Security Directory

B

Bank for International Settlements

bis.org

60

The Bank for International Settlements (BIS) is a premier international financial institution dedicated to promoting global monetary and financial stability through cooperation among central banks and financial authorities. The website reflects its authoritative market position by offering extensive research, statistical data, and innovation initiatives targeted at central banks, policymakers, and financial supervisors worldwide. The BIS operates as a global hub for banking supervision, financial stability, and technological innovation in finance, supported by a mature and enterprise-scale digital presence. Technically, the website employs modern web technologies including React components, jQuery, and Matomo analytics for privacy-conscious user tracking. The site is well-structured, mobile-optimized, and accessible, with comprehensive metadata and structured data enhancing SEO and interoperability. While the WHOIS data is unavailable due to privacy or registry limitations, the website's professional branding and consistent domain usage strongly support its legitimacy. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data, though explicit security headers and incident response disclosures are absent. The use of Matomo analytics aligns with privacy best practices, and cookie and privacy policies are clearly presented with consent mechanisms. Overall, the security posture is solid but could be enhanced by publishing dedicated security policies and vulnerability disclosure programs. The overall risk assessment is low, with no signs of malicious activity or content safety concerns. Strategic recommendations include improving security header implementation, publishing incident response and vulnerability disclosure information, and enhancing transparency around data protection officers and security policies to further strengthen trust and compliance.

I

Interlake – Your IT Crew

interlake.net

63

Interlake is a well-established German IT service provider specializing in cloud architecture and managed services, particularly focusing on Microsoft Azure and STACKIT platforms. The company offers development, migration, and 24/7 operational support, positioning itself as a premium provider in the cloud hosting and IT services market. The website reflects a professional and consistent brand image with good content quality and clear messaging targeted at business clients seeking advanced cloud solutions. Technically, the site is built on WordPress with the Divi theme and integrates multiple analytics and marketing tools such as Google Tag Manager, Microsoft Clarity, HubSpot, and Matomo, indicating a mature digital infrastructure. Security posture is solid with HTTPS enabled and domain transfer protections in place, though improvements could be made by enabling DNSSEC and publishing explicit security policies. Privacy compliance is supported by a cookie consent mechanism, but lacks visible privacy policy and terms of service pages. Overall, the website and domain data suggest a trustworthy and credible business with room for enhanced transparency in security and privacy documentation.

W

World Resources Institute

wri.org

69

World Resources Institute (WRI) is a globally recognized non-profit research organization dedicated to advancing environmental sustainability, climate action, and equitable development. The organization leverages data, research, and global partnerships to influence policy and catalyze systemic change across sectors such as climate, energy, forests, freshwater, oceans, cities, and finance. WRI maintains a strong international presence with offices and initiatives worldwide, positioning itself as a leader in environmental research and advocacy. Technically, WRI's website is built on Drupal 10, utilizing modern JavaScript libraries and multiple analytics platforms including Google Analytics, Microsoft Clarity, Matomo, and privacy-focused tools like Osano CMP. The site demonstrates good performance, mobile optimization, and accessibility features, reflecting a mature digital infrastructure. Privacy compliance is robust, with clear cookie consent mechanisms and a comprehensive privacy policy. From a security perspective, the site enforces HTTPS and employs reputable third-party services for analytics and consent management. While explicit security headers were not fully confirmed in the provided data, no vulnerabilities or exposed sensitive data were detected. The WHOIS data is privacy protected, which is typical and justified for a large non-profit entity. Overall, the security posture is strong with room for minor improvements such as explicit security header implementation and vulnerability disclosure mechanisms. The overall risk assessment is low, with the website exhibiting high professionalism, trustworthiness, and compliance with privacy regulations. Strategic recommendations include enhancing security header deployment, establishing a security.txt file for vulnerability reporting, and continuous monitoring of third-party scripts to maintain security integrity.

S

Suomen itsenäisyyden juhlarahasto Sitra

sitra.fi

63

Sitra is a Finnish independent public fund focused on societal renewal and sustainability. The website serves as a platform to communicate their projects, research, and events aimed at future-oriented societal development. The organization targets policymakers, researchers, and the general public interested in sustainability and democracy. Technically, the site is built on WordPress with modern web technologies including Matomo analytics and Typekit fonts, offering good performance and mobile optimization. Security posture is solid with HTTPS and no evident vulnerabilities, though some security headers and policies could be improved. Privacy compliance is moderate with a cookie consent mechanism but no explicit privacy or terms of service pages detected in the provided content. Overall, the site is professional, trustworthy, and well-aligned with the organization's mission.

E

European Climate Foundation

europeanclimate.org

64

The European Climate Foundation is a well-established philanthropic organization founded in 2007, dedicated to catalyzing climate action across Europe through partnerships and grantmaking. The website reflects a mature digital presence built on WordPress with modern technologies such as jQuery, Slick Slider, and Matomo analytics, indicating a moderate to good level of digital maturity. The site is professionally designed with clear navigation and relevant content targeting stakeholders in climate action, NGOs, policymakers, and the general public. Security posture is adequate with HTTPS enabled and cookie consent implemented, though there is room for improvement in DNS security and security headers. No critical vulnerabilities or suspicious indicators were found. Overall, the website demonstrates high trustworthiness and professionalism, supporting the organization's mission and credibility.

