges or WAF blocks. The site demonstrates good mobile optimization and accessibility, though some improvements in security headers and cookie consent mechanisms are recommended. From a security perspective, the site maintains a solid posture with SSL encryption and secure form handling. However, the absence of DNSSEC and explicit security policies or incident response contacts indicates room for enhancement. Privacy compliance is basic, with a privacy policy present but lacking explicit GDPR consent mechanisms. No vulnerabilities or malicious content were detected. Overall, WoRMS presents a trustworthy, professional, and content-rich platform with a strong business credibility score. Strategic improvements in security policies, cookie consent, and DNS security would further strengthen its compliance and security posture.

B

BIIGLE

biigle.de

61

BIIGLE is a specialized web service platform focused on efficient image and video annotation, primarily serving the marine environmental monitoring and research community. The platform offers advanced annotation tools, collaborative label management, and machine learning assistance to accelerate annotation workflows. It is supported by reputable research institutions and funded by recognized organizations, positioning it as a trusted niche solution in scientific image analysis. Technically, the website employs modern frontend technologies such as Vue.js, delivering a fast, mobile-optimized, and well-structured user experience. The hosting is managed via INWX nameservers, and HTTPS is enforced with a valid SSL configuration. However, some security best practices such as security headers and explicit cookie consent mechanisms are missing, which could be improved to enhance compliance and security posture. From a security perspective, the site demonstrates good fundamentals including CSRF token usage and secure login forms. No vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response plan is a gap that could affect trust and readiness. Privacy compliance is generally good with a privacy policy present, but the lack of a cookie consent banner is a minor compliance risk. Overall, BIIGLE presents a professional, trustworthy, and technically sound web presence with strong academic credibility. Strategic improvements in privacy and security transparency would further strengthen its risk profile and user trust.

E

euro magazín | lifestyle magazín

euromag.sk

51

The website euromag.sk operates as a Czech language lifestyle magazine, providing media content focused on lifestyle topics. The business appears to be a small-scale content publisher founded in 2022, targeting a general audience interested in lifestyle articles. The website is built on WordPress using the Newspaper theme by TagDiv, hosted by svethostingu.cz, indicating a standard CMS-based infrastructure with moderate technical maturity. Analytics are implemented via Google Tag Manager, but privacy and cookie policies are absent, indicating gaps in compliance. Security posture is basic with no detected security headers and unknown SSL configuration, suggesting room for improvement in securing the site and protecting user data. Overall, the domain registration is consistent and legitimate, matching the business profile and region. The site is accessible without WAF or blocking mechanisms and contains no adult or explicit content, making it safe for general audiences.

T

tagDiv

tagdiv.com

72

tagDiv is a software company specializing in the development and sale of premium WordPress themes, notably the Newspaper and Newsmag themes, alongside offering a suite of web development and design services. Established in 2012, the company targets web developers, news publishers, and businesses seeking customized web solutions. Their market position is that of an established and reputable WordPress theme developer with a medium-sized operation and a consistent brand presence. Technically, the website is built on WordPress 6.7.2, leveraging modern JavaScript libraries like jQuery, and optimized with caching and SEO plugins such as WP Rocket and Yoast SEO Premium. Hosting and DNS services are provided by reputable providers including GoDaddy and Cloudflare, ensuring good performance and security. The site is mobile-optimized and integrates multiple marketing and analytics tools, including Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. From a security perspective, the site uses HTTPS and has domain registration protections in place, but lacks DNSSEC and explicit security policy disclosures. Cookie consent mechanisms are implemented, indicating some privacy compliance, though no explicit privacy policy or terms of service pages were detected in the homepage HTML. No critical vulnerabilities or suspicious patterns were found, and the domain registration data aligns well with the business claims. Overall, tagDiv presents a professional and trustworthy online presence with good technical infrastructure and marketing integration. However, improvements in explicit privacy and security policy disclosures and DNS security could enhance their compliance and security posture.

B

Byznys

byznyspro.cz

51

Byznyspro.cz is a Czech language business content website providing articles and guides related to business, finance, and practical advice. The site targets Czech-speaking entrepreneurs and business professionals seeking informational content. Technically, the site is built on WordPress using the Newspaper theme and employs common web technologies such as jQuery. Hosting appears to be local to the Czech Republic. Security posture is basic with no advanced headers or policies detected, and the domain WHOIS data raises concerns due to expired status and lack of registrant details. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is functional and content-rich but requires improvements in security, privacy compliance, and domain registration legitimacy.

