Security Directory

U

Universes in Universe - Worlds of Art

universes.art

57

Universes in Universe - Worlds of Art is a specialized media platform providing comprehensive information on art destinations, biennials, exhibitions, and art projects worldwide. Established online since 1997, it serves a niche audience of art enthusiasts, curators, and cultural travelers with rich content including guides, articles, and event previews. The website leverages TYPO3 CMS and integrates modern frontend technologies and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and domain transfer protections, though improvements in DNSSEC and security headers are recommended. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the site demonstrates high content quality, good user experience, and trustworthy business credibility.

D

Dynamo design s.r.o.

dynamodesign.cz

42

Dynamo design s.r.o. is a Czech creative agency specializing in branding, design, and effective communication services. The website showcases a professional portfolio of projects and news updates, targeting businesses and organizations seeking high-quality design solutions. The company presents clear contact information and maintains an active social media presence, reinforcing its market position as a reputable small-sized design firm in the Czech Republic. Technically, the website employs modern web technologies including jQuery, Modernizr, Vimeo Player API, Hotjar, and Google Tag Manager. The site is mobile-optimized with good SEO practices and moderate performance. However, it lacks some advanced accessibility features and explicit CMS identification. Security-wise, HTTPS is enforced, but security headers are missing, and no vulnerability disclosure or privacy policies are present, indicating room for improvement in compliance and security posture. The security posture is moderate with no visible vulnerabilities or exposed sensitive data, but the absence of privacy and cookie policies and missing WHOIS data reduce trust. The domain WHOIS query returned no data, which is unusual and warrants further investigation to confirm domain legitimacy. Overall, the website is professional and trustworthy from a business perspective but requires enhancements in privacy compliance and security best practices. Strategic recommendations include implementing comprehensive privacy and cookie policies with consent mechanisms, adding security headers, publishing a vulnerability disclosure or security.txt file, improving accessibility compliance, and verifying domain registration details to strengthen trust and compliance.

C

CREE GmbH

creebuildings.com

51

CREE GmbH operates as an international construction collective specializing in regenerative building solutions. Their website presents a professional image with a clear focus on sustainable construction methodologies and a global network of partners. The company targets construction professionals and clients interested in sustainable building practices. The business model revolves around providing proven systems and methodologies to facilitate regenerative construction projects internationally. Technically, the website is built on WordPress using Elementor and Astra theme, supported by modern tools such as Google Tag Manager, HubSpot, and CookieHub for analytics and privacy compliance. The site is well-optimized for performance and mobile devices, with good SEO practices and structured data enhancing search visibility. Security-wise, the site benefits from HTTPS encryption and Cloudflare protection, with a comprehensive cookie consent mechanism categorizing cookies by purpose. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are absent, which could be improved to enhance trust and compliance. The WHOIS data for the domain is missing, indicating either a recent registration or privacy protection, which slightly reduces the domain trustworthiness despite the professional website content. Overall, the site is secure, professional, and compliant with privacy regulations, but could benefit from enhanced transparency in security and legal policies.

G

Gameplan s.r.o.

gameplan.cz

43

Gameplan s.r.o. operates as a creative digital agency based in Liberec, Czech Republic, specializing in web development, e-commerce solutions, and comprehensive online marketing services including SEO, PPC, Facebook Ads, and content production. The company targets businesses seeking to enhance their digital presence and marketing effectiveness. Their market position is that of a regional digital agency with a diverse service portfolio and a professional online presence. Technically, the website is built on WordPress with Elementor and integrates modern analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. The site is mobile optimized and SEO friendly, reflecting a moderate to good digital maturity. Security posture is adequate with HTTPS enabled and no obvious vulnerabilities, though security headers and explicit policies are lacking. Overall, the website is professional and trustworthy, but could improve privacy and security disclosures to enhance compliance and user trust.

S

SYNER, s.r.o.

posunoutsedal.cz

54

SYNER, s.r.o. is a well-established construction engineering company based in the Czech Republic with over 33 years of market presence. The website 'Posunout se dál' serves as a recruitment campaign platform highlighting the company's stability, certifications, and attractive employee benefits. The company targets professionals and students in the construction and engineering sectors, offering various job positions and emphasizing a family-like corporate culture. Technically, the website is built on WordPress with modern technologies such as Contact Form 7, Google Analytics, and reCAPTCHA integration, ensuring a secure and user-friendly experience. Security posture is solid with HTTPS enforcement, partial security headers, and GDPR-compliant privacy and cookie policies. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns with the company's profile, although the domain is relatively new, likely dedicated to recruitment efforts. Overall, the website reflects a professional and trustworthy digital presence supporting SYNER's business objectives.

