Security Directory

C

Cesta z krize, z.ú.

linkapsychickepomoci.cz

48

The website linkapsychickepomoci.cz represents a non-profit organization named Cesta z krize, z.ú., providing free, anonymous, and 24/7 psychological crisis support services primarily to adults in the Czech Republic. The service offers telephone and chat support to individuals facing acute psychological distress or crisis situations. The organization is government co-financed and partners with other NGOs, positioning itself as a trusted social service provider in the mental health support sector. Technically, the website employs modern web technologies including Google Tag Manager, Cookiebot for cookie consent management, and Smartsupp for live chat functionality. The site is hosted by Active24 and demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO and metadata are present but could be enhanced for better discoverability. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of a privacy policy and terms of service pages, as well as no security.txt file, indicates areas for compliance and security improvement. Overall, the website is safe, professional, and trustworthy, with a clear focus on mental health crisis support. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and terms policies, and improving accessibility compliance to strengthen user trust and regulatory adherence.

C

Cesta z krize, z.ú.

linkaztracenedite.cz

49

The website 'Linka pro rodinu a školu' is a Czech non-profit social service platform operated by 'Cesta z krize, z.ú.' focused on supporting families, children, and adults in crisis situations, particularly related to missing children and school or family problems. It offers telephone crisis intervention, online chat support, and professional counseling, positioning itself as a trusted and officially recognized service with backing from national and European institutions. The site targets a broad audience including families, educators, and the general public. Technically, the website employs modern web technologies such as Google Tag Manager and Cookiebot for consent management, with a moderate performance profile and good mobile optimization. Hosting is provided by Active24, consistent with the domain registration data. The site implements a comprehensive cookie consent mechanism with granular user controls, reflecting a good level of privacy compliance, although explicit privacy policy and terms of service pages are not clearly found in the provided content. From a security perspective, the site uses HTTPS (implied by external scripts loaded via HTTPS), but no explicit security headers or advanced security policies are evident in the HTML content. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is transparent and consistent with the organization's profile, indicating a legitimate and stable domain registration. Overall, the website demonstrates a solid risk posture with good privacy compliance and business credibility. Recommendations include enhancing security headers, publishing explicit security and incident response policies, and improving accessibility features to further strengthen the site's security and compliance posture.

up4.cz is a Czech Republic-based small technology company specializing in the development of sophisticated custom software applications. Their offerings include web applications, Android and iOS apps, automation tools, GIS mapping systems, and data conversion bridges. The company emphasizes user-friendly, efficient software solutions tailored for demanding clients, with a business history dating back to 2001. The website presents a professional image with detailed service descriptions, client testimonials, and multiple contact channels, including a contact form with captcha and phone support. Social media presence on Twitter, Instagram, and Facebook supports their outreach. Technically, the website uses modern frontend technologies such as Bootstrap 5.2, jQuery, FontAwesome, and the Nette PHP framework. It is mobile optimized and includes cookie consent mechanisms compliant with GDPR principles. Google Analytics and Google Tag Manager are used for analytics with user consent management. However, no explicit privacy policy or terms of service pages were found, and WHOIS data for the domain is unavailable, which raises some concerns about domain registration transparency. Security posture is generally good with HTTPS enforced and secure form handling, but the absence of visible security headers and lack of published security or incident response policies suggest room for improvement. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is safe, professional, and trustworthy, but the missing WHOIS data and privacy documentation slightly reduce the trust score. Recommendations include adding explicit privacy and terms of service pages, publishing security policies and incident response contacts, implementing security headers, and verifying domain registration details to enhance trust and compliance.

A

AF-CIX powered by DE-CIX Management GmbH

af-cix.net

62

AF-CIX is a telecommunications interconnection exchange hub based in Lagos, Nigeria, serving the West African region with strategic connectivity to Europe. Powered by DE-CIX Management GmbH, it offers services such as GlobePEER, Blackholing, and VirtualPNI to network operators and content providers. The website is professionally designed, mobile-optimized, and provides comprehensive information about services and access. Technically, it uses modern frameworks including Neos CMS and PHP Flow, with Google Tag Manager for analytics and tracking. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are absent. The lack of WHOIS data for the domain reduces transparency but the association with DE-CIX supports legitimacy. Overall, the site is trustworthy, business-focused, and compliant with GDPR requirements.

P

Pollen Science - Aktuelle Daten

pollenscience.eu

45

The website 'Pollen Science - Aktuelle Daten' appears to be an informational platform focused on providing current data related to pollen science. The content is primarily scientific and targeted at users interested in environmental and pollen-related data. The technical infrastructure is based on modern web technologies such as Bootstrap 4.4.1 and FontAwesome, ensuring basic mobile optimization and responsive design. However, the site lacks comprehensive privacy, cookie, and terms of service policies, as well as contact information, which limits its business credibility and privacy compliance. Security posture is minimal with no detected security headers or incident response contacts. Overall, the site is accessible and safe but would benefit from enhanced security and compliance measures.

B

BIO-TECH Betriebshygiene GmbH

biotech.at

47

BIO-TECH Betriebshygiene GmbH is a small Austrian company specializing in hygiene services and training primarily targeting industrial and gastronomy businesses as well as private customers. The website presents a professional and consistent brand image with clear navigation and relevant content in German. The business model focuses on providing hygiene solutions and educational offerings, positioning itself as a niche regional service provider. Technically, the website is built on WordPress with common optimization plugins such as Autoptimize and lazy loading for images, delivering moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enforced and cookie consent implemented, though lacking advanced security headers and explicit security policies. Privacy compliance is well addressed with a privacy policy and cookie banner, indicating GDPR awareness. Overall, the website is trustworthy and professionally maintained, with no signs of suspicious activity or content blocking.

