Security Directory

A

Akademie věd České republiky

cas.cz

59

The Akademie věd České republiky (Academy of Sciences of the Czech Republic) is a prominent public research institution dedicated to scientific research, education, and public outreach in the Czech Republic. The website serves as a comprehensive portal for news, events, publications, and resources related to the academy's activities. It targets researchers, academics, students, media, and the general public interested in science and research. The institution holds a leading position in the Czech scientific community and operates with a large organizational size and extensive content offerings.

Swinerton Incorporated is a well-established national construction company founded in 1888, operating with a 100% employee-owned business model. The company offers a broad range of construction services including general contracting, construction management, and design-build services, serving clients across 24 regional offices in the United States. Their market position is strong, consistently ranked among the top general contractors nationally, with a focus on quality, innovation, and local market expertise. Technically, the website is built on WordPress using modern frameworks and plugins such as Elementor, Bootstrap 4, and Yoast SEO. It employs Google Tag Manager and Plausible Analytics for tracking, alongside Cookiebot for cookie consent management, reflecting a mature digital infrastructure. Hosting appears to be managed by WP Engine, ensuring reliable performance and security. From a security perspective, the site enforces HTTPS and implements clientTransferProhibited status on the domain, enhancing domain security. Cookie consent mechanisms are in place, and privacy policies are comprehensive and GDPR compliant. However, there is room for improvement by enabling DNSSEC, adding security headers, and publishing a formal security policy or vulnerability disclosure. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no signs of security or content safety issues. The domain registration data supports the legitimacy and long-term presence of the company. Strategic recommendations include enhancing DNS security, publishing security policies, and expanding incident response transparency to further strengthen trust and security posture.

D

Data Protected

mouvo.tv

46

MOUVO TV is a specialized media platform focusing on motion design and creative industry content, offering a rich library of interviews, discussions, and documentaries. The platform operates on WordPress with WooCommerce, providing both free and paid video content to a niche audience of creative professionals and enthusiasts. The website demonstrates a high level of content quality and professional design, supported by a consistent brand presence and active social media engagement. Technically, the site uses modern web technologies and integrates marketing and analytics tools such as Google Tag Manager and Facebook Pixel. Security posture is good with HTTPS enforced and domain protections in place, though improvements are recommended in DNS security and privacy compliance mechanisms. Overall, the site is trustworthy, well-maintained, and serves its target audience effectively.

T

The WP Minute

thewpminute.com

56

The WP Minute is a specialized content platform serving WordPress professionals through a community news podcast and newsletter. Founded in 2021, it provides educational tutorials, industry news, and podcasts targeting freelancers, agencies, and developers within the WordPress ecosystem. The business operates a membership model offering subscriptions to its newsletter and podcast content, positioning itself as a niche authority in the WordPress community space. Technically, the website is built on WordPress 6.8.3 using the Kadence theme and several plugins including Kadence Blocks, LifterLMS, and Advanced Ads. Hosting appears to be on AWS infrastructure, with DNS managed via AWS Route 53. The site employs HTTPS with a valid SSL certificate and uses modern web technologies such as jQuery and MediaElement.js. Performance is moderate with good mobile optimization and basic accessibility features. SEO is supported by structured data and proper meta tags. From a security perspective, the site uses HTTPS and has domain transfer protections enabled. However, DNSSEC is not enabled and no security headers were detected in the provided data, which are areas for improvement. There is no visible privacy policy, cookie policy, or terms of service on the homepage content, which impacts privacy compliance. No incident response or security contact information is provided. Analytics are handled via Fathom Analytics, indicating minimal user tracking. Overall, the website presents a professional and trustworthy front for its niche audience but would benefit from enhanced privacy compliance, security headers, and explicit contact information to improve trust and security posture. Strategic recommendations include enabling DNSSEC, adding comprehensive privacy and cookie policies with consent mechanisms, implementing security headers, and publishing security and incident response policies.

H

help and hope Stiftung

helpandhope-stiftung.com

43

The help and hope Stiftung is a German non-profit foundation dedicated to improving the lives of disadvantaged children and youth by providing educational projects, holiday care, and community engagement at their core location Gut Königsmühle in Dortmund. The organization emphasizes sustainability, fairness, and personal development through participatory and experiential learning. Their digital presence is built on a modern WordPress platform with SEO and GDPR compliance plugins, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are missing and WHOIS domain registration data is unavailable, which slightly impacts trust. Overall, the website is professional, content-rich, and well-structured, targeting families, educational institutions, and community members. Strategic recommendations include enhancing security headers, improving contact transparency, and monitoring domain registration status to strengthen trust and compliance.

S

Soltech Energy Solutions

soltechenergysolutions.se

69

Soltech Energy Solutions is a Swedish company specializing in sustainable solar energy solutions for businesses and property owners. As part of the larger Soltech Energy group, it offers comprehensive services including solar panel installation, energy storage, and maintenance, positioning itself as a market leader in the renewable energy sector in Sweden. The company targets commercial clients seeking to optimize energy consumption and comply with upcoming EU regulations on solar energy integration. Technically, the website is built on WordPress with modern plugins for SEO, GDPR compliance, and user engagement, reflecting a mature digital presence. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are missing and no explicit security or incident response policies are published. Overall, the site is professional, trustworthy, and compliant with privacy regulations, supporting the company's credibility and market position.

