Security Directory

I

Innenstadtmanagement Flensburg

flensburg.city

57

Flensburg.City is the official website for the Innenstadtmanagement Flensburg, a municipal entity responsible for managing and promoting the city center of Flensburg, Germany. The organization focuses on urban development projects, community engagement, and event management to enhance the attractiveness of the city center. The website targets residents and visitors interested in local projects and cultural events, providing information and opportunities to participate. Technically, the website is built on the TYPO3 CMS platform, a robust and widely used open-source content management system. The site employs modern web technologies including JavaScript and CSS, and is optimized for mobile devices with good accessibility and SEO practices. Analytics are handled via plausible.io, a privacy-conscious analytics service, indicating a commitment to user privacy. From a security perspective, the site uses HTTPS but lacks visible advanced security headers and does not provide a vulnerability disclosure or security.txt file. No forms or sensitive data collection points were detected on the main page, reducing attack surface. The WHOIS data is unavailable due to registry limitations, but the domain is active and consistent with the municipal branding, supporting legitimacy. Overall, the website presents a professional and trustworthy digital presence for a local government entity with moderate technical sophistication and a good privacy posture. Strategic improvements in security headers and cookie consent mechanisms would enhance compliance and security posture further.

N

NetzWerkstatt GmbH & Co. KG

flensburg.digital

55

The website is a government-operated citizen portal for Flensburg, Germany, designed to provide digital administrative services and accessibility features to its users. It is powered by TYPO3 CMS and integrates Matomo analytics with a clear cookie consent mechanism, reflecting a commitment to user privacy and accessibility. The portal targets local citizens, offering a range of accessibility adjustments to support users with disabilities, indicating a strong focus on inclusivity. Technically, the site employs modern web technologies and frameworks, including TYPO3 CMS and JavaScript-based accessibility tools. The site appears well-structured, mobile-optimized, and accessible, though some performance and security headers could be improved. The absence of explicit privacy policies and contact information slightly detracts from the overall compliance and trustworthiness. From a security perspective, the site uses HTTPS and cookie consent but lacks visible security headers and incident response contacts. The WHOIS data is unavailable due to privacy protection, which is justifiable given the governmental nature of the site. No vulnerabilities or suspicious patterns were detected, and the site does not appear to be blocked by any WAF or security mechanism. Overall, the site presents a professional and trustworthy digital government service with good accessibility and privacy practices but would benefit from enhanced transparency in privacy policies and security disclosures.

L

LILA HILFE e.V.

lilahilfe.org

61

Lila Hilfe e.V. is a German non-profit feminist solidarity organization dedicated to supporting women affected by gender-based violence and structural discrimination. The organization operates primarily within Germany, providing financial aid, resources, and community support to its target audience. The website reflects a clear mission and offers membership and donation options to sustain its activities. Technically, the site is built on a modern React and Next.js framework, ensuring fast performance, excellent mobile optimization, and good accessibility. The content is rich, professionally presented, and highly relevant to its audience. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks explicit security headers and formal security policies. Privacy compliance is moderate, with a comprehensive privacy policy but no visible cookie consent mechanism. Overall, the domain appears legitimate despite the absence of WHOIS data, likely due to privacy protection common in non-profits. The site maintains a high trust level with clear branding and social media presence.

C

CSC – Tieteen tietotekniikan keskus Oy

eduuni.fi

52

Eduuni is a Finnish service platform provided by CSC – Tieteen tietotekniikan keskus Oy, focused on enabling secure and flexible collaboration across educational and research organizations. The platform offers a suite of cloud-based services including Microsoft 365/Azure environments, SharePoint workspaces, Atlassian Confluence wiki, Jira project management, and identity management through Eduuni-ID. The website reflects a professional and consistent brand presence targeting educational institutions and their stakeholders in Finland. Technically, the website is built on WordPress hosted on WordPress.com infrastructure, leveraging modern web technologies and integrations with Microsoft and Atlassian products. The site demonstrates good performance, mobile optimization, and basic accessibility features. Analytics are implemented via Jetpack Stats with minimal user tracking. From a security perspective, the site enforces HTTPS with excellent SSL configuration but lacks some advanced security headers and explicit incident response contacts. Privacy policies and terms of service are available on linked wiki pages, though no cookie consent mechanism is present on the main site. The domain registration is transparent and consistent with the business entity, indicating high legitimacy. Overall, Eduuni presents a trustworthy and well-maintained digital presence with room for improvement in privacy compliance and security header implementation.

The domain centotag.io is registered to Media Group Denmark ApS, a Danish company established in 2020. The website currently hosts only a placeholder page provided by Simply.com, indicating that the domain is parked or not actively used for business purposes. There is no business description, services, or contact information available on the site. The technical infrastructure is minimal, with basic HTML, CSS, and JavaScript, and DNS hosted via Cloudflare. No CMS or advanced frameworks are detected. Security posture is weak due to lack of visible HTTPS enforcement, security headers, and privacy policies. No analytics or tracking scripts are present, indicating minimal data collection or user tracking. Overall, the website lacks content, trust signals, and compliance documentation, resulting in a low trust and security score.