H

HostX

hostx.ro

63

HostX is a Romanian web hosting and domain registration provider offering a wide range of services including SSD web hosting, VPS servers, SSL certificates, and business email hosting. The company targets businesses and individuals in Romania seeking reliable and affordable hosting solutions. Their market position is that of a competitive local provider with a comprehensive service portfolio and attractive pricing. Technically, the website uses modern JavaScript libraries such as jQuery and OwlCarousel, integrates Google Tag Manager and Cookiebot for analytics and cookie compliance, and is optimized for mobile devices with good SEO practices. Security-wise, the site enforces HTTPS and provides a detailed cookie consent mechanism, but lacks visible advanced security headers and a published security policy or incident response contacts. The WHOIS data is privacy protected as per ROTLD policies, which is typical for Romanian domains, and no suspicious domain registration patterns were detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

E

European School Education Platform Support

esep-support.eu

57

The European School Education Platform Support website serves as an official support portal for the European School Education Platform, targeting school teachers and education professionals across Europe. It offers a comprehensive set of guides, knowledgebase articles, and release announcements to assist users in navigating and utilizing the platform effectively. The site is multilingual, supporting a wide range of European languages, enhancing accessibility for its diverse audience. The business model focuses on providing informational and support services rather than direct commercial transactions. Technically, the website is built on the DeskPRO helpdesk platform, leveraging modern web technologies including FontAwesome, Google Fonts, and polyfills for broad browser compatibility. The hosting provider is OVH SAS, a reputable European hosting company. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The technical infrastructure is solid but could benefit from additional security headers and enhanced privacy compliance features. From a security perspective, the site enforces HTTPS and uses secure login forms, indicating a baseline security posture. However, it lacks explicit security headers such as Content Security Policy and HSTS, and does not provide publicly accessible security policies or vulnerability disclosure mechanisms. No direct contact emails or phone numbers are provided, limiting direct communication channels. There are no signs of tracking or advertising scripts, which supports user privacy but also indicates limited analytics usage. Overall, the website is trustworthy and professional, serving its educational support purpose well. The main risks relate to the absence of privacy and cookie policies, lack of explicit security headers, and missing incident response information. Addressing these gaps would enhance compliance and security posture, further strengthening user trust and regulatory alignment.

G

GfA Lüneburg – gkAöR (gemeinsame kommunale Anstalt des öffentlichen Rechts)

gfa-lueneburg.de

53

GfA Lüneburg is a public municipal waste management entity operating in the Landkreis and Hansestadt Lüneburg, Germany. It provides comprehensive waste collection, transport, composting, and problem waste disposal services with a workforce of approximately 220 employees. The organization is positioned as a certified waste management specialist and serves both private and commercial customers. The website reflects a regional public service provider with a clear focus on environmental sustainability and community service. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Contact Form 7, including Google reCAPTCHA v3 for form security. The site is mobile optimized and SEO friendly but lacks some advanced security headers and a cookie consent mechanism, which are recommended for GDPR compliance. Security posture is good with HTTPS enforced and no visible vulnerabilities, but improvements in security headers and incident response disclosures are advised. Overall, the domain and website content are consistent with a legitimate public entity, though WHOIS data is minimal. Strategic recommendations include enhancing security headers, adding cookie consent, and publishing a vulnerability disclosure policy to improve trust and compliance.

F

Frauen gewinnen

frauen-gewinnen.eu

55

Frauen gewinnen is a government-backed initiative focused on promoting women's participation in the labor market in Niedersachsen, Germany. The website serves as an informational and support platform, providing resources, project information, and networking opportunities to women at various stages of their careers, including special focus groups such as single mothers, refugees, and female entrepreneurs. The initiative is funded by the Niedersächsisches Ministerium für Soziales, Gesundheit und Gleichstellung and co-financed by the European Union through the RIKA program. The site is built on TYPO3 CMS and uses Matomo for analytics, reflecting a moderate level of digital maturity with good mobile optimization and accessibility.

The website 'netzwerk-familie-wirtschaft.de' represents a regional non-profit network focused on promoting family-friendly business practices and supporting women's integration into the workforce in the German regions of Landkreis Harburg, Lüneburg, and Uelzen. It offers networking events, workshops, and coordination services to its members, targeting companies and individuals interested in family-friendly policies. The site is well-structured, with clear navigation and relevant content tailored to its audience. Technically, the website is built on Joomla CMS with Bootstrap framework, hosted by Cloudpit. It demonstrates moderate performance and good mobile optimization. The site uses HTTPS and implements a cookie consent mechanism, reflecting a privacy-conscious approach. However, it lacks advanced security headers and explicit incident response or vulnerability disclosure information. From a security perspective, the site shows good practices such as HTTPS enforcement and cookie consent but could improve by adding security headers and publishing security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is adequate with a clear privacy policy and cookie banner. Overall, the website is trustworthy, professional, and safe for general audiences. It effectively serves its niche community with relevant content and events. Strategic improvements in security policies and technical headers would enhance its security posture and compliance.