E

ECOMMERCE ONE AcquiCo GmbH

ecommerceone.de

57

ECOMMERCE ONE is a German-based investment platform founded in 2021 that focuses on acquiring and supporting leading SaaS software companies serving online retailers. The company aims to create synergies and generate growth within the e-commerce sector by building a collaborative platform for its portfolio companies. Their website reflects a professional and consistent brand image, showcasing their portfolio and commitment to sustainability and innovation. Technically, the site is built on WordPress with modern plugins and includes GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security policies and incident response details are absent. Overall, the business presents a credible and trustworthy profile with clear contact information and active content updates.

M

Mein Urlaubsglück GmbH

mein-urlaubsglueck.info

66

Mein Urlaubsglück GmbH operates a professional website focused on enabling travel professionals to become independent mobile travel consultants. The company offers a cooperative partnership model with comprehensive support, technology tools, and training to facilitate self-employment in the travel industry. The website is well-structured, professionally designed, and optimized for SEO with modern WordPress technologies and plugins. Contact information and social media presence enhance business credibility. Privacy and cookie policies are implemented with consent mechanisms, reflecting GDPR compliance. Security posture is good with HTTPS and secure form handling, though explicit security headers and incident response information are absent. Overall, the website presents a trustworthy and legitimate business with a clear market niche in mobile travel consulting.

D

Deutscher Ferienhausverband e.V.

deutscher-ferienhausverband.de

47

The Deutscher Ferienhausverband e.V. is a well-established German association founded in 2013, representing the interests of the holiday home rental sector in Germany. It serves as the largest industry body for vacation home rentals, offering services such as quality certification, political advocacy, market research, and consumer support. The website targets property owners, rental agencies, and service providers within the holiday home market, positioning itself as a trusted industry voice with a strong network of partners and members. Technically, the website is built on WordPress with a modern theme and SEO plugins, integrating Google reCAPTCHA for form security and a cookie consent mechanism for GDPR compliance. The site demonstrates good mobile optimization and SEO practices, though some security headers are missing. The infrastructure appears stable and professional, with moderate performance and accessibility. From a security perspective, the site uses HTTPS and includes anti-bot measures but lacks published security policies or incident response contacts. No vulnerabilities or suspicious patterns were detected. Privacy compliance is well addressed with clear privacy and cookie policies. The domain registration data aligns with the business claims, indicating legitimacy and trustworthiness. Overall, the website is professional, secure, and compliant, serving its business purpose effectively. Recommendations include enhancing security headers, publishing security policies, and improving accessibility to further strengthen the security posture and user trust.

C

creditPass GmbH

creditpass.de

43

creditPass GmbH is a well-established German FinTech company specializing in payment security, risk management, and compliance solutions for business customers. Operating since 2003, it offers a modular platform connecting merchants with payment service providers, credit agencies, and identity providers. The company provides a broad range of services including credit checks, SEPA direct debit payment processing, Buy Now Pay Later modules, and cloud integration services. With over 1,500 customers and active participation in industry associations, creditPass holds a strong market position in the European FinTech sector. Technically, the website is built on WordPress using modern plugins such as Yoast SEO, LayerSlider, and Contact Form 7, with Google reCAPTCHA v3 implemented for form security. The site is mobile-optimized and SEO-friendly, though some improvements in accessibility and performance could be made. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, but lacks explicit security headers and a formal security policy or vulnerability disclosure page. Overall, creditPass demonstrates a mature digital presence with good business credibility and trust indicators. However, the absence of cookie consent mechanisms and explicit contact emails or phone numbers slightly reduce privacy compliance and user trust. No WAF or blocking mechanisms were detected, allowing full content access and analysis. Strategic recommendations include implementing cookie consent for GDPR compliance, adding security headers, publishing a security.txt file, and enhancing contact transparency to improve user trust and compliance posture.

I

Iver

iverwind.com

63

Iver is a Dutch company specializing in wind turbine services, offering tailored maintenance, repair, and component replacement solutions to maximize wind turbine performance and minimize downtime. With 25 years of industry experience, Iver positions itself as a trusted full-service partner in the renewable energy sector, serving clients primarily in the Netherlands and across Europe. Their business model includes service contracts, on-site assembly and disassembly, blade services, inspections, and a marketplace for spare parts. The website reflects a mature digital presence built on WordPress with the Divi theme, integrating modern analytics and marketing tools such as Google Tag Manager, Facebook Pixel, LinkedIn Insight, and Hotjar. Privacy and cookie policies are comprehensive and GDPR compliant, with clear contact channels including phone, email, and a detailed contact form. Security posture is good with HTTPS enforced and clientTransferProhibited domain status, though improvements are recommended in DNSSEC and security headers. Overall, the website is professional, well-branded, and trustworthy, supporting Iver's market position as a specialist in wind energy services.

B

Boucles Drôme Ardèche

boucles-drome-ardeche.fr

35

Boucles Drôme Ardèche is a well-established regional cycling event organizer in France, hosting prestigious races such as the Faun Ardèche Classic and Faun Drôme Classic. The website serves as an information hub for participants, fans, and partners, showcasing event details, results, photos, and sponsor information. The business operates primarily through event promotion and sponsorship partnerships, targeting cycling enthusiasts and regional visitors. Technically, the site is built on WordPress with popular plugins and themes, hosted by OVH, and demonstrates moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and some security best practices observed, though lacking in security headers and dedicated security policies. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy policy or terms of service pages. Overall, the website is professional, trustworthy, and content-rich, but could improve in compliance and security transparency.

