Security Directory

H

Hrvatska poštanska banka d.d.

hpb.hr

63

Hrvatska poštanska banka d.d. (HPB) is the largest Croatian-owned bank, offering a comprehensive range of financial services including retail and business banking, credit products, investment services, and digital banking solutions. The website reflects a mature and professional banking institution with a strong market position in Croatia. The bank emphasizes customer convenience with over 1500 cash withdrawal points and advanced mobile and internet banking platforms. Technically, the website employs modern JavaScript libraries and frameworks such as jQuery, Bootstrap 5, Swiper.js, and Flatpickr, ensuring a responsive and user-friendly experience across devices. Privacy and cookie policies are clearly presented with consent mechanisms, demonstrating compliance with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is trustworthy, well-maintained, and aligned with the bank's business objectives.

F

Fina

fina.hr

62

Fina is a well-established Croatian financial agency providing a broad range of digital and financial services to businesses, citizens, and public institutions. The website reflects a mature digital presence with comprehensive service offerings such as e-invoicing, digital archiving, factoring platforms, and payment systems. The company positions itself as a reliable national partner with extensive physical presence and digital accessibility. Technically, the website uses modern web technologies including Ibexa CMS, Bootstrap, and Google Tag Manager, ensuring good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security policies and vulnerability disclosure mechanisms are not publicly available. Overall, the domain registration data aligns well with the website content, confirming legitimacy and trustworthiness.

H

Hrvatsko kreditno osiguranje d.d.

hkosig.hr

43

Hrvatsko kreditno osiguranje d.d. is a Croatian insurance company specializing in trade credit insurance and risk management, serving entrepreneurs and businesses seeking protection for their receivables. It holds a unique market position as the first and only Croatian company offering such services, supported by its subsidiary Business Info Service L.L.C. that provides credit information and analysis. The website is built on WordPress with standard plugins for SEO, forms, and cookie management, reflecting a moderate level of digital maturity. The site is accessible, mobile-optimized, and professionally designed, though it lacks explicit privacy and terms of service pages. Security posture is adequate with HTTPS and cookie consent implemented, but could be improved by adding security headers and incident response information. Overall, the domain registration is consistent with the business claims, indicating legitimacy.

H

Hrvatska udruga poslodavaca

hup.hr

55

The website www.hup.hr represents the Croatian Employers' Association, an established organization founded in 2001 that advocates for employers in Croatia. The site serves as a platform for providing information and support to its members, primarily targeting business entities and employers within the country. The domain registration data aligns well with the organization's identity, reinforcing its legitimacy and trustworthiness. Technically, the website employs standard technologies including Google Analytics with IP anonymization and an accessibility widget (OmoWidget), indicating a commitment to user accessibility and some privacy considerations. The site is hosted with Azure DNS and uses HTTPS, ensuring secure communications. However, the technical implementation lacks advanced security headers and comprehensive privacy disclosures, which are areas for improvement. From a security perspective, the site is accessible without WAF or blocking mechanisms and shows no signs of vulnerabilities or malicious content. The absence of explicit privacy and cookie policies, as well as terms of service, reduces the site's compliance posture, particularly regarding GDPR requirements. Contact information and incident response channels are not clearly presented, which may impact user trust and responsiveness to security incidents. Overall, the website is moderately professional and trustworthy but would benefit from enhanced privacy compliance, security best practices, and clearer business contact information to improve its security posture and user confidence.

C

CRANE

crane.hr

9

CRANE.hr is the official website of the Croatian Investors and Business Angels Association, the oldest such organization in Croatia, focused on connecting private investors with innovative early-stage companies. The website serves as a platform for sharing news, events, and resources related to investment and entrepreneurship in Croatia. It targets private investors and startups seeking early-stage funding, positioning itself as a key national player in the investment ecosystem. The business model revolves around networking, knowledge sharing, and facilitating investments. Technically, the website is built on WordPress, utilizing common plugins such as Yoast SEO, WPML for multilingual support, Contact Form 7 for contact forms, and WPBakery Page Builder for layout management. The site is hosted by a Croatian hosting provider, cyber_Folks d.o.o., and uses HTTPS with a valid SSL certificate. Performance and mobile optimization are good, though accessibility features are basic. SEO is adequately implemented with meta tags and structured data. From a security perspective, the site uses HTTPS and some security plugins (e.g., Wordfence), but lacks visible security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is weak, with no visible privacy or cookie policies or consent mechanisms, which is a notable gap given GDPR requirements. Overall, the website is professional and trustworthy with good business credibility and content quality. However, improvements in privacy compliance and security best practices are recommended to enhance trust and regulatory adherence.