T

Tilastokeskus

stat.fi

65

Tilastokeskus is the official Finnish government statistics agency responsible for producing reliable and impartial official statistics about Finnish society. It leads and develops the state statistical system, serving a broad audience including policymakers, researchers, and the general public. The website demonstrates a mature digital presence with a modern Next.js and React-based infrastructure, hosted on Azure CDN, ensuring fast and mobile-optimized access. Security is robust with HTTPS, multiple security headers, and a clear cookie consent mechanism, although DNSSEC is not implemented. Privacy policies and terms of service are comprehensive and GDPR compliant, reflecting strong governance. Overall, the site is trustworthy, professional, and well-maintained, supporting the agency's mission effectively.

B

Banskobystrický samosprávny kraj

bbsk.sk

59

Banskobystrický samosprávny kraj operates as the regional government authority for the Banská Bystrica region in Slovakia, providing a comprehensive online portal with information and services for citizens, businesses, and organizations. The website offers detailed sections on social services, healthcare, culture, education, transportation, environmental planning, and regional projects, positioning itself as a key informational and service hub for the region. The site targets a broad audience including residents, entrepreneurs, and public institutions within the region. Technically, the website employs modern web technologies including October CMS, Bootstrap framework, service workers for PWA capabilities, and integrates third-party services such as Google Fonts and Facebook SDK. Hosting appears to leverage Azure services for chatbot functionality. The site is mobile-optimized, accessible, and SEO-friendly, with a consistent and professional design. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and avoids exposing sensitive data. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. The WHOIS data confirms the domain's legitimacy and consistent registration with the official government entity. Overall, the website demonstrates a strong digital presence with good content quality, technical implementation, and privacy compliance, suitable for a government institution. Strategic enhancements in security transparency and incident response readiness would further strengthen its posture.

C

Conventus Congressmanagement & Marketing GmbH

conventus.de

50

Conventus Congressmanagement & Marketing GmbH is a well-established congress agency based in Jena, Germany, with over 25 years of experience in managing congresses and events. Their website reflects a professional service provider targeting organizations and professionals seeking comprehensive congress management, including digital and hybrid event solutions. The company maintains a consistent brand presence and offers a range of specialized services such as IT service, greenscreen studio, and congress technology. Technically, the website is built on TYPO3 CMS with Bootstrap and FontAwesome, hosted on AWS infrastructure, and includes modern analytics tools like Matomo and Facebook Pixel. The site is mobile-optimized and SEO-friendly, providing a good user experience. Security-wise, the site uses HTTPS and implements cookie consent mechanisms, but lacks visible HTTP security headers and a published security policy or incident response contacts. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and consistency. The website does not contain any adult or questionable content and is fully accessible without WAF blocking.

T

Technische Hochschule Lübeck

hochschulen.sh

63

Hochschulen Schleswig-Holstein is a regional educational platform representing multiple higher education institutions in Schleswig-Holstein, Germany. The website serves as an information hub for prospective and current students, highlighting study programs, campus locations, and the quality of life in the region. The platform is operated under the auspices of Technische Hochschule Lübeck, reflecting a credible and consistent institutional presence. Technically, the website is built on WordPress with popular plugins such as WPBakery Page Builder and Slider Revolution, ensuring a modern and responsive user experience. Security is adequate with HTTPS enforced and domain transfer protections in place, though improvements such as DNSSEC and enhanced HTTP security headers are recommended. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website is professional, trustworthy, and well-positioned to serve its educational audience effectively.

M

Meisterclub

meister-club.de

43

Meisterclub is a professional networking platform affiliated with the Handwerkskammer Schwerin, targeting master craftsmen and students across various trades. The website serves as a hub for networking, events, and professional development opportunities, positioning itself as a regional leader in fostering connections within the crafts sector. The business model revolves around community building and providing exclusive access to events and educational resources. Technically, the site is built on WordPress using Elementor and the OceanWP theme, supported by modern web technologies and Google analytics tools, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements could be made by adding security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

isoplus (Schweiz) AG is a Swiss-based company specializing in district heating systems, including high-quality heating pipes, heat transfer stations, control technology, and ceiling radiant panels. The company targets businesses and organizations in the energy and construction sectors, offering tailored heating solutions. The website reflects a professional and consistent brand presence with clear navigation and relevant business content. Technically, the site is built on WordPress with Bootstrap and jQuery, providing a moderate performance and good mobile optimization. However, some technical improvements are recommended, such as implementing security headers and properly configuring analytics tools. Security posture is adequate with HTTPS enabled but lacks advanced security headers and policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

B

Bundesverband Erneuerbare Energie e.V.

bee-ev.de

56

The Bundesverband Erneuerbare Energie e.V. (BEE) is a German national umbrella association representing various renewable energy sectors including wind, solar, biomass, hydropower, and geothermal. The organization acts as a non-profit advocacy group aiming to promote 100% renewable energy across electricity, heat, and mobility sectors. Their website provides news, publications, event information, and policy positions targeted at stakeholders in the renewable energy industry in Germany. The site is professionally designed, well-structured, and mobile-optimized, running on TYPO3 CMS with modern frontend technologies.

S

Sønderborg Kommune

sonderborgkommune.dk

76

Sønderborg Kommune operates as the official municipal government website for the Sønderborg region in Denmark, providing a comprehensive range of public services to its citizens. The site targets residents and visitors seeking information on personal affairs, health and care, construction, education, traffic, employment, and environmental issues. It holds a strong market position as a local government authority with a well-established digital presence since 1997. Technically, the website leverages Drupal CMS, integrates privacy-focused analytics via Matomo, and employs Cookiebot for GDPR-compliant cookie consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure suitable for public sector needs. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms to comply with privacy regulations. However, it lacks explicit security headers and a public security policy or incident response contact, which are areas for improvement. No critical vulnerabilities or WAF blocking were detected, indicating a stable security posture. Overall, Sønderborg Kommune's website is a trustworthy, professional, and privacy-conscious platform that effectively serves its public audience. Strategic enhancements in security policy transparency and DNS security could further strengthen its risk profile and compliance stature.

