Security Directory

Č

Česká energie pro váš život - LAMA energy

lamaenergy.cz

58

LAMA energy is a Czech energy supplier offering low-cost gas and electricity with own extraction operations domestically and abroad. The company positions itself as a reliable and fair-priced energy provider targeting Czech residential and business customers. The website is built on WordPress with modern SEO and cookie consent mechanisms, indicating a mature digital presence. Security posture is good with HTTPS and cookie consent, though some security headers could be improved. The absence of WHOIS data limits domain trust assessment, but the website content and technical setup appear professional and legitimate. Overall, the site demonstrates a solid business and technical foundation with room for enhanced transparency and contact information.

E

EDF Renewables

mea-edf-re.com

10

EDF Renewables MEA website represents a regional branch of the global EDF Group focused on renewable energy solutions in the Middle East and Africa. The company offers integrated services including development, financing, construction, and asset operation of renewable power plants such as solar and wind farms. The website content is professionally presented with detailed project information and service descriptions, targeting energy sector stakeholders and regional customers. Technically, the site is built on WordPress with Elementor and related Jet plugins, showing moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain protection status flags, though DNSSEC and security headers are missing. Privacy compliance is basic with a cookie consent mechanism but no visible privacy or terms of service pages. Overall, the site is trustworthy and credible, reflecting a large enterprise with consistent branding and clear business focus.

R

Regional Information for Society

wcrp-rifs.org

58

The website www.wcrp-rifs.org represents the Regional Information for Society (RIfS), a scientific initiative under the World Climate Research Programme (WCRP). It focuses on enhancing collaboration among scientists, decision makers, and society to improve the value of regional climate information in policy and decision-making contexts. The site targets a specialized audience including climate scientists and policy stakeholders, operating as a non-profit entity with a clear mission to support climate science integration. Technically, the website is built on WordPress with modern themes and plugins, offering good mobile optimization and SEO practices. However, it lacks visible privacy and cookie policies, contact information, and some security headers, which are areas for improvement. Security posture is generally good with HTTPS enabled and no obvious vulnerabilities, but the absence of WHOIS data limits full domain trust evaluation. Overall, the site is professional and trustworthy but could enhance transparency and compliance aspects.

O

Observatory of Public Sector Innovation

oecd-opsi.org

57

The Observatory of Public Sector Innovation (OPSI) is an official initiative under the OECD Public Governance Directorate, focused on advancing public sector innovation globally. The website serves as a comprehensive resource hub offering research, case studies, toolkits, and collaboration opportunities for governments and public servants. It holds a strong market position as a trusted government innovation knowledge source, supported by OECD branding and partnerships. Technically, the site is built on WordPress with a modern tech stack including Yoast SEO, Google Analytics, and Google Tag Manager, hosted behind Cloudflare DNS. The site is well-optimized for mobile and accessibility, with good SEO practices and structured data enhancing discoverability. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and explicit security policies such as privacy, cookie, or vulnerability disclosures. No incident response contacts or security.txt files are present, indicating room for improvement in transparency and compliance. Overall, the website is professional, content-rich, and trustworthy, with moderate security posture and privacy compliance. Strategic enhancements in privacy policy publication, DNS security, and incident response transparency would further strengthen its security and compliance profile.

O

Outright Games

outrightgames.com

71

Outright Games is a family-run global video game publisher specializing in family-friendly interactive entertainment featuring some of the biggest licensed franchises worldwide. The company operates a professional and well-structured website that reflects its market position as a medium-sized player in the media industry focused on children and family audiences. The website is built on a modern WordPress CMS with advanced SEO and performance optimizations, including caching and lazy loading. It integrates multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, Intercom, and Cookiebot for consent management. Security posture is solid with HTTPS enforced and domain transfer protections in place, although DNSSEC is not enabled and some security headers could be improved. No privacy policy or terms of service were detected in the provided content, which is a compliance gap. Contact information is not explicitly listed on the homepage, but social media presence is strong. Overall, the website is professional, trustworthy, and safe for general audiences.

J

Jablonecká energetická a.s.

jeas.cz

11

Jablonecká energetická a.s. is a municipal energy company based in the Czech Republic, specializing in district heating and energy management services primarily in Jablonec nad Nisou and surrounding areas. The company operates a modern centralized heating system serving thousands of households, businesses, and institutions, with a strong focus on ecological innovations such as photovoltaic integration and community energy projects. The website reflects a professional and well-established business with clear market leadership in its region. Technically, the site is built on WordPress with modern SEO and GDPR compliance tools, offering a good user experience and mobile optimization. Security posture is solid with HTTPS and privacy mechanisms, though some security headers could be enhanced. Overall, the company demonstrates strong business credibility and digital maturity.