E

Evropská databanka s.r.o.

systemeliska.cz

9

The website www.systemeliska.cz represents a Czech-based software solution provider specializing in a custom content management system named Eliška, developed by Evropská databanka s.r.o. The company offers a CMS platform with modern tools for easy website management, marketing support, and integration with economic systems such as POHODA. The target audience includes businesses and web developers seeking efficient web presentation solutions. The website is professionally designed with clear navigation and relevant content, supporting a moderate level of digital maturity with a technology stack based on PHP, MySQL, jQuery, and CodeIgniter framework. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though lacking explicit security headers and detailed privacy or security policies. The absence of WHOIS registration data limits domain trust assessment, but the visible business information and contact details support legitimacy. Overall, the site is functional, business-oriented, and compliant with basic privacy regulations.

F

Flensburgjournal

flensburgjournal.de

49

Flensburgjournal is a regional online magazine focused on providing news, event information, and cultural content for Flensburg and its surrounding areas in Germany. Established in 2019, it serves a local audience with a variety of categories including current news, leisure, reports, and sports. The website is built on WordPress and integrates common digital marketing and analytics tools such as Google Analytics and Google Adsense. The technical infrastructure is modern and supports responsive design for mobile and desktop users. Security posture is moderate with HTTPS enforced and some privacy-conscious settings in analytics, but lacks explicit security headers and formal privacy or cookie policies. No incident response or security contact information is provided, which is a gap in compliance and trust. Overall, the site is professional and trustworthy for its regional media role but would benefit from enhanced privacy and security transparency.

S

shz.de

shz.de

65

shz.de is a well-established regional news portal serving Schleswig-Holstein, Germany, providing current news in politics, economy, technology, and sports. The site targets residents and readers interested in regional news, operating primarily on a subscription and advertising business model. It holds a strong market position as a leading regional media outlet with comprehensive content and consistent branding. Technically, the website employs modern web technologies including JavaScript frameworks, consent management platforms, and paywall solutions, hosted on Basecom infrastructure. The site demonstrates good mobile optimization and SEO practices, ensuring accessibility and user engagement. Security-wise, the site enforces HTTPS, implements security headers, and uses a consent management platform, reflecting a mature security posture. However, it lacks a dedicated security policy and incident response contact information, which are areas for improvement. Overall, the website is professional, trustworthy, and compliant with GDPR, with moderate user tracking balanced by consent mechanisms.

S

Stadtwerke Rendsburg GmbH

rendsburgernetz-sh.de

58

Stadtwerke Rendsburg GmbH operates as a municipal utility network provider serving the Rendsburg region in Germany. The company manages multiple infrastructure networks including electricity, natural gas, heating, water, wastewater, and fiber optic services. It is part of a joint operation with other regional Stadtwerke under Stadtwerke SH, positioning itself as a reliable and modern infrastructure partner for local residents and businesses. The website reflects a professional municipal utility service with clear navigation and relevant service information. Technically, the site is built on TYPO3 CMS and employs Cookiebot for GDPR-compliant cookie management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks published security policies or incident response contacts. Overall, the site is trustworthy and well-structured, though it could improve transparency by adding explicit privacy and security policy pages.

S

Schleswiger Stadtwerke GmbH

schleswigernetz-sh.de

58

Schleswiger Stadtwerke GmbH operates as a regional municipal utility network provider in Schleswig, Germany, managing electricity, gas, heat, water, wastewater, and fiber optic networks. The company is part of a partnership with Stadtwerke Schleswig-Holstein and other regional utilities, positioning itself as a reliable infrastructure partner for residents and businesses in the region. The website reflects a professional and consistent brand presence with clear information about services and partnerships. Technically, the site is built on TYPO3 CMS and employs Cookiebot for GDPR-compliant cookie consent management, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS and consent mechanisms in place, but lacks explicit security policies, incident response contacts, and advanced security headers. Overall, the site is trustworthy and well-maintained but could improve transparency and security documentation to enhance compliance and user trust.

M

Meyer Burger Technology AG

meyerburger.com

56

Meyer Burger Technology AG is a prominent manufacturer specializing in solar cells and solar modules, primarily serving residential and commercial markets in Germany and Europe. The company emphasizes sustainability, product quality, and regional production, offering high-performance solar modules and innovative solar roof tiles. Their business model includes direct sales and a network of certified installers and retail partners, supported by strong warranties and certifications such as VDE and KIWA PVEL Top Performer. Technically, the website is built on TYPO3 CMS, integrates Google Tag Manager and Google Maps API, and links to an external Shopify store for product purchases. The site is well-structured, mobile-optimized, and provides extensive content and navigation clarity. However, it lacks visible privacy and cookie policies, and security headers are not evident in the provided data. From a security perspective, the site uses HTTPS and shows no exposed sensitive data or vulnerable libraries. The absence of security headers and privacy compliance documentation are areas for improvement. WHOIS data is unavailable, which slightly reduces trust but the website's content and certifications support its legitimacy. Overall, Meyer Burger's website presents a professional, trustworthy, and content-rich platform for solar energy products, with recommendations to enhance privacy compliance and security headers to further strengthen its security posture.