A

ABR-IT

abr-it.de

61

ABR-IT is a small German IT service provider specializing in comprehensive IT solutions including web design, consulting, cloud services, telephony, and security technology. The company targets small to medium businesses and private clients, positioning itself as a trusted regional IT partner with certifications from Microsoft, Ionos, Hetzner, and Easybell. The website is built on WordPress with Elementor and integrates modern technologies such as Google Tag Manager and Complianz for GDPR compliance. Security posture is good with HTTPS and cookie consent mechanisms, though improvements in security headers and incident response transparency are recommended. Overall, the website is professional, user-friendly, and compliant with privacy regulations, reflecting a mature digital presence.

V

vgbe

vgbe.energy

66

vgbe.energy is a professional energy sector association website focused on providing industry events, seminars, publications, and technical services primarily in Germany. The site targets energy professionals and companies involved in various energy technologies such as hydrogen, wind, photovoltaics, and carbon capture. The technical infrastructure is based on WordPress with modern plugins and frameworks, offering a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal policies. The absence of WHOIS registrant data reduces trust slightly but the website content and external references support legitimacy. Overall, the site is well-positioned in its niche but could improve transparency and security compliance.

A

AGFW - Der Energieeffizienzverband für Wärme, Kälte und KWK e.V.

agfw-regelwerk.de

61

AGFW is a German industry association specializing in standardizing minimum requirements across the heat and cold supply sector. The website serves as a professional portal providing access to technical rulebooks and regulatory documents primarily for members and subscribers. The organization positions itself as a key standard-setter in the energy sector, supporting operational companies with up-to-date technical guidelines. Technically, the site employs modern web technologies including Bootstrap, jQuery, and FontAwesome, with Google Analytics and Tag Manager integrated for analytics and marketing purposes. The site is hosted on servers associated with giordano-online.net and uses HTTPS with privacy-conscious configurations such as IP anonymization. Security posture is moderate with good practices like CSRF tokens and cookie consent, though lacking explicit security policies or incident response contacts. Overall, the website is professional, well-structured, and compliant with GDPR, targeting industry professionals and members. No blocking or WAF mechanisms were detected, and no adult or questionable content is present.

L

Landgut Stober

landgut-stober.de

56

Landgut Stober is a well-established sustainable hospitality and event venue located near Berlin, Germany. The company offers a range of services including conference hosting, weddings, corporate and private events, and accommodation in an eco-friendly and historic setting. The business is recognized for its sustainability certifications and awards, positioning it as a leader in green hospitality in the region. The website is professionally designed, content-rich, and targets corporate clients and event planners seeking environmentally responsible venues. Technically, the site uses modern web technologies and a reputable CMS (Contao), with good mobile optimization and SEO practices. Security posture is solid with HTTPS and some security headers, though improvements like CSP and HSTS are recommended. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the domain registration and website content are consistent and trustworthy, supporting a high legitimacy score.

E

easyfeedback

indivsurvey.de

48

The website indivsurvey.de is a login portal for the easyfeedback survey tool, a SaaS platform focused on survey creation and feedback collection. The business operates primarily in the technology sector, targeting businesses and individuals requiring survey solutions. The site is professionally designed with consistent branding and good user experience, supporting mobile optimization and basic accessibility. The technical infrastructure leverages modern JavaScript libraries, Google Tag Manager for analytics, and Cookiebot for cookie consent management, indicating a moderate level of digital maturity. Security posture is solid with HTTPS enforced and secure form handling, though the absence of explicit security policies and incident response information suggests room for improvement. Overall, the site is trustworthy and functional, with no signs of blocking or WAF interference.

K

Startseite - Konsens Booking

konsens-booking.com

60

Konsens Booking operates as an online hotel booking platform specializing in providing hotel room reservations for attendees of selected events and congresses primarily in the German-speaking DACH region. The website offers curated hotel options linked to various medical and scientific congresses, targeting event participants seeking convenient accommodation solutions. The business model focuses on acting as an intermediary between event attendees and hotel partners, facilitating bookings for niche event markets. The site content is primarily in German with an option to switch to English, indicating a regional focus with some international accessibility. From a technical perspective, the website employs common web technologies including jQuery, Google Analytics, and Google Tag Manager for tracking and analytics. The site is mobile optimized with a responsive design and includes a GDPR-compliant cookie consent mechanism. However, no CMS or hosting provider information is explicitly detectable, and no advanced frameworks are identified. Performance is moderate with good SEO practices evident through meta tags and sitemap inclusion. Security posture shows some strengths such as IP anonymization in analytics and cookie consent compliance, but lacks visible HTTP security headers and publicly available security policies or incident response contacts. The absence of WHOIS registration data raises concerns about domain legitimacy and transparency, although the professional presentation and GDPR compliance suggest a legitimate business operation. No direct contact emails or phone numbers are found on the homepage, with contact presumably via a form on a dedicated contact page. Overall, the website is functional and professional but would benefit from improved transparency regarding domain registration, enhanced security headers, and clearer direct contact information. These improvements would strengthen trustworthiness and security posture, supporting better compliance and user confidence.