K

Kassenärztliche Vereinigung Schleswig-Holstein

kvsh.de

54

The Kassenärztliche Vereinigung Schleswig-Holstein (KVSH) operates as a regional healthcare self-administration body representing approximately 6,100 physicians and psychotherapists in Schleswig-Holstein, Germany. The website serves as an authoritative portal providing comprehensive information on medical billing, contracts, regulations, IT infrastructure in practices, and patient services. It targets medical professionals and patients within the region, offering detailed resources and guidance. The site is built on TYPO3 CMS, indicating a mature and stable technical infrastructure with good mobile optimization and accessibility. Security posture is solid with HTTPS enabled and secure form handling, though improvements are recommended in cookie consent and security header implementation. Overall, the website demonstrates high professionalism and trustworthiness appropriate for a public healthcare institution.

N

Bin kurz beim Amt.

nordfriesland.digital

54

The website nordfriesland.buergerportal.sh is a government-operated citizen portal for the Nordfriesland district in Germany, providing digital access to administrative services. It is built on the TYPO3 CMS platform and incorporates accessibility features to support users with various disabilities. The site uses Matomo analytics with privacy-conscious settings and includes a cookie consent mechanism via Klaro. However, no explicit privacy policy or terms of service documents were found, which is a gap in compliance and transparency. WHOIS data is unavailable or protected, which is typical for privacy reasons but limits domain trust verification. Overall, the site demonstrates a moderate to good level of technical maturity and accessibility but could improve in privacy and security documentation.

S

Swiss Life Deutschland

swisslife.de

69

Swiss Life Deutschland operates as a leading insurance and financial advisory provider in Germany, offering comprehensive insurance, pension plans, and financial consulting services. The website reflects a mature enterprise-level business with a strong market position and a clear focus on serving private and corporate clients. The content is professionally crafted in German, targeting the German market with consistent branding and trust indicators such as ISO certifications and GDPR compliance. The business model centers on insurance and holistic financial planning, supported by a well-established parent company, Swiss Life Holding AG.

K

Kieler Nachrichten

kn-online.de

59

Kieler Nachrichten is a well-established regional news media organization based in Germany, focusing on delivering comprehensive news coverage for Kiel and the surrounding Schleswig-Holstein region. The website offers a broad range of content including politics, sports, culture, and lifestyle, supported by digital services such as e-paper, podcasts, and newsletters. It operates under the umbrella of the RedaktionsNetzwerk Deutschland, indicating a strong partnership network and market presence. Technically, the site leverages modern web technologies including React and implements consent management mechanisms to comply with GDPR requirements. The security posture is solid with HTTPS enforced and standard security practices observed, although explicit security policies and incident response contacts are not publicly available. Overall, the site demonstrates a high level of professionalism and trustworthiness suitable for its audience and business model.

S

Stadt Karlsruhe

karlsruhe.de

69

The website www.karlsruhe.de serves as the official digital portal for the city of Karlsruhe, Germany, providing residents and visitors with access to a wide range of municipal services, information on city administration, social programs, environmental initiatives, cultural events, and mobility options. The site is well-positioned as a comprehensive government resource, targeting local citizens, businesses, and stakeholders. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies including SVG graphics and Matomo analytics configured with privacy in mind. The site demonstrates good mobile optimization, accessibility, and SEO practices. Security-wise, the website enforces HTTPS and employs a cookie consent mechanism aligned with GDPR requirements, though it lacks explicit security policy and incident response disclosures. Overall, the site is trustworthy, professionally maintained, and compliant with relevant privacy regulations, with no detected blocking or WAF interference.

D

Deutsche Stiftung Denkmalschutz

denkmalschutz.de

48

The Deutsche Stiftung Denkmalschutz website represents a well-established non-profit organization dedicated to the preservation of cultural heritage and monuments in Germany. The site provides comprehensive information about their mission, projects, events, and donation opportunities, positioning them as the largest private initiative in their sector. The website is built on TYPO3 CMS, featuring modern design elements and good mobile optimization, reflecting a mature digital presence. Security posture is solid with HTTPS and secure forms, though there is room for improvement in security headers and cookie consent mechanisms. Overall, the site demonstrates high professionalism and trustworthiness, supported by recognized donation seals and transparent reporting.

S

SeenThis AB

sitestream.co

57

Sitestream, operated by SeenThis AB, is a technology company specializing in optimizing website image delivery to reduce data waste and improve user experience. Their solution automatically selects the fastest and most data-efficient image formats tailored to each user's device and connection, contributing to reduced carbon emissions from internet usage. The company targets website owners and developers seeking performance and environmental benefits through a SaaS model with easy integration options. Technically, the website is built using modern frameworks like Svelte, with fast performance and good mobile optimization. Security posture is solid with HTTPS and some security headers, though improvements like a comprehensive Content-Security-Policy and security.txt are recommended. Privacy compliance is adequate with accessible privacy and cookie policies, though no explicit consent mechanism was detected. Overall, the site is professional, trustworthy, and aligned with its business goals.