I

IBC SOLAR AG

ibc-solar.de

54

IBC SOLAR AG is a well-established German photovoltaic system provider with over 40 years of experience, offering a comprehensive portfolio of solar energy products and services for residential, commercial, and large-scale solar park customers. The company operates a professional website powered by TYPO3 CMS, featuring modern technologies such as jQuery and Usercentrics for consent management, and integrates Google Tag Manager for analytics. The website is well-structured, mobile-optimized, and provides clear navigation and rich content relevant to its target audience. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security best practices like explicit security policies and headers could be improved. Privacy compliance is robust with clear privacy and cookie policies and consent mechanisms. Overall, the website and domain registration data indicate a trustworthy and credible business with a strong market position in the renewable energy sector.

S

sonnen GmbH

sonnen.de

11

sonnen GmbH is a leading German company specializing in renewable energy solutions, primarily focusing on energy storage systems, photovoltaic installations, and related services such as electricity tariffs and electric vehicle chargers. The company targets private households, businesses, and professional partners, positioning itself as an innovator and market leader in sustainable energy solutions. The website reflects a mature digital presence with comprehensive product offerings and customer engagement portals. Technically, the site leverages modern web technologies including Webflow CMS, Google Tag Manager, Google reCAPTCHA Enterprise, and Sentry for error tracking, ensuring a robust and user-friendly experience. Security measures are well implemented with HTTPS, consent management, and bot protection, though some advanced security headers and explicit security policies are not publicly disclosed. Overall, the site demonstrates high professionalism, strong branding, and good compliance with privacy regulations, making it a trustworthy platform for customers and partners.

S

SOLARWATT GmbH

solarwatt.de

11

SOLARWATT GmbH is a leading German company specializing in photovoltaic systems and innovative energy solutions, including solar modules, energy storage, energy management, heat pumps, and wallbox charging stations. The company targets both residential and commercial customers seeking to reduce energy costs and adopt renewable energy technologies. Their market position is strong within Germany and Europe, supported by localized websites for multiple countries and a comprehensive digital presence. The website is professionally designed, well-branded, and provides clear business information and contact details. Technically, the website is built on the Neos CMS platform using the Flow PHP framework, integrating modern JavaScript libraries such as Swiper.js and Lozad.js for performance and user experience enhancements. The site employs Google Tag Manager and Cookiebot for analytics and GDPR-compliant cookie consent management. Performance and mobile optimization are good, with accessibility and SEO features well implemented. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms that respect user privacy. However, explicit security headers like Content-Security-Policy and X-Frame-Options are not visibly configured, and no public security policy or incident response contacts are provided. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website demonstrates a mature digital infrastructure with strong privacy compliance and business credibility. Strategic improvements include enhancing security header implementation and publishing formal security and incident response policies to further strengthen trust and compliance.

D

Dematis

e-facteur.com

9

E-facteur is a professional service website operated by Dematis, a French company specializing in secure electronic mail and document dematerialization solutions. The website targets enterprises and local authorities, offering services such as certified email with tracking, timestamping, and archiving. The company has a strong market presence with hundreds of thousands of users and a portfolio of related digital services. Technically, the website uses modern JavaScript libraries and frameworks, including jQuery, Owl Carousel, and Swiper Slider, and integrates a live chat service (Tawk.to) for customer support. The site is mobile-optimized and presents a professional design with clear navigation. Security-wise, HTTPS is implied, but explicit HTTP security headers are not detected in the provided data. No forms with sensitive inputs are present on the homepage, reducing immediate risk exposure. Privacy and cookie policies are comprehensive and GDPR compliant, linked to the parent company’s main site. However, the WHOIS data for the domain www.e-facteur.com is missing, which raises concerns about domain registration legitimacy and consistency with the business claims. Overall, the website is professional and trustworthy from a content and business perspective but would benefit from improved transparency on domain registration and enhanced security headers.

D

Dematis

e-convocations.com

10

E-convocations.com is a French SaaS platform specializing in secure electronic convocations for elected officials, shareholders, and co-owners. It operates under the parent company Dematis and offers a suite of related solutions targeting government and professional sectors. The platform emphasizes compliance with French legal codes, traceability, and ease of use, supported by a modern web infrastructure including PWA capabilities and mobile apps. The website is professionally designed, mobile-optimized, and integrates live chat support for user assistance. Security posture is solid with HTTPS and domain protections, though improvements in DNSSEC and security headers are recommended. Privacy policies and terms are linked via the parent company, indicating compliance with GDPR and related regulations. Overall, the site presents a trustworthy and mature business presence in its niche.

