Security Directory

H

HBF Textiles

hbftextiles.com

50

HBF Textiles is a professional textile manufacturing company specializing in woven upholstery, wrapped panels, wallcoverings, coated fabrics, leather, and drapery products. The company targets designers, furniture manufacturers, and commercial and residential clients, positioning itself as a medium-sized player in the manufacturing sector. The website is built on a modern Drupal 10 CMS with e-commerce capabilities, integrating advanced technologies such as Google Tag Manager and Adobe DTM for analytics and marketing. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Security posture is strong with HTTPS enforcement and security headers, though the absence of a published security policy and incident response information suggests room for improvement. The lack of WHOIS registration data is a notable concern, potentially indicating privacy protection or domain registration issues, which should be further investigated. Overall, the website is professional, well-structured, and trustworthy, with a good balance of business and technical maturity.

P

Projustice

projustice.sk

58

Projustice.sk is a Slovak scientific and professional peer-reviewed journal specializing in law and security sciences. It serves an academic and professional audience including researchers, students, and legal/security practitioners. The website offers scholarly articles, podcasts created by AI, and research survey services. It is indexed in reputable academic databases such as EBSCO and DRJI, enhancing its visibility and credibility. The business model is non-profit with fundraising and sponsorship support. Technically, the site is built on Drupal 10 with modern frontend libraries and hosted on Websupport infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and professional content. Security posture is adequate with HTTPS and DNSSEC enabled, but lacks some security headers and formal privacy/cookie policies. Contact information is clearly provided, supporting business credibility.

K

KS-ORIGINAL GMBH

projekt-weiss.blog

52

KS-ORIGINAL GMBH operates the website projekt-weiss.blog, a professional German-language platform focused on promoting Kalksandstein (sand-lime brick) architecture and sustainable building projects. The site features project showcases, podcasts, and thematic content aimed at architects, builders, and construction professionals. The business positions itself as a niche leader in the Kalksandstein building materials sector, providing valuable content and engagement through multiple media formats. Technically, the site is built on Drupal 10 with modern web technologies, including lazy loading, responsive design, and integrated analytics via Matomo and Google Analytics. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response contacts are absent. The domain WHOIS data is privacy-protected, which is common and justified for business websites. Overall, the website is professional, trustworthy, and well-structured, serving its target audience effectively.

W

Wirtschaftsförderung Land Brandenburg GmbH

wfbb.de

62

Wirtschaftsförderung Land Brandenburg GmbH (WFBB) is a regional economic development agency focused on supporting investors, local companies, and innovative startups in Brandenburg, Germany. The website provides comprehensive information about their services including business promotion, cluster management, funding, and event organization. The target audience includes investors and businesses seeking economic development support in Brandenburg. Technically, the site is built on Drupal 10 with Matomo analytics, featuring good mobile optimization and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though lacks explicit security policies or vulnerability disclosures. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

V

Verein zur Förderung der entwicklungspolitischen Publizistik e.V.

welt-sichten.org

50

Welt-Sichten is a German-language non-profit magazine focused on global development and ecumenical cooperation. It is published by the Verein zur Förderung der entwicklungspolitischen Publizistik e.V. and partners with reputable NGOs such as Brot für die Welt and Misereor. The website offers rich content including articles, newsletters, and partner network contributions, targeting readers interested in social justice and development issues. Technically, the site is built on Drupal 10, uses Matomo and Google Tag Manager for analytics, and implements a consent management platform for GDPR compliance. Security posture is strong with HTTPS, security headers, and secure forms, though no explicit security policy or incident response contacts are found. WHOIS data is unavailable due to privacy protection, which is justified for this type of organization. Overall, the site is professional, trustworthy, and well-maintained.

A

ActionAid International

actionaid.org

65

ActionAid International is a well-established global non-profit federation dedicated to eradicating poverty and injustice through humanitarian aid, advocacy, and development programs. The organization operates in multiple countries worldwide, focusing on key themes such as women's rights, climate justice, emergencies, and economic and political issues. Their website reflects a professional and consistent brand image, providing comprehensive information about their mission, activities, and resources. The presence of multiple country-specific domains underscores their global footprint and operational scale. Technically, the website is built on Drupal 10, leveraging modern analytics tools like Google Analytics, Google Tag Manager, and Hotjar for user behavior insights. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting and DNS services utilize Cloudflare, enhancing availability and resilience. Privacy and cookie compliance are well implemented, including user consent mechanisms aligned with GDPR requirements. From a security perspective, the site enforces HTTPS and employs domain transfer protection. However, DNSSEC is not enabled, and no explicit security headers were detected in the HTML content, representing areas for improvement. No vulnerability disclosure or incident response contacts are publicly available, which could be enhanced to improve transparency and trust. Overall, the security posture is solid but could benefit from additional hardening and disclosure practices. The overall risk assessment is low, with no indications of malicious content or suspicious activity. The site is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic recommendations include enabling DNSSEC, publishing a vulnerability disclosure policy, adding security headers, and providing clear incident response contacts to further strengthen security and compliance posture.