N

NaZemi

pracebudoucnosti.cz

42

The website 'Práce (bez) budoucnosti' is a Czech non-profit educational platform operated by the organization NaZemi. It focuses on the societal challenges and transformations related to the future of work, particularly in the context of automation, digitalization, and robotization. The site offers educational content, exhibitions, and workshops aimed at raising awareness about labor market changes and technological impacts. The target audience is the general public interested in these topics, with a clear focus on Czech society. Technically, the website is built on WordPress using the Divi theme and standard plugins such as Contact Form 7. It integrates Google Tag Manager and Matomo for analytics and tracking. The site is hosted under a Czech registrar and uses HTTPS with a good SSL configuration. Mobile optimization and SEO practices are good, though accessibility is basic. No advanced security headers were detected, and privacy and cookie policies are not present, which is a compliance gap. From a security perspective, the site enforces HTTPS and uses reCAPTCHA on forms, but lacks explicit security headers like CSP or HSTS. There is no visible vulnerability disclosure or incident response information. The domain registration data is consistent with the website's claims and organization, indicating legitimacy. No WAF or blocking mechanisms are detected, and the content is safe for general audiences. Overall, the website is professionally presented with good content quality and business credibility. However, it should improve privacy compliance by adding privacy and cookie policies and enhance security posture by implementing security headers and formal vulnerability disclosure mechanisms.

B

Bc. Tomáš Paulus

tomaspaulus.com

61

Tomáš Paulus operates a professional UX design education and consulting business based in Prague, Czech Republic. The website offers online courses, mentoring, portfolio feedback, and corporate workshops focused on UX storytelling and design adoption of AI. The business targets UX designers and companies seeking to improve their user experience maturity. The site is well-branded, content-rich, and professionally designed, reflecting a niche market position in UX education and consulting within the Czech/Slovak region. Technically, the website is built on Webflow, leveraging modern web technologies including Google Tag Manager and Analytics, with good mobile optimization and performance. Security posture is adequate with HTTPS and cookie consent implemented, but lacks explicit security headers and published security policies. WHOIS data is missing, which raises legitimacy concerns, but the professional presence and active business mitigate some risk. Overall, the site scores well on content quality and technical implementation but should improve security transparency and domain registration clarity.

G

Grizly Solutions s.r.o.

grizly.solutions

46

Grizly Solutions s.r.o. is a small Czech Republic-based company specializing in secure application development for business owners and e-commerce clients primarily in Slovakia and the Czech Republic. The company has been operating since 2010 and offers services including custom CMS, web and mobile app development, and two-step authentication solutions. Their market position is that of a niche regional provider focused on security-centric software solutions. Technically, the website uses a modern tech stack including Bootstrap, jQuery, and various analytics tools such as Google Analytics and Smartlook, indicating a moderate level of digital maturity. The site is mobile optimized and well-structured, though accessibility features are basic. Security posture is moderate with HTTPS assumed but lacking visible security headers and formal security policies. Privacy compliance is weak due to absence of privacy and cookie policies and no visible consent mechanisms. Overall, the business credibility is supported by clear company registration details and contact information, but the lack of formal policies and security disclosures limits trust. Strategic improvements in privacy compliance and security best practices are recommended to enhance trust and regulatory adherence.

Z

ZERA - Zemědělská a ekologická regionální agentura, z.s.

zeraagency.eu

54

ZERA - Zemědělská a ekologická regionální agentura, z.s. is a Czech regional non-profit agency focused on agricultural and ecological initiatives, particularly compost certification, education, and sustainable farming practices. The organization targets farmers, compost operators, and environmental stakeholders, providing workshops, seminars, and consulting services. The website reflects a well-established presence with content spanning from 2016 to 2025 and partnerships with reputable governmental and European bodies. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript libraries such as jQuery and Slick Carousel, and integrates Google Tag Manager, Google Analytics, and Facebook Pixel for analytics and marketing. The site is mobile-optimized with good navigation and content quality, though some SEO and accessibility features could be improved. From a security perspective, the site uses HTTPS and has implemented a cookie consent mechanism, but lacks visible security headers and a published privacy policy or terms of service. No vulnerabilities or exposed sensitive data were detected. WHOIS data is privacy-protected, which is justified for this type of organization, though it limits external verification of domain legitimacy. Overall, the website is professional, trustworthy, and safe for general audiences. Strategic improvements in privacy documentation, security headers, and WHOIS transparency could enhance compliance and trust further.

M

Masterpages

masterpages.com

62

Masterpages is a German-based SaaS platform specializing in creating optimized marketing websites and landing pages designed to generate leads and customers efficiently. The platform leverages AI technologies to assist users in generating sales copy and images, making it accessible even to those without technical expertise. It targets a diverse audience including local businesses, online entrepreneurs, coaches, affiliate marketers, and agencies. The business model is subscription-based with additional live workshops and marketing support. Technically, the website employs modern frameworks such as Bootstrap and integrates multiple third-party services including Stripe for payments, Facebook SDK, and analytics tools like Yandex Metrika and Google Tag Manager. The hosting and DNS are managed via Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS enforced and domain locks in place, though DNSSEC is not enabled and security headers are not explicitly detected. Privacy compliance is addressed with a comprehensive GDPR-aligned privacy policy, but lacks a visible cookie consent mechanism. No direct contact or incident response information is provided, which could be improved. Overall, the website is professional, well-designed, and trustworthy with extensive marketing and lead generation capabilities.