D

Dematis

e-assemblees.com

10

E-assemblees.com is a French SaaS platform operated by Dematis, specializing in secure electronic voting and meeting management for various deliberative assemblies including elected officials, shareholders, co-owners, and social-economic committees. The platform offers comprehensive services such as secure convocation sending, agenda and resolution management, electronic voting, and distribution of meeting minutes, accessible across devices with a focus on compliance and security. The company positions itself as a trusted third party with hosting in France and multi-factor authentication to ensure data protection and service availability. Technically, the website employs modern web technologies including jQuery, Bootstrap, Firebase Messaging, and PWA features, hosted by OVH sas. The site is mobile-optimized and uses lazy loading and parallax effects for enhanced user experience. SEO and accessibility are adequately addressed, though accessibility could be improved. Performance is moderate, with room for optimization. Security posture is solid with HTTPS enforced, multi-factor authentication, and hosting on geo-distributed French sites. However, DNSSEC is not enabled, and security headers are missing, which are recommended improvements. No explicit security policy or incident response contacts are published. Privacy compliance is good with GDPR-aligned policies present, though cookie consent mechanisms could be enhanced. Overall, the website is professional, trustworthy, and well-aligned with its business goals. The domain age and WHOIS data support legitimacy. Strategic recommendations include enabling DNSSEC, publishing security policies, adding security headers, and improving cookie consent transparency to further strengthen security and compliance.

E

E-parapheurs

e-parapheurs.com

51

E-parapheurs is a French-based digital signature and document validation solutions provider targeting enterprises and public sector organizations. The company offers services to simplify and secure document signing workflows, supporting both simple signatures and complex validation circuits. The website is professionally designed using WordPress and Elementor, with modern SEO and privacy consent mechanisms in place. However, the absence of WHOIS registration data raises questions about domain legitimacy, although the website content and partner ecosystem suggest a legitimate business. Security posture is good with HTTPS and cookie consent, but could be improved with additional security headers and explicit privacy policies. Overall, the site presents a moderate risk profile with recommendations to enhance transparency and security.

D

Dematis

dematis.com

56

Dematis is a French technology company specializing in digital dematerialization solutions primarily serving public sector entities and businesses involved in public procurement and electronic document management. Established in 2003, Dematis holds a strong market position as a leader in France with multiple specialized platforms offering services such as electronic public procurement, electronic convocations, secure storage, and electronic signatures. The company emphasizes secure and legally compliant digital workflows, supported by certifications like RGS** and eIDAS. Technically, the website employs modern frameworks such as Bootstrap and jQuery, hosted by OVH sas, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and domain protection statuses, though improvements like DNSSEC and security headers are recommended. Privacy compliance is addressed with policies present but lacks active cookie consent mechanisms. Overall, the website is professional, trustworthy, and well-aligned with its business objectives.

F

Fundacja Frank Bold

frankbold.pl

54

Fundacja Frank Bold is a Polish non-profit organization specializing in legal advocacy and environmental protection. Established in 2013, it offers expert legal services and education focused on sustainable development, renewable energy, air quality, and responsible governance. The foundation supports social organizations and citizens in defending their rights and promoting environmental responsibility. Their market position is strong within Poland's environmental and legal advocacy sectors, leveraging a professional website with rich content and clear communication channels. Technically, the website is built on WordPress with modern JavaScript libraries such as jQuery and Swiper.js, integrated with MailerLite for marketing and Google Analytics for tracking. The site is mobile-optimized, accessible, and SEO-friendly, with proper metadata and structured data enhancing search visibility. Security is well managed with HTTPS, DNSSEC, and cookie consent mechanisms, although some security headers and explicit incident response policies are absent. The security posture is solid with no detected vulnerabilities or exposed sensitive data. Privacy compliance is strong, featuring comprehensive privacy and cookie policies aligned with GDPR requirements. Contact information is transparent and professional, including official emails, phone numbers, and physical addresses. Social media integration further supports trust and outreach. Overall, the website presents a low-risk profile with high professionalism and compliance. Strategic improvements could include publishing a security policy, enhancing security headers, and adding a vulnerability disclosure policy to further strengthen trust and security readiness.

A

Associacio Catalana de Municipis i Comarques

acm.cat

53

The website acm.cat represents the Associació Catalana de Municipis i Comarques, a regional government association in Catalonia, Spain, founded in 2006. It serves as a platform to provide information, training, consulting, and communication services to municipalities and local government entities. The site is professionally designed using WordPress CMS with common plugins such as Yoast SEO and Cookiebot for privacy compliance. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and DNSSEC. No explicit privacy policy or terms of service pages were detected, though cookie consent is present and GDPR compliant. Contact information is primarily via embedded forms, with no direct emails or phone numbers found. Overall, the domain registration data is consistent and supports the legitimacy of the organization. The site is safe for general audiences and maintains a good level of professionalism and trustworthiness.

U

UGT Catalunya

ugt.cat

60

UGT Catalunya is a regional labor union organization based in Catalonia, Spain, focused on advocating for workers' rights and social welfare. The website serves as an information portal for union members and the general public, providing updates on labor rights and union activities. The organization maintains a consistent brand presence and active social media channels, reinforcing its position as a key player in the regional labor movement. Technically, the website is built on WordPress using popular plugins such as WPBakery Page Builder, LayerSlider, Yoast SEO, and WP Rocket, indicating a modern and maintainable infrastructure. The site is secured with HTTPS and includes essential security headers, contributing to a good security posture. Performance and mobile optimization are adequate, though accessibility features could be improved. Security-wise, the site demonstrates good practices with HTTPS and security headers but lacks explicit privacy policies, terms of service, and incident response contacts, which are important for compliance and trust. No vulnerabilities or suspicious activities were detected in the content or scripts. The WHOIS data is privacy protected, which is typical for non-profit organizations. Overall, the website is professional, trustworthy, and serves its audience well. Strategic improvements in privacy disclosures and incident response transparency would enhance compliance and user trust.