D

Dynamic

dynamicauth.com

74

Dynamic is a fintech and crypto-focused company providing wallet infrastructure solutions including authentication, smart wallets, and secure key management via a flexible SDK. Positioned as an enterprise-grade provider, Dynamic supports multi-chain coverage and third-party wallets, targeting fintech companies, crypto businesses, and stablecoin platforms. The company recently became part of Fireblocks, enhancing its market position. The website demonstrates a mature technical infrastructure with modern web technologies, strong design quality, and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and contact information are lacking. Overall, the site is professional and trustworthy with room for improvement in privacy and security transparency.

G

GlücksSpirale

gluecksspirale.de

60

GlücksSpirale is a well-established German lottery organization offering various lottery ticket options with significant prizes, including immediate and long-term monthly winnings. The business model integrates social responsibility by funding welfare, monument restoration, and sports projects, positioning itself as a socially conscious lottery provider. The website reflects a mature digital presence with modern technologies such as React and Next.js, hosted on reliable infrastructure including Amazon S3 and Deutsche Telekom DNS servers. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities. Privacy compliance is evident through cookie consent mechanisms and a comprehensive privacy policy. Overall, the site demonstrates high trustworthiness and professionalism suitable for its regulated gambling industry context.

Bajkazyl.cz is a small-scale community-focused website promoting city cycling culture and public space activities primarily in Czech cities such as Prague, Brno, Olomouc, and Hradec Králové. The site acts as a hub linking to related local cycling initiatives and Facebook pages, targeting urban cycling enthusiasts and local community members. The business model centers on cultural promotion and community engagement rather than commercial transactions. Technically, the website is simple, built with basic HTML5, CSS, and Alpine.js for minimal interactivity, hosted by Gransy. The site lacks modern CMS or advanced frameworks and shows basic mobile and accessibility features. Security posture is weak due to absence of HTTPS, security headers, and privacy policies, exposing the site to potential risks and compliance issues. No contact or business registration information is provided, limiting trust and credibility. Overall, the site is safe for general audiences but requires significant improvements in security, privacy compliance, and business transparency to enhance trust and professionalism.

H

Hrvatski sabor

sabor.hr

60

Hrvatski sabor is the official legislative body of the Republic of Croatia, providing comprehensive information about parliamentary activities, legislative processes, and public services. The website serves citizens, government officials, media, and researchers by offering access to session schedules, legislative documents, press releases, and educational resources. It holds a strong market position as the authoritative source for Croatian parliamentary information. Technically, the website is built on Drupal 10, leveraging modern web technologies and ensuring good mobile optimization and accessibility, including an integrated accessibility widget. The hosting is managed by CARNET, a reputable Croatian academic and research network, ensuring reliable infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. While explicit security headers are not fully visible in the HTML, the overall posture is strong with no exposed sensitive data or vulnerable libraries detected. However, the site lacks a published security policy, incident response information, and vulnerability disclosure mechanisms, which are recommended for enhanced security maturity. Overall, Hrvatski sabor's website is professional, trustworthy, and compliant with privacy regulations, making it a reliable platform for public legislative information. Strategic improvements in security transparency and incident response readiness would further strengthen its security posture.

G

GoDaddy Operating Company, LLC

klemmsecurity.com

71

The website is a domain sales landing page operated by GoDaddy Operating Company, LLC, offering the domain klemmsecurity.com for sale. It targets individuals and businesses interested in acquiring premium domains, providing options to buy outright or lease to own. The platform leverages GoDaddy's established domain aftermarket infrastructure and integrates partner services such as Afternic and Trustpilot for trust and transaction facilitation. The site is professionally designed with a focus on secure and straightforward domain transactions. Technically, it uses modern web frameworks including Next.js and JavaScript, hosted on GoDaddy's infrastructure, with basic SEO and accessibility features. Security posture is moderate with HTTPS implied and reCAPTCHA implemented, but lacks explicit security headers and detailed policies. Overall, the domain sales platform is credible and trustworthy, though WHOIS data for the parking subdomain is unavailable, which is typical for such sales platforms.

M

Microformats – building blocks for data-rich web pages

microformats.org

43

Microformats.org is a niche community-driven website focused on the promotion and education of microformats, a set of open data formats for marking up structured data on web pages. The site serves web developers and the IndieWeb community by providing specifications, blog posts, and resources related to microformats. It operates on a WordPress CMS hosted by Linode and has been active since 2005, indicating a mature presence in its domain. The content is technical and educational, targeting a specialized audience interested in semantic web technologies. From a technical perspective, the website uses a standard WordPress setup with JavaScript and CSS for frontend functionality. While the site is accessible and functional, it shows signs of moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. The site uses Google Analytics for tracking but lacks visible privacy and cookie policies, which may impact compliance with data protection regulations. Security-wise, the site enforces HTTPS but lacks important security headers such as Content-Security-Policy and HSTS. DNSSEC is not enabled for the domain. No contact or incident response information is provided, which limits transparency and readiness for security issues. The absence of privacy and cookie policies also indicates compliance gaps. Overall, the security posture is moderate but could benefit from enhancements. The overall risk assessment suggests the site is legitimate and trustworthy within its niche but should improve privacy compliance and security best practices to enhance user trust and regulatory adherence. Strategic recommendations include implementing security headers, enabling DNSSEC, publishing privacy and cookie policies, and providing clear contact and incident response information.