C

Council on Economic Policies

cepweb.org

72

The Council on Economic Policies (CEP) is an international nonprofit, nonpartisan think tank focused on sustainability through fiscal, monetary, and trade policy research. The organization is positioned as a reputable entity within the economic policy research sector, targeting policymakers, researchers, and sustainability advocates globally. Their website reflects a professional and consistent brand image, offering a range of publications, programs, and events to engage their audience. Technically, the website is built on WordPress with a modern tech stack including Bootstrap, jQuery, and multiple analytics tools such as Google Analytics, Matomo, and LinkedIn Insight Tag. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some accessibility features could be enhanced. Performance is moderate, with a clean and navigable user interface. From a security perspective, the site enforces HTTPS and uses security plugins, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with a clear privacy policy, cookie consent banner, and GDPR adherence. Contact information is transparent, but no dedicated security policy or incident response pages were found. Overall, CEP's website presents a trustworthy and professional front with a solid security posture and compliance framework. The lack of detailed WHOIS data is mitigated by the site's transparency and consistent content. Strategic improvements in security headers and incident response documentation would further enhance their security maturity.

H

Handelsverband Deutschland (HDE)

hde-klimaschutzoffensive.de

56

Handelsverband Deutschland (HDE) operates as the leading trade association representing the German retail sector. The website focuses on the Klimaschutzoffensive initiative, aimed at supporting small and medium-sized retail businesses in implementing energy efficiency and climate protection measures. The organization provides practical tools, guides, funding databases, and educational events to help retailers reduce energy consumption and CO2 emissions. The site is well-branded, professionally designed, and targets retail businesses in Germany with a strong emphasis on sustainability and cost savings. Technically, the website is built on Joomla CMS with modern frontend technologies including Bootstrap and jQuery. It integrates Matomo analytics for privacy-conscious user tracking and employs HTTPS with good SSL configuration. The site is mobile-optimized and accessible, though some accessibility features could be enhanced. Security best practices are partially implemented, with room for improvement in security headers and incident response transparency. From a security perspective, the site shows no signs of vulnerabilities or malicious content. Privacy and cookie policies are present and GDPR compliant, enhancing user trust. However, no explicit security policy or vulnerability disclosure mechanism is found, which could be improved to strengthen security posture. WHOIS data aligns well with the website's claims, showing consistent domain registration and legitimacy. Overall, the website presents a trustworthy, professional platform for retail climate initiatives with solid technical infrastructure and good privacy compliance. Strategic improvements in security transparency and accessibility would further enhance its robustness and user confidence.

H

Handelsverband Deutschland – HDE e.V.

wenigerverpackung.de

58

The website wenigerverpackung.de is operated by Handelsverband Deutschland – HDE e.V., a prominent German retail association focused on promoting packaging reduction and sustainability measures within the retail sector. The site provides detailed information on initiatives such as material reduction, recycling capability, and the use of recycled plastics in packaging. It targets retail businesses and environmentally conscious consumers in Germany. The business model is that of an industry association disseminating best practices and information rather than direct commercial sales. Technically, the website is built on WordPress using Elementor as the page builder, enhanced with Yoast SEO for search optimization and Borlabs Cookie for GDPR-compliant cookie management. Analytics are handled via Matomo, ensuring privacy-conscious visitor tracking. The site is well-optimized for mobile devices and demonstrates good SEO and accessibility practices, although some accessibility features could be improved. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism, reflecting good privacy compliance. However, explicit security headers are not detected, and no public security or incident response policies are published. There are no visible vulnerabilities or exposed sensitive data. The WHOIS data is consistent and indicates a legitimate domain registration aligned with the business entity. Overall, the website presents a professional and trustworthy digital presence for the Handelsverband Deutschland – HDE e.V., with strong compliance to privacy regulations and a clear focus on sustainability in retail packaging. Strategic recommendations include enhancing security headers, publishing incident response information, and possibly adding contact details to improve business credibility and user trust.

H

Handelsverband Deutschland (HDE)

hde.de

54

Handelsverband Deutschland (HDE) is the leading national retail trade association in Germany, serving as the authoritative voice of the retail sector in political and public discourse. The website provides comprehensive information including news, position papers, publications, and event details targeted at retail stakeholders and policymakers. The business model centers on advocacy, information dissemination, and industry support. Technically, the site is built on Joomla CMS with modern frameworks like Bootstrap and jQuery, and integrates Matomo for privacy-conscious analytics. The site is mobile-optimized and accessible, with a professional design and clear navigation. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies are missing. Overall, the site is trustworthy and well-maintained, reflecting a mature digital presence for a large, established organization.

IC Cash Services GmbH is a leading independent operator of cash management systems in Germany and Austria, specializing in ATMs, cash deposit systems, cash recycling, payment services with early value dating, and monitoring tools. The company serves a broad range of sectors including banking, municipalities, retail, hospitality, and transportation. Their market position is strong with over 2,000 cash systems deployed and a history dating back to 2005. The website is professionally designed, mobile-optimized, and provides comprehensive information about their services and company history. Technically, the site uses modern JavaScript libraries and a static site generator (Hugo), ensuring good performance and accessibility. Security posture is solid with HTTPS, cookie consent mechanisms, and reCAPTCHA integration, though a dedicated security policy and incident response information are absent. Overall, the site is trustworthy, compliant with GDPR, and provides multiple contact channels. No adult or questionable content is present.

C

CRIF GmbH

crif.de

56

CRIF Deutschland is a prominent data-driven information service provider and fintech company specializing in risk management, compliance, and sustainability solutions for businesses and financial institutions. As part of the global CRIF Group, it holds a strong market position in Germany and offers a comprehensive suite of services including credit information, fraud prevention, and marketing data analytics. The website reflects a professional and consistent brand image targeting B2B clients with clear navigation and multilingual support. Technically, the site employs modern frameworks like Bootstrap and jQuery, integrates advanced analytics via Matomo and Google Tag Manager, and uses Usercentrics for GDPR-compliant consent management. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response transparency are recommended. Overall, the site is well-structured, trustworthy, and compliant with privacy regulations, supporting CRIF's reputation as a reliable fintech partner.