C

CCOO CAT

ccoo.cat

62

CCOO CAT is a leading labor union in Catalonia, Spain, dedicated to protecting and improving workers' rights and conditions. With a large membership base and extensive representation, it offers services including advice, training, collective agreement information, and member discounts. The website is professionally designed, mobile-optimized, and rich in relevant content, targeting workers and union members in Catalonia. Technically, it is built on WordPress with modern plugins and tracking tools, maintaining good SEO and accessibility standards. Security posture is solid with HTTPS and some security plugins, though it lacks explicit security headers and incident response contacts. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. The absence of WHOIS registration data is a transparency concern but does not detract significantly from the site's legitimacy. Overall, the site is trustworthy, professional, and well-maintained.

K

KaffeeShop 24 GmbH

teekontor.de

54

KaffeeShop 24 GmbH operates the Sylter Teekontor online shop specializing in premium teas inspired by the island of Sylt. The company offers a wide range of teas including black, green, fruit, herbal, and specialty blends, emphasizing quality, natural ingredients, and sustainability with bio-certification. The website targets tea enthusiasts and connoisseurs seeking exclusive and high-quality tea products. Technically, the site is built on the Shopware 6 platform, uses modern JavaScript libraries, integrates PayPal for payments, and employs Google reCAPTCHA v3 for bot protection. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though no explicit security policy or incident response information is published. Overall, the site is professional, trustworthy, and compliant with GDPR, with clear contact information and legal pages.

D

Dr. Hesse Tierpharma GmbH & Co. KG

roehnfried.de

69

Röhnfried, operated by Dr. Hesse Tierpharma GmbH & Co. KG, is a well-established German company specializing in animal health products, particularly supplements and pharmaceuticals for pigeons, poultry, ornamental birds, and rabbits. The company has a strong market position with a history dating back to 1959, targeting breeders and animal enthusiasts. Their website reflects a professional digital presence with multilingual support and active social media engagement. Technically, the site uses modern frameworks like Bootstrap and integrates Google Tag Manager for analytics, hosted on UI-DNS nameservers. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the website is trustworthy, compliant with GDPR, and offers a good user experience.

H

HUSS-VERLAG GmbH

logistik-heute.de

54

LOGISTIK HEUTE is a well-established German logistics magazine operated by HUSS-VERLAG GmbH, targeting decision-makers in industry, trade, and logistics services. The website offers comprehensive logistics news, expert articles, event information, and industry guides, positioning itself as a key media player in the German transportation and supply chain sector. The business model revolves around media publishing, advertising, and event hosting, supported by a professional and consistent brand presence. Technically, the site is built on Drupal 9, leveraging modern web technologies including Google reCAPTCHA, Matomo analytics, and a robust consent management system to ensure GDPR compliance. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience.

A

ABN AMRO Bank N.V.

abnamro.com

73

ABN AMRO Bank N.V. is a leading Dutch financial institution providing comprehensive banking services including retail, private, and corporate banking. The website serves a broad audience ranging from individual customers to large enterprises, offering services such as loans, investments, mortgages, and insurance. The bank holds a strong market position in the Netherlands with a large customer base and multiple subsidiaries. Technically, the website is built with modern frameworks and technologies, optimized for performance and mobile devices, and demonstrates good SEO and accessibility practices. Security posture is robust with HTTPS enforcement, security headers, and clear incident response contacts. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the site reflects a mature digital presence aligned with the bank's reputation and regulatory requirements.

L

LANCOM Systems GmbH

lancom.de

69

LANCOM Systems GmbH is a German-based technology company specializing in business network and security solutions including WAN, LAN, WLAN, firewalls, and remote access. The company targets business and public sector customers, offering a comprehensive product portfolio and services designed to ensure secure and reliable network infrastructure. The website is professionally designed, multilingual, and powered by TYPO3 CMS, reflecting a mature digital presence with good technical infrastructure and modern web technologies. Security posture is strong with HTTPS enforcement, cookie consent mechanisms, and no visible vulnerabilities, although some security best practices like explicit security headers and vulnerability disclosure mechanisms could be improved. Overall, the website demonstrates a high level of professionalism and trustworthiness suitable for its B2B audience.

A

Academia Saint-Gobain

academiasaint-gobain.es

63

Academia Saint-Gobain is an educational platform offering specialized courses designed as a formative journey to enhance knowledge and skills. The website is professionally designed, leveraging WordPress CMS and integrates GDPR-compliant cookie consent mechanisms. It targets professionals and learners seeking structured training programs, positioning itself as a niche educational service under the Saint-Gobain brand umbrella. Technically, the site uses modern web technologies including Google Tag Manager for analytics and Ultimate Member for user management, with moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and privacy compliance evident, though additional security headers could enhance protection. The absence of WHOIS data limits domain registration insights, but the overall digital presence and branding suggest legitimacy and trustworthiness.