R

Roundtable Human Rights in Tourism

humanrights-in-tourism.net

48

The Roundtable Human Rights in Tourism is a well-established non-profit association based in Germany, focused on promoting human rights within the tourism industry. It serves as a multi-stakeholder platform offering networking, training, impact assessments, and knowledge sharing to tourism companies and related stakeholders. The organization is recognized for its credibility and international reach, supporting companies in implementing human rights due diligence aligned with UN guidelines. Technically, the website is built on Drupal 10, uses Matomo for analytics, and incorporates modern front-end libraries, providing a good user experience with mobile optimization and accessibility. Security posture is solid with HTTPS enforced, though some security headers are missing and privacy compliance could be improved by adding explicit policies and consent mechanisms. The domain WHOIS data is missing or inaccessible, which is unusual and slightly reduces trust, but the professional content and clear contact information support legitimacy. Overall, the website is professional, content-rich, and trustworthy, serving an important role in the human rights and tourism sector.

D

Direktoratet for forvaltning og økonomistyring (DFØ)

anskaffelser.no

63

Anskaffelser.no is a Norwegian government portal managed by the Direktoratet for forvaltning og økonomistyring (DFØ), providing authoritative information, tools, and guidance on public procurement. The site targets public sector procurement professionals in Norway, offering comprehensive resources on regulations, sustainable procurement, and innovative purchasing practices. The website is well-branded, professionally designed, and consistent with government standards, reflecting a high level of trust and credibility. Technically, the site is built on Drupal 10 with modern JavaScript libraries, ensuring good performance, accessibility, and mobile optimization. Security posture is solid with HTTPS enforced and anti-bot measures on forms, though some security headers could be improved. Privacy compliance is adequate with links to comprehensive privacy policies on the parent organization’s site, but explicit cookie consent mechanisms are not evident. Overall, the site is a reliable and professional resource with a strong business credibility and moderate to high technical maturity.

S

SEFE Energy

sefe-energy.fr

51

SEFE Energy is a professional natural gas supplier targeting businesses and professionals in France. It offers tailored energy contracts, energy transition services including carbon compensation and audits, and emphasizes customer service quality. The company is part of the larger SEFE Group, an international energy enterprise owned by the German federal government, with sister sites in the UK, Netherlands, and Germany. The website is well-structured, professionally designed, and provides comprehensive information about its offerings and corporate values. Technically, the site is built on Drupal 10 and integrates modern analytics and marketing tools such as Matomo, Google Tag Manager, and Hotjar, alongside a cookie consent mechanism via Axeptio. The site is mobile-optimized, accessible, and SEO-friendly, with no detected blocking or WAF interference. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers and policies could be improved. The WHOIS data is not publicly available due to AFNIC privacy policies, but the domain is active and updated recently, consistent with a legitimate business. Contact information is clear, including a company email and physical address. Privacy and cookie policies are present and GDPR compliant. No adult or questionable content is found, making the site safe for general audiences. Overall, SEFE Energy demonstrates a mature digital presence with strong business credibility and a solid security baseline, though it could enhance transparency around security policies and incident response.

K

KS-ORIGINAL GMBH

ks-original.de

56

KS-ORIGINAL GMBH operates as a consortium of 21 medium-sized Kalksandstein (sand-lime brick) manufacturers in Germany, focusing on sustainable and durable architectural materials. The website serves as an information portal for products, services, and industry news, targeting architects, builders, and regional partners. The company maintains a professional online presence with a well-structured Drupal 10 CMS-based website, featuring modern design and mobile optimization. Technical infrastructure includes Bootstrap and Matomo analytics, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced but lacks advanced security headers and explicit privacy or cookie policies. No incident response or vulnerability disclosure information is publicly available, which could be improved to enhance trust and compliance. Overall, the site is trustworthy, professional, and aligned with its business sector, but could benefit from enhanced privacy and security transparency.

P

PROJEKT PRO GmbH

projektpro.com

55

PROJEKT PRO GmbH operates a professional German-language website offering specialized software solutions for architects and engineers, focusing on project planning, controlling, time tracking, and cost calculation. The company positions itself as an experienced provider with over 30 years in the market and more than 24,000 users, emphasizing efficiency and project profitability. The website features comprehensive content including product features, customer testimonials, webinars, and case studies, reflecting a mature digital presence. Technically, the site is built on Drupal 10 with modern JavaScript libraries such as Alpine.js and Lottie Player, ensuring a responsive and accessible user experience. Integration with Google Tag Manager, Google Analytics, and Demodesk indicates a well-instrumented marketing and analytics setup. Cookie consent mechanisms comply with GDPR requirements, enhancing privacy compliance. Security posture is solid with HTTPS enforced and cookie consent implemented, though some standard security headers like Content-Security-Policy and X-Frame-Options are not explicitly detected and should be added for enhanced protection. No vulnerabilities or exposed sensitive data were found in the content. However, the WHOIS data is missing or indicates the domain is not registered, which is a significant anomaly that reduces trustworthiness. This discrepancy between an active professional website and absent domain registration data requires further investigation to confirm legitimacy. Overall, the website is professional, secure, and privacy-conscious, but the domain registration inconsistency is a critical risk factor that impacts business credibility and trust.