B

Bundesverband Druck + Medien

bvdm-online.de

66

The Bundesverband Druck + Medien website serves as an expert and service platform for printing and media companies in Germany. It positions itself as a community and service provider within the media sector, targeting industry professionals. The website is built on TYPO3 CMS, indicating a mature and professional technical infrastructure. It employs modern privacy and analytics tools such as Cookiebot for consent management and Matomo for analytics, reflecting a commitment to GDPR compliance and user privacy. However, explicit privacy policies and terms of service documents were not found in the provided content, which could be improved for transparency. Security posture is adequate with HTTPS and consent-based tracking but lacks visible security headers and incident response information. Overall, the website is professional, trustworthy, and well-structured, with moderate technical performance and good mobile optimization.

V

Verband Internet Reisevertrieb e.V. (VIR)

v-i-r.de

47

The Verband Internet Reisevertrieb e.V. (VIR) is a German industry association focused on advancing digital technologies in the tourism sector. It serves as a platform for companies and experts in digital tourism, advocating for members in media, politics, and consumer relations. The association emphasizes innovation, startup support, sustainability, and market research, positioning itself as a key player in the digital travel market in Germany. The website reflects a mature digital presence with comprehensive content, events, and partnerships that reinforce its industry leadership. Technically, the website is built on WordPress with modern plugins such as Elementor, Yoast SEO, and Borlabs Cookie for privacy compliance. It uses Matomo for analytics, indicating a preference for privacy-conscious tracking. The site is hosted on kasserver.com and employs HTTPS with good SSL configuration. Performance and mobile optimization are adequate, though accessibility could be improved. From a security perspective, the site follows best practices with HTTPS and cookie consent mechanisms but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's business claims, indicating legitimacy and trustworthiness. Overall, the site is professional, secure, and compliant with privacy norms, though it could enhance transparency by publishing privacy policies and security incident response information.

H

Handelsverband Deutschland (HDE)

einzelhandel.de

54

Handelsverband Deutschland (HDE) is the leading national retail trade association in Germany, serving as the authoritative voice of the retail sector in political and public discourse. The website provides comprehensive information including news, position papers, events, and publications targeted at retail industry stakeholders, policymakers, and media. The business model centers on advocacy, industry representation, and providing data-driven insights to its members and the public. Technically, the website is built on Joomla CMS with modern frontend technologies such as Bootstrap 5 and jQuery. It integrates Matomo analytics for privacy-conscious user tracking and implements cookie consent mechanisms aligned with GDPR requirements. The site is mobile-optimized and features a professional design with clear navigation and relevant content. From a security perspective, the site enforces HTTPS and includes CSRF tokens in scripts, but lacks visible security headers and a public security or incident response policy. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies. Contact information is primarily via forms and social media channels, with no direct emails or phone numbers found. Overall, the website demonstrates a mature digital presence with good security posture and compliance, serving a large, professional audience. Strategic improvements include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility features to further strengthen trust and compliance.

D

Diehl Group

diehl.com

76

Diehl Group is a globally active German technology enterprise headquartered in Nürnberg, Germany, with a diversified product range across multiple industrial sectors including metal processing, electronic systems, defence, aviation, and metering technologies. The company employs approximately 18,700 people worldwide and generates annual sales of 4.7 billion euros, positioning it as a significant player in the technology and manufacturing industry. The website reflects a professional corporate presence with clear branding and structured content aimed at industrial customers, partners, suppliers, and job seekers. Technically, the website employs modern web technologies such as HTMX, lazy loading for images, and Matomo analytics for user tracking, combined with a cookie consent mechanism to ensure privacy compliance. The site is mobile optimized, accessible, and SEO-friendly, indicating a mature digital infrastructure. The CMS appears to be Ibexa (formerly eZ Platform), a robust enterprise content management system. From a security perspective, the site enforces HTTPS and implements cookie consent, with no visible security vulnerabilities or exposed sensitive data. However, explicit security headers like X-Frame-Options and X-Content-Type-Options are not clearly detected and could be improved. The absence of a dedicated security policy or incident response information is noted, as is the lack of a security.txt file for vulnerability disclosure. Overall, the website and business appear legitimate and professionally managed, with a strong security posture and good privacy compliance. The missing WHOIS data for the subdomain is typical and does not detract from the trustworthiness of the site. Strategic recommendations include enhancing security header implementation, publishing security policies, and improving contact information visibility for security and compliance inquiries.

F

Forbrukerrådet

finansportalen.no

60

Forbrukerrådet operates the Finansportalen website as a Norwegian consumer rights organization focused on providing market monitoring and financial product comparison services. The site offers tools and information to help consumers compare pensions, banking, insurance, and funds. The organization holds a strong market position as an authoritative non-profit consumer advocate in Norway. Technically, the website is built on WordPress with modern plugins and analytics tools such as Matomo and Silktide, demonstrating a mature digital infrastructure with good SEO and accessibility practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers are missing and no explicit incident response or vulnerability disclosure information is provided. Privacy compliance is good with a comprehensive privacy policy, but lacks a cookie consent mechanism. Overall, the site is professional, trustworthy, and safe for general audiences.