O

OpenHandhelds.org

openhandhelds.org

48

OpenHandhelds.org is a niche community website dedicated to providing file archives and resources for open-source handheld gaming devices and retro gaming platforms. The site offers downloadable archives for various handheld consoles and promotes the DragonBox Shop, which sells related hardware. The website is built on an outdated Joomla! 1.5 CMS platform, which poses security risks and indicates limited recent maintenance. The technical infrastructure is basic, with minimal modern web practices such as mobile optimization and security headers. No privacy, cookie, or terms of service policies are present, and no direct contact information is provided, limiting user trust and compliance with data protection regulations. Security posture is weak due to the outdated CMS and lack of DNSSEC or security headers, though the domain registration is consistent and legitimate for a long-standing community site. Overall, the website serves its niche audience but requires significant updates to improve security, privacy compliance, and user trust.

L

Leadpages

center.io

70

Leadpages is a well-established SaaS company specializing in landing page creation and lead generation solutions. The company targets businesses and marketers aiming to optimize their marketing efforts and increase conversions. With a large customer base and millions of leads collected monthly, Leadpages holds a strong market position in the marketing technology sector. The website demonstrates a high level of digital maturity, utilizing modern frameworks such as Next.js and React, and integrating multiple marketing and analytics tools including Facebook Pixel, LinkedIn Insight, and Hotjar. Security posture is robust with HTTPS enforced and implied security headers, though explicit header confirmation is recommended. Privacy compliance is addressed with comprehensive privacy and cookie policies and consent mechanisms. However, the absence of WHOIS data and registrant information introduces some uncertainty about domain registration details. Overall, Leadpages presents a professional, secure, and user-friendly online presence with minor areas for improvement in transparency and security header explicitness.

C

Carbon6

managebystats.com

55

Carbon6 operates as a provider of Amazon seller tools and business analytics solutions, targeting e-commerce businesses seeking to scale their Amazon operations. The website presents a professional and consistent brand image, with a focus on delivering SaaS-based analytics and management services. The technical infrastructure leverages WordPress CMS with integrations of popular marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and Marketo, indicating a mature digital marketing approach. Security posture is adequate with HTTPS enabled, but lacks visible security headers and formal security policies, which could be improved to enhance trust and compliance. Privacy compliance is limited on the analyzed page, with no explicit privacy or cookie policies detected, suggesting room for improvement in GDPR and data protection adherence. Overall, the website is functional, professional, and credible, but would benefit from enhanced transparency and security best practices.

The European Climate Initiative (EUKI) is a German government-backed program under the Federal Ministry for the Environment, Climate Action, Nature Conservation and Nuclear Safety (BMUKN), established in 2017. It focuses on accelerating climate action across Europe by funding cross-border projects, providing training, and fostering a collaborative network of organizations and stakeholders. The website reflects a mature and professional presence with comprehensive content about projects, events, and knowledge sharing, targeting NGOs, policymakers, and climate action communities across Europe. Technically, the website is built on WordPress with modern plugins such as Yoast SEO, Events Manager, and Captcha.eu for security. It uses Matomo analytics for privacy-respecting user tracking and implements cookie consent mechanisms. The site is mobile-optimized, accessible, and SEO-friendly, with good performance and security practices including HTTPS and form protection against bots. Security posture is solid with no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security policies or incident response contacts, which could be improved. WHOIS data is minimal but consistent with a government initiative, and no suspicious patterns are detected. Overall, the site is trustworthy, professional, and compliant with GDPR and privacy standards. Recommendations include enhancing security headers, publishing a security policy and incident response contacts, and considering a vulnerability disclosure policy to further strengthen trust and security culture.

C

CADD Microsystems

caddcommunity.com

66

CADD Microsystems operates the CADD Community website, providing industry professionals with specialized CAD training and productivity tools. The platform targets users seeking to enhance their skills and efficiency in CAD-related fields. The website demonstrates a modern technical infrastructure using React and SVG graphics, delivering a responsive and visually consistent user experience. However, the site lacks visible privacy and cookie policies, which are critical for compliance with data protection regulations. Security posture is moderate, with no evident security headers or detailed SSL information, suggesting room for improvement in hardening the site against threats. Overall, the domain is a subdomain of the parent company with no separate WHOIS data, which is typical but reduces transparency. The content is professional and safe for general audiences, with no adult or questionable material detected.