A

Arts Council England

artscouncil.org.uk

70

Arts Council England is the national development agency for creativity and culture in England, funded by the government and the National Lottery. The organization supports the arts, museums, and libraries by providing funding, research, and strategic guidance to foster cultural growth and accessibility. The website reflects a mature digital presence built on Drupal 10, incorporating modern JavaScript frameworks and consent management tools to ensure compliance and user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though explicit security policies and incident response information are not publicly detailed. Overall, the site is professional, trustworthy, and well-optimized for accessibility and SEO, serving a broad audience including artists, cultural organizations, and the public.

G

Gesundheit Österreich GmbH

toolbox-opferschutz.at

59

The website toolbox-opferschutz.at is operated by Gesundheit Österreich GmbH, a government-affiliated organization in Austria focused on health promotion and victim protection. It serves as a comprehensive resource for healthcare professionals, victim protection groups, and affected individuals, providing educational materials, legal information, and networking opportunities. The site is well-positioned as a national competence center in Austria for these topics. Technically, the website is built on Drupal 10, employs Matomo analytics for privacy-respecting user tracking, and is optimized for mobile devices with good accessibility and SEO practices. The performance is moderate, and the site uses HTTPS with a valid SSL configuration, ensuring secure communications. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and no visible sensitive data exposure. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and GDPR compliance. No vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professionally maintained, and serves an important public health and social function. Strategic improvements in security headers and privacy consent would further strengthen its security posture and compliance.

J

JYSK

jysk.dk

60

JYSK is a well-established Danish retail company specializing in furniture and home goods, operating both online and through physical stores. The website demonstrates a strong market position with a comprehensive product offering and a clear focus on consumer and B2B customers. The site is professionally designed, mobile-optimized, and provides a seamless user experience with clear navigation and search capabilities. The business is supported by a mature digital infrastructure leveraging Drupal CMS, advanced marketing tools like Dynamic Yield, and robust analytics via Google Tag Manager and New Relic.

V

Verein für Männer- und Geschlechterthemen Steiermark

maennerinfo.at

52

MÄNNERINFO is a non-profit crisis telephone counseling service for boys and men in Austria, operated by a consortium of men's counseling centers and organized by the Verein für Männer- und Geschlechterthemen Steiermark. The service offers anonymous, confidential, and free 24/7 telephone support, including multilingual interpreted counseling and chat services. The website is professionally designed using Drupal 10 and modern web technologies, providing good accessibility and multilingual content. Security posture is adequate with HTTPS and no visible vulnerabilities, though improvements are recommended in cookie consent and security policy transparency. Overall, the site demonstrates high trustworthiness and business credibility, supported by government funding and public endorsements.

V

Verein Autonome Österreichische Frauenhäuser (AÖF)

gewalt-ist-nie-ok.at

49

The website gewalt-ist-nie-ok.at is a professionally developed non-profit platform managed by the Verein Autonome Österreichische Frauenhäuser (AÖF) in Austria. It provides comprehensive educational content and support resources focused on domestic violence awareness specifically targeted at children and youth. The site is multilingual and well-structured, emphasizing accessibility and user-friendly navigation. Technically, it is built on Drupal 10 with modern web technologies and includes a consent management platform ensuring GDPR compliance. Security posture is solid with HTTPS enforced, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the site demonstrates a strong commitment to privacy, compliance, and user safety.

M

Magazine Présences Grenoble

presences-grenoble.fr

54

Magazine Présences Grenoble is a regional economic media outlet affiliated with the Chamber of Commerce and Industry (CCI) Grenoble. It provides news, event information, business rankings, and resources primarily targeting business professionals, entrepreneurs, and economic stakeholders in the Grenoble region. The website is built on Drupal 10 and integrates modern technologies including Google APIs, YouTube API, Matomo analytics, and Google DoubleClick advertising. It features a professional design with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though additional security headers could enhance protection. The absence of WHOIS data limits domain trust assessment, but the website's affiliation with CCI Grenoble and professional presentation support its legitimacy. Overall, the site is a credible and valuable resource for its target audience.

A

ABVV - Algemeen Belgisch Vakverbond

abvv.be

11

ABVV is a well-established Belgian trade union organization founded in 1997, providing a wide range of services to workers, including unemployment support, rights advocacy, and social campaigns. The website is professionally designed using Drupal 10, with good mobile optimization and accessibility features. It integrates modern marketing and analytics tools such as Google Tag Manager and Flexmail for newsletters. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and vulnerability disclosure information. The domain registration is consistent with the organization's history, enhancing trustworthiness.

E

Econocom Deutschland GmbH

econocom.de

64

Econocom Deutschland GmbH is a well-established European digital transformation company providing integrated solutions including equipment, financing, and services tailored to business and public sector needs. The company operates under the Econocom Group umbrella with a strong presence in 16 countries and over 8,000 employees. Their website is professionally designed using Drupal 10, optimized for mobile, and includes comprehensive content about their offerings and corporate responsibility. The technical infrastructure is modern and secure, with HTTPS and cookie consent mechanisms implemented. Security posture is strong with no visible vulnerabilities or exposed sensitive data, though some security headers could be enhanced. Overall, the domain registration and WHOIS data align well with the company's claims, indicating legitimacy and trustworthiness.