F

Forbrukerrådet

forbrukerradet.no

61

Forbrukerrådet is a Norwegian government-affiliated consumer council dedicated to guiding consumers and influencing society towards consumer-friendly policies. The website offers extensive resources including complaint guides, contract templates, market comparisons for finance, energy, and travel, and consumer policy advocacy. It targets Norwegian consumers with content primarily in Norwegian. The organization is well-established with content dating back to 2015 and maintains a strong market position as the leading consumer rights organization in Norway. Technically, the website is built on WordPress with modern plugins and privacy-respecting analytics such as Matomo. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and CAPTCHA protections on forms, though explicit security headers and incident response policies are not publicly documented. Privacy compliance is strong with a comprehensive privacy policy, but lacks a visible cookie consent mechanism. Overall, the website is professional, trustworthy, and serves as a critical public resource for Norwegian consumers.

T

Tour de La Provence

tourdelaprovence.fr

64

Tour de La Provence is a professional cycling event organizer hosting an annual three-day race in the Provence region of France. The website serves as an information hub for the event, providing race results, schedules, and media content. The site is built on WordPress using popular plugins for SEO, page building, and analytics, indicating a moderate level of digital maturity. The technical infrastructure supports good performance and mobile responsiveness, with SSL enabled for secure communications. However, the absence of visible privacy and cookie policies and lack of security headers suggest areas for improvement in compliance and security posture. The WHOIS data is unavailable, limiting domain trust verification, but the professional presentation and social media presence support legitimacy. Overall, the site is well-positioned as a regional sports event platform but should enhance privacy and security transparency.

The Fédération Française de Cyclisme (FFC) is the official national governing body for cycling in France, providing comprehensive information on cycling disciplines, event calendars, results, rankings, and promoting cycling health and leisure activities. The website serves a broad audience including cycling enthusiasts, clubs, sports professionals, and local authorities. It operates as a non-profit organization with a strong market position supported by official partnerships and government affiliations. Technically, the website is built on WordPress, leveraging modern tools such as Matomo for analytics and WP Rocket for performance optimization. The site is well-structured, mobile-optimized, and uses HTTPS with a secure domain registration. Security posture is good with basic best practices observed, though there is room for improvement in security headers and explicit security policies. Privacy compliance is strong, featuring a cookie consent mechanism and comprehensive privacy policies. Overall, the website is professional, trustworthy, and aligned with its mission to promote cycling in France.

S

SmartCom GmbH

smartcom.de

40

SmartCom GmbH is a German-based company specializing in hyperpersonalized dialog marketing solutions leveraging programmatic printing and e-mailing technologies. Their services enable businesses to deliver highly targeted 1:1 marketing campaigns with relevant content at optimal times, enhancing customer engagement and conversion rates. The company positions itself as a specialized provider in the marketing technology sector, targeting businesses seeking advanced personalization in their customer communications. Technically, the website is built on WordPress using the Blocksy theme and integrates modern plugins such as Yoast SEO and Matomo Analytics. The site demonstrates good mobile optimization, SEO practices, and a moderate performance profile. Multimedia content including videos and client logos enhance the user experience. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers, privacy and cookie policies, and incident response information, which are areas for improvement. No vulnerabilities or malicious content were detected. Overall, the website is professional, trustworthy, and content-rich, but would benefit from enhanced privacy compliance and security transparency to improve user trust and regulatory adherence.

M

mgm technology partners

mgm-tp.com

51

mgm technology partners is an established international enterprise software company specializing in low code platforms and model-driven software engineering, targeting sectors such as public sector, retail, and industrial insurance. Their business model focuses on providing integrated software development, consulting, and security services, supported by a portfolio of related partner companies. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored for enterprise clients. Technically, the site leverages modern tools including Webflow CMS, Matomo analytics with privacy-conscious configurations, and Weglot for multilingual support, indicating a high level of digital maturity. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS data is a notable anomaly that slightly reduces trust but does not outweigh the overall professionalism and transparency of the site. Strategic recommendations include enhancing security transparency and publishing incident response information to further strengthen trust and compliance.

C

Computop

computop.com

68

Computop is a well-established global payment service provider founded in 2001, offering a modular payment gateway solution called Computop Paygate. Their platform supports omnichannel payment processing across e-commerce, point of sale, and mobile commerce, integrating with over 350 international acquirers and payment methods. The company targets businesses requiring flexible and secure payment solutions worldwide. Technically, the website is built on TYPO3 CMS, hosted and registered via Cloudflare, and incorporates modern analytics and consent management tools. Security posture is strong, with multiple certifications including PCI DSS and ISO/IEC 27001, HTTPS enforcement, and announced multi-factor authentication for merchant logins. However, explicit privacy policy and terms of service pages were not found in the provided content, and no public incident response or vulnerability disclosure information is available. Overall, the website is professional, secure, and trustworthy, with good technical implementation and business credibility.

B

Bildusjen

bildusjen.no

67

Bildusjen is a Norwegian small business specializing in brushless car wash services, offering efficient, gentle, and affordable vehicle cleaning solutions. The company targets both private and business customers, providing app-based access and tailored business services. The website is built on Squarespace, leveraging modern web technologies including Matomo analytics and Crisp live chat, with a strong focus on user experience and mobile optimization. Security posture is robust with HTTPS and HSTS enabled, complemented by a comprehensive cookie consent mechanism that aligns with GDPR requirements. However, the absence of explicit privacy policy and terms of service pages represents an area for improvement. Overall, Bildusjen presents a trustworthy and professional online presence consistent with its business profile.