B

Bloglovin’

bloglovin.com

58

Bloglovin’ is a media and technology platform focused on enabling users to follow and discover blogs easily. It offers a web platform and mobile applications for iOS and Android, positioning itself as a popular blog aggregation service. The website provides key services such as blog following, content curation, and blog addition, targeting blog readers and bloggers globally. The presence of social media channels and app store links supports its active market presence. Technically, the site uses modern JavaScript frameworks including React, integrates with Google Analytics, Quantcast, and Facebook SDK for analytics and marketing, and employs HTTPS for secure communication. The site is moderately optimized for performance and mobile devices, with good SEO and basic accessibility features. However, some security best practices such as security headers and explicit cookie consent mechanisms are missing. From a security perspective, the site enforces HTTPS and uses secure form inputs, but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the content. The absence of WHOIS data reduces domain registration trustworthiness, but the website content and ecosystem indicate legitimate operation. Overall, Bloglovin’ presents a professional and trustworthy platform with good content quality and technical implementation. Improvements in privacy compliance and security posture, especially around cookie consent and security headers, would enhance its risk profile and user trust.

F

Finance in

financein.cz

40

Finance in is a Czech-language finance news and advice website established in 2021. It provides articles on finance, investments, and financial guidance targeted at Czech-speaking audiences interested in personal and business finance. The website uses WordPress CMS with the Newspaper theme and related plugins, delivering a professional and mobile-optimized user experience. However, it lacks visible privacy and cookie policies, and no explicit contact information is provided on the homepage. Security posture is moderate with HTTPS enabled but missing important security headers. Overall, the site is functional and content-rich but could improve compliance and security practices.

C

Cebia.cz

cebia.cz

75

Cebia.cz is a leading Czech company specializing in vehicle verification and security services. The website positions itself as the market leader in the Czech Republic, offering services that assist motorists and companies in the safe purchase, operation, and sale of vehicles. The business targets both individual consumers and corporate clients within the automotive sector. Technically, the website employs modern web technologies including JavaScript frameworks, Google Tag Manager for analytics, and Cookiebot for cookie consent management, indicating a mature digital infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the website enforces HTTPS and implements a comprehensive cookie consent mechanism, but lacks visible security headers and published security policies, which are areas for improvement. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the website content and technology usage suggest a legitimate and professional operation. Overall, the site demonstrates a solid security posture with room for enhancements in transparency and compliance documentation.

A

AutoScout24

autoscout24.cz

69

AutoScout24.cz is a leading European online marketplace specializing in the sale and purchase of new and used vehicles, including cars, motorcycles, trucks, and trailers. The platform offers extensive search filters and a dealer cockpit for professional sellers. The website is well-established with a strong market position as the largest European automotive marketplace, targeting consumers and dealers across multiple countries with localized versions. Technically, the site employs modern web technologies such as React, service workers, and integrates major analytics and advertising platforms like Google Tag Manager, Facebook Pixel, and Bing Ads. It demonstrates good digital maturity with mobile optimization, accessibility features, and GDPR-compliant consent management. Security posture is strong with HTTPS enforcement, security headers, and reCaptcha Enterprise integration, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting a high legitimacy score despite the absence of public WHOIS data due to privacy protection.

S

Pojištění a povinné ručení výhodně online | Super-Pojištění.CZ

super-pojisteni.cz

51

Super-Pojištění.cz is a newly established Czech online insurance platform launched in May 2024, offering various insurance products including mandatory vehicle insurance, collision insurance, and travel insurance. The website provides an online calculator to help consumers find advantageous insurance deals. Targeting Czech-speaking consumers, it operates as an intermediary in the finance sector, focusing on ease of access and online service delivery. The business model centers on digital insurance comparison and sales, positioning itself as a convenient online solution for insurance needs in the Czech Republic. Technically, the website is built using a proprietary or custom framework (ws-intense-next-blank) hosted by Active24, with integration of Google Tag Manager, Google Adsense, and multiple analytics services. The site is mobile-optimized with good design quality and clear navigation, though accessibility features are basic. Performance is moderate, and SEO practices are adequately implemented with proper meta tags and structured fonts. From a security perspective, the site uses HTTPS and includes Google site verification, but lacks explicit security headers and does not provide a privacy policy or terms of service pages. There is no evidence of vulnerability disclosure or incident response policies. User tracking is extensive via multiple analytics and advertising scripts, but privacy compliance is limited. WHOIS data is transparent and consistent with the business launch timeline, indicating legitimacy. Overall, the website presents a moderate risk profile with room for improvement in privacy compliance, security best practices, and transparency. Strategic enhancements in these areas would strengthen trust and regulatory adherence.