S

Schmitz Cargobull

cargobull.com

71

Schmitz Cargobull is a prominent manufacturer and service provider in the transportation sector, specializing in trailers and semi-trailers for diverse logistics needs. The company offers a wide range of products including curtainsiders, box bodies, tippers, container chassis, and cooling units, complemented by extensive trailer services and telematics solutions. Their market position is strong in Europe, supported by a consistent brand presence and comprehensive digital offerings. Technically, the website is built on a modern stack featuring Sitecore CMS, Bootstrap 4, and various analytics and consent management tools such as Google Tag Manager and Usercentrics. The site demonstrates excellent mobile optimization, accessibility, and SEO practices, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs consent mechanisms for privacy compliance. While explicit security headers are not fully confirmed, no vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contact is noted as an area for improvement. Overall, the website presents a professional, trustworthy, and well-maintained digital presence with minor gaps in domain registration transparency and explicit security disclosures. Strategic recommendations include enhancing security header implementation, publishing security and incident response policies, and monitoring domain WHOIS data for consistency.

H

Handelsregisterauszug Online - www.handelsregisterauszug-deutschland.de

handelsregisterauszug-deutschland.de

44

The website www.handelsregisterauszug-deutschland.de provides an online service for ordering official German commercial register extracts (Handelsregisterauszug) including notarized versions, certified English translations, and apostille certifications. It targets businesses, legal professionals, and individuals requiring official company data from German register courts. The service emphasizes fast delivery, no registration requirement, and a guarantee of no cost if no data is found. The business operates in a niche market segment focused on official document retrieval and certification within Germany. Technically, the website is built on the Drupal CMS platform, utilizing jQuery and client-side validation libraries. It employs Cloudflare for DNS and likely CDN services, enhancing availability and security. The site includes form validation, CAPTCHA to prevent spam, and IBAN validation with automatic BIC detection, indicating attention to data accuracy and user input security. However, no advanced security headers or explicit SSL configuration details were found in the provided data. From a security perspective, the site demonstrates moderate maturity with client-side protections and spam prevention but lacks published security policies, incident response contacts, and cookie consent mechanisms required for full GDPR compliance. The absence of security headers and limited visible server-side security measures suggest room for improvement. No vulnerabilities or malware indicators were detected in the analysis. Overall, the website is functional, professionally presented, and serves a clear business purpose with moderate technical and security posture. Strategic improvements in security headers, privacy compliance, and transparency would enhance trust and compliance with regulatory standards.

T

TTA Personal GmbH

tta-personaltransport.de

52

TTA Personal GmbH is a German-Spanish personnel recruitment company specializing in the placement of Spanish professional bus and truck drivers in Germany. Established in 2011, the company positions itself as a market leader with a large database of over 20,000 drivers and offices in Berlin, Munich, Granada, and Valencia. Their services include recruitment, language training, and placement of various transport-related professions. The website is professionally designed using WordPress and Elementor, with good SEO practices including structured data. However, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and incident response information. Overall, the company appears credible and trustworthy with a solid digital presence but should enhance privacy and security transparency.

K

l❶Iᐅ Kfz Versicherung trotz Schufa ▶️ Bonitätsprüfung ❷⓿❷❺

kfz-versicherung-trotz-schufa.com

50

The website www.kfz-versicherung-trotz-schufa.com operates as a niche comparison and informational platform focused on providing car insurance options for individuals with negative Schufa credit entries in Germany. It offers tariff comparisons, advice, and links to insurance providers that accept customers despite credit challenges. The site targets consumers seeking affordable and accessible car insurance solutions despite credit issues. Technically, the site is built on WordPress with a modern theme and SEO plugins, integrating Google Tag Manager and Borlabs Cookie for analytics and consent management. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security-wise, the site enforces HTTPS and cookie consent but lacks advanced security headers and explicit security policies or incident response contacts. The absence of WHOIS registration data raises concerns about domain legitimacy, although the site content and structure appear professional and trustworthy. Overall, the site presents moderate risk with room for improvement in transparency and security practices.

H

HUSS-VERLAG GmbH

huss-shop.de

47

HUSS-VERLAG GmbH operates the Huss Shop, an e-commerce platform specializing in technical and legal publications, software licenses, and digital reading services primarily targeting professionals in energy, transportation, logistics, and real estate sectors. The website demonstrates a solid market position within its niche, supported by trusted certifications and a consistent brand presence. Technically, the site employs a mix of legacy and modern web technologies including jQuery, Google Analytics, Matomo, and accessibility tools, with moderate performance and basic mobile optimization. Security posture is strong with HTTPS enforcement and GDPR-compliant cookie consent, though explicit security policies and incident response details are absent. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for its target audience.

K

Kreditz

kreditz.com

76

Kreditz is a Sweden-based fintech company specializing in open banking and PSD2 data analytics to facilitate intelligent credit and risk decisions. Their offerings include consumer and business account certificates, leveraging consent-based data and AI technology to improve credit decisioning processes. The company targets financial institutions and businesses requiring advanced credit risk insights, positioning itself as a leader in the open banking data space. Technically, the website is built on modern frameworks such as React.js, hosted on AWS infrastructure, and integrates multiple marketing and analytics tools including HubSpot, Google Analytics, Hotjar, and LinkedIn Insight. Security posture is strong with HTTPS enforcement, domain registration protections, and cookie consent management via Cookiebot, although explicit security policies and vulnerability disclosure mechanisms are absent. Overall, Kreditz demonstrates a mature digital presence with good privacy compliance and professional branding, though improvements in transparency around security policies and terms of service would enhance trust further.