I

infield.live

infield.live

60

infield.live is a German-focused online platform dedicated to festival and event discovery, ticket booking, and travel planning. It offers users access to over 125 festivals and conferences, emphasizing flexible ticket booking with free cancellation. The platform targets festival enthusiasts in Germany, positioning itself as a niche media and ticketing service within the entertainment sector. The website is professionally designed with consistent branding and good content quality, supporting its market presence as a specialized event platform. Technically, the website is built on WordPress and leverages modern web technologies including jQuery, MediaElement.js for video playback, and integrates tracking tools such as Matomo, Facebook Pixel, and Google Tag Manager. The site is mobile-optimized and implements GDPR-compliant privacy and cookie policies, reflecting a mature digital infrastructure. However, some video playback issues and missing advanced security headers indicate areas for technical improvement. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks certain security headers like Content-Security-Policy and X-Frame-Options, which could enhance protection against common web threats. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected by Identity Digital Inc., which is typical for small to medium websites and does not raise immediate trust concerns. Overall, infield.live presents a solid business and technical foundation with a good security posture for its size and sector. Strategic enhancements in security headers and video content delivery would further strengthen its resilience and user experience.

A

aberratio GmbH

aberratio.de

48

Aberratio GmbH is a Hamburg-based digital consulting agency specializing in web, marketing, and communication solutions since 2000. The company combines strategic consulting with digital agency expertise to support clients through digital transformation. Their market position is that of an established small agency with a professional portfolio and a focus on technology-driven services. The website is built on WordPress with modern plugins and demonstrates good technical maturity, mobile optimization, and SEO practices. Security posture is solid with HTTPS and cookie consent implemented, though lacking advanced security headers and explicit security policies. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with room for improvement in security transparency and accessibility.

I

IT-Recht Kanzlei Keller-Stoltenhoff, Keller

fairness-im-handel.de

43

Fairness im Handel is a German initiative website operated by IT-Recht Kanzlei Keller-Stoltenhoff, Keller, focused on promoting fair and abmahn-free online trade among e-commerce merchants. The site offers legal safety packages and fosters a community of over 20,000 participants to reduce legal risks and encourage open communication. The business model centers on providing legal compliance services and community membership benefits to online retailers, primarily in Germany. Technically, the website is built on WordPress using the Enfold theme, with Yoast SEO plugin for optimization and MediaElement.js for media playback. Hosting is provided by Schlund Technologies, a reputable German hosting provider. The site is mobile optimized and demonstrates good SEO practices, though accessibility features are basic. Security posture is solid with HTTPS enforced and no exposed sensitive data, but lacks some security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and well-positioned within its niche, but could improve in privacy and security transparency.

C

Certify360 EdTech Group

certify360.com

71

Certify360 EdTech Group is a specialized provider focused on end-to-end certification through education and examination services. The company appears to target educational institutions, certification bodies, and learners, positioning itself as a niche player in the education technology sector. Founded in 2005, the business has a mature domain presence and consistent branding across its website. The website content is professional and relevant to its business model, emphasizing certification and educational services. From a technical perspective, the website is built on WordPress using the Elementor page builder, incorporating modern web technologies such as jQuery and Google Fonts. The hosting provider is identified as Hosting Concepts B.V. d/b/a Registrar.eu. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. SEO optimization is adequate with proper meta tags and Open Graph data. Security posture is moderate; HTTPS is properly enabled with a valid SSL certificate, and the domain status includes clientTransferProhibited, which helps prevent unauthorized transfers. However, DNSSEC is not enabled, and no security headers were detected, which are areas for improvement. The site lacks explicit privacy, cookie, and terms of service policies, as well as incident response or vulnerability disclosure information, which impacts compliance and trust. Overall, the website is safe, professional, and focused on its educational certification niche. The absence of privacy and security policies and contact information reduces its privacy compliance and security posture scores. Strategic improvements in these areas would enhance trust and compliance.

E

EFEVERDE

efeverde.com

56

EFEverde.com is a well-established Spanish environmental news platform operated by Entorno Digital, S.A., founded in 2008. The website serves as a leading source for environmental journalism, ecological transition, and sustainable development news, targeting a general audience interested in these topics. The platform offers news articles, reports, blogs, and audiovisual content, supported by a professional WordPress-based technical infrastructure with Elementor and Yoast SEO plugins. The site integrates advertising via Google Ad Manager and uses push notifications through OneSignal to engage users. While the technical setup is modern and performance is moderate, the site lacks explicit privacy and cookie policies, which impacts compliance and user trust. Security posture is adequate with HTTPS but could be improved with additional headers and vulnerability disclosures. Overall, the domain registration is consistent and trustworthy, supporting the site's legitimacy.