S

Staatliche Ämter für Landwirtschaft und Umwelt Mecklenburg-Vorpommern

stalu-mv.de

61

The website www.stalu-mv.de serves as the official portal for the Staatliche Ämter für Landwirtschaft und Umwelt (State Offices for Agriculture and Environment) in Mecklenburg-Vorpommern, Germany. It provides information on regulatory enforcement, agricultural support, environmental protection, and related public services. The site targets citizens, agricultural businesses, and governmental stakeholders within the region. The business model is that of a public governmental agency delivering regulatory and support services. The website is well-structured, professionally designed, and consistent with government branding, offering good content relevance and navigation clarity. Technically, the site uses standard web technologies including HTML5, CSS, and JavaScript, hosted on official regional servers (mvnet.de). It appears to be built on a custom or proprietary CMS platform. The site is mobile-optimized and accessible, with moderate performance. SEO practices are adequately implemented, though no advanced frameworks or analytics services are detected. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, no explicit security headers or incident response policies are published, and no cookie consent mechanism is present, which are areas for improvement. The WHOIS data aligns well with the website's governmental purpose, indicating a legitimate and consistent domain registration. Overall, the website presents a low-risk profile with a solid business credibility and good content quality. Strategic recommendations include enhancing privacy compliance with cookie consent, publishing security policies, and implementing security headers to strengthen the security posture.

The website www.filmbildung-brandenburg.de represents a small educational service provider, Stefan Röske, specializing in film and media education workshops and digital literacy. The business targets educators and learners interested in practical media applications such as podcasts, explainer videos, and digital tools. The website is built on WordPress and hosted likely on a German hosting provider, with a moderate performance and good mobile optimization. However, the site lacks critical privacy and cookie policies, and no direct contact emails or phone numbers are provided, only a contact form. Security posture is basic with HTTPS enabled but missing security headers and incident response information. WHOIS data is minimal and lacks registrant transparency, which slightly reduces trustworthiness. Overall, the site is professional and content-rich but would benefit from enhanced privacy compliance and security best practices.

D

Deutsches Rotes Kreuz

drk-guestrow.de

48

The website www.drk-guestrow.de represents the Kreisverband Güstrow e.V. branch of the Deutsches Rotes Kreuz (German Red Cross), a well-established non-profit humanitarian organization. The site provides comprehensive information about their social services, community engagement, courses, and donation opportunities, targeting the general public, volunteers, and donors. The content is professionally presented with consistent branding and clear navigation, supporting a positive user experience. Technically, the site is built on TYPO3 CMS, employs modern web standards, and shows good mobile optimization and accessibility. Security posture is adequate with HTTPS assumed and cookie consent mechanisms in place, though explicit security headers and incident response policies are not published. WHOIS data confirms domain legitimacy and consistency with the organization's identity. Overall, the site is trustworthy, compliant with GDPR, and serves as an effective digital presence for the local DRK branch.

Děti Země is a Czech non-profit environmental organization focused on protecting nature and human living environments, emphasizing regional work and advocacy. The website serves as an informational platform presenting news, campaigns, and organizational programs. The technical infrastructure is basic, relying on traditional HTML, CSS, and JavaScript without modern CMS or frameworks, and lacks mobile optimization. Security posture is weak with no visible HTTPS enforcement or security headers, and privacy compliance is lacking due to absence of privacy and cookie policies. Contact information is limited to an email address and a Facebook page, reflecting a small-sized NGO profile. Overall, the website is functional but requires significant improvements in security, privacy compliance, and technical modernization to enhance trust and user experience.

Cyklojizdy.cz is a community-focused website dedicated to organizing and promoting cycling rides, primarily in Prague and other Czech cities. It serves as a platform for cycling enthusiasts and urban activists to share event information, galleries, and rules related to critical mass style rides. The site is small-scale and non-commercial, supported by local cycling organizations and partners. Technically, the website runs on WordPress with basic modern web technologies and moderate performance. It lacks advanced mobile optimization and accessibility features but provides clear navigation and relevant content for its audience. Security posture is moderate with HTTPS enabled but missing important security headers and privacy policies, indicating compliance gaps. The absence of WHOIS data reduces domain trustworthiness, though the website content and external partner links suggest legitimacy. Overall, the site is safe for general audiences and serves a niche community effectively.