I

Industrial Quick Search

industrialquicksearch.com

48

Industrial Quick Search is a well-established online industrial manufacturer directory founded in 2000, serving the OEM market and manufacturing industry primarily in the United States. The platform connects buyers and suppliers in plastic and metal commercial businesses, offering patented vendor preview and request for quote tools. It also provides marketing services such as SEO, social media management, PPC, and web design to industrial manufacturers. The website demonstrates consistent branding and a clear business model focused on facilitating industrial supply chain connections. Technically, the website uses a modern tech stack including jQuery, Materialize CSS, FontAwesome, and Google Analytics, hosted by DreamHost. The site is mobile optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate, and the site lacks a CMS indication, suggesting a custom-built platform. From a security perspective, the site uses HTTPS but lacks DNSSEC and visible security headers, which could be improved. No security or incident response policies are published, and there is no cookie consent mechanism, indicating partial privacy compliance. The domain WHOIS data is consistent with the business claims, showing a long-established presence without privacy protection, supporting legitimacy. Overall, the website is professional and trustworthy with moderate security posture and privacy compliance. Strategic improvements in security headers, privacy mechanisms, and published policies would enhance trust and compliance.

I

ifeu gGmbH: Institut für Energie- und Umweltforschung Heidelberg gGmbH

ifeu.de

48

ifeu gGmbH is a well-established German non-profit research institute specializing in energy and environmental sustainability research and consulting. With over 45 years of experience and more than 120 employees across multiple locations, it serves a broad audience including national and international funding agencies, policymakers, and environmental stakeholders. The organization offers a range of services including environmental research, sustainability consulting, and development of analytical tools and models. The website reflects a professional and comprehensive digital presence with clear navigation and rich content focused on their research themes and projects. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and uses Matomo analytics configured for privacy compliance. Security posture is good with HTTPS and privacy-respecting analytics, though there is room for improvement in security headers and incident response disclosures. Overall, the website is trustworthy, well-branded, and serves as a credible platform for the institute's activities.

G

Green Planet Energy eG

green-planet-energy.de

63

Green Planet Energy eG operates as a cooperative energy provider in Germany, focusing on sustainable and green energy products including green electricity, gas, and related services such as autostrom and photovoltaic solutions. The website is professionally built using TYPO3 CMS and incorporates modern web technologies including Usercentrics for GDPR-compliant cookie consent management. The company positions itself as a contributor to the energy transition with a clear focus on environmentally friendly energy solutions. Technically, the website demonstrates good SEO practices and mobile optimization, though some performance and accessibility aspects could be improved. Security posture is moderate; while HTTPS is assumed, no explicit security headers or incident response information are present, and no privacy policy or terms of service were found in the provided content. Overall, the site is trustworthy and professional but would benefit from enhanced transparency and security documentation.

P

Pučko Otvoreno Učilište Krapina

krapina.net

50

Pučko Otvoreno Učilište Krapina is a Croatian educational and cultural institution established in 1997, providing adult education, cultural programming, and venue rental services primarily serving the local community. The website is professionally designed using WordPress with Elementor and Yoast SEO, offering rich content about educational programs, cultural events, and organizational information. The technical infrastructure is modern and includes standard web technologies and Google Analytics for visitor insights. Security posture is good with HTTPS enabled and domain transfer protections, though DNSSEC is not enabled and no explicit security incident response information is provided. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie consent mechanism. Overall, the website is trustworthy, well-maintained, and serves its community effectively.

T

TEDEXA GmbH

tedexa.de

65

TEDEXA GmbH is a German-based company specializing in AI consulting, custom software development, and digital transformation services. Their market position is focused on delivering innovative and scalable solutions primarily for renewable energy projects, logistics, banking, telecommunications, retail, and healthcare sectors. The company emphasizes a 360° approach to AI integration, from strategy to implementation and ongoing support. Their website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the website is built using modern frameworks such as Bootstrap 5.1 and jQuery, with Mobirise CMS and integrates a consent management platform for GDPR compliance. Hosting infrastructure includes Azure services, indicating a robust backend environment. The site is mobile optimized and performs moderately well, with basic SEO and accessibility features. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism with granular controls, but lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data shows a consistent and legitimate domain registration without privacy protection, supporting the business credibility. Overall, the website presents a trustworthy and professional digital presence with room for improvement in security transparency and advanced SEO and accessibility enhancements.

O

OMICRON electronics GmbH

omicronenergy.com

10

OMICRON electronics GmbH operates a professional website focused on providing innovative power system testing solutions to the electrical power industry worldwide. The company offers products and services for testing, diagnostics, and monitoring of electrical assets, positioning itself as a specialized B2B provider in the energy sector. The website is built on TYPO3 CMS and integrates modern analytics and cookie consent technologies, reflecting a mature digital infrastructure. Security posture is strong with HTTPS enforced and privacy compliance mechanisms in place, although explicit security headers and incident response information are absent. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the professional content and technology usage. Overall, the website demonstrates good technical and business maturity with room for improvement in security disclosures and registrant transparency.

F

Feustel Gärten und Ideen GmbH

feustel.de

50

Feustel Gärten und Ideen GmbH is a German garden design and landscaping company offering comprehensive services including garden planning, execution, and maintenance. The company positions itself as a traditional and professional provider targeting garden enthusiasts and homeowners in Germany. Their website is built on TYPO3 CMS with a modern responsive design and includes detailed service descriptions and themed garden inspirations. Technically, the site uses Bootstrap and FontAwesome, with analytics implemented via Matomo and Google Analytics, and a GDPR-compliant cookie consent mechanism. Security posture is good with HTTPS enforced and no visible vulnerabilities, though security headers and explicit security policies could be improved. Contact information is clearly presented, but no terms of service or incident response contacts are found. Overall, the website is professional, trustworthy, and compliant with privacy regulations.