F

Fraudstorytelling

fraudstorytelling.com

60

Fraudstorytelling is a niche media platform providing a free, open-access search engine for films, documentaries, and videos related to fraud, corruption, and integrity issues. The website targets researchers, educators, compliance professionals, and the general public interested in these topics. It offers categorized content by genre, actors, and producers, supporting awareness and training efforts in the anti-fraud domain. The platform is positioned as a specialized media aggregator with a small but focused market presence. Technically, the website is built on WordPress using modern plugins and frameworks such as Bootstrap, jQuery, and MediaElement.js. SEO is enhanced with Yoast SEO plugin and structured data (JSON-LD) is implemented for better search engine visibility. The site is mobile-optimized with good navigation and content organization. Performance is moderate with some broken media elements that should be addressed. From a security perspective, the site enforces HTTPS and uses secure login forms but lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance. No direct company contact emails or phone numbers are provided, limiting direct communication channels. The WHOIS data is missing or unavailable, which raises some concerns about domain legitimacy and registration transparency. Overall, the website is functional and professionally presented but would benefit from improved security headers, cookie consent implementation, fixing media errors, and clarifying domain registration details to enhance trust and compliance.

D

dpa-Shop – Frische Inhalte für Web-Publisher

dpa-shop.com

51

The dpa-Shop website operates as a specialized e-commerce platform providing fresh and relevant content primarily for web publishers and media professionals. It offers a variety of digital products including election data, sports live subscriptions, and web graphics. The platform is built on a mature WordPress infrastructure with WooCommerce and multilingual support, indicating a well-established digital presence. The site demonstrates moderate technical maturity with modern libraries and performance optimizations such as lazy loading scripts and cookie consent mechanisms. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit privacy or terms of service documentation. The absence of WHOIS registration data is a notable concern, potentially indicating domain registration issues or privacy protection, which impacts trustworthiness. Overall, the site is functional and professional but would benefit from enhanced transparency and security documentation.

I

ImagePlant

bilddatenbanksoftware.de

45

ImagePlant is a specialized provider of web-based image database software tailored for companies, municipalities, and organizations. The company offers a comprehensive digital asset management solution featuring intuitive user interfaces, AI-powered tagging, rights management, and efficient sharing capabilities. Positioned as a niche player in the technology sector, ImagePlant targets business clients seeking centralized media management solutions. The website reflects a small-sized, Germany-based company with a founding date around 2014 and is supported by its parent company, 13 Agentur für Werbung und Kommunikation GmbH.

B

BASIC thinking GmbH

basicthinking.de

48

BASIC thinking GmbH operates a well-established German online magazine focused on technology, social media, marketing, business, and green energy topics. The website serves a broad audience of tech enthusiasts and business professionals, delivering daily tech news and insights via a newsletter with over 10,000 subscribers. The company maintains a strong market position as a trusted media source with consistent branding and professional content quality. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted on kasserver.com nameservers. It employs modern web technologies and optimization techniques, including mobile responsiveness and SEO best practices. Analytics and advertising are implemented transparently with Google Analytics, Jetpack Stats, and Advanced Ads, alongside affiliate marketing. From a security perspective, the site uses HTTPS with a valid SSL certificate and anonymizes IPs in analytics. Privacy and cookie policies with consent mechanisms are present, indicating GDPR compliance. However, explicit security headers and incident response policies are not clearly published, representing areas for improvement. Overall, the website is accessible without WAF or blocking mechanisms, has no detected vulnerabilities, and maintains a high level of trustworthiness. Strategic recommendations include enhancing security header implementation, publishing a security policy, and establishing a vulnerability disclosure process to further strengthen security posture.

M

myVeeta

myveeta.com

69

myVeeta operates as a technology company specializing in Talent Relationship Management (TRM) systems, offering a SaaS platform to help companies build and manage talent pools efficiently. The website presents a professional and modern interface, targeting HR professionals and companies interested in innovative recruiting and employer branding solutions. The platform emphasizes ease of use, mobile communication, and long-term talent engagement, supported by client testimonials from notable companies. Technically, the site is built on WordPress with Elementor and integrates common analytics and marketing tools. Security posture is good with HTTPS and no visible vulnerabilities, though security headers and explicit policies are lacking. The absence of WHOIS data for the domain is a concern and should be investigated to confirm domain legitimacy. Overall, the site is credible and well-positioned in its niche but would benefit from enhanced privacy and security disclosures.

G

Glass Cannon Unplugged

glasscannonunplugged.com

48

Glass Cannon Unplugged is a small Polish board game publisher specializing in adapting popular video games into tabletop formats. Founded in 2020, the company actively engages its community through Kickstarter campaigns and social media channels. Their website reflects a professional and consistent brand image, offering detailed product information, customer support, and newsletter subscription options. Technically, the site is built on WordPress with modern plugins and tracking tools, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and client transfer protection on the domain, though DNSSEC is not enabled and some HTTP security headers are missing. Privacy compliance is well addressed with a clear privacy policy and cookie consent mechanism. Overall, the business appears legitimate and trustworthy with a strong community focus.