E

EDP Group

edpr.com

71

EDP Group is a well-established global energy company with a strong focus on renewable energy and sustainability. The website serves as a centralized hub for information about the group and its subsidiaries, including EDP Renewables. The site is professionally designed, mobile-optimized, and provides a good user experience with clear navigation and relevant content for investors, clients, and partners. Technically, the site is built on Drupal CMS and integrates modern analytics and monitoring tools such as Google Tag Manager, HubSpot, and Dynatrace. Security posture is solid with HTTPS enforced and domain transfer protection enabled, though DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is partially demonstrated through cookie consent mechanisms, but a dedicated privacy policy page was not found on the analyzed URL. Overall, the domain registration data aligns well with the business claims, supporting the legitimacy and trustworthiness of the site.

A

Axians Infoma GmbH

axians-infoma.com

64

Axians Infoma GmbH is a German software and consulting company specializing in cloud-capable software solutions for municipalities and public administration. With over 30 years of experience and more than 1,500 municipal clients, the company offers integrated solutions for financial management, property and building management, business intelligence, eGovernment, and digital transformation. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, the site runs on WordPress with modern plugins and tracking tools such as Google Analytics and Tag Manager, and employs cookie consent mechanisms to comply with GDPR. Security posture is good with HTTPS enforced and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, the domain registration and website content align with a legitimate, established business in the German public sector software market.

A

Autoline Deutschland

autoline.de

56

Autoline Deutschland operates a leading online marketplace specializing in commercial vehicles, including trucks, buses, trailers, and spare parts. With a strong market presence in Germany and international reach across 80 countries, the platform serves over 6,700 business customers and millions of monthly buyers. The website offers extensive listings, dealer directories, and marketing services, supporting both buyers and sellers with a user-friendly interface and advanced search capabilities. Technically, the site employs modern web technologies, integrates multiple analytics and advertising tools, and maintains good mobile optimization and SEO practices. Security posture is solid with HTTPS and basic security headers, though improvements in cookie consent and security policy transparency are recommended. Overall, Autoline presents a professional, trustworthy, and mature digital presence in the transportation sector.

T

TruckScout24 GmbH

truckscout24.de

62

TruckScout24 GmbH operates a leading European online marketplace specializing in commercial and leisure vehicles including trucks, transporters, construction machinery, and caravans. The platform offers extensive vehicle listings with advanced filtering options, catering to both professional and private buyers and sellers. The company maintains a strong market position supported by official sponsorships and a professional digital presence. Technically, the website employs modern frameworks such as Yii2, Bootstrap, and jQuery, with integrations for Google Tag Manager and reCAPTCHA, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforcement and CSRF protections, though explicit security policies and incident response contacts are absent. Privacy compliance is robust, featuring a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-optimized for user experience and mobile devices.

M

MacQueen

macqueeneq.com

63

MacQueen is a regional leader in providing environmental and emergency equipment solutions across multiple Midwestern states in the United States. Their business model focuses on B2B sales and service of specialized equipment for municipalities, emergency responders, and environmental service providers. The website reflects a professional and consistent brand presence with clear navigation and detailed product offerings. Technically, the site is built on the HubSpot CMS platform, leveraging modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and Hotjar, indicating a mature digital marketing infrastructure. Security posture is generally strong with HTTPS enforced and no visible vulnerabilities, though the absence of security headers and explicit privacy policies suggests room for improvement. The lack of WHOIS registration data is a notable concern, potentially impacting trust from a domain legitimacy perspective. Overall, the site is safe for general audiences and demonstrates good business credibility and technical implementation.

R

REDOX, s.r.o.

redox.sk

44

REDOX, s.r.o. is a leading Slovak supplier specializing in municipal waste management technology and vehicles, serving cities, towns, and waste handling companies. The company emphasizes comprehensive solutions for waste collection, sorting, recovery, and disposal. The website reflects a mature digital presence built on WordPress with modern plugins such as Elementor and Yoast SEO, ensuring good SEO and user experience. Security measures include HTTPS, Google reCAPTCHA, and a detailed cookie consent mechanism, indicating a strong commitment to privacy and security compliance. Overall, the site is professional, trustworthy, and well-aligned with the company's business objectives.

G

GREENFORCE

greenforce.com

69

GREENFORCE is a Munich-based company specializing in 100% plant-based food products, targeting consumers interested in sustainable and vegan alternatives. The company operates an e-commerce platform powered by Shopify, offering products directly to customers primarily in Germany. Their market position is focused on the growing vegan and sustainable food segment, leveraging online sales and digital marketing to reach their audience. The website is professionally designed with consistent branding and clear product offerings, supported by active social media channels and customer service contacts.