T

Toerisme Vlaanderen

toerismevlaanderen.be

64

Toerisme Vlaanderen is the official government tourism organization for the Flanders region in Belgium, focused on strengthening tourism through strategic marketing and knowledge-driven support for tourism partners. The website serves as a comprehensive portal offering information, tools, research, and support services to tourism entrepreneurs and organizations. Technically, the site is built on Drupal 10 and integrates modern analytics and marketing technologies such as Google Tag Manager, Hotjar, and Mautic, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, consent-based cookie management, and no visible vulnerabilities, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR and cookie regulations, making it a reliable resource for its target audience.

F

FGTB-ABVV

fgtb.be

68

FGTB-ABVV is a well-established Belgian trade union organization with a domain registered since 1998. The website provides comprehensive services and information to its members and the public, focusing on labor rights, social advocacy, and member support. The site is built on Drupal 10, uses modern web technologies, and integrates marketing and analytics tools such as Google Tag Manager and Flexmail. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly documented. Overall, the website is professional, accessible, and trustworthy, serving a large audience in the government and non-profit sectors.

M

Manitou

manitou.com

64

Manitou is a well-established French manufacturing company specializing in handling, lifting, and earthmoving equipment for diverse sectors including agriculture, construction, and industries. With over 60 years of experience, the company offers a broad range of machinery such as telehandlers, forklift trucks, and aerial work platforms, complemented by attachments and services like financing and maintenance. The website reflects a mature global brand with extensive multilingual support and a professional digital presence. Technically, the website is built on Drupal 10, leveraging modern web technologies including Google Tag Manager and Matomo for analytics. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. The WHOIS data is notably missing, which reduces transparency but is likely due to privacy protection services. Despite this, the website's professional content, structured data, and social media presence support its legitimacy. No WAF or blocking mechanisms were detected, allowing full content access. Overall, Manitou's website demonstrates strong business credibility and technical maturity, with minor security and transparency gaps that can be addressed to enhance trust and compliance.

E

Else Kröner-Fresenius-Stiftung

ekfs.de

54

Else Kröner-Fresenius-Stiftung (EKFS) is a well-established German non-profit foundation founded in 1983, dedicated to funding medical research and supporting humanitarian projects. The website clearly communicates the foundation's mission, funding opportunities, and recent news, targeting medical researchers and humanitarian stakeholders. The organization maintains a professional online presence with comprehensive content and clear navigation, supporting its credibility and outreach efforts. Technically, the website is built on Drupal 10, leveraging modern web technologies including Matomo for privacy-conscious analytics and AddToAny for social sharing. The site is mobile-optimized, accessible, and performs moderately well. Hosting appears stable with consistent domain and DNS configurations. From a security perspective, the site enforces HTTPS, implements cookie consent mechanisms aligned with GDPR, and respects user privacy by disabling tracking cookies unless consented. No critical vulnerabilities or exposed sensitive data were detected. However, the site lacks explicit security policy documentation and incident response contacts, which are recommended for enhanced trust and compliance. Overall, EKFS demonstrates a strong digital maturity and trustworthy online presence suitable for its non-profit healthcare sector role. Strategic improvements in security transparency and formal policies would further strengthen its posture.

K

Kulturbüro Riehen

eigenundartig.ch

69

Riehen Events is a municipal cultural event platform operated by the Kulturbüro Riehen, providing comprehensive information about local cultural events, exhibitions, and community activities in Riehen, Switzerland. The website serves residents and visitors by offering event calendars, venue information, permit guidance, and cultural funding details. It supports event organizers with tools to submit events and promotes local culture effectively. Technically, the site is built on Drupal 10 with modern JavaScript libraries such as Alpine.js and Splide.js, ensuring a responsive and accessible user experience. The use of Matomo analytics with a cookie consent mechanism demonstrates a commitment to privacy and GDPR compliance. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-aligned with its municipal purpose.

S

Stadt Bielefeld

bielefeld.de

57

The website www.bielefeld.de is the official digital presence of the city of Bielefeld, Germany, serving as a comprehensive portal for municipal services, community information, city development, culture, and events. It targets residents, visitors, and businesses, providing a wide range of services including appointment scheduling, public announcements, and career opportunities. The site is well-positioned as the authoritative source for city-related information and services. Technically, the site is built on Drupal 10 with Bootstrap framework, hosted likely by Deutsche Telekom, and integrates privacy-conscious analytics via Matomo with cookies disabled and DoNotTrack respected. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms, and follows privacy best practices. However, it lacks explicit security policies or incident response information and could improve by adding additional security headers and a vulnerability disclosure policy. Overall, the security posture is solid but could be enhanced. The risk assessment is low given the official nature, absence of suspicious content, and good privacy compliance. Strategic recommendations include strengthening security headers, publishing security policies, and enhancing transparency around incident response and vulnerability disclosures.

A

AFT (Association pour le développement de la formation professionnelle dans le transport)

ambassadeurs-emploi-tl.com

61

The website ambassadeurs-emploi-tl.com represents a French initiative by the AFT organization to promote responsible engagement and employer branding in the transport and logistics sectors. It targets companies and professionals in these industries, offering a structured ambassador program with personalized support, recruitment facilitation, and networking opportunities. The site is well-branded, consistent, and provides relevant content including testimonials and partner information. Technically, it is built on Drupal 10 with modern tracking tools like Google Analytics and Tag Manager, hosted via Gandi SAS. The site is mobile-optimized and accessible with good SEO practices. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is basic with no explicit privacy policy or opt-in cookie consent. Contact information is limited to a single email address. Overall, the site is professional and trustworthy with room for improvement in privacy and security transparency.