N

NetIQ

euacupones.net

49

Euacupones.net is a Spanish-language coupon portal focused on providing discount codes and offers for popular US online stores. Operated by NetIQ, the site targets Spanish-speaking consumers interested in saving money through affiliate coupon links. The business model relies on affiliate marketing and daily updated coupon content. Technically, the site uses a custom-built platform with standard web technologies including HTML, CSS, JavaScript, and Google Tag Manager for analytics. The hosting and domain registration are managed by Gransy, s.r.o., a Czech registrar, with DNS servers located in the Czech Republic. Security posture is moderate with HTTPS enabled and CAPTCHA protections on forms, but lacks advanced security headers and DNSSEC. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the site is functional, professionally designed, and trustworthy for its niche audience.

Wide Pixel Games is a small indie game development company specializing in retro-style pixel art games. The website primarily serves as a portfolio and gateway to external sales platforms and social media channels. The business appears niche-focused with a modest online presence and limited direct content on the site itself. Technically, the website is simple, using basic HTML and CSS without advanced frameworks or CMS. Performance and mobile optimization are basic but functional. Security posture is minimal with no detected security headers or DNSSEC enabled, and no privacy or cookie policies present, indicating limited compliance with modern privacy standards. The domain registration is consistent and legitimate, supporting the business's credibility. Overall, the site is safe with no adult or questionable content detected, but lacks comprehensive privacy and security features.

RetroSouls is a small indie game development team specializing in homebrew games for retro gaming platforms such as ZX Spectrum, Sega Mega Drive/Genesis, MSX, NES/Famicom, Commodore 64, and PC. Their website serves as a hub for game announcements, downloads, and press materials, targeting retro gaming enthusiasts. The business model relies on digital distribution through platforms like Steam and itch.io, supplemented by community engagement and donations. Technically, the site is built on WordPress with a basic but functional design, moderate performance, and minimal mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies. The absence of WHOIS data for the domain raises some concerns about domain registration legitimacy, although the active website and external platform integrations support its authenticity. Overall, the site is moderately trustworthy but would benefit from improved compliance and security practices.

A

Azivex s.r.o.

azivex.cz

53

Azivex s.r.o. is a small local business based in Hořovice, Czech Republic, with an online presence hosted on the Wix platform. The website is primarily in Czech and appears to target local customers, though specific business services or products are not detailed on the homepage. The site uses Wix's standard technology stack and scripts, indicating a moderate level of digital maturity. The technical infrastructure is typical for small businesses using website builders, with basic mobile optimization and moderate performance. Security posture is limited, with no advanced security headers or policies detected, and no visible privacy or cookie policies, which may expose the business to compliance risks. The absence of WHOIS registrant data reduces trustworthiness and raises questions about domain registration transparency. Overall, the website is functional and safe for general audiences but would benefit from enhanced security and compliance measures.

C

CyberChimps

cyberchimps.com

78

CyberChimps is a small technology company specializing in the development and distribution of responsive, fast, and customizable WordPress themes. Established in 2010, the company targets WordPress users and developers seeking quality themes with customization capabilities. The website demonstrates a mature digital presence with professional design and good SEO practices, leveraging popular frameworks such as Elementor and Yoast SEO. Hosting and DNS services are provided via Cloudflare, enhancing performance and security. The security posture is solid with HTTPS enabled and domain locks in place, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is lacking, with no visible privacy or cookie policies and no consent mechanisms, which is a notable gap. Overall, the website is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

M

Mi'pu'mi Games GmbH

mipumi.com

10

Mi'pu'mi Games GmbH is an independent video game development company based in Vienna, Austria, founded in 2008. The company focuses on creating indie games and collaborating with notable clients in the gaming industry such as IO Interactive, Remedy Entertainment, and Ubisoft. Their website reflects a professional and consistent brand image targeting gamers, indie developers, and potential employees. The business model centers on game development services and client partnerships within the technology sector. Technically, the website is built using the Hugo static site generator, leveraging modern web technologies and a cookie consent mechanism to comply with basic privacy standards. Hosting is provided by World4You Internet Services GmbH, an Austrian provider consistent with the company's location. Security posture is moderate with HTTPS enabled but lacking advanced security headers and DNSSEC. Privacy compliance is partial, with a cookie policy present but no privacy policy or terms of service found. No contact emails or phone numbers are explicitly listed, which may impact user trust and support accessibility. Overall, the website is well designed, mobile optimized, and SEO friendly, but could improve in security and compliance documentation.

2

2Racing autodíly nejen pro rally, tuning, motorsport

2racing.cz

41

2Racing.cz is a Czech Republic-based e-commerce website specializing in the sale of automotive parts focused on racing, rally, and tuning enthusiasts. The site offers a wide range of products including racing seats, suspension components, filters, and accessories from reputable brands such as Strongflex, Koni, Sparco, and others. The business targets motorsport hobbyists and professionals seeking specialized car parts. The website is professionally designed with clear navigation and product categorization by car brand and year, supporting a good user experience.