C

CTE Solution

ctesolution.ro

50

CTE Solution is a Romanian company specializing in providing specialized machinery and equipment for construction, sorting, crushing, sanitation, and recycling sectors. The company offers a comprehensive range of professional equipment and turnkey solutions, targeting businesses in construction, waste management, and recycling industries. Their market position is that of a significant regional player with a medium-sized business footprint and multiple subsidiaries in Hungary and Bulgaria. The website is well-structured, professionally designed, and provides extensive product information and downloadable catalogs, supporting their business model of equipment sales and service. Technically, the website is built on the Magento CMS platform using the Porto theme, incorporating modern JavaScript libraries such as jQuery and Prototype.js. It integrates Google Analytics and Google Tag Manager for analytics and Cookiebot for cookie consent management, indicating a moderate level of digital maturity. The site is mobile-optimized with good navigation and SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms but lacks visible security headers and explicit security or incident response policies on the site. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is privacy protected under ROTLD policy, which is common for Romanian domains, and no suspicious patterns were found, supporting the legitimacy of the domain. Overall, the website presents a professional and trustworthy digital presence for CTE Solution, with recommendations to enhance security headers and publish explicit security policies to improve trust and compliance further.

O

O-K-TEH d.o.o.

o-k-teh.hr

43

O-K-TEH d.o.o. is a well-established Croatian company specializing in the sale, service, and leasing of construction and municipal machinery and vehicles, including electric and hybrid models. The company has a strong regional presence with a history dating back to 1992 and represents reputable global manufacturers. Their website reflects a professional business model targeting construction firms and municipal service providers. Technically, the website is built on WordPress with WooCommerce and uses modern plugins and tracking tools, indicating a mature digital infrastructure. Security measures include HTTPS, reCAPTCHA, and cookie consent management, though there is room for improvement in security headers and explicit security policies. Overall, the site is trustworthy, compliant with GDPR cookie requirements, and provides comprehensive contact information. The domain registration data aligns well with the business claims, supporting legitimacy.

J

JOAB Försäljnings AB

joab.se

41

JOAB Försäljnings AB is a leading Nordic company specializing in truck superstructures, including liftdumpers, hooklifts, garbage trucks, fixed platforms, truck cranes, and innovative shift systems. The company has a strong market position with a history dating back to 1963, offering comprehensive services from development to after-sales support. The website reflects a mature digital presence built on WordPress with modern SEO and tracking technologies, providing a professional user experience and clear business information. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. The absence of WHOIS data for the www subdomain is a notable anomaly but does not detract from the overall legitimacy of the business as presented online.

C

Cookies lišta, s.r.o.

cookiesbar.io

49

Cookies lišta, s.r.o. is a Czech Republic based company specializing in providing cookie compliance solutions aligned with the latest legislation including GDPR and the 2025 cookie law updates. Their offerings include a cookie consent management bar, privacy and cookie policy generators, legal updates, and integration support for various platforms, primarily targeting website owners and operators needing to comply with Czech and EU privacy laws. The company positions itself as a niche provider with a comprehensive, reliable, and cost-effective solution. Technically, the website is built on WordPress with integration of modern analytics and marketing tools such as Google Analytics, Google Tag Manager, Facebook Pixel, Hotjar, and Smartsupp live chat. The site is well-optimized for mobile and SEO, with a professional design and clear navigation. Security posture is good with HTTPS enforced and consent mechanisms in place, though there is room for improvement in HTTP security headers and explicit security policies. The absence of WHOIS data limits domain registration transparency but the professional presentation and legal partnerships support legitimacy. Overall, the website demonstrates a mature digital presence with strong compliance focus and user trust signals.

M

MEILLER Kipper

meiller.com

58

MEILLER Kipper is a well-established German manufacturer specializing in high-quality tipping bodies and equipment for the construction and waste disposal industries. Founded in 1850, the company has a long tradition of innovation and customer focus, positioning itself as a trusted supplier in the transportation and manufacturing sectors. The website reflects this heritage with professional content, multi-language support, and clear business information targeting industry professionals. Technically, the site uses TYPO3 CMS and integrates modern analytics and consent management tools, ensuring compliance with privacy regulations such as GDPR. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not published. The absence of WHOIS data due to privacy protection or domain registration issues slightly reduces trustworthiness but does not detract from the overall professional presentation. Strategic recommendations include publishing security and incident response policies and enhancing accessibility features to further improve trust and compliance.

R

Raumagentur

raumagentur.de

49

Raumagentur is a German-based company specializing in modern workspace consulting, planning, construction, furnishing, and rental services. With over 25 years of experience, it serves a medium-sized market segment, targeting businesses seeking efficient and flexible office environments. The website is professionally designed, featuring comprehensive service descriptions, client testimonials, and a consistent brand image. Technically, the site is built on WordPress with modern SEO and analytics tools integrated, including Google Tag Manager and LinkedIn Insight Tag. Security posture is strong with HTTPS, security headers, and GDPR-compliant cookie consent mechanisms in place. No critical vulnerabilities or suspicious content were detected, and the domain registration data aligns well with the business claims, indicating legitimacy.