K

Kunst Raum Riehen

kunstraumriehen.ch

70

Kunst Raum Riehen is a publicly funded cultural institution serving as the official exhibition space for contemporary art in the municipality of Riehen, Switzerland. The website provides comprehensive information about current and upcoming exhibitions, events, and art mediation activities, targeting a general audience interested in culture and the arts. The institution operates with free public access and maintains active engagement through newsletters and social media channels. Technically, the website is built on Drupal 10, leveraging modern JavaScript frameworks such as Alpine.js and Splide.js for interactive components. It employs Matomo analytics with privacy-conscious settings and a cookie consent mechanism, reflecting a mature digital infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. From a security perspective, the site enforces HTTPS, uses cookie consent, and avoids exposing sensitive data. However, it lacks explicit security policies and incident response contacts, and could improve by adding security headers and formal vulnerability disclosure mechanisms. Overall, the security posture is solid but could benefit from enhanced transparency and formal documentation. The domain registration aligns well with the website's municipal identity, showing no suspicious patterns and indicating high legitimacy. The website content is safe for general audiences, with no adult or questionable material. The overall risk is low, and the site demonstrates good compliance with privacy regulations such as GDPR.

S

Staatskanzlei des Landes Nordrhein-Westfalen

sportland.nrw

67

Sportland.NRW is an official government platform operated by the Staatskanzlei des Landes Nordrhein-Westfalen, dedicated to promoting sports activities, events, and funding opportunities within the North Rhine-Westphalia region. The website serves a broad audience including sports fans, athletes, clubs, and event organizers, providing comprehensive information about sports in the region, upcoming events, and government initiatives. The platform maintains a strong market position as the authoritative source for sports-related information in NRW, supported by consistent branding and official government endorsements. Technically, the website is built on Drupal 10 CMS, leveraging modern frontend technologies such as Font Awesome 6 and Bootstrap components. It integrates Matomo for privacy-conscious analytics and implements a robust cookie consent mechanism compliant with GDPR. The site is mobile-optimized and accessible, with good SEO practices and clear navigation, contributing to an excellent user experience. From a security perspective, the site enforces HTTPS and employs cookie consent controls to manage tracking. While DNSSEC is not enabled, the domain registration is consistent and transparent, with no suspicious patterns detected. No critical vulnerabilities or exposed sensitive data were found in the content. However, additional security headers and a vulnerability disclosure policy could enhance the security posture. Overall, Sportland.NRW presents a trustworthy, professional, and well-maintained digital presence for government sports promotion. The risk profile is low, with strong compliance to privacy regulations and good technical implementation. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing a security.txt file to further improve security and transparency.

M

MUKS Museum Kultur und Spiel Riehen

muks.ch

11

MUKS Museum Kultur und Spiel Riehen is a small cultural museum located in Riehen, Switzerland, focusing on exhibitions and programs related to local culture, history, and play. The website presents a professional and well-structured digital presence, offering detailed information about exhibitions, events, and visitor services. The museum targets a broad audience including families, children, students, and cultural visitors, operating primarily as a non-profit institution. Technically, the site is built on Drupal 10 with modern JavaScript libraries and includes privacy-conscious analytics via Matomo. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security policy and incident response information. Overall, the domain registration aligns well with the museum's identity, supporting trustworthiness and legitimacy.

G

GSUB - Gesellschaft für soziale Unternehmensberatung MbH

teilhabeberatung.de

61

The website www.teilhabeberatung.de represents the Ergänzende unabhängige Teilhabeberatung (EUTB®), a German non-profit advisory service supporting people with disabilities and their relatives regarding rehabilitation and participation. Operated by GSUB - Gesellschaft für soziale Unternehmensberatung MbH, the site offers comprehensive advisory services, publications, and a dedicated app for appointment scheduling. The organization holds recognized accessibility certification (BIK - BITV-konform) and maintains a professional online presence with clear navigation and content relevance. Technically, the site is built on Drupal 10, leveraging modern web technologies including Matomo for privacy-conscious analytics and ReadSpeaker for accessibility. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers and incident response policies are not published. No blocking mechanisms or WAF challenges were detected, allowing full content access. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, no direct contact emails or phone numbers are publicly listed, relying on contact forms for communication. Overall, the website is trustworthy, professionally managed, and aligned with its non-profit mission. Recommendations include enhancing security headers, publishing security and incident response policies, and considering a vulnerability disclosure program to further strengthen trust and security posture.

A

Amnesty International

amnesty.de

68

Amnesty International Germany operates a comprehensive website focused on human rights advocacy and activism. The organization is positioned as the largest global human rights movement, targeting a broad audience interested in social justice and human rights. The website provides information about activism opportunities both locally and online, reflecting a non-profit business model centered on membership and campaign engagement. Technically, the site is built on Drupal 10, leveraging modern JavaScript libraries and third-party tools such as Cookiebot for consent management and Visual Website Optimizer for A/B testing and analytics. The infrastructure indicates a mature digital presence with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented; however, the absence of explicit security headers and vulnerability disclosure mechanisms suggests room for improvement. Privacy compliance is partially addressed through cookie consent but lacks a visible privacy policy and terms of service. Overall, the website is professional, trustworthy, and safe for general audiences, with a solid foundation for further enhancements in security and compliance.