I

ImagePlant

imageplant.de

45

ImagePlant is a German-based company specializing in web-based image database software tailored for businesses, municipalities, and organizations. Founded in 2014, it offers an intuitive and powerful digital asset management platform with features such as AI-assisted tagging, rights management, and a CMS-enabled frontend for press and download portals. The company operates under the parent organization 13 Agentur für Werbung und Kommunikation GmbH, which also provides complementary web design and custom programming services. The website reflects a professional and consistent brand image with clear target audience focus and positive customer references. Technically, the website is built on WordPress CMS with Bootstrap and jQuery frameworks, enhanced by plugins like Borlabs Cookie for GDPR-compliant cookie management and Contact Form 7 for user inquiries. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Tracking and marketing tools include Google Tag Manager and LinkedIn Insight, implemented with user consent mechanisms. From a security perspective, the site enforces HTTPS and employs cookie consent controls but lacks explicit advanced security headers and published incident response policies. Minor issues such as a broken video source were detected, which could affect user experience. No critical vulnerabilities or exposed sensitive data were found. The domain registration is consistent with the business history and shows no suspicious patterns. Overall, ImagePlant presents a credible, secure, and privacy-conscious online presence suitable for its business domain. Strategic improvements in security headers, incident response transparency, and media content integrity would further enhance trust and resilience.

A

AUSGEZEICHNET.org

ausgezeichnet.org

72

AUSGEZEICHNET.org is a German-based technology platform specializing in professional review and reputation management services. The company offers an all-in-one solution for businesses to collect, manage, and display customer reviews, enhancing trust and driving revenue growth. Positioned as a trusted Google Reviews partner and recognized by OMR Reviews, the platform targets businesses of various sizes seeking to improve their online reputation and customer engagement. Technically, the website is built on WordPress with a modern tech stack including jQuery, MediaElement.js, and advanced plugins for caching, chatbot support, and consent management. The site demonstrates good SEO practices, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs consent management tools like Cookiebot, but lacks explicit advanced security headers and a published security policy. No critical vulnerabilities were detected in the analyzed content. The WHOIS data is unavailable, which limits domain trust assessment, but the website's professional presentation and certifications mitigate some concerns. Overall, AUSGEZEICHNET.org presents a strong business and technical profile with minor areas for security enhancement. The absence of WHOIS transparency is a notable gap but does not critically undermine the site's credibility based on available evidence.

C

Classic Data

classicdata.de

48

Classic Data is a well-established German company specializing in the valuation of classic vehicles, boasting over 40 years of experience and a nationwide network of over 400 valuation partners. The company positions itself as the market leader in classic car valuation in Germany, offering a range of services including vehicle appraisal, damage assessment, originality checks, and market analyses. Their business model is service-oriented, supported by an online shop for specialist literature and collectibles. Technically, the website is built on WordPress with a modern theme and plugins, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response information are lacking. Overall, the website is professional and trustworthy, though improvements in privacy and security transparency are recommended.

R

Roawr AB

techskaparna.se

49

Techskaparna.se is a professionally designed Swedish podcast website focused on technology entrepreneurship and startup stories. The podcast is hosted by Anna Leijon and features interviews with various tech founders and innovators primarily from Sweden. The business operates as a small-scale content creator with sponsorships from relevant partners in the tech and engineering sectors. The website uses modern web technologies including Bootstrap, jQuery, and MediaElement.js, and is hosted via Gandi SAS. It is mobile optimized and SEO friendly, providing a good user experience with clear navigation and rich content. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and published privacy or cookie policies, which are compliance gaps. WHOIS data is consistent with the business claims, showing a domain created in 2021 and registered with a reputable registrar. Overall, the site is trustworthy, safe, and professionally maintained, but would benefit from enhanced privacy compliance and security best practices.

C

Ceesta Oy

grandchampagnehelsinki.fi

42

Grand Champagne Helsinki is a niche event organizer specializing in champagne and gourmet experiences hosted in Helsinki, Finland. The company, Ceesta Oy, operates a professionally designed website built on WordPress with WooCommerce, indicating a digital maturity suitable for event ticketing and e-commerce. The website integrates modern tracking and marketing tools such as Google Analytics and Facebook Pixel, supporting data-driven marketing efforts. Security posture is adequate with HTTPS enforced, but lacks advanced DNS security and security headers. Privacy compliance is limited, with no explicit privacy or cookie policies detected in the provided content. Overall, the domain registration is transparent and consistent with the business, supporting legitimacy and trustworthiness.

The Fachverband Raumbegrünung und Hydrokultur im Zentralverband Gartenbau (ZVG) e.V. is a small German industry association focused on promoting indoor greening and hydroponics to improve human wellbeing in indoor environments. The website serves as an informational platform offering educational content, quality certifications, and industry networking opportunities. It targets professionals and enthusiasts in the indoor plant cultivation sector. Technically, the site is built on the Contao CMS platform and uses common JavaScript libraries for UI enhancements. While the site is functional and well-structured with good content relevance and navigation, it lacks advanced SEO optimization and mobile responsiveness is basic. Security posture is moderate with HTTPS enabled but missing important security headers and no cookie consent mechanism, which impacts GDPR compliance. No explicit contact emails or phone numbers are present on the homepage, but a contact form and privacy policy page exist. Overall, the site is trustworthy but could improve in security and privacy compliance to better serve its audience and meet regulatory requirements.

J

Jungfreisinnige Stadt Bern

jfstadtbern.ch

51

The website jfstadtbern.ch represents the Jungfreisinnige Stadt Bern, a local youth political organization in Bern, Switzerland. The site focuses on political advocacy, membership engagement, and event organization targeted at residents and politically interested individuals in Bern. The business model is that of a small political organization with a local focus. Technically, the website is built on WordPress using the Avada theme and several event management plugins, indicating a moderate level of digital maturity. The site is moderately optimized for mobile devices and has basic SEO and accessibility features. Security posture is weak, with no detected security headers, privacy policies, or incident response contacts. No analytics or tracking scripts were found, suggesting minimal user tracking. Overall, the site is safe for general audiences and does not contain adult or explicit content. The WHOIS data is consistent with the website's claims, supporting legitimacy. Strategic recommendations include implementing HTTPS with strong SSL, adding privacy and cookie policies with consent mechanisms, improving security headers, and providing clear contact information for security and data protection purposes.