P

PureLog s.r.o.

purelog.cz

48

PureLog s.r.o. is a Czech-based small business specializing in e-commerce development, online project financing, and consulting services. The website positions the company as a top Czech e-commerce developer offering tailored solutions for new online projects. The target audience appears to be businesses seeking professional e-commerce development and financing support within the Czech Republic. The business model focuses on service provision in the e-commerce sector with a localized market approach. Technically, the website is built using the Yola site builder platform, leveraging standard web technologies such as HTML5, CSS3, and JavaScript. External resources include web fonts and analytics scripts from Yola and SiteWit. The site demonstrates basic mobile optimization and moderate performance but lacks advanced accessibility and SEO features. Hosting and domain registration are managed by Active24, a known Czech provider. From a security perspective, the site lacks explicit security headers and does not provide visible privacy or security policies. The SSL configuration status is unknown from the provided data, and no incident response or vulnerability disclosure information is present. Analytics usage indicates moderate user tracking without clear data retention policies. The WHOIS data raises concerns due to a domain creation date set in the future (2025), which is inconsistent and suspicious, potentially indicating data errors or registration anomalies. Overall, the website is functional and provides basic business information but lacks comprehensive security and privacy compliance measures. The suspicious WHOIS data and absence of contact details reduce trustworthiness. Strategic improvements in security posture, privacy transparency, and contact information disclosure are recommended to enhance credibility and compliance.

K

KlikBazar.cz

klikbazar.cz

49

KlikBazar.cz is a Czech online classifieds marketplace offering free advertising and sales of new and used items without requiring user registration. The platform targets a general audience in the Czech Republic and provides a wide range of product categories including automotive, electronics, home goods, and more. The website is built using modern web technologies such as SvelteKit and integrates Google Adsense for monetization and Senoweb Analytics for user tracking. The site demonstrates good design quality, clear navigation, and mobile optimization, making it accessible and user-friendly. From a technical perspective, the website employs HTTPS ensuring secure communication, and uses contemporary JavaScript frameworks that support performance and responsiveness. However, the absence of explicit privacy and cookie policies, as well as lack of visible contact information, indicates gaps in privacy compliance and business transparency. The WHOIS data for the domain is unavailable, which raises concerns about domain registration legitimacy and trustworthiness. Security posture is moderate with HTTPS enabled and no obvious vulnerabilities detected in the HTML content. The site lacks security headers and formal incident response or vulnerability disclosure mechanisms, which are recommended for enhanced security. Overall, while the platform serves its business purpose effectively, improvements in privacy compliance, domain registration transparency, and security best practices are advised to strengthen trust and regulatory adherence. The risk assessment suggests moderate risk primarily due to missing WHOIS data and privacy compliance gaps. Strategic recommendations include implementing comprehensive privacy and cookie policies, publishing clear contact and incident response information, and enhancing security headers and vulnerability disclosure practices.

K

KHG Bamberg

khg-bamberg.de

57

KHG Bamberg is a non-profit Catholic student community organization affiliated with the Archdiocese of Bamberg, Germany. It provides spiritual services, social events, counseling, and support primarily targeting university students and the academic community in Bamberg. The website reflects a well-structured, accessible, and content-rich platform that supports its mission with clear navigation and relevant information. The organization maintains partnerships with regional and overregional entities, enhancing its community reach and service offerings. Technically, the website is built on the alkacon Mercury CMS platform, utilizing JavaScript, Matomo analytics for privacy-conscious tracking, and accessibility tools such as the eyeAble plugin. The site is mobile-optimized and demonstrates good SEO and accessibility standards. Hosting is managed via domaincontrol.com DNS services, likely GoDaddy, with HTTPS enforced. From a security perspective, the site shows good practices including cookie consent and privacy policy compliance with GDPR. However, explicit security headers and incident response policies are not evident, suggesting room for improvement. No critical vulnerabilities or suspicious content were detected. The WHOIS data is limited but does not raise immediate concerns, though registrant details are sparse. Overall, the website is trustworthy, professionally maintained, and serves its community effectively. Strategic improvements in security policy transparency and technical security headers would enhance its posture further.

A

AT&T

att.jobs

11

AT&T's careers website serves as a comprehensive portal for job seekers interested in various roles within the telecommunications giant. The site highlights opportunities across multiple career areas including technology, sales, retail, and early career programs such as internships. The platform is well-branded, consistent with AT&T's corporate identity, and targets a broad audience from entry-level candidates to experienced professionals. The business model focuses on talent acquisition and employer branding, supporting AT&T's position as a leading telecommunications provider in the United States.