E

eazee link

eazee-link.com

60

Eazee link is a French SaaS company specializing in digital QR code menus for restaurants and bars. The platform offers a free, easy-to-use service that enables hospitality businesses to create, update, and translate their menus digitally, enhancing customer experience and operational efficiency. With over 5700 establishments using their solution, eazee link holds a strong market position in France's hospitality sector. The website is professionally designed, mobile-optimized, and rich in content, targeting restaurant owners and managers seeking digital transformation solutions. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and marketing tools such as Google Tag Manager and HubSpot. Security posture is good with HTTPS enforced and domain protections in place, though DNSSEC is not enabled. Privacy and cookie policies are comprehensive and GDPR compliant, with user consent mechanisms implemented. Overall, the site demonstrates a mature digital presence with strong business credibility and trust indicators.

I

isla

weareisla.co.uk

64

isla is a UK-based sustainable events movement focused on accelerating the transition of the events industry towards sustainability. Founded in 2020, it operates as a membership-driven community offering training, consultancy, carbon measurement tools, and best practice frameworks. The website demonstrates a strong market position as a collaborative network for agencies, brands, suppliers, venues, and in-house teams seeking to implement sustainable event practices. Technically, the site is built on WordPress with integrations such as HubSpot for forms and Google Analytics for tracking, reflecting a mature digital infrastructure. Security posture is solid with HTTPS, reCAPTCHA, and cookie consent mechanisms, though some security headers could be improved. Overall, the site is professional, well-branded, and compliant with GDPR, providing clear contact channels and comprehensive policies.

M

Mag. Johannes Kerschbaumer - Rechtsanwalt

ortho1150.at

60

Ortho1150.at is a professional orthopedic medical practice website based in Vienna, Austria, representing Dr. Florian Sevelda and his team. The site offers comprehensive orthopedic services including pain therapy, joint replacement surgeries, and conservative treatments. It targets patients seeking orthopedic care in the 1150 district of Vienna, serving both public and private insurance holders. The business is positioned as a reliable local specialist with a focus on patient care and modern medical techniques. Technically, the website is built on WordPress using Elementor, with SEO and cookie consent plugins implemented. Analytics tools such as Google Analytics and Matomo are used for user tracking. Security posture is good with HTTPS and security headers in place, though some compliance gaps exist such as missing explicit privacy and terms of service pages. Overall, the website is professional, trustworthy, and well-structured for its healthcare audience.

G

Goran Jordović

jordovic.eu

9

The website www.jordovic.eu represents the personal and professional online presence of Goran Jordović, a technology enthusiast and digital professional based in Serbia. The site serves as a portfolio and blog, highlighting his roles as a developer, business owner, and Erasmus+ ambassador. The content is well-structured, professionally presented, and targets a general audience interested in technology and personal insights. The business model is centered on personal branding and professional services, with no direct e-commerce or transactional components. Technically, the site is built on WordPress using the WPBakery Page Builder, incorporating modern web fonts and icons, and integrates Google Analytics and Google Tag Manager for visitor tracking. The site is mobile optimized and performs moderately well, though there is room for improvement in accessibility and SEO. The SSL configuration is excellent, ensuring secure HTTPS connections. From a security perspective, the site lacks several important security headers and does not provide privacy or cookie policies, which impacts compliance and user trust. No WHOIS registrant data is publicly available due to EURid privacy restrictions, but the domain appears legitimate and consistent with the personal brand presented. No signs of WAF or blocking mechanisms were detected, and no adult or explicit content is present. Overall, the website is a good example of a personal professional site with solid technical foundations but would benefit from enhanced security practices, privacy compliance, and formal policies to improve trust and regulatory adherence.

A

Apartmenthaus Alpenblick Villach

alpenblick-villach.at

51

Apartmenthaus Alpenblick Villach is a small hospitality business offering apartments and rooms for rent near the city of Villach, Austria. The website targets both vacationers and business travelers, providing modern accommodations with online booking and inquiry capabilities. The business positions itself as a local accommodation provider with a focus on proximity to nature and city amenities. Technically, the website is built on WordPress using common plugins and frameworks such as Bootstrap and jQuery, with GDPR compliance managed via the Complianz plugin. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though security headers are missing and no explicit security or incident response policies are published. Overall, the domain registration data is consistent with the business location and supports legitimacy. No adult or explicit content is present, making the site safe for general audiences.

Byty Jahodnice is a real estate project offering modern residential apartments in Prague, Czech Republic. The website serves as a sales and informational platform for potential buyers, showcasing apartment options, pricing, construction progress, and contact details. The business targets individuals and families seeking new housing in a natural and well-connected location. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, Yoast SEO, and Google Tag Manager, ensuring good SEO and user experience. Security measures include HTTPS, Google reCAPTCHA on forms, and cookie consent management, though explicit security headers could be enhanced. The absence of WHOIS data is a minor concern but does not detract significantly from the site's legitimacy given the professional presentation and clear contact information. Overall, the site is well-structured, compliant with GDPR, and provides a trustworthy channel for real estate sales.

E

EDF Renewables India Pvt. Ltd

edf-re.in

55

EDF Renewables India Pvt. Ltd operates as a leading Independent Power Producer in the renewable energy sector in India, focusing on grid-scale clean energy projects including wind, storage, and emerging technologies. The company is part of the global EDF Groupe, a recognized leader in CO2 neutral electricity generation. The website presents a professional and consistent brand image targeting business partners and stakeholders in the energy sector. Technically, the site is built on WordPress with modern libraries and frameworks, offering good mobile optimization and user experience. Security posture is solid with HTTPS enabled and no exposed sensitive data, though improvements are recommended in security headers and privacy compliance mechanisms. Overall, the website reflects a credible and established business with moderate tracking and analytics usage.