A

Armstark GmbH

armstark.com

60

Armstark GmbH is a well-established Austrian family business specializing in wellness products such as whirlpools, lagoon spas, swim spas, infrared cabins, and saunas. Founded in 1994, the company positions itself as a quality-focused retailer with a strong customer service orientation. Their website reflects a mature digital presence with e-commerce capabilities and extensive product information targeting wellness consumers in Austria and surrounding regions. Technically, the site is built on WordPress with WooCommerce and employs modern SEO and analytics tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. The absence of WHOIS domain registration data is a notable concern, slightly impacting trustworthiness. Overall, the site is professional, compliant with GDPR, and safe for general audiences.

M

Maison des journalistes

maisondesjournalistes.org

55

Maison des journalistes is a French non-profit organization dedicated to providing refuge and support to exiled journalists. The website serves as a platform to showcase their mission, events, and partnerships, targeting journalists in exile and supporters of press freedom. The organization maintains a consistent brand presence with multilingual support and active social media channels. Technically, the website is built on WordPress using modern plugins such as Yoast SEO and ExactMetrics for analytics, ensuring good SEO and moderate performance. Security posture is solid with HTTPS enforced, but lacks some security headers and explicit incident response policies. The absence of a cookie consent mechanism and incomplete WHOIS data are notable compliance and trust concerns. Overall, the site is professional and trustworthy but could improve in privacy compliance and domain legitimacy verification.

R

Richard Creative Agency

richard-creative.com

57

Richard Creative Agency is a small, established marketing and communications design firm founded in 2012, specializing in website development, branding, and print collateral design. The company targets businesses seeking strategic marketing solutions and creative design services, positioning itself as a practical and personal service provider in the media sector. The website reflects a professional and consistent brand image with a clear portfolio and service descriptions. Technically, the site is built on WordPress using modern plugins and themes, with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and domain registration transparency, but lacks security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is trustworthy and credible but would benefit from enhanced security and compliance documentation.

J

Journal Le Messager

lemessager.ch

52

Journal Le Messager is a regional news media outlet serving the Veveyse region in Switzerland, providing current news, sports, opinions, and event information. The website is built on Drupal CMS and uses a variety of modern web technologies including jQuery, Google Tag Manager, and advertising integrations with Google Ad Manager and local ad services. Mobile applications are available on both iOS and Android platforms, enhancing accessibility for users. The site demonstrates good content quality and professional design with clear navigation and relevant regional content. However, it lacks explicit privacy and cookie policies, which may impact GDPR compliance. Security posture is solid with HTTPS and common security headers, but no published security or incident response policies were found. WHOIS data confirms the legitimacy and consistency of the domain registration with the business's regional focus. Overall, the website is trustworthy and functional but could improve privacy compliance and transparency.

The website 'The Art of R.Black' is a personal and artistic platform showcasing the art and related content of R.Black, including tarot services and merchandise. It operates as a small niche site with a focus on content presentation and merchandise sales. The site is built on WordPress CMS using a child theme based on the Twenty Twelve theme, leveraging common web technologies such as jQuery and MediaElement.js. The technical infrastructure is moderate in performance and basic in mobile optimization and accessibility. Security posture is adequate with HTTPS enabled but lacks advanced security headers and DNSSEC, which are recommended for improved protection. Privacy compliance is minimal, with no privacy or cookie policies present, and contact information is limited to a contact form without direct emails or phone numbers. Overall, the site is safe for general audiences with no adult content detected.

F

Fedora Project

fedoramagazine.org

57

Fedora Magazine is a community-driven publication affiliated with the Fedora Project and Red Hat, providing guides, news, and information about the Fedora Linux operating system and related open-source software. It targets users, developers, system administrators, and community members interested in Fedora. The website operates on a WordPress CMS with common plugins for SEO and user engagement, offering a good user experience with well-structured content and consistent branding. The technical infrastructure is modern but lacks some advanced security features such as DNSSEC and security headers. The security posture is adequate with HTTPS enabled and domain protections in place, but could be improved by implementing additional security headers and DNSSEC. Privacy compliance is basic, with a privacy policy inferred from the terms and conditions page but no cookie consent mechanism detected. Overall, the website is trustworthy, professional, and serves as an authoritative source for Fedora-related content.

O

OpenOlat

openolat.com

68

OpenOlat is a Swiss-based learning management system (LMS) platform offering versatile, intuitive, and reliable solutions for knowledge transfer, eTesting, and administration. The website presents a professional and well-structured digital presence built on WordPress, leveraging modern plugins such as WPBakery Page Builder and Real Cookie Banner Pro for compliance and user experience. The platform targets educational institutions and organizations seeking open-source LMS solutions. Security posture is solid with HTTPS enforcement, privacy compliance, and anonymized analytics, though some gaps exist in published security policies and incident response information. The absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy, warranting further verification. Overall, the website demonstrates a mature digital infrastructure with good content quality and compliance, suitable for its educational market niche.