K

Kyocera Mobile

kyoceramobile.com

51

Kyocera Mobile operates as a provider of ultra-rugged mobile devices designed for industries where durability and reliability are critical. The company positions itself as a specialist in connectivity and productivity solutions through ruggedized phones. The website reflects a professional business presence with clear branding and targeted messaging towards industrial and enterprise customers. Technically, the site employs modern JavaScript libraries, analytics tools, and a service worker for enhanced performance and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit privacy and terms of service documents are not clearly found. The absence of WHOIS data introduces some uncertainty about domain registration legitimacy, but the overall digital footprint suggests a legitimate enterprise. Strategic recommendations include improving transparency with clear privacy and security policies and providing direct contact information for enhanced trust.

I

Izodom 2000 Polska

izodom2000polska.com

47

Izodom 2000 Polska is a well-established Polish company specializing in the production of styrofoam blocks and complete building systems for energy-efficient and passive houses. With over 20 years of market presence, the company offers a proprietary technology that supports quick and affordable construction. Their target audience includes construction contractors, architects, and individuals interested in modern, energy-saving building solutions. The website reflects a medium-sized business with consistent branding and a good level of content quality.

I

IZODOM

izodom.fr

64

IZODOM is a French company specializing in providing construction elements for passive and energy-efficient houses. Established in 2016, the company targets builders, architects, and environmentally conscious individuals seeking sustainable building solutions. The website reflects a professional presence with a focus on energy-efficient construction materials, leveraging WordPress and Elementor for content management and presentation. Technically, the site employs modern JavaScript libraries and optimization plugins but lacks visible advanced security headers and explicit privacy or security policies. The security posture is moderate, with some bot protection via Google reCAPTCHA but missing comprehensive security best practices and incident response information. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security transparency to improve trust and compliance.

C

CariThek – Bamberger Freiwilligenzentrum

carithek.de

63

CariThek – Bamberger Freiwilligenzentrum is a local non-profit volunteer center based in Bamberg, Germany, affiliated with Caritas Bamberg. The organization focuses on promoting volunteer engagement, providing consulting services, training, and managing various social projects aimed at community support and integration. The website serves as an information hub for volunteers and organizations, offering access to volunteer opportunities, news, events, and educational resources. Technically, the site is built on the alkacon Mercury CMS platform, employs modern web technologies including SVG icons and JavaScript, and integrates Matomo analytics for privacy-conscious user tracking. Accessibility features and cookie consent mechanisms are implemented, reflecting a commitment to inclusivity and compliance with GDPR. Security posture is solid with HTTPS enforced and standard security headers present, though explicit security policies and incident response contacts are not published. Overall, the website is professional, trustworthy, and well-aligned with its non-profit mission.

L

Love Tours

lovetours-caritas.de

61

Love Tours is a non-profit organization providing value-oriented sexual education workshops primarily targeting youth in Germany. Affiliated with Caritas and the Archdiocese of Bamberg, it offers workshops that emphasize self-respect, identity, and trust, grounded in Christian values. The organization operates regionally with dedicated contact points in Ansbach, Bamberg, and Nürnberg. The website reflects a professional and accessible digital presence, leveraging modern technologies and accessibility tools to serve its audience effectively. Security posture is solid with HTTPS and privacy-conscious analytics, though formal security policies and incident response contacts are absent. Overall, the site is trustworthy and well-aligned with its non-profit educational mission.

C

Caritasverband für die Erzdiözese Bamberg e.V.

kindererholung-caritas.de

56

The website kindererholung-caritas.de represents the Caritasverband für die Erzdiözese Bamberg e.V., a non-profit organization providing recreational and health-promoting holiday programs for children and youth aged 8 to 14. The site offers detailed information about their services, including program dates, participant limits, and recruitment for caregiving staff. The organization positions itself as a regional leader in child and youth welfare within the Caritas network. Technically, the website is built on the alkacon Mercury CMS platform, leveraging modern JavaScript libraries and accessibility tools such as the eyeAble plugin. It uses Matomo for privacy-conscious analytics and is hosted on servers associated with internet1.de. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, explicit security headers and policies are not evident, and no incident response or vulnerability disclosure information is published. No critical vulnerabilities or suspicious elements were detected. Overall, the site is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic improvements could focus on enhancing security headers, publishing security policies, and adding terms of service to further strengthen compliance and user trust.

D

Durchstarter - Freiwilliges Schuljahr

durchstarter-fssj.de

41

Durchstarter - Freiwilliges Schuljahr is a German non-profit initiative focused on enabling students from the 8th grade onwards to engage in voluntary social and active school year programs. The website serves as an informational and engagement platform, facilitating connections between students and local social, cultural, and ecological organizations. The organization positions itself as a niche regional player promoting youth voluntary engagement with a clear target audience of school students. Technically, the website is built on a modern stack including Pimcore CMS, Vue.js, Bootstrap, and privacy-focused Matomo analytics, demonstrating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting its non-profit mission effectively.