PINK LEMON is a small, established marketing and design agency based in Vaduz, Liechtenstein, offering services including marketing, corporate design, graphic design, and web design. The company targets businesses and organizations in Vaduz and surrounding regions, positioning itself as a trusted partner with over 11 years of experience. The website is professionally designed, content-rich, and consistent with the company's branding and market positioning. Technically, the website is built on the Contao Open Source CMS using the Foundation framework and standard JavaScript libraries. It demonstrates good mobile optimization and SEO practices, with moderate performance. The site uses HTTPS with an excellent SSL configuration but lacks advanced security headers. Privacy compliance is addressed through a privacy policy and a cookie consent banner, with minimal user tracking limited to newsletter subscriptions. From a security perspective, the website shows a solid baseline with HTTPS and cookie consent but could improve by implementing security headers and publishing incident response or vulnerability disclosure policies. No vulnerabilities or suspicious activities were detected. Overall, the site is trustworthy and professionally maintained. The risk assessment is low, with no critical issues found. Strategic recommendations include enhancing security headers, adding incident response information, and expanding privacy and security disclosures to further strengthen trust and compliance.

Q

Qminers

qminers.com

50

Qminers is a specialized software development company focused on algorithmic trading, providing a Central European hub for top-tier professionals in quantitative finance and technology. The company emphasizes improving global markets through advanced software solutions and a meritocratic, knowledge-sharing culture. Their website reflects a professional and consistent brand image, targeting expert audiences in finance and technology sectors. Technically, the site uses modern web technologies with embedded video content and is hosted by a reputable provider. Security posture is adequate with HTTPS enabled but lacks advanced security headers and published policies. Privacy compliance is limited, with no privacy or terms of service pages found, though a cookie consent banner is present. Overall, the site is safe, professional, and trustworthy but could improve in compliance and security transparency.

The website cookie-bar.com is a parked domain page hosted and managed by GoDaddy.com, LLC. It does not contain any active business content, services, or products. The page primarily serves as a placeholder indicating the domain is available for purchase or is reserved by GoDaddy. The presence of a Trustpilot widget referencing GoDaddy.com reinforces the domain parking nature. The target audience is domain investors or buyers rather than end consumers. Technically, the site uses modern JavaScript and CSS assets served by GoDaddy's parking platform, with basic mobile optimization and fast loading times. However, the site lacks SEO optimization and accessibility features. Security posture is minimal with no detected security headers or DNSSEC enabled, though the domain is locked against unauthorized transfers or deletions. Privacy compliance is limited to a link to GoDaddy's global privacy policy, with no cookie consent mechanism or GDPR-specific disclosures on the domain itself. Overall, the site is low risk but offers minimal value beyond domain parking.

A

assemblag.es

assemblag.es

10

assemblag.es operates as a niche Mastodon instance dedicated to individuals interested in creative and critical discussions about technology. The platform emphasizes a strong community code of conduct and privacy awareness, positioning itself as a thoughtful and moderated decentralized social media environment. The service is small-scale but maintains a clear focus on its target audience, leveraging the Mastodon and Hometown software stack to deliver its offerings. The website content is well-organized and professional, with clear administrative contact details and policies, although some standard compliance elements like cookie consent are missing. Technically, assemblag.es uses modern open-source technologies including Mastodon version 4.2.17 with the Hometown frontend, hosted via a CDN provider. The site is mobile-optimized and provides a good user experience, though accessibility and SEO optimizations are basic. Security posture is moderate with HTTPS implied but lacking explicit security headers and published security policies. The absence of WHOIS data due to registrar restrictions limits external verification of domain legitimacy, but the site content and operational transparency support trustworthiness. Security-wise, the platform enforces a strict code of conduct and privacy policy, but lacks formal incident response and vulnerability disclosure mechanisms. No tracking or advertising is present, enhancing privacy. The overall risk is moderate, with recommendations to improve security headers, cookie consent, and publish explicit security policies to strengthen compliance and user trust. Strategically, assemblag.es should focus on enhancing its security posture and privacy compliance to maintain and grow its user base in a competitive decentralized social media landscape.

C

Cooperpress

golangweekly.com

10

Golang Weekly is a niche technology newsletter focused on the Go programming language, published by Cooperpress. It targets developers and enthusiasts interested in Go, providing weekly curated content and an RSS feed. The business model centers on subscription-based newsletter distribution, with a long-standing presence since 2012, indicating stable market positioning within its niche. The website branding is consistent and professional, supporting trust and engagement within its target audience. Technically, the website employs modern web technologies including Google Analytics, Google Tag Manager, and Cloudflare Turnstile CAPTCHA for form security. DNS hosting is managed via DNSimple, and the site uses standard HTML5, CSS, and JavaScript. Mobile optimization and SEO practices are good, though accessibility is basic. Performance is moderate, with no major technical debt or CMS detected. From a security perspective, the site uses HTTPS (implied by Google Analytics and Turnstile usage), includes CSRF protection on forms, and employs CAPTCHA to mitigate spam. However, DNSSEC is not enabled, and no explicit security headers or incident response policies are published. Privacy compliance is partially addressed with clear privacy and GDPR policies, but no cookie consent mechanism is present despite tracking scripts. No vulnerabilities or suspicious content were detected. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance its security posture and compliance maturity.