W

West Fraser Timber Company

westfraser.com

53

West Fraser Timber Company operates a professional corporate website focused on manufacturing renewable wood building products. The company targets construction professionals and sustainability-conscious customers, positioning itself as a large player in the manufacturing sector. The website is built on Drupal 10, leveraging modern technologies such as Google Tag Manager and Cookiebot for analytics and privacy compliance. The site is well optimized for mobile and accessibility, with good SEO practices and a clear cookie consent mechanism. Security posture is solid with HTTPS enforced, though explicit security headers are not detected and no vulnerability disclosure policy is published. WHOIS data for the domain is unavailable, which raises transparency concerns but does not negate the professional appearance and trust signals on the site. Overall, the website demonstrates a mature digital presence suitable for a large manufacturing business.

L

Landesprogramm SPORTLAND HESSEN bewegt

sportlandhessenbewegt.de

65

The website sportlandhessenbewegt.de represents the Landesprogramm SPORTLAND HESSEN bewegt, a government-backed initiative promoting sport, health, and physical activity across all life phases in the German state of Hessen. It serves as an informational and coordination platform for citizens, municipalities, and sports organizations, offering resources such as funding opportunities, projects, events, and networks. The site is well-branded with official Hessen government symbols and provides a professional user experience with clear navigation and accessibility features. Technically, the site is built on Drupal 10, leveraging modern web technologies including lazy loading images and accessible multimedia players. It is hosted within the Hessen state infrastructure, as indicated by the domain's nameservers. The website demonstrates good mobile optimization, SEO practices, and accessibility compliance, though performance is moderate. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and a vulnerability disclosure policy. Privacy compliance is strong with a comprehensive privacy policy in German, but no explicit cookie consent mechanism was detected. Contact information is primarily via a contact form, with no direct emails or phone numbers found. Overall, the website is a credible, secure, and professional government platform with minor areas for improvement in security headers and cookie consent. It poses low risk and effectively serves its public health promotion mission.

T

Theater Basel

theater-basel.ch

56

Theater Basel is a well-established cultural institution in Switzerland offering a diverse range of performing arts including opera, theater, and ballet. The website effectively communicates its offerings with detailed event calendars, production information, and ticket purchasing options. The institution targets a broad audience including families, schools, and general theater enthusiasts. Technically, the website is built on Drupal 10, employs modern web technologies, and integrates marketing and analytics tools such as Google Tag Manager and Facebook Pixel. Security posture is strong with HTTPS and security headers, though improvements can be made in privacy compliance by adding cookie consent mechanisms and publishing terms of service. Overall, the website reflects a professional and trustworthy organization with a solid digital presence.

B

Bundesstadt Bonn

bonn-macht-mit.de

55

Bonn-macht-mit.de is the official citizen participation portal for the city of Bonn, Germany. It provides a platform for residents to engage in local government decisions, participate in surveys, and stay informed about events and initiatives. The website is well-branded with official city logos and offers comprehensive information about ongoing participatory projects, targeting a broad audience including youth. Technically, the site is built on Drupal 10, uses Matomo for privacy-respecting analytics, and incorporates modern web technologies such as Font Awesome and CookiesJSR for cookie management. The site is mobile-optimized and accessible, with clear navigation and professional design. Security-wise, the site enforces HTTPS, respects Do Not Track settings, and implements cookie consent mechanisms, though it lacks some advanced security headers and a published security policy. Overall, the domain registration data aligns well with the website content and hosting, indicating legitimacy and trustworthiness.

D

Deutscher Behindertensportverband – National Paralympic Committee Germany

parasport.de

47

Parasport.de is the official platform of the Deutscher Behindertensportverband, serving as the National Paralympic Committee Germany. The website provides comprehensive information about para sports, including 22 paralympic summer and 6 winter sports, role models, clubs, training, and events. It targets para athletes, enthusiasts, and the general public interested in inclusive sports within Germany. The platform acts as a central hub for para sport promotion and community engagement. Technically, the website is built on Drupal 10, uses modern web technologies including Google Fonts, Google Tag Manager, and Google Maps API, and is optimized for mobile and accessibility. Security posture is strong with HTTPS, multiple security headers, and a cookie consent mechanism, although explicit privacy and terms of service pages are missing. The WHOIS data is minimal but consistent with a legitimate organization. Overall, the site is professional, trustworthy, and well-positioned as a national authority on para sports.

D

Deutscher Ruderverband e.V.

rudern.de

55

The website www.rudern.de is the official digital presence of the Deutscher Ruderverband e.V., the German Rowing Federation. It serves as a comprehensive resource for rowing athletes, clubs, and enthusiasts in Germany, offering detailed information on national teams, competitions, youth programs, and organizational governance. The site demonstrates a high level of professionalism with excellent content quality, clear navigation, and consistent branding. Technically, it is built on Drupal 10, employs modern web standards, and is optimized for mobile devices. Security practices include HTTPS enforcement and a GDPR-compliant cookie consent mechanism, though some security headers and explicit incident response policies are absent. Overall, the domain and website content align well, indicating legitimacy and trustworthiness.