DECLIMA s.r.o. is a Czech company specializing in smart building technologies and energy management solutions, primarily serving private and commercial customers in the Litomyšl region. Their services include energy measurement and control, project design, coordination of trades, financing assistance, automation with Loxone systems, installation, training, and servicing. The company positions itself as a comprehensive provider from project inception to ongoing monitoring and support. Technically, the website is built on WordPress with modern SEO and analytics tools, showing a good level of digital maturity. Security posture is solid with HTTPS, cookie consent, and reCAPTCHA integration, though some advanced security headers are missing. The absence of WHOIS data limits domain trust assessment, but the professional web presence and clear contact information support legitimacy. Overall, the site is well-structured, user-friendly, and compliant with GDPR requirements.

O

Obec Potštejn

potstejn.cz

10

Obec Potštejn operates a municipal government website serving the local community of Potštejn in the Czech Republic. The site provides residents and visitors with access to official documents, public notices, tourism information, event management, and online municipal services. The website is built on WordPress with popular plugins such as WooCommerce and Events Manager, indicating a moderate level of digital maturity. The design is professional and consistent, with good mobile optimization and clear navigation. Security posture is adequate with HTTPS enforced, but lacks some important security headers and explicit privacy and cookie policies, which are critical for compliance and user trust. Overall, the domain registration and WHOIS data align well with the website's claims, supporting its legitimacy.

G

GoldKnights

lastoricru.com

35

The Last Oricru website represents a small indie video game developer and publisher focused on an action RPG game emphasizing storytelling and player choices. The site is professionally designed using WordPress and integrates modern web technologies and analytics tools. The business is positioned as a niche player in the gaming industry with a clear target audience of gamers interested in story-driven RPGs with coop features. The domain registration and hosting align with the company's Czech origins and business timeline, indicating legitimacy and transparency. However, the website lacks critical privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate with HTTPS enabled but missing key security headers and DNSSEC. Overall, the site is functional, trustworthy, and safe for general audiences but would benefit from enhanced privacy compliance and security hardening.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-bettgefluester.de

42

Bettgeflüster is a German health campaign operated by the BKV association, focusing on promoting healthy sleep habits through educational content, multimedia resources, and downloadable materials. The campaign targets the general public interested in improving sleep quality and overall health. The website is built on WordPress, leveraging modern web technologies such as Breeze caching and Google Fonts, and is hosted with domain control services consistent with the domain registration. The site is well-structured, mobile-optimized, and provides clear navigation and relevant content. Security posture is solid with HTTPS enforced, though it lacks some security headers and cookie consent mechanisms, which are recommended for GDPR compliance. Contact information is clearly provided with official email and physical address, enhancing business credibility.

N

Nový Hlavák

novyhlavak.com

10

Nový Hlavák is a Czech public infrastructure project focused on revitalizing the Vrchlického sady park, constructing a new tramway line, and reconstructing the main railway station's new hall in Prague. The project is led by the Danish architectural studio Henning Larsen Architects, which won the competitive dialogue with their design 'Šťastný Hlavák'. The website serves as an informational platform showcasing the project vision, visual comparisons, and virtual tours, targeting city residents, visitors, and stakeholders. Technically, the site is built on WordPress with Elementor and integrates Google Analytics for visitor tracking. The site is well-structured and mobile-optimized but lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and DNSSEC.

A

Amt für Gesundheit (Office for Health, Liechtenstein)

hitze.li

48

The website 'Hitze und Gesundheit' is an official government health information portal managed by the Amt für Gesundheit of Liechtenstein. It focuses on educating the public about heat-related health risks, protective measures, and vulnerable groups. The site is well-positioned as a trusted source for health and climate-related information in the region, targeting the general population with clear, scientifically backed content. Technically, the site is built on WordPress with a modern theme and uses standard web technologies such as jQuery and Typekit fonts. It is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and obfuscates emails to reduce spam, but lacks some security headers and a formal vulnerability disclosure mechanism. Privacy compliance is partially met with a privacy policy present, but no cookie consent mechanism is detected, which could be improved. Overall, the site is credible, secure, and professionally maintained, serving its public health mission effectively.

W

WebSource

websource.li

51

WebSource is a specialized digital agency based in Liechtenstein, focusing on WordPress websites, WooCommerce online shops, mobile app development, and hosting services. The company targets businesses and individuals in Liechtenstein and the surrounding Ostschweiz region, positioning itself as a trusted expert in digital transformation and web solutions. The website reflects a professional and consistent brand image with clear service offerings and a modern design. Technically, the site is built on WordPress 6.8.3, leveraging standard web technologies and including plausible analytics for minimal user tracking. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Performance is moderate, with no major technical issues detected. From a security perspective, the website enforces HTTPS and uses a modern WordPress version, which is positive. However, it lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were found in the HTML content. Privacy compliance is weak due to the absence of privacy and cookie policies and consent mechanisms. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security transparency to improve user trust and regulatory adherence.