P

Procycons

procycons.com

62

Procycons is a German-based company specializing in ecological sustainability and digital innovation, offering services such as CO₂ accounting, ESG reporting, and AI-powered software solutions to support sustainable transformation. The company targets businesses seeking to integrate sustainability into their operations through digital tools and consulting. The website is built on WordPress with Elementor and integrates Google Tag Manager for analytics, reflecting a modern digital infrastructure. Hosting is provided by HOSTINGER operations, UAB, with domain registration consistent with the company's German location and business focus. Security posture is adequate with HTTPS enabled and domain transfer protections, but lacks advanced security headers and explicit security policies on the site. Privacy compliance is partial, with cookie consent implemented but no visible privacy policy or terms of service in the analyzed content. Overall, the website is professional, trustworthy, and well-positioned in its niche, though improvements in privacy and security disclosures are recommended.

K

Kronos Solar

kronos-solar.com

75

Kronos Solar is a well-established solar photovoltaic development company operating primarily in Germany, France, the Netherlands, and the UK. As part of the global renewable energy group EDPR since 2022, it offers a fully integrated business model covering project development, financing, construction, ownership, and operation of utility scale solar farms. The company has a strong market position with over 1.5 GW of commissioned projects and a clear focus on powering the clean energy transition. The website reflects a professional corporate presence with good content quality and clear navigation aimed at investors, partners, and stakeholders in the renewable energy sector. Technically, the site is built on Drupal CMS, uses Google Tag Manager for analytics, and implements OneTrust for cookie consent, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers, which are recommended improvements. Privacy compliance is basic with cookie consent but no explicit privacy policy or terms of service detected. Overall, the site is trustworthy and professional, with room for enhanced security and compliance transparency.

G

GlobalFlow GmbH

global-flow.de

45

GlobalFlow GmbH is a German-based small business specializing in strategic waste and resource management consulting for industry, commerce, and waste disposal service providers. The company positions itself as a partner for sustainable, efficient, and future-proof waste management solutions, offering modular services including coaching, training, and network memberships. The website is professionally designed with good content quality and uses modern marketing and analytics technologies such as Google Tag Manager, ConvertKit, and Stripe, hosted on Alfahosting infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking explicit security policies or incident response information. Contact is primarily via web forms and booking links, with no direct emails or phone numbers published. Overall, the website is trustworthy and safe, with no suspicious content or blocking mechanisms detected.

GERHARD HÖFLING GMBH is a well-established German company specializing in earthworks, demolition, raw materials supply, and recycling services. With over 70 years of experience, it serves a diverse clientele including builders, architects, contractors, and project developers. The company operates under the parent group Foca Gruppe, indicating a stable business structure and regional market presence. The website reflects a professional image with clear service offerings and contact information, targeting both B2B and B2C segments in the construction and real estate sectors. Technically, the website employs common web technologies such as jQuery and Owl Carousel, and integrates Google Analytics and Tag Manager for user tracking. It is hosted behind Cloudflare, providing performance and security benefits. The site is mobile-optimized with good SEO practices but lacks some advanced accessibility features. No CMS is explicitly detected. From a security perspective, the site uses HTTPS with good SSL configuration and anonymizes IPs in analytics, but lacks important security headers and a cookie consent mechanism, which are critical for GDPR compliance. There are no published security policies or incident response contacts, which limits transparency and preparedness. No vulnerabilities or exposed sensitive data were detected, but improvements are recommended to enhance security posture and privacy compliance. Overall, the website is professional and trustworthy with moderate technical maturity and security posture. Strategic improvements in privacy compliance and security policy publication would strengthen its risk profile and user trust.

W

WBS TRAINING

wbstraining.de

67

WBS TRAINING is a large, established German education provider specializing in certified professional training, retraining, and further education courses offered both online and at over 280 physical locations. The website is built on the TYPO3 CMS platform and demonstrates a mature digital presence with good SEO, accessibility, and mobile optimization. The company employs modern analytics and marketing tools including Google Tag Manager, Cookiebot for consent management, and tracking services such as Convert Insight and Mouseflow. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are not evident. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate operation.

B

Betriebs-Berater / BB IN-HOUSE

bb-inhouse.de

45

BB IN-HOUSE is a German digital media publication providing biweekly curated legal and economic news targeted at corporate executives and decision makers. The website is professionally designed using WordPress with a child theme and integrates GDPR-compliant cookie consent via Usercentrics. The technical infrastructure includes modern JavaScript libraries, Google Tag Manager for analytics, and Adition for advertising. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. The domain registration data is consistent and transparent, supporting legitimacy. Overall, the site presents a trustworthy and professional media platform serving a niche market.

T

Tregler Brennstoffe

tregler-brennstoffe.at

51

Tregler Brennstoffe is a small, established business specializing in the buying, processing, and selling of quality firewood in the Czech Republic and Austria since 1991. The website reflects a regional energy sector focus with clear business descriptions and a professional presentation. Technically, the site uses modern JavaScript frameworks such as Vue.js and a Laravel Nova backend, indicating a mature digital infrastructure. The presence of multiple analytics and tracking tools shows an active approach to marketing and user behavior analysis. Security posture is moderate with HTTPS enabled and some best practices observed, but lacks explicit security headers and published privacy policies, which are areas for improvement. Overall, the site is functional, professional, and trustworthy but would benefit from enhanced compliance and security documentation.