S

Serbia | E-Commerce For All

ecommerce4all.rs

41

The ecommerce4all.rs website serves as a regional informational and resource platform focused on e-commerce development for Serbia and other CEFTA member countries. It provides modules covering e-commerce data, regulations, success stories, payment systems, delivery, and a regional trustmark badge. The platform targets stakeholders interested in e-commerce growth and regulatory compliance within the CEFTA region. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, Google Analytics, and GDPR cookie compliance, indicating a moderate level of digital maturity. The design is professional and mobile-optimized, with good SEO practices implemented. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, but lacks advanced security headers and DNSSEC. No privacy policy or terms of service pages were found, which is a compliance gap. Overall, the domain registration data aligns well with the website's regional focus and business purpose, supporting legitimacy. The site does not contain any adult or questionable content and is safe for general audiences.

B

Bosnia and Herzegovina | E-Commerce For All

ecommerce4all.ba

63

The website ecommerce4all.ba serves as a regional informational platform focused on e-commerce development and data for Bosnia and Herzegovina within the CEFTA region. It provides modules covering e-commerce data, regulations, success stories, e-payment, delivery, and a regional trustmark badge. The platform targets stakeholders interested in e-commerce growth and regulatory frameworks in the CEFTA member countries. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, GDPR cookie compliance, and Mailerlite for newsletter management. The design is professional and mobile-optimized, with good SEO practices implemented. Security posture is adequate with HTTPS enabled and secure form handling, but lacks explicit security headers and published privacy or terms of service pages. Overall, the site is trustworthy and legitimate, supported by consistent WHOIS data and regional partner links. Strategic improvements include publishing comprehensive privacy and terms policies, enhancing security headers, and expanding direct contact information.

E

E-Commerce For All

ecommerce4all.eu

62

E-commerce for all is a regional resource and information platform focused on key aspects of e-commerce for CEFTA member countries. It provides aggregated e-commerce data, market insights, and readiness indicators tailored to the CEFTA region. The platform serves as an information hub for stakeholders interested in e-commerce development within these countries, offering multilingual support and links to country-specific partner sites. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, Yoast SEO, and GDPR compliance plugins. It integrates Google Analytics and Facebook Pixel for tracking and marketing purposes. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks explicit privacy policy, terms of service, and incident response information. The domain registration is consistent and legitimate, registered through a reputable registrar without privacy protection. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

The Banc de Bones Pràctiques website is a government/non-profit platform dedicated to identifying and disseminating innovative local government practices in the province of Barcelona, Catalonia. It serves local municipalities and government entities by providing a searchable database of best practices, evaluation criteria, and resources to promote governance innovation. The site is supported by recognized local institutions such as the Diputació de Barcelona and the Fundació Carles Pi i Sunyer, enhancing its credibility and trustworthiness. Technically, the website employs a modern frontend stack including Bootstrap 4, jQuery, and FontAwesome, ensuring responsive design and good user experience across devices. Hosting and domain registration are consistent with the business purpose, with a mature domain age since 2010. However, the site lacks advanced security headers and DNSSEC, which are recommended for improved security posture. Security-wise, the site uses HTTPS (assumed from domain and external resources) but does not implement visible security policies or incident response contacts. No privacy policy page was found, though a cookie consent banner is present, indicating some level of GDPR awareness. Contact information is limited to an official email and contact form, with no phone or physical address explicitly listed. Overall, the website is professional and trustworthy for its niche audience but would benefit from enhanced security measures, explicit privacy and terms policies, and improved transparency regarding data protection and incident response.

R

Red Hook Studios

darkestdungeon.com

55

Red Hook Studios operates the website www.darkestdungeon.com as the official platform for their game Darkest Dungeon and related content. The site targets gamers and enthusiasts of indie games, providing information about the studio and its products. The technical infrastructure leverages modern web technologies including Nuxt.js, Vue.js, GSAP for animations, and Tailwind CSS for styling, indicating a contemporary and responsive design approach. The presence of consent management via Osano CMP reflects some attention to privacy compliance, though explicit privacy and cookie policies were not detected in the provided content. Security posture appears moderate with HTTPS implied, but no explicit security headers were found in the data. The absence of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or recent registration, which impacts trustworthiness. Overall, the website is professionally designed and functional but would benefit from enhanced transparency in privacy, contact information, and security disclosures.

B

Bc. Martin Hůlek

martinhulek.cz

9

The website www.martinhulek.cz represents Bc. Martin Hůlek, a freelance fullstack web developer based in the Czech Republic. The business focuses on delivering custom web development services including responsive websites, e-commerce platforms, tailored web applications, ongoing maintenance, and consulting. The site positions itself as a specialist in modern, secure, and user-friendly web solutions aimed at businesses and individuals seeking professional digital presence. The portfolio includes at least one e-shop project, indicating practical experience in commercial web development. Technically, the website employs modern frontend technologies such as Bootstrap 5, jQuery, FontAwesome, and Google Tag Manager for analytics and cookie consent management. The site is mobile-optimized with responsive design and good SEO practices evident from meta tags and structured navigation. Performance appears fast with asynchronous script loading and minimal external dependencies. However, no CMS or hosting provider details are disclosed. From a security perspective, the site uses HTTPS (implied by external Google Tag Manager scripts loaded over HTTPS), and implements a cookie consent modal, indicating awareness of privacy regulations. However, no explicit privacy policy or terms of service pages were found, and no HTTP security headers were detected in the provided data. The WHOIS lookup failed to return any domain registration data, which reduces trustworthiness and raises questions about domain legitimacy. No vulnerabilities or exposed sensitive data were observed in the content. Overall, the website is professional and functional, suitable for a small freelance business. The main risks relate to missing WHOIS transparency and incomplete privacy compliance documentation. Strategic improvements in security headers, privacy policy publication, and domain registration transparency would enhance trust and compliance.