M

Mois Sans Tabac

month-without-tobacco.ch

51

Month Without Tobacco is a well-established Swiss public health campaign aimed at helping smokers quit through a structured 30-day program, practical guides, and community support. The website is multilingual, targeting French, German, Italian, and English speakers in Switzerland. It leverages WordPress with Elementor and several plugins to deliver a rich user experience including multimedia content, testimonials, and interactive forms. The campaign partners with various health organizations and provides free professional advice and online community engagement. Technically, the site is well-structured with good SEO practices, mobile optimization, and security headers in place. However, it lacks explicit privacy and terms of service pages, and no published security or incident response policies were found. Overall, the site is trustworthy and professionally maintained, with a strong focus on user engagement and health promotion.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-like-dich-selbst.de

41

The website 'BKK-Kampagne: Like Dich selbst!' is a health promotion platform operated by the non-profit association BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V. It focuses on educating the German public about nutrition, exercise, stress management, and addiction prevention through webinars and podcasts. The site targets a general audience interested in improving personal health and wellness. Technically, the site is built on WordPress with modern web technologies such as jQuery and Google Fonts, hosted with domain control via GoDaddy DNS. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site uses HTTPS but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional but could improve in security and privacy transparency.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-fokussiert.de

42

BKK fokussiert is a German health prevention campaign operated by the BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V., focusing on promoting healthy work environments and stress prevention for employees. The website serves as an informational platform offering videos, podcasts, and educational content targeting employees and companies interested in workplace health. The campaign positions itself as a niche player within the healthcare and non-profit sectors in Germany. Technically, the website is built on WordPress 6.8.3 with standard plugins including WPML for multilingual support. It uses Google Fonts and embeds media from Mixcloud. The site is hosted with domain control via GoDaddy name servers and employs HTTPS with good SSL configuration. The site is mobile optimized and provides a good user experience with clear navigation and consistent branding. From a security perspective, the website enforces HTTPS but lacks visible security headers and cookie consent mechanisms, which are recommended for GDPR compliance. No forms or data collection fields are present on the homepage, reducing attack surface. No vulnerability disclosure or incident response information is published. The WHOIS data is minimal but consistent with a legitimate domain registration. Overall, the website is professional, secure, and trustworthy with minor improvements recommended in privacy compliance and security headers to enhance protection and user trust.

B

BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V.

bkk-care-life.de

48

BKK Care & Life is a healthcare-focused website dedicated to raising awareness about testicular cancer and promoting early detection through self-examination. The platform is supported by the BKV – Interessengemeinschaft Betriebliche Krankenversicherung e. V., a German statutory health insurance association. The website provides detailed educational content, including anatomy, function, and practical guides for self-checking testicles, targeting men primarily between 25 and 45 years old. The site is professionally designed, multilingual, and well-structured to serve its niche audience effectively. Technically, the website is built on WordPress 6.8.3 with WPML for multilingual support and uses standard web technologies including jQuery and custom JavaScript. Hosting is managed via domaincontrol.com name servers, indicating a stable and reputable hosting environment. Performance and mobile optimization are good, with accessibility and SEO features well implemented. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks some advanced security headers and a cookie consent mechanism. No forms collecting personal data were detected on the main page, reducing immediate privacy risks. The WHOIS data is consistent and legitimate, with no suspicious patterns. However, the site could improve by publishing a security policy, incident response contacts, and vulnerability disclosure information. Overall, BKK Care & Life presents a trustworthy, professional, and secure platform for health education with minor areas for improvement in privacy compliance and security best practices.

C

Carte Jeunes

cartejeunes.lu

55

Carte Jeunes is a youth-focused organization providing the European Youth Card in Luxembourg, targeting young people aged 12 to 30. The website offers card issuance services, discount information, and youth engagement content. It maintains a strong digital presence with social media integration and a mobile app. The technical infrastructure is based on WordPress with modern plugins for SEO, newsletter management, and social media feeds. Security posture is solid with HTTPS, captcha protection, and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the website is professional, trustworthy, and well-optimized for its audience.

A

Agence Nationale pour l'Information des Jeunes

jugendinfo.lu

48

Jugendinfo.lu is a government-affiliated youth information portal based in Luxembourg, operated by the Agence Nationale pour l'Information des Jeunes. The website provides comprehensive information and services targeted at young people aged 12 to 30, covering education, employment, engagement, housing, health, and daily life. It holds a strong market position as a national youth information service with a clear mission to support and inform the youth demographic. The business model is non-profit and government-supported, focusing on public service and youth empowerment. Technically, the website is built on a modern WordPress CMS platform with popular plugins such as Yoast SEO, WPBakery Page Builder, and Smart Slider 3. It integrates Google Analytics and Google Tag Manager for analytics and marketing purposes. The site demonstrates good mobile optimization and basic accessibility features, with a moderate performance profile. SEO is well addressed through meta tags and structured data. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms compliant with GDPR. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not detected, and no published security or incident response policies are found. No vulnerabilities or suspicious activities are evident in the content or technical stack. The WHOIS data confirms domain legitimacy with consistent registration details aligned with the website's government affiliation. Overall, Jugendinfo.lu presents a trustworthy, professional, and well-maintained online presence for youth information in Luxembourg. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