C

Caritasverband der Erzdiözese Bamberg

caritas-karriere.de

56

Caritas-karriere.de serves as the official job portal for the Caritasverband der Erzdiözese Bamberg, the largest social employer in Germany's Ober- und Mittelfranken region. The website provides comprehensive career information, job listings, and training opportunities focused on social care and non-profit employment. It targets job seekers interested in meaningful work within the social sector. Technically, the site is built on the alkacon Mercury CMS platform, hosted on Erzbistum Bamberg infrastructure, and employs Matomo analytics with GDPR-compliant cookie consent mechanisms. Accessibility is a strong focus, with dedicated tools and features implemented. Security posture is solid with HTTPS enforced, though some security headers and policies are missing. No critical vulnerabilities or suspicious content were detected, and the domain registration aligns well with the organization's profile.

M

Medienbildung der Erzdiözese Bamberg

medienbildung-bamberg.de

56

Medienbildung der Erzdiözese Bamberg is a small, non-profit educational organization affiliated with the Archdiocese of Bamberg, Germany. It specializes in media education, media pedagogy, film work, and media consulting primarily targeting educators, church workers, and media professionals. The website reflects a clear focus on providing educational resources, training, and media-related services within a church and educational context. The organization maintains a professional online presence with consistent branding and comprehensive contact information.

S

Sankt Michaelsbund Diözesanstelle Bamberg

michaelsbund-bamberg.de

57

The website buechereiarbeit-bamberg.de represents the Sankt Michaelsbund Diözesanstelle Bamberg, a regional non-profit organization focused on supporting library work and cultural education within the Bamberg diocese in Germany. It offers a variety of services including training courses, event ideas, downloads, and information about libraries in surrounding counties. The site targets library professionals, volunteers, educators, and the general public interested in library services. The business model is non-commercial, emphasizing educational and cultural support within a religious organizational framework. Technically, the website is built on the Alkacon Mercury CMS platform, utilizing modern web technologies such as HTML5, CSS3, JavaScript, and integrates Matomo for privacy-conscious analytics. The site is well-optimized for mobile devices and accessibility, featuring a cookie consent mechanism and structured metadata. Hosting appears to be managed by the Erzbistum Bamberg infrastructure, ensuring reliable delivery. From a security perspective, the site enforces HTTPS and employs cookie consent for external content, but lacks explicit security headers and incident response contact details. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with GDPR-aligned policies and clear contact information. The domain WHOIS data aligns with the website's regional and organizational identity, supporting legitimacy. Overall, the website demonstrates a good balance of content quality, technical implementation, security posture, privacy compliance, and business credibility. It is a trustworthy and professional resource for its target audience, with recommendations to enhance security headers and incident response transparency to further strengthen its security posture.

T

Technikboerse

technikboerse.com

58

Technikboerse.com operates as a specialized online marketplace focused on new and used agricultural machinery, forestry, construction, municipal, and viticulture equipment. The platform targets professionals and businesses in the agricultural and related sectors primarily in Germany and Europe. It offers a comprehensive search and listing service for machinery buyers and sellers, including dealers and private individuals. The website is multilingual, supporting a broad European audience, and positions itself as a trusted marketplace in its niche. From a technical perspective, the website employs modern web technologies including Vue.js for frontend interactivity, Google Tag Manager and Google Analytics for analytics, and a Consent Management Platform to ensure GDPR compliance. The site is well-structured with SEO best practices, mobile optimization, and accessibility considerations, although some accessibility features could be enhanced. Performance is moderate, with preloading and asynchronous script loading implemented. Security-wise, the site enforces HTTPS with good SSL configuration and includes standard security headers such as Content-Security-Policy and Strict-Transport-Security. The presence of a cookie consent banner and privacy policy indicates attention to privacy compliance. However, there is no publicly available security policy or incident response contact, and no vulnerability disclosure mechanism is found, which are areas for improvement. Overall, Technikboerse.com presents a professional and trustworthy online marketplace with solid technical infrastructure and privacy compliance. The main risk factor is the lack of publicly available WHOIS data, which slightly reduces domain trustworthiness. Strategic recommendations include publishing a security policy, providing incident response contacts, and adding a vulnerability disclosure page to enhance transparency and security posture.

S

Space X Chimp OÜ

spacexchimp.com

66

Space X Chimp OÜ is a small technology company based in Estonia specializing in web, mobile, and desktop application development with a strong focus on WordPress themes and plugins. The company offers a range of digital products including icon design, WordPress themes, and plugins, serving a global audience of creative professionals and developers. Their market position is niche but established, with over 100,000 active installs of their products and a loyal customer base. Technically, the website is well-built using modern web standards including HTML5, CSS3, PHP, and JavaScript, with integrations of Google Analytics and Tag Manager for performance and user behavior tracking. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the site enforces HTTPS and includes multiple trust verification meta tags, but lacks some advanced security headers and a dedicated security policy page. The absence of WHOIS data for the domain is a notable concern, reducing domain trustworthiness despite the professional presentation and business legitimacy. Overall, the website is secure, professional, and compliant with privacy regulations, but would benefit from improved transparency in domain registration and enhanced security headers.