H

HBF Furniture

hbf.com

67

HBF Furniture is a premium manufacturer specializing in contract office seating, tables, and hospitality furniture, with a strong legacy and market presence supported by its parent company, HNI Corporation. The website is built on a modern Drupal 10 CMS platform, leveraging contemporary web technologies and third-party services such as Google Tag Manager and Facebook Pixel for analytics and marketing. The site demonstrates good mobile optimization, accessibility, and SEO practices, providing a professional user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response policies are not published. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the professional branding and external domain relationships. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and improving transparency around domain registration.

L

Link Arkitektur A/S

linkkompass.ai

66

Link Arkitektur A/S operates the website linkkompass.ai, offering a digital sustainability dialogue tool called LINK Kompass® aimed at guiding projects and businesses through environmental and social sustainability requirements. The company is positioned as a leading Scandinavian architectural business with a focus on strategic sustainability consulting. The website is built on Drupal 10, uses Cookiebot for GDPR-compliant cookie consent, and supports multiple languages including Norwegian Bokmål. The technical infrastructure is modern and well-implemented, with good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website reflects a professional and trustworthy business presence in the sustainability consulting sector.

S

Students' Union UCL

studentsunionucl.org

10

Students' Union UCL is a well-established non-profit organization representing University College London students. The website serves as a central hub for student engagement, providing access to support services, events, clubs, and representation. The organization has a strong market position within the education sector, supported by a consistent brand and comprehensive content. Technically, the website is built on Drupal 10 with modern web technologies and integrates analytics and user behavior tracking tools such as Google Analytics and Hotjar. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS and anonymized analytics, though improvements are recommended in security headers and vulnerability disclosure. Privacy compliance is mostly met with a clear privacy policy, but cookie consent mechanisms are lacking. Overall, the domain registration data aligns well with the organization's profile, supporting legitimacy and trustworthiness.

P

PTV Logistics

ptvlogistics.com

73

PTV Logistics operates as a global leader in providing advanced software solutions for route planning, optimization, real-time transport visibility, and delivery management. Their SaaS offerings target logistics and transport managers aiming to improve efficiency, reduce costs, and support sustainable road logistics. The company emphasizes a self-learning SaaS suite backed by over 40 years of expertise, positioning itself strongly in the transportation software market. Technically, the website is built on Drupal 10 with modern frontend technologies including Tailwind CSS and JavaScript frameworks. It integrates Google Tag Manager and reCAPTCHA for analytics and security. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is robust with HTTPS enforced, cookie consent mechanisms, and bot protection via reCAPTCHA. However, the absence of explicit incident response contacts, vulnerability disclosure, and terms of service pages indicates areas for improvement. The lack of WHOIS data limits domain trust verification, though the professional website presence suggests legitimacy. Overall, the website presents a secure, professional, and privacy-compliant front for PTV Logistics, with recommendations to enhance transparency and domain trustworthiness.

A

AS 24

as24.com

63

AS 24 is a well-established European fuel and mobility services provider targeting professional transport companies, especially heavy goods vehicles. The company operates a large network of service stations and offers a range of services including fuel cards, toll payment solutions, fleet management, and electric vehicle charging. The website is professionally designed using Drupal 10, with good content quality and multilingual support. Privacy compliance is well addressed through a comprehensive cookie consent mechanism. However, the lack of publicly available WHOIS data and absence of explicit security policies or incident response contacts slightly reduce trustworthiness. Overall, the site demonstrates a mature digital presence aligned with its business sector.

K

Kulturbüro Riehen

riehenevents.ch

69

Riehen Events is a municipal cultural event platform operated by the Kulturbüro Riehen, serving the local community and visitors by providing comprehensive event listings, cultural information, and support for event organizers. The website is positioned as a trusted local hub for cultural engagement in Riehen, Switzerland, with a focus on accessibility and community involvement. Technically, the site is built on Drupal 10 with modern JavaScript frameworks and includes privacy-conscious analytics via Matomo. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. Overall, the site demonstrates good digital maturity and professionalism, supporting its role as a public service platform.

G

Gemeinde Riehen Kulturbüro

riehen-tourismus.ch

65

The website www.riehen-tourismus.ch serves as the official tourism portal for the municipality of Riehen in Switzerland. It provides comprehensive information about local attractions, cultural sites, events, parks, dining, and accommodations, targeting tourists and visitors interested in exploring the region. The site is recognized by Switzerland Tourism and the Federal Office of Culture, enhancing its credibility and market position as a trusted local tourism authority. The business model focuses on destination marketing and visitor information services, supporting local tourism growth and cultural engagement. Technically, the website is built on Drupal 10, leveraging modern JavaScript libraries such as Splide.js for UI components and Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and SEO-friendly, with a cookie consent mechanism ensuring GDPR compliance. Hosting details are not explicitly disclosed, but the site uses HTTPS with strong SSL configuration, contributing to a secure user experience. From a security perspective, the site demonstrates good practices including HTTPS enforcement, cookie consent, and no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policy documentation, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced security posture. The WHOIS data aligns well with the website's municipal identity, showing consistent registration information and no suspicious patterns. Overall, the website is professional, trustworthy, and well-suited for its purpose as a tourism information portal. Strategic improvements include publishing formal security and incident response policies and adding vulnerability disclosure information to strengthen user trust and security readiness.