Ž

Železničná spoločnosť Slovensko

zssk.sk

56

Železničná spoločnosť Slovensko (ZSSK) operates as the national railway carrier in Slovakia, providing comprehensive passenger rail services domestically and internationally. The website serves as a primary portal for ticket sales, travel information, and customer support, targeting train travelers in Slovakia and neighboring countries. The company holds a strong market position as the national transport provider with a broad portfolio of services including seat reservations, baggage transport, and special accommodations for disabled passengers. The site is professionally designed with clear navigation and multilingual support, enhancing user experience and accessibility. Technically, the website is built on WordPress with modern technologies such as React and integrates advanced SEO and accessibility plugins. It employs a cookie consent mechanism compliant with GDPR, uses secure HTTPS connections, and integrates third-party marketing and analytics tools like Facebook Pixel and Google Tag Manager. The site demonstrates good mobile optimization and performance, although hosting details are not explicitly identified. From a security perspective, the website enforces HTTPS and uses secure login portals. While explicit security policies and incident response contacts are not published, no vulnerabilities or exposed sensitive data were detected. The site uses cookie consent and privacy policies that align with GDPR requirements. Recommendations include publishing a dedicated security policy and incident response information, and implementing a security.txt file for vulnerability disclosures. Overall, the website presents a low-risk profile with high trustworthiness, professional content, and strong compliance with privacy regulations. Strategic improvements in transparency around security policies and incident response would further enhance its security posture and user trust.

E

Eurodesk Luxembourg

eurodesk.lu

46

Eurodesk Luxembourg is a government-affiliated youth information service providing a range of opportunities and resources for young people in Luxembourg and Europe. The website serves as a portal for volunteering missions, European opportunities, youth testimonials, and educational content. It targets youth and young adults, operating as a non-profit public information agency with a consistent and professional online presence. The site is well-branded and supported by reputable European and national partners.

T

The Civilian Marksmanship Program

thecmp.org

60

The Civilian Marksmanship Program (CMP) is a well-established non-profit organization dedicated to promoting marksmanship and firearms safety, primarily through youth programs, competitions, and the restoration and sale of historic American firearms. The website reflects a mature digital presence with comprehensive content targeting youth, adult competitors, affiliated clubs, and veteran organizations. The CMP leverages WordPress CMS with a suite of plugins for SEO, analytics, event management, and user engagement, hosted behind Cloudflare for performance and security. The site is professionally designed, mobile-optimized, and provides clear navigation and rich content relevant to its mission. Security posture is solid with HTTPS enforcement and domain transfer protections, though improvements such as DNSSEC enablement and explicit security policies could enhance trust. Privacy compliance is basic, with a privacy policy present but lacking cookie consent mechanisms. Overall, the CMP website demonstrates high business credibility and technical maturity, supporting its role as a trusted leader in marksmanship education and community engagement.

B

backstage.li

backstage.li

50

Backstage.li is a youth-oriented media platform based in Liechtenstein, providing event listings, blog articles, podcasts, and community engagement content targeted at children and young people. The website is built on WordPress and leverages modern web technologies including jQuery, Slick Slider, and analytics tools such as Microsoft Clarity and Plausible Analytics. The platform demonstrates a good level of digital maturity with a professional design, mobile optimization, and structured data implementation. Security posture is solid with HTTPS enforced and standard security headers present, though the absence of visible privacy and cookie policies indicates room for improvement in compliance. Overall, the site is trustworthy and well-positioned within its niche, but should enhance privacy transparency and incident response readiness to strengthen user trust and regulatory compliance.

Drosjeutvalget.no is an official Norwegian government website representing a public committee established in 2022 to review and propose improvements to taxi regulation across Norway. The committee's work focuses on ensuring a comprehensive and fair taxi service nationwide, addressing regulatory, economic, and safety concerns. The website serves as an information portal for the public and stakeholders, providing updates, reports, and contact information. Technically, the site is built on WordPress with standard plugins and uses HTTPS with moderate performance and good mobile optimization. Security posture is adequate with no critical vulnerabilities detected, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site is trustworthy, professional, and aligned with government standards.

O

Oslo Economics

osloeconomics.no

51

Oslo Economics is a well-established Norwegian economic advisory firm founded in 2008, providing comprehensive economic analysis and consulting services to businesses, government agencies, and organizations. The company holds a strong market position as one of Norway's leading economic advisory environments, offering a wide range of services including financial analyses, health economic analyses, market competition studies, and strategic advisory. Their website reflects a professional and consistent brand image, targeting a broad audience of decision-makers and stakeholders in both public and private sectors. Technically, the website is built on a modern WordPress platform with integration of popular libraries and services such as jQuery, Bootstrap Grid, Google Analytics, and Google Tag Manager. The site demonstrates good mobile optimization, accessibility, and SEO practices, although hosting details are not explicitly disclosed. The presence of cookie consent mechanisms and GDPR-compliant privacy policies indicates a mature approach to privacy and data protection. From a security perspective, the site enforces HTTPS and uses secure contact forms but lacks explicit security headers and publicly available security policies or incident response plans. No vulnerabilities or exposed sensitive data were detected in the analysis. The domain registration is consistent with the business claims, showing a long-standing presence without privacy protection, which supports legitimacy. Overall, Oslo Economics presents a trustworthy and professional online presence with strong compliance and technical foundations. Strategic improvements in security policy transparency and enhanced security headers could further strengthen their security posture and trustworthiness.