4INSIDER is a specialized online knowledge platform founded in 2015, focusing on HR and Marketing professionals primarily in German-speaking regions, notably Austria. The platform offers free online conferences, a media library with on-demand content, and a blog to enhance professional skills. The business model centers on community engagement and knowledge sharing, positioning itself as a niche educational resource. Technically, the website is built on WordPress with modern plugins and privacy-respecting analytics (Matomo). The site is well-optimized for SEO, mobile-friendly, and provides a professional user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

H

HighText Verlag Graf und Treplin OHG

hightext.de

61

HighText Verlag is a specialized German media publishing company with a strong focus on new media, marketing, and communication sectors. It operates multiple niche portals and services such as iBusiness, press1, ONEtoONE, and Versandhausberater, providing premium content, press release distribution, and industry insights primarily for professionals and decision-makers in marketing and media. The company has a long history dating back to 1991 and maintains a reputable market position in Germany. Technically, the website uses modern frameworks like Bootstrap and privacy-focused analytics (Matomo), with a cookie consent mechanism that complies with GDPR. Security posture is moderate with room for improvement in HTTP security headers and legacy form security. Overall, the website is professional, well-branded, and trustworthy, with no signs of blocking or suspicious activity.

S

Skinflint.co.uk

skinflint.co.uk

70

Skinflint.co.uk is a UK-based price comparison website established in 2008, offering consumers a platform to compare prices across various merchants. The site aggregates product offers and provides ratings to assist users in making informed purchasing decisions. The business operates primarily in the e-commerce sector, targeting UK consumers seeking value and price transparency. Technically, the website employs modern JavaScript modules, uses a custom or proprietary CMS, and integrates cookie consent management and analytics tools such as Matomo. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security-wise, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and published security policies, which could be improved. Overall, the website is trustworthy with a consistent domain registration history and no signs of blocking or WAF interference.

C

Cenowarka Porównanie cen Polska

cenowarka.pl

66

Cenowarka.pl is a Polish price comparison website established in 2009, providing consumers with aggregated product prices and offers from various merchants to facilitate informed purchasing decisions. The site targets Polish consumers and operates primarily in the e-commerce sector. Technically, the website employs modern JavaScript modules served from a dedicated CDN, uses HTTPS for secure communication, and integrates a cookie consent mechanism to comply with privacy regulations. However, explicit privacy policies and terms of service are not found in the provided content, which may impact compliance and user trust. Security posture is moderate with HTTPS enabled but lacks visible security headers and formal security policies. Overall, the website presents a professional and user-friendly interface with good mobile optimization and SEO practices, but could improve transparency and security documentation to enhance trust and compliance.

H

Höme

hoemepage.com

63

Höme is a German-based innovative ticketing platform focused on empowering event organizers with full control over their data, advanced marketing tools, and a collaborative network to support a fair event industry. Founded in 2015, the company positions itself as a modern alternative in the event ticketing market, emphasizing data privacy and community impact. The website is built on WordPress with professional theming and SEO optimization, indicating a mature digital presence. Security-wise, the site uses HTTPS and cookie consent mechanisms but lacks explicit security policies or incident response information. The domain registration is consistent and stable, hosted by a reputable German provider. Overall, Höme demonstrates a solid business and technical foundation with room for enhanced security transparency and contact accessibility.

B

Bpifrance

bpifrance.fr

67

Bpifrance is the French public investment bank dedicated to supporting businesses across their lifecycle, from startup funding to stock market listing. It offers a comprehensive range of financing solutions including credit and equity investments, positioning itself as a key player in France's economic development and innovation ecosystem. The website reflects a mature digital presence with a professional design, clear navigation, and mobile optimization, supporting its role as a trusted public institution. Technically, the site leverages Drupal CMS, integrates Google Maps API, Matomo analytics, and Google Tag Manager, indicating a modern and well-maintained infrastructure. Security posture is strong with HTTPS enforcement, security headers, and no visible vulnerabilities, although the absence of a public vulnerability disclosure policy is noted. Privacy compliance is robust, with clear privacy and cookie policies and consent mechanisms aligned with GDPR requirements. Overall, the site demonstrates high business credibility and trustworthiness, suitable for its public institution status.

D

Der Beauftragte der Bundesregierung für Kultur und Medien

kulturstaatsminister.de

67

The website kulturstaatsminister.de is the official online presence of the German Federal Government Commissioner for Culture and Media. It serves as a comprehensive information portal about cultural policies, funding opportunities, and initiatives under the federal government's cultural mandate. The site targets citizens, cultural institutions, artists, and media professionals, providing authoritative content and resources. Technically, the site is built on the TYPO3 CMS platform, hosted likely by the German federal IT service provider ITZBund, and employs Matomo for privacy-conscious analytics. The website demonstrates good digital maturity with responsive design, accessibility features, and clear navigation. Security posture is solid with HTTPS enforced and cookie consent mechanisms implemented, although explicit security headers and incident response information are not publicly detailed. Overall, the site is trustworthy, professionally maintained, and compliant with GDPR requirements, reflecting its government affiliation and public service role.

A

Agenturtipp.de

agenturtipp.de

50

Agenturtipp.de is a German online platform specializing in the comparison and matching of marketing and IT agencies, boasting a database of over 3,200 selected service providers. The platform targets businesses and individuals seeking specialized agencies in SEO, online marketing, web design, social media, content marketing, and related digital services across Germany. It offers free and non-binding agency matching services, supported by detailed agency profiles and user reviews. Technically, the website is built on the WoltLab Suite CMS, utilizing modern JavaScript libraries and multiple analytics tools such as Google Analytics, Matomo, Microsoft Clarity, and Facebook Pixel, all integrated with consent management mechanisms. The hosting is consistent with the domain's nameservers, indicating a stable infrastructure. Security-wise, the site enforces HTTPS and uses asynchronous script loading but lacks explicit security headers and a published security policy or incident response contacts. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy or terms of service pages in the provided content. Overall, the website is professional, well-branded, and trustworthy, with good SEO and user experience, but could improve in privacy transparency and security best practices.