S

Salesianer Don Boscos und Don Bosco Schwestern in Deutschland und Österreich

donbosco-magazin.eu

49

Don Bosco Magazin is a German-language online magazine affiliated with the Salesianer Don Boscos and Don Bosco Sisters in Germany and Austria. It provides family-oriented, religious, and educational content targeting parents, children, and youth connected to the Don Bosco mission. The website features articles, podcasts, newsletters, and free issues, positioning itself as a niche non-profit media outlet within the religious and family education sector. Technically, the site is built on a modern stack including Bootstrap and eZ Platform CMS, with good mobile optimization and moderate performance. Security measures include HTTPS and Google reCAPTCHA integration, alongside a GDPR-compliant cookie consent mechanism. However, the absence of WHOIS data and security headers slightly reduces trustworthiness. Overall, the site is professional, content-rich, and trustworthy for its target audience.

D

Diakonisches Werk Baden-Württemberg

journalistenpreis-diakonie.de

51

The website www.journalistenpreis-diakonie.de represents a non-profit initiative by the Diakonisches Werk Baden-Württemberg to award the Journalistenpreis, a prestigious journalism prize focused on social issues in Baden-Württemberg. The site provides detailed information about the award, submission deadlines, prize categories, and past winners, targeting journalists and media professionals interested in social and political reporting. The business model centers on promoting quality journalism through monetary awards and public recognition, positioning itself as a key player in the German social journalism landscape. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs Matomo analytics with IP anonymization to respect user privacy. The site is hosted on domaincontrol.com name servers, indicating a professional hosting arrangement. Performance and mobile optimization are good, with clear navigation and SEO-friendly metadata. The cookie consent mechanism is implemented with user choice, supporting GDPR compliance. From a security perspective, the site enforces HTTPS and uses privacy-respecting analytics. However, it lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The absence of terms of service is a minor legal gap. Overall, the security posture is solid but could be improved with additional headers and transparency. The overall risk assessment is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include enhancing security headers, publishing a security policy, and adding terms of service to improve legal completeness and user trust. The site is well-positioned to serve its audience effectively while maintaining good privacy and security standards.

A

Apollo21

apollo21.online

59

Apollo21 is a small online marketing agency based in Slovakia, founded in 2022. The company offers digital marketing services targeting businesses seeking to improve their online presence. The website is built on WordPress using the Divi theme and incorporates Yoast SEO for search engine optimization. The technical infrastructure is modern but lacks advanced security configurations such as DNSSEC and security headers. The website content is professional and relevant, with good design and mobile optimization, but lacks critical privacy and cookie policies, which impacts compliance and trust. Security posture is basic with no incident response or vulnerability disclosure information available. Overall, the website is functional and credible but requires improvements in privacy compliance and security best practices to enhance trust and regulatory adherence.

Ducati Polska operates as the exclusive importer and distributor of Ducati motorcycles and related accessories in Poland. The website serves as a comprehensive platform for showcasing Ducati's motorcycle models, offering configurators, dealer locators, and test ride booking services. The business targets motorcycle enthusiasts and potential buyers within the Polish market, positioning itself as a key player in the transportation sector with a medium-sized operational scale and a founding date consistent with the domain registration in 2011. Technically, the website employs modern web technologies including Google Analytics, Facebook Pixel, and Google Tag Manager, ensuring effective marketing and user tracking. The site is hosted by a reputable Polish hosting provider and demonstrates good mobile optimization and SEO practices. Security-wise, the site uses HTTPS and reCAPTCHA, but lacks advanced security headers and publicly available security policies or incident response information, indicating room for improvement in security posture. Overall, the site is professional, trustworthy, and compliant with GDPR cookie consent requirements, though it could enhance transparency by publishing privacy and security policies.

S

SHOCK magazín

shockmagazin.cz

41

SHOCK magazín is a Czech language online magazine founded in 2021, providing lifestyle content focused on health, finance, housing, women's issues, and advice. The website uses WordPress CMS with common SEO and theme plugins, delivering a good user experience with responsive design and clear navigation. However, the site lacks visible privacy and cookie policies, security headers, and direct contact information, which impacts its overall security posture and privacy compliance. No WAF or blocking mechanisms are detected, and the content is safe for general audiences without adult or explicit material.