CommanderZero.com is a personal blog established in 2003, focusing on preparedness, survivalism, firearms, and related logistics topics. The site serves a niche audience of survival enthusiasts and firearm owners, providing detailed articles, reviews, and observations. The business model appears to be content publishing supported by community engagement and Patreon donations. Technically, the site runs on WordPress hosted by Bluehost, utilizing modern web technologies and Google Analytics for visitor tracking. The site is moderately optimized for mobile and accessibility but lacks comprehensive privacy and cookie policies, which are compliance gaps. Security posture is adequate with HTTPS enabled and domain transfer protections, but missing advanced security headers and vulnerability disclosures. Overall, the domain age and registration data support the site's legitimacy and stable presence. Strategic improvements in privacy compliance and security practices would enhance trust and reduce risk.

Z

ZUKE Green

zuke-green.de

56

ZUKE Green is a German-based green health community dedicated to promoting sustainable transformation within the healthcare sector. It targets clinic employees and companies offering sustainable solutions, facilitating networking, knowledge exchange, and hosting events such as the ZUKE Green Health Congress. The website is professionally designed using WordPress and Elementor, with a focus on clear navigation and relevant content for its audience. The technical infrastructure includes modern web technologies and Google Tag Manager for analytics. Security posture is adequate with HTTPS enabled and secure forms, though lacks some security headers and explicit privacy policies. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy. Strategic improvements in privacy compliance and security headers would enhance trust and compliance.

F

femak e.V.

femak.de

47

femak e.V. is a German non-profit professional association dedicated to buyers, material managers, and logisticians in hospitals. The organization serves as a neutral platform for knowledge exchange, professional development, and networking within the healthcare procurement and logistics sector. The website reflects a well-maintained digital presence with comprehensive event information, news, and member services tailored to its specialized audience. Technically, the site is built on WordPress with modern frameworks and plugins, ensuring responsive design and good user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site demonstrates strong compliance with GDPR and provides clear contact and legal information, supporting its credibility and trustworthiness.

D

Deutsche Gesellschaft für Chirurgie e.V.

dck2026.de

61

The website dck2026.de represents the official online presence for the 143rd German Surgery Congress scheduled for April 2026 in Leipzig, Germany. It is managed by the Deutsche Gesellschaft für Chirurgie e.V. and affiliated surgical societies, serving as a professional platform for surgeons, healthcare professionals, and industry partners. The site provides comprehensive event information, scientific program details, and registration capabilities, targeting medical professionals in the surgical field. Technically, the site is built on WordPress with modern plugins for SEO, membership, and event management, delivering a professional and responsive user experience. Security posture is strong with HTTPS, secure forms, and cookie consent mechanisms, although explicit security headers and incident response policies are not evident. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements, supporting its role as a leading national congress platform.

I

Institut für Medizininformatik

mig-frankfurt.de

40

The Institut für Medizininformatik (IMI) at the Universitätsklinikum Frankfurt, affiliated with Goethe-Universität, is a specialized academic research institute founded in 2022. It focuses on applied research and development in medical informatics, acting as a bridge between clinical questions and informatics solutions. The institute participates in national and European projects, particularly in rare diseases, and collaborates closely with clinical and research partners. The website reflects a professional academic presence with clear content and institutional affiliations. Technically, the website is built on WordPress with modern frameworks such as Bootstrap and jQuery, hosted on a reputable German provider (Hetzner). The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. However, some improvements could be made in accessibility and performance tuning. From a security perspective, the site uses HTTPS with good SSL configuration but lacks security headers and a cookie consent mechanism, which are recommended for compliance and enhanced security. No vulnerabilities or exposed sensitive data were detected. The absence of explicit incident response or vulnerability disclosure policies suggests room for maturity in security governance. Overall, the website and domain are legitimate, consistent with the institute's academic nature and recent founding. The risk profile is low, but compliance with EU privacy regulations could be improved by adding cookie consent and security headers. Strategic recommendations include enhancing security headers, publishing security policies, and improving privacy compliance mechanisms.

D

Deutsche Gesellschaft für Internistische Intensivmedizin und Notfallmedizin e.V.

dgiin.de

52

The Deutsche Gesellschaft für Internistische Intensivmedizin und Notfallmedizin e.V. (DGIIN) is a professional German medical society focused on internistic intensive care and emergency medicine. The organization provides education, research, certification, and community services to healthcare professionals in this specialized field. The website is well-structured, professionally designed, and targets medical professionals with relevant news, courses, and job opportunities. Technically, the site is built on WordPress with modern plugins and uses HTTPS with a cookie consent mechanism, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and captcha protections, but lacks explicit security policies and vulnerability disclosures. Overall, the site is trustworthy and serves its niche audience effectively.