G

gobridge

golangbridge.org

61

The website is a GitHub repository page for the organization 'gobridge', which focuses on building bridges to educate and empower underrepresented communities. The content is community-driven and educational, hosted securely on GitHub's platform. The technical infrastructure leverages modern web technologies including React and GitHub's hosting services, ensuring good performance and accessibility. Security posture benefits from GitHub's HTTPS enforcement and domain registration protections, though the site lacks explicit security policies and privacy compliance documentation. Overall, the site is trustworthy for its intended purpose but would benefit from enhanced privacy and security disclosures.

G

GoDaddy Operating Company, LLC

wiley.co

68

The website is a professional domain sales landing page hosted by Afternic, a GoDaddy-operated domain marketplace. It offers the domain wiley.co for sale with options for price inquiry via a form or direct phone contact. The platform emphasizes secure and straightforward domain transactions, leveraging GoDaddy's infrastructure and reputation. The site is well-structured, mobile-optimized, and includes trust signals such as a high Trustpilot rating. Technically, it uses modern web technologies including React and Next.js, hosted on AWS, ensuring good performance and security. Security posture is strong with HTTPS, security headers, and secure forms with reCAPTCHA, although explicit vulnerability disclosure and incident response information are absent. Overall, the site is trustworthy and suitable for domain buyers seeking premium names.

Baltic Earth is an international scientific research initiative focused on understanding the Earth system of the Baltic Sea region to support sustainable management against climate and environmental challenges. The website serves as an archive of content until January 2020, directing users to a new site for updated information. The initiative collaborates with reputable institutions such as Helmholtz-Zentrum Geesthacht and HELCOM, publishing scientific assessments and organizing events. Technically, the website is built with legacy HTML and CSS, lacks modern CMS or frameworks, and shows limited mobile optimization and accessibility. Security posture is basic with no visible HTTPS confirmation or security headers, and no cookie consent mechanism is present, indicating room for improvement in privacy compliance. Overall, the site is trustworthy and safe, but somewhat outdated and lacking in modern web practices.

Laddobar.cz is a small personal or studio website operated by Ladislav Pelcl, focusing on web hosting and web development services. The site is currently in a development phase with minimal content and references to an older website and a related hosting business. The domain is well-established, created in 2002, indicating a long-term presence in the web hosting space. Technically, the site uses basic HTML and CSS without modern frameworks or CMS, and lacks mobile optimization and accessibility features. Security posture is weak due to absence of HTTPS, security headers, and privacy policies. No analytics or advertising tools are detected, and the site content is safe for general audiences. Overall, the site demonstrates moderate trustworthiness but requires significant improvements in security and privacy compliance to enhance credibility and user trust.

Z

ZS Hořovice

zs-horovice.cz

52

The website www.zs-horovice.cz represents a local sports facility, specifically the ice stadium in Hořovice, Czech Republic. The site provides basic information about the stadium's location and purpose but lacks detailed business or contact information. It is built on the Wix platform, indicating a moderate level of digital maturity with standard web technologies and hosting. The technical infrastructure is typical for Wix sites, with no advanced frameworks or custom backend detected. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but the absence of explicit security headers and privacy policies limits compliance and trust. The lack of WHOIS data due to privacy protection or unregistered domain status reduces the domain's trustworthiness. Overall, the site serves informational purposes for a small local entity but requires improvements in transparency, privacy compliance, and security best practices to enhance credibility and user trust.

Klub Labe Hořovice is a local entertainment venue based in the Czech Republic, specializing in live concerts, podcasts, and nightlife events. The website serves as a platform to showcase upcoming events, facilitate ticket sales through a reputable external provider, and offer venue rental services. The target audience primarily consists of local residents and visitors interested in cultural and music events in the Hořovice and Beroun regions. The business operates on a small scale with a focus on hospitality and entertainment services. Technically, the website is built using modern web technologies including Nuxt.js and Vue.js, indicating a contemporary and maintainable infrastructure. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. However, some areas such as accessibility and SEO could be further enhanced. The hosting and domain registration are consistent with the business location, and the site uses HTTPS ensuring secure communication. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data. However, it lacks several security headers and does not provide visible privacy or cookie policies, which are important for GDPR compliance. There is no public incident response or vulnerability disclosure information, which could be improved to enhance trust and security posture. The site does not appear to use analytics or tracking services, minimizing privacy concerns but also limiting marketing insights. Overall, Klub Labe Hořovice presents a professional and trustworthy online presence for a local entertainment venue. Strategic improvements in privacy compliance, security headers, and transparency around data protection would strengthen its security posture and regulatory adherence. The business is well positioned in its local market with a clear service offering and digital maturity appropriate for its size and sector.

V

Vojenské Historické Sdružení Brdy

vhsb.cz

42

The website www.vhsb.cz represents the Vojenské Historické Sdružení Brdy, a small community organization dedicated to preserving and sharing the military history of the Brdy region in the Czech Republic. The site offers historical articles, photo galleries, and information about local events, targeting military history enthusiasts and the local community. The business model appears to be non-profit or community-driven with a niche focus. Technically, the website is built on IceCMS, a less common content management system, and uses standard HTML and CSS. The site is accessible with HTTPS enabled but lacks modern security headers and advanced technical features. Mobile optimization and accessibility are basic, and SEO practices are minimal. There are no analytics or tracking scripts detected, indicating a low level of user tracking. From a security perspective, the site has a basic security posture with HTTPS but lacks security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response details are provided, limiting transparency and user trust. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy and reduces overall trustworthiness. Overall, the website is functional and provides relevant content for its audience but requires improvements in privacy compliance, security best practices, and transparency to enhance trust and meet modern standards.