S

Showpad

showpad.com

86

Showpad is a well-established enterprise SaaS company founded in 2005, specializing in sales enablement solutions that combine content management, sales readiness, buyer engagement, and AI-powered intelligence. The recent merger with Bigtincan positions Showpad as a leader in the revenue effectiveness platform market, serving over 2,000 sales organizations globally. Their platform integrates with over 75 third-party services, enhancing workflow flexibility and customer engagement. Technically, the website is built on WordPress and leverages modern marketing and analytics technologies such as Google Tag Manager, Marketo, Microsoft Clarity, and Cloudflare Bot Management. The site is well optimized for performance, mobile responsiveness, accessibility, and SEO, reflecting a mature digital infrastructure. From a security perspective, Showpad employs HTTPS with strong SSL configuration, security headers, bot management, and cookie consent mechanisms. While DNSSEC is not enabled, the overall security posture is strong with no visible vulnerabilities or exposed sensitive data. The company maintains a responsible disclosure page, indicating incident response readiness. Overall, Showpad demonstrates a high level of business credibility, technical sophistication, and privacy compliance. The website content is professional, trustworthy, and safe for general audiences, with strong trust signals including customer testimonials and industry awards. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and enhancing visibility of incident response contacts to further strengthen security and compliance.

DALTEN media s.r.o. operates the website realitnibalicek.cz, offering a comprehensive package of services tailored for real estate agencies, brokers, and developers in the Czech Republic. Their offerings include a popular real estate portal RealityMIX.cz, real estate software iRest.cz, and various web presentation services for properties, agencies, and brokers. The company leverages over 20 years of experience and maintains a strong market presence with partnerships across multiple related domains. Technically, the website employs modern JavaScript libraries, Google Fonts, and a cookie consent management system, ensuring a responsive and user-friendly experience across devices. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent, though explicit security headers and incident response policies are not published. Overall, the site is professional, trustworthy, and well-optimized for its target audience.

D

DALTEN media s.r.o.

rmixmls.cz

54

RMIX MLS is a Czech Republic-based B2B platform designed to serve real estate agents by providing a comprehensive Multiple Listing Service (MLS) ecosystem. The platform enables agents to share property listings, including public and non-public offers, and facilitates collaboration to accelerate property sales and rentals. The business is operated by DALTEN media s.r.o., a company with over 20 years of experience in real estate software development, positioning RMIX MLS as a credible and established player in the Czech real estate market. The website is professionally designed, mobile-optimized, and provides clear navigation and relevant content tailored to its target audience of real estate professionals. Technically, the website employs modern JavaScript libraries including jQuery and Google Tag Manager for analytics and marketing purposes. It uses HTTPS with good SSL configuration and implements a comprehensive cookie consent mechanism compliant with GDPR. However, the site lacks explicit security headers and a dedicated security policy page, which are areas for improvement. The contact information is clearly presented, including phone, email, physical address, and a contact form, enhancing business credibility. From a security perspective, the site demonstrates good practices such as encrypted connections and consent-based tracking, with no visible vulnerabilities or exposed sensitive data. The WHOIS data aligns well with the business information, showing consistent registration details and domain age appropriate for the company's founding year. No WAF or blocking mechanisms were detected, allowing full content accessibility. Overall, RMIX MLS presents a trustworthy and professional online presence with solid technical and privacy compliance foundations. Strategic enhancements in security headers and incident response disclosures would further strengthen its security posture and trustworthiness.

The website webnem.cz is operated by DALTEN media s.r.o. and offers specialized web presentation services for real estate properties, enabling clients to create dedicated websites for individual properties with marketing and SEO benefits. The business targets real estate professionals and property sellers primarily in the Czech Republic, leveraging over 20 years of experience and partnerships with multiple real estate platforms. Technically, the site uses modern JavaScript libraries including jQuery and Google Analytics, with a responsive design optimized for mobile devices. Security posture is solid with HTTPS enforced and consent-based cookie management, though some security headers are missing. Privacy compliance is evident through GDPR consent mechanisms and a linked privacy policy hosted on a partner site. Contact information is comprehensive and prominently displayed. Overall, the site is professional, trustworthy, and well-aligned with its business objectives.

DALTEN media s.r.o. operates the Web Makléře platform, providing real estate agents in the Czech Republic with customizable personal websites integrated with their RealityMIX.cz profiles. The service offers fast setup, professional templates, and hosting, targeting real estate professionals seeking to enhance their online presence. The company leverages over 20 years of experience in real estate software development and maintains partnerships with major real estate portals, positioning itself as a trusted provider in the local market. Technically, the website uses modern JavaScript libraries, Google Fonts, and cookie consent management, with responsive design and moderate performance. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though security headers could be improved. Privacy compliance is good, linking to a GDPR-compliant privacy policy on a partner domain. Contact information is clear and comprehensive. Overall, the website is professional, trustworthy, and well-aligned with its business goals.