S

Správa a údržba ciest Prešovského samosprávneho kraja

zjazdnostpsk.sk

42

Správa a údržba ciest Prešovského samosprávneho kraja operates a website providing meteorological station data and road maintenance information for the Prešov region in Slovakia. The site serves as a public service platform offering real-time weather data and coverage maps to residents and authorities. The company is a regional governmental entity established in 2004, with a medium-sized operational scope focused on transportation infrastructure and weather monitoring. Technically, the website is built on WordPress 6.8.3, utilizing modern libraries such as jQuery, Bootstrap, and Google Maps API for interactive features. The site demonstrates good mobile optimization and moderate performance, with a clean and professional design. Security measures include HTTPS with a valid SSL certificate and DNSSEC enabled, alongside Google reCAPTCHA v3 to mitigate automated abuse. Security posture is solid but could be improved by adding explicit security headers and publishing a security policy or incident response contacts. Privacy compliance is limited due to the absence of explicit privacy and cookie policies or consent mechanisms, which is a notable gap given GDPR requirements. No vulnerabilities or suspicious content were detected, and the domain's WHOIS data confirms legitimacy and consistency with the business purpose. Overall, the website is a trustworthy and functional public service portal with room for improvement in privacy compliance and security transparency. Strategic enhancements in these areas would strengthen user trust and regulatory adherence.

Z

Zdraviamy.cz

zdraviamy.cz

46

Zdraviamy.cz is a Czech-language online media platform specializing in health, wellness, and medical topics. It offers a broad range of categorized articles, interviews, and videos targeting the Czech-speaking general public interested in health-related information. The business model appears to be content publishing supported by advertising revenue, with no direct e-commerce or subscription services evident. Technically, the website is built on WordPress CMS with common plugins such as Contact Form 7 and AddThis for social sharing, and it uses Google Analytics for visitor tracking. The site is mobile-optimized and has a consistent, professional design with clear navigation. Security-wise, the site uses HTTPS and does not expose sensitive data, but lacks advanced security headers and explicit security policies. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Privacy compliance is basic, with a cookie consent mechanism present but no clear privacy or terms of service pages. Overall, the site is functional and content-rich but would benefit from improved transparency and security practices.

S

Softball-Deutschland.de

softball-deutschland.de

53

Softball-Deutschland.de is a specialized German sports news portal focusing on the Softball Bundesliga and related softball activities in Germany. It provides up-to-date news, match schedules, statistics, and links to national teams and partner organizations. The website targets softball enthusiasts and sports fans within Germany, serving as an information hub for the softball community. The business model centers on content provision and community engagement, supported by newsletter subscriptions and partnerships with official sports bodies. The site maintains consistent branding and good content quality, positioning itself as a trusted niche sports news source.

D

Deutscher Baseball- und Softballverband e.V.

baseball-softball.de

52

The Deutscher Baseball- und Softballverband e.V. is the official national governing body for baseball and softball in Germany, providing comprehensive information, organizational support, and promotion of these sports. The website serves players, fans, and affiliated organizations with news, event details, and youth development programs. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Elementor, hosted by Infomaniak, and demonstrates good digital maturity with SEO and mobile optimization. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

S

STARFACE GmbH

starface.com

58

STARFACE GmbH is a well-established German telecommunications company specializing in software-based VoIP telephone systems for digital communication. Their offerings include cloud-hosted PBX solutions, virtual machine editions for self-hosting, and hardware appliances, targeting small to large enterprises. The company maintains a strong market position supported by a mature domain, multiple awards, and a comprehensive product portfolio. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for mobile and SEO, and includes multilingual support. Security posture is good with HTTPS enforced and cookie consent implemented, though some improvements such as enabling DNSSEC and publishing explicit security policies are recommended. Overall, the website is professional, trustworthy, and business-focused with moderate user tracking and good advertising transparency.

Pomozte dětem is a Czech non-profit foundation operating for over 25 years, dedicated to helping children with health and social disadvantages. The organization runs donation campaigns, grant programs, and charity events, partnering with major entities like Czech Television and Nadace rozvoje občanské společnosti. Their website is professionally designed using WordPress and Bootstrap, featuring rich content and clear navigation tailored to donors, partners, and grant applicants. Technically, the site employs modern web technologies and includes cookie consent mechanisms, but lacks some advanced security headers and explicit contact information. The absence of WHOIS data for the domain reduces transparency, though the website's content and partnerships strongly indicate legitimacy. Overall, the site demonstrates a mature digital presence with moderate security posture and good privacy compliance.

P

Pure Silver Creative

clienttasks.com

57

CIARA is a technology portal system used by Pure Silver Creative, providing a login interface for clients or users to access various internal modules and services. The website is built on WordPress with a modern tech stack including Vue.js and several JavaScript libraries, indicating a moderate level of digital maturity. The portal focuses on user authentication and access management, with no public-facing business content or marketing information on the login page. Security posture is adequate with HTTPS enforced and secure form handling, but lacks visible security headers and privacy compliance documentation. Overall, the site appears functional for its intended purpose but would benefit from enhanced security headers and privacy policies to improve trust and compliance.