V

VIP Ženy

vipzeny.cz

54

The website 'VIP Ženy' is a Czech language media or content platform likely focused on women's topics, as suggested by its title. It operates on WordPress and is hosted by REG-WEDOS, a Czech hosting provider. The domain was registered in 2019, consistent with a small-scale media site. The site lacks explicit business or company information, contact details, and formal policies such as privacy or cookie policies. Technically, it uses standard web technologies and Google Fonts, with moderate performance and good mobile optimization. Security posture is minimal, with no detected security headers or incident response information. No WAF or blocking mechanisms are present, and the site content is fully accessible. No adult or explicit content was detected, making it safe for general audiences.

I

Ubezpieczenia odpowiedzialności zawodowej, OC zawodowe - iExpert.pl

iexpert24.pl

55

iExpert.pl is a Polish website specializing in professional liability insurance services, targeting professionals seeking OC zawodowe insurance. The website is built on WordPress using the Avada theme and WPBakery page builder, indicating a standard modern CMS infrastructure. The technical setup includes common web fonts and icon libraries but lacks advanced security headers and privacy compliance features. The domain is well-established since 2006, suggesting a stable business presence. However, the website lacks explicit privacy and cookie policies, contact information, and security best practices, which impacts its overall trustworthiness and compliance posture.

E

Evangelische und Katholische Rundfunkarbeit am SWR

kreuzquer.info

44

KREUZ+QUER is a youth-oriented religious media platform operated by the Evangelische und Katholische Rundfunkarbeit am SWR, targeting young German-speaking audiences interested in faith and church topics. The website offers audio content, editorial articles, and social media engagement, positioning itself as a niche media outlet within the public broadcasting ecosystem. Technically, the site uses standard web technologies with a focus on audio streaming and responsive design, though it lacks advanced frameworks or CMS identification. Security posture is generally good with HTTPS enforced, but the absence of security headers and privacy policies indicates room for improvement. The WHOIS data is unavailable due to privacy or malformed response, but the website's affiliation with SWR and professional presentation support its legitimacy. Overall, the site is safe, trustworthy, and professionally maintained, but could enhance compliance and security transparency.

D

Dacast

vzaar.com

71

Dacast is a professional live streaming and online video hosting platform offering a comprehensive suite of services including hosting, API access, monetization tools, and 24/7 customer support. Positioned as a SaaS provider in the technology and media sectors, Dacast targets businesses and content creators seeking reliable and secure streaming solutions. The website demonstrates a solid digital presence with good content quality, mobile optimization, and SEO practices. Technically, the site is built on WordPress using Elementor and several optimization plugins, indicating a modern and maintainable infrastructure. The presence of security headers and HTTPS ensures a strong security baseline, although explicit security policies and incident response information are not publicly available. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional site content. Security posture is robust with enforced HTTPS, security headers, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. Business credibility is supported by clear contact information, social media presence, and professional branding. Overall, Dacast presents a trustworthy and professional platform with minor areas for improvement in transparency around security policies and domain registration details.

S

StellPlatz Sněžník - Děčín

stpl-sneznik.cz

45

StellPlatz Sněžník is a hospitality service provider operating the first Stellplatz in the Czech Republic, catering primarily to tourists traveling with motorhomes. The website presents a clear business focus on providing parking, accommodation, and essential amenities such as free WiFi, potable water, and electricity. The business targets local and regional tourists, positioning itself as a pioneer in the Czech market for this type of service. The domain age and registration data support the legitimacy and stability of the business. Technically, the website uses modern web technologies including HTML5, CSS3, jQuery, and Video.js for video streaming. The site is hosted by SuperHosting.cz, a known Czech hosting provider. The website is mobile optimized with good navigation and content relevance, although accessibility features are basic. SEO optimization is minimal but present through meta tags and Open Graph data. From a security perspective, the site lacks visible security headers and does not provide privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response channels are explicitly provided, limiting transparency and user trust. No forms or data collection mechanisms are present on the main page, reducing immediate data protection risks but also limiting user engagement. Overall, the website is functional and professionally presented but requires improvements in security posture, privacy compliance, and contact transparency to enhance trustworthiness and regulatory adherence.

A

Agora Club Tangent Deutschland

agoraclubtangent.de

9

Agora Club Tangent Deutschland is a German non-profit friendship organization for women aged 41 and above, providing a platform for networking, social engagement, and charitable projects. The organization operates through local clubs across Germany and an online E-Club, fostering friendship, tolerance, and active social contribution. The website reflects a well-structured and consistent brand presence with clear navigation and relevant content tailored to its target audience. Technically, the site is built on TYPO3 CMS with Bootstrap and FontAwesome, offering good mobile optimization and accessibility. However, the site lacks visible security headers and explicit cookie consent mechanisms, which are areas for improvement. No direct contact emails or phone numbers are published, with contact presumably via a form. The WHOIS data is minimal but consistent with the hosting location in Germany, supporting legitimacy. Overall, the website is professional and trustworthy but could enhance its security posture and privacy compliance.