I

ISOTEC GmbH

isotec.de

64

ISOTEC GmbH operates a professional website focused on building protection services including moisture damage remediation, mold removal, and balcony renovation. The company positions itself as a specialist with over 150 locations, TÜV-Rheinland certification, and a strong emphasis on quality and customer trust. The website is well-structured, professionally designed, and targets homeowners, tenants, and business customers primarily in Germany. Technically, the site is built on TYPO3 CMS and integrates modern analytics and marketing tools such as Google Analytics, Hotjar, and Cookiebot for GDPR-compliant cookie management. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and headers could enhance trust further. WHOIS data is minimal but consistent with the hosting provider, showing no suspicious patterns. Overall, the website demonstrates a mature digital presence with good compliance and user experience.

D

DOMRADIO.DE

domradio.de

11

DOMRADIO.DE is a well-established German Catholic media outlet providing news, podcasts, live radio, and video content focused on religious and church-related topics. The website demonstrates a mature digital infrastructure using Drupal 10 CMS, integrated with modern analytics and consent management tools, ensuring GDPR compliance. The content is professionally curated, targeting German-speaking Catholic audiences and related communities. Security posture is strong with HTTPS and standard security headers, though explicit security policies and incident response contacts are not published. WHOIS data confirms legitimate domain registration with professional hosting via Akamai. Overall, the site is trustworthy, well-branded, and technically sound.

N

NaZemi

nazemi.cz

45

NaZemi is a well-established Czech non-profit organization founded in 2005, focusing on sustainability, transformative education, and community engagement. Their website reflects a mature digital presence with clear navigation, multilingual support, and a professional design. They offer educational programs, facilitation services, community spaces, and an e-commerce platform for publications. Technically, the site is built on WordPress with WooCommerce and uses modern frameworks like Bootstrap, supported by privacy-conscious analytics such as Matomo and Google Tag Manager with consent management. Security posture is good with HTTPS and cookie consent mechanisms, though some security headers could be improved. Contact information and privacy policies are clearly presented, supporting trust and compliance. Overall, the site is credible, secure, and user-friendly, serving a niche audience interested in sustainability and education.

C

ClimatePartner GmbH

climatepartner.com

76

ClimatePartner GmbH is a medium-sized German company specializing in climate action services, including carbon accounting, reduction, and climate projects. Positioned as a trusted partner for companies aiming to achieve net zero emissions, ClimatePartner offers B2B services focused on sustainability and environmental impact reduction. The website reflects a professional and consistent brand image, targeting corporate clients interested in decarbonization and compliance with climate-related regulations. Technically, the site is built on Drupal 10, integrating modern marketing and analytics tools such as Google Tag Manager and Cookiebot, ensuring a good digital maturity level with mobile optimization and accessibility considered. Security posture is strong with HTTPS enforced and security headers present, though the absence of a public security policy and incident response contact suggests room for improvement. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, aligning with GDPR requirements. Overall, the website and business presence indicate a legitimate and professional organization with moderate risk due to lack of WHOIS transparency.

S

SuprNation

suprnation.com

53

SuprNation is a Malta-based technology company specializing in the iGaming industry, founded in 2015. The company develops innovative online casino products with a focus on mobile optimization and enhanced user experience. Their product portfolio includes brands such as VoodooDreams, NYspins, and Duelz, positioning them as a creative challenger in the competitive iGaming market. The website reflects a professional and consistent brand image with clear contact information and social media presence. Technically, the site is built on WordPress with common industry plugins and uses Cloudflare for DNS and likely CDN services. Analytics are implemented via Google Tag Manager. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is functional and trustworthy but would benefit from enhanced security and privacy measures.

The website is the official online booking platform for Seminole Hard Rock Hollywood, a major hospitality brand in Florida. It provides users with the ability to reserve hotel rooms, access loyalty programs, and view promotional offers. The site is well-branded and professionally designed, targeting travelers seeking accommodations at this property. The technical infrastructure leverages modern web technologies including ASP.NET, JavaScript libraries, and integrates multiple analytics and marketing tools such as Google Analytics, TikTok Pixel, and Facebook Pixel. Privacy and cookie policies are implemented with consent mechanisms, reflecting compliance with GDPR and other privacy regulations. Security posture is strong with HTTPS enforcement and appropriate security headers, though no explicit incident response or vulnerability disclosure information is provided. Overall, the site presents a trustworthy and professional digital presence aligned with the parent Hard Rock brand.

The website is an online booking platform for Hard Rock Hotel & Casino Sacramento at Fire Mountain, a hospitality and casino property located in Wheatland, California. It serves as a reservation interface for hotel rooms and related services, targeting adult customers interested in gaming and lodging. The site is branded consistently with the Hard Rock brand and integrates multiple third-party marketing and analytics tools to optimize user engagement and conversion. Technically, the site uses a modern JavaScript stack with integrations for Google Tag Manager, OneTrust for cookie consent, and various advertising pixels. The site is mobile responsive and provides a good user experience with clear navigation and professional design. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though explicit security headers could be improved. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy, though direct contact information and security policies are limited. WHOIS data for the subdomain is not available, which is typical for subdomains managed under a parent domain. Overall, the site is legitimate, professionally maintained, and suitable for its business purpose.