R

RE-Source Platform

resource-platform.eu

63

The RE-Source Platform is a leading European forum dedicated to corporate renewable energy sourcing. It provides policy advocacy, a comprehensive Renewable Energy Buyers Toolkit, and hosts annual events to facilitate renewable energy procurement by corporates. The platform is well-positioned in the energy sector, supported by a strong network of reputable corporate partners and advisory board members. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website is built on WordPress using modern tools such as Elementor and Astra theme, integrating multiple analytics platforms including Google Analytics, Matomo, and Microsoft Clarity. Privacy and cookie compliance are managed via Iubenda, indicating a mature approach to data protection. The site is mobile-optimized and SEO-friendly, though some security headers could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. However, the absence of a published security policy, incident response contacts, or vulnerability disclosure mechanisms suggests room for improvement in transparency and readiness. Overall, the domain registration and WHOIS data align well with the business claims, supporting the legitimacy and trustworthiness of the platform. The overall risk is low, with recommendations focusing on enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

W

WindEurope

windeurope.org

58

WindEurope is a well-established European industry association advocating for wind energy policies and representing over 450 member companies. It operates as a key voice in the European renewable energy sector, providing policy advocacy, organizing industry events, and offering data and career resources. The organization is headquartered in Brussels, Belgium, and has a domain age consistent with its founding date in 2014, reinforcing its legitimacy and market presence. The website is professionally designed with excellent content quality, targeting industry stakeholders, policymakers, and professionals in the wind energy sector. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses multiple analytics platforms including Google Analytics, Matomo, and Microsoft Clarity. It is hosted behind Cloudflare, ensuring good performance and security. The site is mobile-optimized, accessible, and SEO-friendly, leveraging Yoast SEO Premium for enhanced search engine visibility. The technical infrastructure supports a positive user experience with fast loading and clear navigation. From a security perspective, the site enforces HTTPS and has domain transfer protections in place. However, DNSSEC is not enabled, and security headers are not explicitly detected, suggesting room for improvement. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism, aligned with GDPR requirements. Contact information is clearly provided, enhancing trust and transparency. Overall, WindEurope's website demonstrates a high level of professionalism, security, and compliance suitable for an essential industry association. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and establishing a vulnerability disclosure program to further strengthen security posture and stakeholder trust.

D

DATEA Services GmbH / ATEOS Services e.U.

datea.at

47

DATEA Services GmbH is a small Austrian technology company specializing in digital transformation consulting, software development, and managed IT services. Their website presents a professional image with clear service offerings under the themes discover, create, and operate. The company targets businesses seeking to leverage digital opportunities and make strategic decisions to advance their operations. The website is built on WordPress with modern plugins such as Yoast SEO and Slider Revolution, indicating a mature digital infrastructure. Performance and mobile optimization are good, though accessibility is basic. Security posture is adequate with HTTPS enforced but lacks explicit security headers and published security policies. Privacy compliance is good with a privacy policy and cookie policy present, though no cookie consent mechanism is implemented due to the absence of cookies. WHOIS data confirms the legitimacy and consistency of the domain registration, matching the business claims and founding date. Overall, the website is trustworthy and professional, with room for improvement in security best practices and incident response transparency.

Comet Unternehmensberatung operates a professional coaching, mentoring, and training service primarily targeting individuals and companies in Austria. The website presents a strong market position supported by numerous client testimonials and a clear focus on practical knowledge transfer. The business model revolves around personalized consulting and training services, emphasizing career planning, motivation, and marketing mentoring. Technically, the website is built on WordPress with a modern theme and plugins, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS enabled and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is well addressed with accessible privacy and cookie policies. Overall, the website is professional, trustworthy, and well-maintained, with no signs of malicious activity or content blocking.

T

Thanx

thanx.com

65

Thanx operates as a technology company specializing in loyalty, CRM, and guest engagement platforms primarily targeting restaurants, retailers, and malls. Positioned as a leader in restaurant loyalty solutions, Thanx offers a comprehensive suite of services including marketing automation, offer management, and open APIs to enhance customer lifetime value through data-driven digital experiences. The website reflects a mature and professional business with strong branding and customer trust signals such as testimonials and case studies. Technically, the website is built on WordPress with modern JavaScript libraries and integrates multiple analytics and marketing tools such as Google Analytics, Crazy Egg, LinkedIn Insight Tag, and Google Optimize. The site is mobile-optimized, SEO-friendly, and employs cookie consent mechanisms aligned with GDPR compliance. Performance is moderate with good accessibility and user experience. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible security headers and explicit incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data limits domain registration trust analysis, but the website's professional presentation and business consistency mitigate some concerns. Overall, Thanx presents a low-risk profile with strong business credibility and technical maturity. Strategic improvements in security headers, incident response transparency, and WHOIS data clarity would enhance trust and compliance posture.