F

Freizeitzentrum Landauer

landauer.ch

67

Freizeitzentrum Landauer is a community leisure center based in Riehen, Switzerland, providing a wide range of indoor and outdoor activities, event hosting, and social spaces for children, youth, and adults. The website reflects a local government or non-profit operated facility focused on community engagement and cultural activities. The digital infrastructure is built on Drupal 10 with modern JavaScript libraries and includes privacy-conscious analytics via Matomo. The site is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. Security posture is good with HTTPS enforced and cookie consent implemented, though formal security policies and incident response contacts are absent. Overall, the domain registration data aligns well with the website's community focus, indicating legitimacy and trustworthiness.

E

Eurexpo Lyon | Lyon events

eurexpo.com

63

The website www.gl-lyonevents.com/fr/eurexpo-lyon serves as an informational platform focused on events at Eurexpo Lyon, a major event venue in Lyon, France. The site appears to target event organizers and attendees interested in Lyon-based events, providing venue details and event-related content. The business model centers on event promotion and support services, although explicit business details and company information are not disclosed on the site. Technically, the site is built on Drupal 10 CMS and integrates modern web technologies including YouTube APIs, lazy loading for images, Matomo analytics, and Google Tag Manager for tracking and marketing purposes. The site is mobile-optimized and includes accessibility features, contributing to a moderate user experience and performance level. Security-wise, the site uses HTTPS and implements a cookie consent mechanism, but lacks visible security headers and published privacy or terms policies, which are important for compliance and trust. The WHOIS data for the domain is unavailable, raising concerns about domain legitimacy and transparency. Overall, the site is functional but would benefit from enhanced security practices, clearer business disclosures, and compliance documentation to improve trust and credibility.

V

Val Surses

valsurses.ch

66

Val Surses is a regional tourism website promoting winter sports, accommodations, and events in the Val Surses area of Switzerland, including Savognin and Bivio. The site targets tourists interested in skiing, ski tours, and local cultural events. The business model focuses on providing information and booking services to visitors, positioning itself as a key regional tourism facilitator. Technically, the website is built on Drupal 10, uses modern JavaScript libraries such as Swiper.js, and integrates Google Tag Manager and Fusedeck for analytics and tracking. The site is mobile-optimized and accessible with good SEO practices. Security posture is strong with HTTPS and security headers implemented, though explicit privacy and terms policies are missing. Overall, the site is professional and trustworthy but could improve privacy compliance and contact transparency.

B

Börsenblatt

boersenblatt.net

70

Börsenblatt.net is a leading German trade magazine website serving the book industry, providing news, background information, and services for book retailers and publishers. The site is professionally designed, mobile-optimized, and integrates multiple analytics and advertising technologies, including Google Analytics, Matomo, and Revive Adserver. The website demonstrates a mature digital infrastructure with comprehensive cookie consent management and GDPR compliance. However, the WHOIS data for the domain is unavailable, which raises moderate concerns about domain registration transparency. No explicit contact emails or phone numbers are present on the site, which could impact user trust and business credibility. Overall, the website is secure with proper HTTPS and security headers, and it maintains a high level of content quality and user experience.

V

Val Surses

val-surses.ch

65

Val Surses is a regional tourism website promoting winter sports, accommodations, and activities in the Val Surses area of Switzerland, including Savognin and Bivio. The site targets tourists interested in winter holidays and outdoor experiences, offering booking services and information about local events and weather. Technically, the website is built on Drupal 10, uses Google Tag Manager for analytics, and includes a chat widget for user interaction. The site is mobile-optimized with a professional design and good navigation. Security-wise, the site uses HTTPS and has cookie consent mechanisms denying ad personalization and storage by default, but lacks explicit privacy policy and terms of service pages, which are important for GDPR compliance. No security incidents or vulnerabilities are evident from the content. Overall, the website is legitimate, professional, and safe for general audiences, but could improve privacy transparency and contact information to enhance trust and compliance.

A

Angus Council

angus.gov.uk

67

Angus Council operates as the official local government authority for the Angus region in Scotland, providing a broad spectrum of public services including housing, council tax, benefits, planning, and community support. The website serves residents and businesses with accessible information and service portals, reflecting a mature public sector digital presence. The council maintains a strong market position as a regional government entity with a focus on community engagement and service delivery. Technically, the website is built on Drupal 10, leveraging modern web technologies and analytics tools such as Google Analytics, Google Tag Manager, and Siteimprove Analytics. The site is mobile-optimized, accessible, and incorporates a chatbot for enhanced user interaction. Performance is moderate with good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. However, explicit security headers are not evident, and there is no public security policy or incident response information. No vulnerabilities or exposed sensitive data were detected, indicating a solid security posture for a government website. Overall, the website is trustworthy, professional, and compliant with privacy regulations. The absence of WHOIS data limits domain age and registrant verification, but the .gov.uk domain and content strongly support legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and establishing a vulnerability disclosure program to further strengthen security and transparency.