S

SNC FORCHHEIM

snc-info.de

9

SNC FORCHHEIM is a small church organization based in Germany, operating a website primarily in German that serves as an informational and community platform. The website uses WordPress with the Divi theme and Yoast SEO plugin, indicating a moderate level of digital maturity. The site is well-structured with good design quality and mobile optimization, though content is basic and focused on the church's identity and activities. Security posture is adequate with HTTPS enabled and a cookie consent mechanism in place, but lacks advanced security headers and published security policies. Privacy compliance is minimal with no visible privacy or terms of service pages. Overall, the website is functional and trustworthy for its purpose but could improve in compliance and security transparency.

KYOCERA Corporation operates a comprehensive global website showcasing its diversified manufacturing capabilities across fine ceramics, semiconductor components, electronic components, telecommunications, energy solutions, and healthcare products. The company targets a broad audience including business customers, engineers, and healthcare professionals, positioning itself as a large multinational enterprise with a strong global network and multiple subsidiaries. The website content is professionally designed, well-structured, and provides extensive product and corporate information. Technically, the website employs modern web technologies including JavaScript, Google Fonts, and Google Analytics, with good mobile optimization and accessibility features. Security best practices are observed with HTTPS enforcement and multiple security headers, although explicit security policies and incident response information are not published. Privacy and cookie policies are comprehensive and GDPR compliant, with a consent mechanism in place. The security posture is strong with no detected vulnerabilities or exposed sensitive data, but the absence of WHOIS registration data raises concerns about domain registration legitimacy. No direct company contact emails or phone numbers are found, relying instead on contact forms. Overall, the website is trustworthy and professional but would benefit from improved transparency in domain registration and security incident handling.

Agro Napló is a Hungarian agricultural news portal providing up-to-date professional information on crop production, animal husbandry, agricultural economy, grants, and agricultural machinery. It operates under the Portfolio Group umbrella, a recognized media conglomerate in Hungary, positioning itself as a trusted source for agricultural professionals and enthusiasts. The website offers diverse content including news articles, weather forecasts, videos, and specialized magazines, supported by advertising revenue. Technically, the site employs modern web technologies including Google Tag Manager, Facebook Pixel, Gemius analytics, and InMobi consent management, ensuring compliance with GDPR and providing a good user experience across devices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with privacy regulations, with no signs of blocking or malicious activity.

A

Amazon

amazon.com.br

75

Amazon.com.br is the Brazilian localized e-commerce platform of Amazon, a global leader in online retail. The website offers a wide range of products including books, electronics, household items, and digital content, targeting a broad general audience in Brazil. It leverages Amazon's extensive marketplace and subscription services such as Amazon Prime to maintain a strong market position. The site is designed with a professional and consistent brand presence, providing excellent user experience and navigation.

A

Amazon

amazon.pl

79

Amazon.pl is the Polish localized e-commerce platform of Amazon, one of the world's largest online retailers. The website offers a wide range of products including electronics, clothing, books, DVDs, sporting goods, and beauty products. It targets a general audience in Poland and operates as part of Amazon's global retail ecosystem. The platform is well-established, with consistent branding and a comprehensive set of services tailored for the Polish market. The business model focuses on direct retail sales and marketplace services, supported by Amazon's extensive logistics and technology infrastructure. Technically, the website employs Amazon's proprietary UI frameworks, modern JavaScript libraries including jQuery, and service workers for enhanced performance and offline capabilities. The site is optimized for both desktop and mobile platforms, with good accessibility and SEO practices. Hosting is presumably on Amazon AWS infrastructure, ensuring high availability and scalability. The site includes advanced analytics and tracking mechanisms to monitor user interactions and optimize user experience. From a security perspective, Amazon.pl enforces HTTPS with strong SSL configurations and implements standard security headers. The presence of cookie consent banners and privacy policies indicates compliance with GDPR and other privacy regulations. No critical vulnerabilities or security issues were detected in the analysis. However, explicit security policy pages and incident response contacts are not prominently found, suggesting areas for improvement in transparency. Overall, Amazon.pl presents a mature, secure, and user-friendly e-commerce platform with strong business credibility. The domain is privacy protected, which is standard for large enterprises, and the website content and infrastructure align with Amazon's global standards. The risk profile is low, with recommendations focusing on enhancing security transparency and incident response readiness.