R

Register.si

register.si

11

Register.si is the official national registry for the Slovenian .si domain, providing stable, secure, and reliable domain registration and management services. The website serves registrars, businesses, and individuals seeking to register or manage .si domains. It offers comprehensive information on domain registration, renewal, dispute resolution, and security policies. Technically, the site is built on WordPress with modern libraries such as jQuery and FontAwesome, and employs Cloudflare Turnstile captcha for bot protection. The site is well-optimized for mobile and accessibility, with good SEO practices. Security posture is strong with HTTPS, secure forms, and cookie consent mechanisms, though some security headers could be explicitly confirmed. Overall, the domain registration data aligns perfectly with the website's claims, indicating high legitimacy and trustworthiness.

M

medXmedia Consulting KG

medxmedia.de

40

medXmedia Consulting KG is a specialized full-service agency focusing on medical communication, serving a niche market of medical societies, associations, NGOs, clinics, and practices primarily in Germany. The company has been operating since 2010 and offers services including press and public relations, marketing, and consulting. Their website reflects a professional and consistent brand image with clear service offerings and client logos, indicating a stable market position within the healthcare communication sector. Technically, the website is built on WordPress with Elementor and Yoast SEO, showing a modern and maintainable infrastructure. Mobile optimization and SEO practices are well implemented, although performance is moderate. Security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response disclosures. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is trustworthy and professional but would benefit from enhanced compliance and security transparency.

A

AKTIN

aktin.org

47

AKTIN is a German healthcare infrastructure platform specializing in the collection and utilization of digital routine data from acute and emergency care settings. It supports healthcare research, surveillance, quality management, and benchmarking, collaborating notably with the Robert Koch Institute and being part of the Network University Medicine (NUM). The platform targets healthcare providers, research institutions, and emergency care professionals, offering data infrastructure and analytical services to improve emergency care quality and public health surveillance. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Elementor, hosted by Netcup. While the site is generally well-structured and optimized for SEO and mobile use, minor issues like missing DNSSEC and a Google Maps API error were identified. The site uses WP Statistics for analytics with minimal user tracking. From a security perspective, HTTPS is properly implemented, and no critical vulnerabilities were detected. However, the absence of DNSSEC and security headers, along with missing explicit security policies and incident response information, suggests room for improvement. Privacy compliance is good, with a comprehensive privacy policy present, though no cookie consent mechanism was found. Overall, AKTIN presents a professional, trustworthy, and well-established platform in the healthcare sector with a solid technical foundation and good business credibility. Strategic improvements in security and privacy mechanisms would enhance its posture further.

E

Eurodesk

eurodesk.sk

38

Eurodesk is a well-established European youth information network operating since 2003, providing comprehensive information and support on educational mobility, volunteering, and youth participation programs such as Erasmus+ and the European Solidarity Corps. The website serves a broad youth audience across multiple countries, offering resources, training, and news updates to encourage active citizenship and international opportunities. Technically, the site is built on a modern WordPress platform with popular frameworks and plugins, delivering a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms, though formal security policies and incident response contacts are not published. Overall, the site demonstrates high legitimacy and trustworthiness, supported by consistent WHOIS data and official EU affiliations.

D

Deutsches Zentrum für Lungenforschung e. V.

dzl.de

59

The Deutsches Zentrum für Lungenforschung (DZL) is a prominent German non-profit consortium comprising 29 leading academic and non-academic institutions dedicated to lung and respiratory disease research. The organization focuses on translational research, bridging laboratory findings to clinical applications, and supports career development through its DZL Academy. The website reflects a strong market position in healthcare research with a clear mission and comprehensive services including clinical studies, data management, and patient information. The target audience includes medical researchers, healthcare professionals, and patients interested in lung health. Technically, the website is built on WordPress with the Oxygen Builder framework, leveraging modern JavaScript libraries like jQuery and AOS for animations. Hosting is managed via EuroDNS nameservers. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Analytics are implemented using Google Analytics with user consent mechanisms in place, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent, but lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's professional nature, indicating a trustworthy domain registration. Overall, the DZL website is a well-maintained, professional platform supporting a reputable healthcare research entity. Strategic improvements include publishing security policies, enhancing accessibility, and adding vulnerability disclosure information to strengthen trust and compliance.

Open Air Kino Regensburg operates a seasonal open-air cinema located in the Armin-Wolf-Arena, Regensburg, Germany. The website serves as an information and ticketing portal for cinema events, targeting local residents and cinema enthusiasts. The business model revolves around event-based ticket sales and partnerships with ticketing platforms. The site content is primarily in German and focuses on promoting upcoming film screenings and related services such as catering and partnerships. Technically, the website is built on WordPress with common plugins for maps, GDPR compliance, and analytics. The site is moderately optimized for performance and mobile devices, with basic SEO and accessibility features. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, but lacks advanced security headers and explicit security policies. No contact emails or phone numbers are directly provided on the homepage, which may affect user trust and support accessibility. Overall, the website is professional and trustworthy for its purpose but could improve in security and contact transparency.