K

Kaleva Media

kalevamedia.fi

68

Kaleva Media is a well-established Northern Finnish media company with a history dating back to 1899. The company operates multiple local newspapers, digital media channels, and marketing services, positioning itself as a leading regional media provider. Their business model focuses on delivering localized content and marketing partnerships tailored to Northern Finland's communities and businesses. Technically, the website is built on WordPress with a modern theme and includes integrations such as Google Tag Manager and social media SDKs, reflecting a mature digital infrastructure. Security posture is generally good with HTTPS enforced and cookie consent mechanisms in place; however, some outdated libraries and missing explicit security headers present moderate risks. Privacy compliance is strong with comprehensive policies and GDPR adherence. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

K

Kaleva Media

kaleva.media

68

Kaleva Media is a well-established Finnish media company with a history dating back to 1899. It operates multiple regional newspapers, local and city magazines, radio stations, and marketing services primarily targeting the northern Finland region. The company emphasizes local content, quality journalism, and integrated marketing solutions leveraging deep local and customer understanding. Their business model combines traditional media with digital platforms and marketing services, supported by subsidiaries such as Botnia Print and marketing agencies Kolmas Polvi and Indieplace. Technically, the website is built on WordPress with a modern theme and SEO plugin, featuring multimedia content and social media integration. The site is mobile-optimized and SEO-friendly, though some technical improvements are possible.

U

UserReport

userreport.com

63

UserReport is a Denmark-based technology company offering user engagement tools primarily targeted at publishers, bloggers, online shops, travel platforms, telcos, and car brands. Their SaaS platform provides survey and feedback widgets that help businesses understand their users and improve products. The company operates under the parent organization AudienceProject and has been established since 2005, indicating a mature market presence. The website is professionally designed, mobile-optimized, and SEO-friendly, reflecting a high level of digital maturity. Technically, the site runs on WordPress with integrations of modern analytics and marketing tools such as Google Analytics, Mixpanel, and HubSpot, hosted likely on managed WordPress infrastructure with AWS DNS services. Security posture is good with HTTPS enforced and clientTransferProhibited domain status, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with clear cookie consent mechanisms and comprehensive privacy policies. Overall, the website and business demonstrate a trustworthy and professional presence with no critical security or content issues.

R

Right of the Dot, LLC

rightofthedot.com

57

Right of the Dot, LLC is a specialized domain name asset management and brokerage firm with over 30 years of industry experience. Founded by domain industry pioneer Monte Cahn, the company offers premium domain brokerage, auctions, appraisals, and consulting services. It holds a professional auction business license and has transacted over $560 million in domain sales, positioning itself as a market leader in the domain brokerage sector. The website targets domain investors, businesses, and premium domain buyers, providing detailed auction event information and industry insights. Technically, the website is built on WordPress using the Genesis Framework and integrates Gravity Forms for contact and newsletter subscriptions. It employs modern web technologies including Google reCAPTCHA for form security and Cloudflare for DNS services. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. From a security perspective, the site uses HTTPS and reCAPTCHA but lacks DNSSEC and important security headers, which are recommended for enhanced protection. No privacy or cookie policies are present, indicating compliance gaps with GDPR and related regulations. Contact information is comprehensive and transparent, supporting business credibility. Overall, the website is professional and trustworthy with a strong business reputation but would benefit from improved privacy compliance and enhanced security configurations to reduce risk and increase user trust.

K

KICKOFF MEDIA

kickoff.media

37

Kickoff Media is a small Swiss-based media and web development company specializing in website creation, Wordpress training, interactive content, graphic design, motion design, and video production. The company targets clients primarily in La Chaux-de-Fonds and Neuchâtel regions of Switzerland, offering localized digital media services. The website is built on WordPress using a commercial Brooklyn theme, indicating a moderate level of digital maturity with integration of modern web technologies and analytics tools such as Google Analytics and Google Tag Manager. The technical infrastructure is typical for small to medium-sized digital agencies, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and use of Google reCAPTCHA, but lacks important security headers and formal privacy and cookie policies, which are critical for compliance and trust. Overall, the website appears legitimate and professional but would benefit from enhanced privacy compliance and security best practices to improve trust and reduce risk.

R

RapidSpike

rapidspike.com

66

RapidSpike is a specialized SaaS provider focused on delivering security and performance monitoring solutions tailored for eCommerce brands. The company positions itself as a trusted partner for online retailers, helping them maintain fast, secure, and reliable customer journeys from visit to checkout. With over a decade of experience, RapidSpike serves some of the world's largest eCommerce sites, emphasizing instant security and synthetic monitoring capabilities. The website reflects a professional and modern digital presence built on WordPress with advanced SEO and analytics integrations. However, the absence of WHOIS registration data raises questions about domain legitimacy and ownership transparency. Security posture is generally good with HTTPS and asynchronous loading of tracking scripts, but lacks explicit security headers and formal policies such as privacy, cookie, and incident response. Overall, the site is accessible and well-structured but would benefit from enhanced compliance and transparency measures.

Open Education Day is an educational event organized by CH Open, focusing on open source technologies and open educational resources in the Swiss education sector. The website presents a professional and well-structured platform for event information, partner promotion, and community engagement. The technical infrastructure is based on WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is adequate with HTTPS and privacy-conscious analytics, though lacking explicit security policies and cookie consent mechanisms. Overall, the site is trustworthy and serves its niche audience effectively.