H

HighText Verlag Graf und Treplin OHG

ibusiness.de

61

iBusiness.de is a German media and research platform specializing in future research for interactive media and digital business. Operated by HighText Verlag Graf und Treplin OHG, it offers a wide range of services including news, market analyses, rankings, whitepapers, webinars, and virtual conferences targeting digital decision-makers, agency leaders, and e-commerce professionals. The platform supports a premium membership model and maintains a strong industry presence through partnerships and event hosting. Technically, the website employs modern web technologies such as Bootstrap, Matomo analytics, and Google Ad Manager for advertising, ensuring a responsive and user-friendly experience. Privacy compliance is robust with a comprehensive privacy policy, cookie consent with opt-in, and GDPR adherence. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and well-positioned in its niche.

D

Deutscher Brauer-Bund e.V.

bierbewusstgeniessen.de

52

The website www.bierbewusstgeniessen.de is operated by the Deutscher Brauer-Bund e.V., a reputable German brewing association founded in 1871. It serves as an authoritative informational platform promoting responsible beer consumption, educating on alcohol effects, youth protection, and the tradition of German beer brewing. The site targets adult consumers, youth above 16, pregnant women, and health-conscious individuals. Technically, it is built on WordPress with modern JavaScript libraries and includes privacy-conscious analytics (Matomo) and a robust cookie consent mechanism (Borlabs Cookie). Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The site maintains high content quality, excellent design, and clear navigation, supporting a trustworthy user experience. Overall, it reflects a mature, professional digital presence aligned with its business mission.

Bremen Tourismus is the official tourism website for the city of Bremen, Germany, providing comprehensive information about attractions, accommodations, and travel tips for visitors. The site targets tourists and travelers interested in exploring Bremen and offers a government-backed platform for tourism promotion. The website is well-branded and consistent with official city services, indicating a strong market position in the hospitality and government sectors. Technically, the website employs modern JavaScript frameworks (Vue.js implied), integrates analytics tools such as Matomo and Google Analytics, and uses Cookiebot for GDPR-compliant cookie consent management. The hosting appears stable with INWX nameservers, and the site is served over HTTPS with good mobile optimization and accessibility features. From a security perspective, the site demonstrates good practices including HTTPS enforcement and cookie consent mechanisms. However, explicit security headers and incident response policies are not evident in the provided data. No vulnerabilities or suspicious patterns were detected, and the WHOIS data aligns well with the official nature of the site. Overall, the website presents a low-risk profile with strong business credibility and moderate to good technical and security posture. Strategic recommendations include enhancing security headers, publishing clear privacy and security policies, and providing contact information for incident response to further improve trust and compliance.

S

Siebert Lexow Rechtsanwaltskanzlei

kanzlei-siebert.de

50

Siebert Lexow Rechtsanwaltskanzlei is a specialized German law firm focusing on Internet law, data protection, and related legal services. The website presents a professional and comprehensive portfolio of legal packages and individual consulting services tailored for businesses, online shops, agencies, and founders. The firm leverages over 15 years of experience, positioning itself as a trusted legal partner in the digital business domain. Technically, the site is built on WordPress with modern tools like WPBakery and Bootstrap, and employs Matomo analytics for privacy-conscious user tracking. Security posture is good with HTTPS enabled, but lacks explicit security headers and detailed privacy or incident response policies. Overall, the site is well-designed, user-friendly, and SEO-optimized, reflecting a high level of professionalism and trustworthiness.

S

Semotion

semotion.de

53

Semotion is a German online marketing agency based in Magdeburg, specializing in SEO, SEA, content creation, and web analytics services. Established since 2008, the company positions itself as a top 100 SEO service provider and a certified Google Partner, offering personalized and data-driven marketing strategies to businesses and online shops in both B2B and B2C sectors. The website demonstrates a professional digital presence with clear service descriptions, client trust signals, and modern web technologies. Technically, the site is built on WordPress with popular plugins such as WPBakery Page Builder and Slider Revolution, and employs Matomo Analytics for privacy-conscious user tracking. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacks explicit security headers and published security policies. Overall, the site is well-optimized for SEO and user experience, with moderate performance and good mobile responsiveness.

M

Melitta

melitta.de

58

Melitta operates a professional and well-structured e-commerce website focused on coffee products and coffee machines, targeting German-speaking consumers. The site demonstrates a mature digital infrastructure leveraging modern technologies such as Shopware CMS, Google Tag Manager, Matomo analytics, and Cloudflare for DNS and security. The presence of a cookie consent mechanism indicates attention to privacy compliance, although explicit privacy and terms of service policies were not found in the provided content. Security posture is strong with HTTPS and Cloudflare integration, but could be improved by adding explicit security headers and published security policies. Overall, the website is trustworthy, professional, and well-positioned in the retail coffee market.

R

RBX GmbH

rbx.music

57

RBX GmbH is a newly founded German music company specializing in the development, production, and distribution of musical and music industry-related products. The company targets the music industry, music enthusiasts, and particularly young audiences to foster new talent and innovation. Their portfolio includes notable brands such as the Reeperbahn Festival and related cultural events, positioning them as an important player in the media and music culture sector. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content aligned with their business focus. Technically, the website employs modern web technologies including Three.js for graphics, GSAP for animations, and Matomo for privacy-conscious analytics. Cookiebot is integrated for cookie consent management, reflecting good privacy compliance. Hosting leverages Cloudfront CDN for media delivery, contributing to moderate performance. Accessibility features and SEO best practices are well implemented, enhancing user experience. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms but lacks visible security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. The domain registration is consistent with the company's founding date and location, enhancing trustworthiness. Overall, the site demonstrates a solid security posture with room for improvement in security policy transparency and DNS security. The overall risk is low with no signs of malicious activity or compliance violations. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure program to further enhance trust and security culture.