W

Wube Software

factorio.com

63

Factorio.com is the official website for the game Factorio, developed by Wube Software. The site provides comprehensive information about the game, its expansions, community resources, and purchasing options. The business operates primarily in the technology sector focused on gaming, with a strong market position supported by over 3.5 million sales and a dedicated community. The website supports multiple platforms for sales including Steam, GOG, and direct shop sales, and offers additional services such as mod portals and community forums. Technically, the website uses modern web technologies including jQuery, HTMX, and FontAwesome, hosted behind Cloudflare for performance and security. The site is moderately optimized for performance and mobile devices, with good SEO and basic accessibility features. However, some security best practices such as DNSSEC and security headers are not implemented, and there is no visible cookie consent mechanism, which may impact GDPR compliance. From a security perspective, the site uses HTTPS and includes CSRF tokens for AJAX requests, indicating a baseline security posture. The domain registration is consistent with the business history and shows no suspicious patterns. However, the absence of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement in security maturity. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic recommendations include enhancing security headers, implementing cookie consent for privacy compliance, publishing security policies, and improving contact information transparency to further strengthen trust and compliance.

N

North Macedonia | E-Commerce For All

ecommerce4all.mk

62

The website ecommerce4all.mk serves as a regional informational platform focused on e-commerce in North Macedonia and the broader CEFTA region. It provides resources including e-commerce data, regulatory information, success stories, payment and delivery modules, and a regional trustmark badge. The platform targets businesses, policymakers, and consumers interested in e-commerce development within the CEFTA member countries. The site is part of a network of similar country-specific platforms linked to a main hub at ecommerce4all.eu. Technically, the site is built on WordPress using Bootstrap for responsive design, with integrations for Google Analytics, Facebook Pixel, and Mailerlite for marketing and tracking. The site is mobile optimized and has good SEO practices implemented via Yoast SEO. Performance is moderate with no major technical issues detected. However, some accessibility features are basic and could be improved. From a security perspective, the site uses HTTPS with valid SSL certificates and implements a GDPR cookie consent mechanism. However, it lacks visible security headers and explicit privacy policy or terms of service pages, which are important for compliance and user trust. No WHOIS data was available due to server-side errors, limiting domain registration trust analysis. No vulnerabilities or malicious content were detected in the site content. Overall, the website presents a professional and consistent brand image as a regional e-commerce resource. The absence of WHOIS data and privacy policy pages slightly reduce trustworthiness. Strategic improvements in security headers, privacy disclosures, and contact transparency would enhance the site's security posture and compliance standing.

W

World Climate Research Programme

wcrp-climate.org

51

The World Climate Research Programme (WCRP) is an international non-profit organization focused on coordinating and facilitating climate research globally. The website presents a professional and authoritative presence with extensive resources, core projects, events, and capacity development initiatives targeting climate researchers, policy makers, and the scientific community. The organization is well-positioned as a key player in climate science coordination with a strong emphasis on collaboration and knowledge dissemination. Technically, the website is built on Joomla CMS with modern frameworks such as Gantry 5 and Bootstrap 5, incorporating Google Analytics and Tag Manager for user tracking. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enabled and no visible vulnerabilities, but lacks some security headers and cookie consent mechanisms. Security-wise, the site shows a mature posture with no exposed sensitive data or vulnerable libraries detected. However, the absence of security headers and formal privacy/cookie policies indicates room for improvement in compliance and defense-in-depth strategies. WHOIS data is unavailable due to privacy protection, which is justified for this type of organization, and the domain appears legitimate based on content and branding. Overall, the website is trustworthy, professional, and well-maintained, serving its audience effectively. Strategic improvements in privacy compliance and security headers would enhance its security posture and user trust.

The website fertighausspezialist.at currently presents minimal content, primarily a placeholder or coming soon page with no visible business information, contact details, or policies. The business focus and services cannot be determined from the site content. The technical infrastructure is based on WordPress with a coming soon plugin, using Tailwind CSS and jQuery libraries. Hosting is provided by kasserver.com, consistent with the domain's WHOIS data. Security posture is weak due to lack of security headers, absence of privacy and cookie policies, and no visible contact or incident response information. The site is accessible without WAF or security challenges but lacks substantive content and compliance features. Overall, the site scores low on content quality, privacy compliance, and business credibility, indicating it is either under development or poorly maintained.

D

dialo.de Startseite

dialo.de

9

The website dialo.de presents a German-language homepage with a basic description and branding consistent with a small business or service provider. The site uses Bootstrap 3.3.7 and FontAwesome for styling and includes eTracker analytics and OneTrust cookie consent mechanisms, indicating some level of digital maturity. However, the absence of a privacy policy, terms of service, and contact information limits its compliance and trustworthiness. Security posture is moderate with HTTPS implied but no visible security headers or incident response contacts. Overall, the site is accessible and safe for general audiences but would benefit from enhanced transparency and security practices.