D

DINAcon – Konferenz für digitale Nachhaltigkeit

dinacon.ch

46

DINAcon is a Swiss-based conference organizer specializing in digital sustainability events, targeting professionals interested in technology and sustainability. The website presents information about upcoming conferences, ticketing, and program details, positioning itself as a niche player in the technology event sector within Switzerland. Technically, the site is built on WordPress with Elementor and uses modern web technologies such as Bootstrap and jQuery, providing a responsive and user-friendly experience. Security-wise, the site benefits from HTTPS but lacks visible security headers and formal security policies, indicating room for improvement in security posture and compliance. Privacy compliance is weak due to the absence of privacy and cookie policies, which could expose the organization to regulatory risks. Overall, the site is professional and trustworthy but should enhance its compliance and security transparency to strengthen user trust and regulatory adherence.

W

Warfare Plugins, Inc.

warfareplugins.com

57

Warfare Plugins, Inc. operates the website warfareplugins.com, offering a specialized WordPress plugin called Social Warfare that enhances social sharing capabilities for content creators and marketers. Established in 2014, the company has positioned itself as a trusted provider with over one million downloads, focusing on performance, customization, and social media optimization. The website demonstrates a mature digital presence with strong SEO, marketing integrations, and a professional design tailored to WordPress users. Technically, the site leverages a modern WordPress stack with multiple plugins for e-commerce, affiliate marketing, and GDPR compliance, ensuring a fast and responsive user experience. Security posture is solid with HTTPS enforced and domain transfer protections, though there is room for improvement in security headers and published policies. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Overall, the website is trustworthy, professional, and safe for general audiences.

A

Aimigo

gymglish.com

66

Gymglish, part of Aimigo, is an established online language learning platform founded in 2004, offering AI-powered adaptive courses in multiple languages. The company targets a broad audience from beginners to proficient learners, including private individuals, educational institutions, and businesses. Their market position is strong, supported by over 8 million users worldwide and recognition by Time magazine as a top EdTech leader in 2024. The platform emphasizes short, engaging daily lessons infused with humor and cultural insights, accessible via web and mobile apps. Technically, the website is modern, fast, and mobile-optimized, leveraging technologies like Google Tag Manager and Plausible Analytics, with a CDN provider Fastly ensuring performance. Security posture is good with HTTPS and cookie consent mechanisms, though explicit security headers and a public security policy are absent. The lack of WHOIS domain registration data is a concern but does not outweigh the strong business and technical indicators of legitimacy. Overall, Gymglish presents a professional, trustworthy, and user-friendly online education service.

A

Aimigo

frantastique.com

67

Gymglish is an established online language learning platform founded in 2004, offering AI-powered adaptive courses in multiple languages including French, English, Spanish, German, and Italian. The company targets learners from beginners to advanced levels with engaging, culturally rich content delivered in short daily episodes. The platform serves over 8 million users worldwide, including private individuals, educational institutions, and businesses, positioning itself as a leader in the EdTech sector with recognition from Time magazine in 2024. Technically, the website uses modern web technologies, is mobile-optimized, and leverages a CDN for fast performance. Privacy and cookie policies are comprehensive and GDPR-compliant, with a clear consent mechanism. However, the absence of WHOIS data for the domain www.gymglish.com raises concerns about domain transparency and trustworthiness. No direct company contact emails or phone numbers are found on the site, which could impact user trust and support accessibility. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, but incident response and security policy information are not published. Overall, the website is professional, secure, and user-friendly, but domain registration opacity and limited contact info slightly reduce business credibility.

R

Reklamos plotai, reklamos lauko stendai, LED ekranai, nuoma

reklaminiaiplotai.lt

43

The website www.reklaminiaiplotai.lt is a Lithuanian advertising platform offering a wide range of advertising spaces including outdoor advertising stands, LED screens, advertising trailers, and media advertising such as TV and radio. It positions itself as the largest advertising space provider in Lithuania, targeting businesses and advertisers seeking visibility in various public and commercial locations. The site is professionally designed, mobile-optimized, and uses modern technologies such as Google Maps API and Google Analytics, managed via the Rinup CMS platform. Security measures include HTTPS enforcement and use of Google reCAPTCHA for form protection, alongside a cookie consent mechanism indicating GDPR compliance awareness. However, the absence of WHOIS data and domain registration details limits full verification of domain legitimacy. The site lacks explicit privacy and terms of service pages, and no security headers were detected, suggesting room for improvement in security posture. Overall, the website is functional, business-focused, and moderately secure, suitable for its target audience but would benefit from enhanced transparency and security practices.

S

SC-Networks GmbH

sc-networks.de

56

SC-Networks GmbH operates the Evalanche platform, a leading B2B marketing automation SaaS solution based in Germany with over 25 years of market presence. The company offers comprehensive marketing automation, email marketing, and lead management services, emphasizing data security and compliance with GDPR and ISO 27001 standards. The website demonstrates a mature digital infrastructure built on WordPress with modern marketing and analytics tools integrated, providing a professional user experience and clear navigation. Security posture is strong with HTTPS and certifications, though some improvements in security headers and incident response transparency are recommended. Overall, the domain's WHOIS data is missing, which slightly impacts trust but does not detract from the evident legitimacy and professionalism of the business.