V

Volkswagen Group France

shargy.fr

56

Volkswagen Group France operates as the French subsidiary of Volkswagen AG, a leading global automotive manufacturer and the top European car producer. The website reflects a strong corporate identity focused on innovation, sustainable mobility, and social responsibility. It targets a broad audience including customers, partners, and potential employees, offering detailed information about the group, its brands, commitments, and career opportunities. The business model centers on automotive manufacturing, brand representation, and mobility solutions within the French market. Technically, the website is built on WordPress with modern SEO and performance optimizations, including Yoast SEO and WP Rocket. It employs Matomo Analytics, indicating a privacy-conscious approach to user data. The site is mobile-optimized, fast-loading, and accessible, with comprehensive metadata and structured data enhancing search engine visibility. From a security perspective, the site uses HTTPS with a valid SSL certificate and implements cookie consent mechanisms compliant with GDPR. However, explicit security headers are not evident, and there is no visible incident response or vulnerability disclosure information. No sensitive data exposure or vulnerabilities were detected in the content. The domain registration is consistent and transparent, reinforcing the legitimacy of the site. Overall, Volkswagen Group France's website demonstrates a mature digital presence with strong branding, good technical implementation, and solid privacy compliance. Strategic improvements could include enhancing security headers, publishing incident response contacts, and adding a security.txt file to bolster security posture and transparency.

D

Domingo Alonso Group

domingoalonsoocasion.com

53

Domingo Alonso Ocasión operates a professional online platform specializing in the sale and purchase of used and Km 0 vehicles in the Canary Islands. The website positions itself as the largest used car portal in the region, offering a variety of automotive brands and services including vehicle comparison and direct purchase from customers. The business is part of the larger Grupo Domingo Alonso, a recognized entity in the automotive sector. Technically, the website employs modern frontend technologies such as Vue.js and Tailwind CSS, integrates Matomo and Google Tag Manager for analytics, and uses Didomi for GDPR-compliant cookie consent management. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the website uses HTTPS and has basic security best practices in place, though it lacks explicit security policies and could improve DNS security by enabling DNSSEC. No critical vulnerabilities or suspicious patterns were detected. Overall, the website is trustworthy, compliant with privacy regulations, and professionally maintained.

G

GfK Entertainment

gfk-e.com

63

GfK Entertainment operates as an official chart provider and market research entity specializing in entertainment sectors such as music, books, games, and video. The company offers authoritative charts and market data primarily targeting industry professionals and media stakeholders in Germany. Their website reflects a professional and consistent brand presence with comprehensive content and clear navigation. Technically, the site is built on Joomla CMS with Bootstrap and jQuery frameworks, incorporating Matomo analytics for privacy-conscious user tracking. The cookie consent mechanism is robust, supporting GDPR compliance. However, the absence of WHOIS registration data raises concerns about domain legitimacy verification, although the website content and social media presence support a credible business identity. Security posture is moderate with room for improvement in security headers and explicit incident response policies. Overall, the site is well-structured and trustworthy but would benefit from enhanced transparency in domain registration and contact information.

V

Volkswagen Losch Financial Services

vwlfs.lu

49

Volkswagen Losch Financial Services is a prominent automotive financial services provider based in Luxembourg, operating under the Volkswagen Financial Services umbrella. The company offers a wide range of leasing and mobility solutions targeted at both private and business customers, leveraging the strong brand presence of Volkswagen and its associated marques. The website reflects a professional and consistent brand image, providing clear information and multiple language options to serve its diverse audience. Technically, the site is built on TYPO3 CMS, hosted on Microsoft Online infrastructure, and integrates modern analytics and consent management tools, indicating a mature digital presence. Security posture is solid with HTTPS and privacy compliance mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, well-structured, and aligned with the business's market position.

V

VUT - Verband unabhängiger Musikunternehmer*innen e.V.

vut.de

49

VUT - Verband unabhängiger Musikunternehmer*innen e.V. is a German association representing independent music entrepreneurs and artists. The organization advocates for cultural diversity appreciation and fair competition conditions for independent music businesses regardless of size. Their key services include membership management, knowledge sharing, networking, and member benefits. The website is well-maintained, with active news updates and a clear focus on its target audience of independent music professionals in Germany. Technically, the site runs on WordPress with Oxygen Builder and integrates modern tools such as Matomo for analytics and Complianz for GDPR-compliant cookie management. Security posture is solid with HTTPS enforced and secure login forms, though explicit security policies and incident response information are absent. Overall, the site demonstrates a professional and trustworthy online presence aligned with its business mission.

E

eRecht24 GmbH & Co. KG

erecht24.de

56

eRecht24 GmbH & Co. KG operates a leading German digital platform specializing in internet law, data protection, and e-commerce compliance. The website offers comprehensive legal information, practical tools, document generators, and premium membership services targeting website owners, agencies, and entrepreneurs. The platform is well-positioned in the legal tech market with a strong focus on GDPR compliance and user privacy. Technically, the site is built on Joomla CMS with modern JavaScript libraries and frameworks, employing privacy-respecting analytics and user engagement tools. Security posture is solid with HTTPS, consent mechanisms, and no visible vulnerabilities, though explicit security policies and incident response details are absent. Overall, the site demonstrates high professionalism, trustworthiness, and content quality, serving a broad audience with relevant legal resources.