The website is an online booking platform for Hard Rock Atlantic City, a hospitality property located in Atlantic City, New Jersey. It provides hotel room reservations and package bookings integrated with loyalty programs. The site is part of the Hard Rock Hotels chain, a well-known brand in the hospitality industry. The technical infrastructure includes modern JavaScript libraries, Google Maps API, and multiple analytics and advertising tools, indicating a mature digital presence. Security posture is generally good with HTTPS enforced and cookie consent implemented, though some security headers are not explicitly detected. The absence of visible privacy policy and terms of service pages is a compliance gap. WHOIS data is unavailable for the subdomain, which is expected, and the domain is consistent with the parent Hard Rock brand. Overall, the site is professional, trustworthy, and safe for general audiences.

P

Palladium Hotel Group

palladiumhotelgroup.com

71

Palladium Hotel Group operates a large portfolio of luxury 4 and 5-star hotels across multiple countries including Spain, Mexico, and Germany. The website is professionally designed, multilingual, and targets leisure travelers seeking premium hospitality experiences. The technical infrastructure leverages Adobe Experience Manager CMS, modern JavaScript libraries, and integrates multiple analytics and marketing tools with user consent mechanisms. Security posture is strong with HTTPS, security headers, and cookie consent, though explicit security policies and incident response contacts are not prominently published. The absence of WHOIS data reduces transparency but the website's content and branding indicate a legitimate and established business. Overall, the site demonstrates a mature digital presence with good compliance and user experience.

A

ATG

atg.se

62

ATG is a prominent Swedish betting company specializing in horse racing, sports betting, and casino games. The website serves a Swedish-speaking adult audience with comprehensive betting services, expert tips, live streaming, and news. It holds a leading market position in Sweden's gambling industry. Technically, the site is built on a modern React framework, leveraging Google Tag Manager, Dynatrace for monitoring, and OneTrust for privacy compliance. The infrastructure includes AWS streaming services, ensuring robust performance and scalability. Security-wise, the site enforces HTTPS, employs standard security headers, and integrates cookie consent mechanisms aligned with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response contacts are not publicly detailed. Overall, the site demonstrates a mature digital presence with strong privacy and security postures appropriate for its industry.

A

ATG

atgvision.com

54

The website www.swedishhorseracing.com is a media and betting platform focused on Swedish horse racing. It provides video replays of races, coverage of major events, and betting information targeting horse racing enthusiasts primarily in Sweden. The site is branded under ATG, a known entity in the Swedish horse racing and betting industry. Technically, the site uses modern web technologies including AngularJS, JWPlayer for video playback, Google Tag Manager for analytics, and AdRoll for advertising and retargeting. The hosting for media content is provided by Rackfish, indicating a professional infrastructure. Security posture is generally good with HTTPS enforced and use of Google reCAPTCHA, but lacks some security headers and explicit privacy and terms of service documentation. The absence of WHOIS data for the domain is a concern for domain legitimacy verification, though the website content and branding suggest a legitimate business. Overall, the site is well-designed, mobile-optimized, and provides relevant content for its audience, but would benefit from improved transparency in privacy and security policies.

B

BEYER-Mietservice KG

beyer-mietservice.de

43

BEYER-Mietservice KG operates a professional and established European construction machinery rental business, offering a wide range of equipment including aerial work platforms, cranes, forklifts, and generators. The website presents a clear business focus with detailed product listings and a consistent brand presence. Technically, the site uses modern web technologies such as Google Tag Manager and lazy loading for images, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced but lacks important security headers and formal privacy and cookie policies. The WHOIS data is minimal but does not indicate privacy protection or suspicious registration, supporting legitimacy. Overall, the site is functional and professional but could improve privacy compliance and security best practices.

HEMA Maschinen- und Apparateschutz GmbH is a medium-sized German manufacturing company specializing in machine protection products and services for industrial production machines. The company offers a broad portfolio including safety glass services, protection systems, clamping and braking systems, and sanitation technologies using ozone and UV-C. Their market position is supported by ISO 9001:2015 certification and a global presence with multiple international locations. The website is professionally designed using TYPO3 CMS, featuring multilingual support and modern consent management tools, indicating a mature digital infrastructure. Security posture is good with HTTPS, captcha-protected forms, and cookie consent mechanisms, though explicit security policies and incident response contacts are not published. WHOIS data is unavailable, possibly due to privacy protection or recent registration, which slightly reduces transparency but does not detract from the overall legitimacy. Strategic recommendations include enhancing security headers, publishing security policies, and adding vulnerability disclosure information to improve trust and compliance.

K

KOLL Steine

koll-steine.de

46

KOLL Steine operates as a specialized supplier of stone products, catering to customers interested in natural stones for construction and landscaping. The website is built on WordPress using the Avada theme and integrates common SEO and analytics tools such as Yoast SEO and Google Analytics. The technical infrastructure is standard for small to medium-sized businesses, hosted on rzone.de servers. Security posture is moderate but lacks advanced security headers and explicit privacy or cookie policies, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security transparency. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security practices.