C

Centre national d'études spatiales

cnes.fr

68

The CNES website represents the official digital presence of the Centre national d'études spatiales, the French national space agency. It serves as an informational and educational platform providing comprehensive details about France's space strategy, projects, and public policies related to space. The site targets a broad audience including government entities, scientists, educators, students, and the general public. The agency holds a strong market position as a key player in European and international space activities. Technically, the website is built on Drupal CMS, employs modern web standards, and integrates privacy-focused analytics and cookie consent mechanisms, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and minimal third-party tracking, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with GDPR and French government web standards.

G

Gamecity Hamburg

gamecity-hamburg.de

49

Gamecity Hamburg is a well-established organization founded in 2003 that supports and connects the games ecosystem in Hamburg, Germany. It acts as a regional hub offering funding programs, incubator support, events, and networking opportunities to game developers, startups, and industry professionals. The website reflects a professional and consistent brand aligned with its parent organization, Hamburg Kreativ Gesellschaft. Technically, the site uses a modern tech stack including ProcessWire CMS, Matomo analytics with privacy-conscious settings, and a cookie consent mechanism via PrivacyWire. The site is mobile-optimized and well-structured, providing a good user experience. Security posture is solid with HTTPS and cookie consent but lacks explicit security headers and published security policies. Overall, the site is trustworthy and compliant with GDPR, though it could improve transparency around incident response and security policies.

D

Design Zentrum Hamburg

design-zentrum-hamburg.de

40

Design Zentrum Hamburg is a prominent non-profit initiative dedicated to supporting and promoting the design industry in Hamburg. It serves as a hub for events, exhibitions, workshops, and funding programs aimed at fostering creativity and professional growth within the local design community. The organization operates under the umbrella of the Hamburg Kreativ Gesellschaft, positioning itself as a key player in Hamburg's creative ecosystem. The website reflects a professional and well-structured digital presence, offering clear navigation and comprehensive information about its services and initiatives. Technically, the site leverages modern web technologies including Matomo for analytics, Google Maps API, and PrivacyWire for cookie consent management, all hosted on a CMS platform identified as ProcessWire. Security posture is strong with HTTPS enforced, security headers present, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is robust, featuring a comprehensive privacy policy, cookie consent mechanisms, and GDPR adherence. However, the site lacks a publicly available security policy or incident response contact details, which could enhance trust and preparedness. Overall, the domain registration data is limited but consistent with the business identity, supporting the legitimacy of the website. The site is safe for general audiences, with no adult or questionable content detected.

N

nextMedia.Hamburg

nextmedia-hamburg.de

53

nextMedia.Hamburg is a prominent municipal economic development organization focused on supporting media and digital companies in Hamburg, Germany. It offers a range of programs, events, and workspace facilities designed to foster innovation and growth within the local media and digital ecosystem. The website reflects a professional and well-structured digital presence, targeting media professionals, startups, and digital enterprises in Hamburg. The organization is closely linked with the Hamburg Kreativ Gesellschaft, indicating strong local institutional support. Technically, the website employs modern web technologies including ProcessWire CMS, Matomo analytics for privacy-conscious tracking, and a comprehensive cookie consent mechanism. The site is mobile-optimized, accessible, and SEO-friendly, with multimedia content such as videos and image carousels enhancing user engagement. Hosting appears to be managed via common German hosting providers, with secure HTTPS connections and no detected blocking or WAF interference. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent but lacks explicit security policy documentation or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is strong, with GDPR-aligned policies and consent mechanisms clearly implemented. Overall, nextMedia.Hamburg presents a trustworthy and professional online presence with a solid business model supporting Hamburg's media and digital sectors. Strategic recommendations include enhancing security headers, publishing a security policy, and considering a vulnerability disclosure program to further strengthen trust and security posture.

E

evolver group

evolver.de

66

The evolver group is a German-based full-service IT and software company specializing in SaaS solutions and IT services tailored for publishers, media companies, and businesses requiring digital portals. With over 25 years of experience and more than 200 active portals, they offer a comprehensive suite of products including job portals, real estate portals, memorial portals, online advertising systems, and content management solutions. Their business model focuses on subscription-based SaaS offerings and enterprise solutions with integrated IT hosting and support services. The company maintains a strong market position in the German-speaking region, emphasizing digital transformation and user-friendly, scalable software.

I

Initiative Pro Recyclingpapier

gruener-beschaffen.de

34

The website 'Grüner beschaffen' is operated by the Initiative Pro Recyclingpapier, a German non-profit organization dedicated to promoting sustainable paper procurement using recycled paper certified with the Blue Angel eco-label. The initiative targets public sector entities, educational institutions, municipalities, SMEs, and associations, encouraging them to adopt environmentally responsible paper purchasing practices. The site offers educational content, campaigns, recognition programs, and practical resources to support climate and resource protection efforts. Technically, the website is built on WordPress 6.8.3 with jQuery and uses the Easy Fancybox plugin for media display. It is hosted on servers associated with kasserver.com and employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses minimal necessary cookies with user consent. However, it lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were found. The domain WHOIS data is consistent with the website's purpose and hosting, indicating legitimacy. Overall, the security posture is solid but could be improved with additional headers and formal policies. The website content is safe for general audiences, focusing on environmental sustainability without any adult or questionable material. Contact information including email, phone, and physical address is clearly provided, enhancing trust. The site maintains partnerships with reputable organizations such as the German Environment Agency and the Kompetenzstelle für nachhaltige Beschaffung, reinforcing its credibility.