T

Toyota Tsusho Europe

toyota-tsusho-europe.com

72

Toyota Tsusho Europe is a well-established trading company within the Toyota Motor Group, focusing on energy, automotive, and sustainability sectors. The company operates globally with a strong presence in Europe, offering key services such as battery projects, hydrogen solutions, and green infrastructure. The website reflects a professional corporate image with consistent branding and relevant business content targeting partners and customers in the energy and transportation industries. Technically, the site uses Joomla CMS with modern frameworks like Bootstrap and integrates Google Analytics and Tag Manager for tracking. The site is mobile-optimized and performs moderately well. Security posture is good with HTTPS enforced and cookie consent implemented, though improvements like DNSSEC and CSP headers are recommended. Overall, the domain registration is consistent with the business profile, indicating legitimacy and trustworthiness.

S

Smarticle

smarticle.com

9

Smarticle operates a specialized SaaS platform designed for publishers to automate processes related to paywall websites, subscription acquisition, management, and billing for both print and digital media. The company targets niche and special-interest magazine publishers, positioning itself as a trusted partner with over 250 clients. The website demonstrates a professional digital presence leveraging HubSpot CMS and integrates multiple marketing and analytics tools such as Google Analytics, Google Tag Manager, Facebook Pixel, and Intercom for customer engagement and tracking. Security posture is generally good with HTTPS enforced, but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, although the website content and branding appear consistent and professional.

L

Landwirtschaftsverlag Münster

lv-mediasales.de

10

LV Mediasales operates as the media sales center for Landwirtschaftsverlag Münster, specializing in advertising sales for agricultural publications. The website targets agricultural professionals and advertisers, offering media data and advertising opportunities across various agrarian titles. The company holds a niche market position within the agricultural media sector in Germany. Technically, the website is built on WordPress using the Divi theme, enhanced with Yoast SEO and Usercentrics for consent management, indicating a moderate to advanced digital maturity. Security posture is adequate with HTTPS enforced and consent mechanisms in place, but lacks some security headers and explicit security policies. Overall, the site is professional and trustworthy, though it could improve privacy disclosures and contact transparency.

hinsehen.net is a German-language online cultural and religious commentary platform operated by kath.de gGmbH and affiliated with Verein publicatio. It targets German-speaking audiences interested in Catholic culture, religion, and social issues across Germany, Austria, and Switzerland. The website offers articles, analysis, and newsletters focusing on Catholic and societal topics, positioning itself as a niche media outlet within the religious and cultural media sector. Technically, the site is powered by TYPO3 CMS and integrates modern web technologies including Google Analytics and Tag Manager for analytics, FontAwesome for icons, and Google Fonts for typography. The hosting is provided by Hetzner Online GmbH, a reputable German hosting provider. The website demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is adequate but could be improved by enabling DNSSEC, adding security headers, and publishing formal security policies. Privacy compliance is basic with a cookie consent banner and a privacy policy page, but lacks detailed GDPR compliance indicators and data retention disclosures. No direct contact emails or phone numbers are published, which limits direct user engagement. Overall, the site is professional and trustworthy with moderate risk and room for security and compliance enhancements.

E

ELB Learning

thetrainingarcade.com

78

ELB Learning is a technology company specializing in gamified training solutions and learning management systems. Their flagship product, The Training Arcade®, offers customizable game templates to engage corporate learners, complemented by the Arcades™ gamification platform that motivates employees through virtual rewards and leaderboards. The company targets corporate training professionals and L&D teams, positioning itself as an established provider in the gamification and eLearning market. Technically, the website is built on modern platforms including Webflow CMS and integrates multiple marketing and analytics tools such as HubSpot, Google Analytics, Microsoft Clarity, and Hotjar. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. From a security perspective, ELB Learning demonstrates strong practices including HTTPS enforcement, SOC 2 Type II compliance, recaptcha protection on forms, and cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. However, explicit incident response and vulnerability disclosure information are not publicly available, representing an area for improvement. Overall, the website and business present a low-risk profile with professional content, solid security posture, and good privacy compliance. Strategic recommendations include publishing incident response contacts, adding a vulnerability disclosure policy, and enhancing accessibility standards to further strengthen trust and compliance.

E

ELB Learning

trivantis.com

75

ELB Learning is a professional eLearning solutions company specializing in corporate training, gamification consulting, and learning management systems. The company offers a wide range of services including custom course development, AI-powered training, VR simulations, and staff augmentation. Their market position is that of an established provider with a comprehensive portfolio targeting businesses seeking advanced learning and development solutions. Technically, the website is built on modern platforms such as Webflow and HubSpot, integrating various marketing and analytics tools to optimize user engagement and performance. The security posture is strong with HTTPS enforcement, SOC 2 Type II compliance, GDPR adherence, and cookie consent mechanisms, although explicit security headers could be improved. Overall, the website is professional, well-structured, and trustworthy, but the absence of WHOIS registration data raises concerns about domain legitimacy that should be further investigated.