M

mistecko.cz

mistecko.cz

46

mistecko.cz is a Czech online magazine providing cultural, artistic, and lifestyle content targeted at creators, artists, and culture enthusiasts. The website offers news, tips, and tutorials related to various creative passions. The business operates in the media sector with a small scale and a niche market position. Technically, the site uses standard web technologies including Matomo for analytics and Google Adsense for advertising. The site is mobile optimized with good navigation and content relevance. Security posture is moderate with HTTPS enabled but lacks security headers and cookie consent mechanisms. WHOIS data shows inconsistencies with a future domain creation date, which raises questions about domain legitimacy. Overall, the website is functional and content-rich but requires improvements in privacy compliance and security practices.

The website www.vojujezd-brdy.cz serves as an informational portal focused on tourism, hiking, cycling, and local history related to the former military area Brdy in the Czech Republic. It targets tourists and outdoor enthusiasts seeking less crowded natural areas. The site provides detailed descriptions of trails, accommodation options, and local services, monetized primarily through Google Adsense advertising. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, Google Fonts, and integrates Google Analytics and a consent management platform to comply with privacy regulations. The website is accessible without WAF or security challenges, but lacks explicit privacy and terms of service pages, and does not provide direct contact information, which limits user trust and compliance transparency. Security posture is moderate with HTTPS enabled but missing security headers. WHOIS data is unavailable, which reduces domain trustworthiness. Overall, the site is functional and relevant for its niche audience but could improve in privacy transparency, security best practices, and contact availability.

C

Toulky Českem

ceskem.cz

51

The website 'Toulky Českem' is a small-scale informational portal dedicated to showcasing historical and cultural sites across the Czech Republic. It provides photographic galleries, brief descriptions, and mapping of various locations, targeting general audiences interested in Czech heritage and tourism. The site has been operational since 2008, indicating a stable presence in its niche. Technically, the site uses basic HTML, CSS, and JavaScript without modern frameworks or CMS, hosted via Czech providers. Performance and mobile optimization are basic but functional. Security posture is weak, with no visible HTTPS enforcement or security headers, and no published privacy or cookie policies, which impacts compliance and trust. Advertising is present via the Sklik network, but no advanced analytics or tracking services are detected. Overall, the site is safe, with no adult or questionable content.

The website brdy.info is an amateur, community-driven informational portal dedicated to the natural and cultural beauty of the Brdy, Křivoklátsko, and Český Kras regions in Czechia. It provides extensive regional content divided into multiple chapters, supported by user contributions such as photos and texts. The site targets general audiences interested in regional nature and history, operating as a small-scale informational resource without commercial focus. Technically, the site uses basic HTML, CSS, and JavaScript with Google Custom Search and Adsense integration. The site is mobile-optimized with moderate performance but lacks advanced technical frameworks or CMS. Security posture is minimal, with no detected security headers or HTTPS verification in the provided data, and no privacy or cookie policies, indicating compliance gaps. WHOIS data is unavailable due to TLD restrictions and privacy protections, which is common for .info domains but reduces transparency. Overall, the site is functional and relevant for its niche but would benefit from improved security and compliance measures.

E

EAGLE Software

cyklotrasy.info

54

Cyklotrasy.info is a niche software business focused on providing cycling route planning and mapping solutions primarily for Czech and Slovak users. The website offers a cycling route planning program with detailed maps, elevation profiles, and route statistics. The business operates as a small software vendor with a long history of regular updates and map maintenance. Technically, the website uses legacy HTML 4.01 and basic JavaScript, with Google Analytics for tracking. However, it lacks modern security features such as HTTPS enforcement and security headers, and does not provide privacy or cookie policies, indicating compliance gaps. The contact information is limited but present, and the site links to relevant partner cycling event domains and a Facebook page. Overall, the site is functional but would benefit from modernization and improved security and privacy compliance.

The website www.karlstejnsko.info serves as the official tourism portal for the Karlštejnsko region in the Czech Republic, providing comprehensive information on accommodation, dining, attractions, events, and services for visitors. It targets tourists, families, and seniors seeking cultural and natural experiences in the region. The site is well-structured with clear navigation and multilingual support, although it lacks some modern features such as mobile optimization and advanced SEO techniques. Technically, the site uses legacy JavaScript libraries like jQuery and Highslide, with custom scripts for UI elements and cookie consent. Security posture is moderate, with HTTPS assumed but no visible security headers or explicit privacy policies, which reduces trust and compliance confidence. The WHOIS data is unavailable or malformed, limiting domain legitimacy verification. Overall, the site is functional and informative but would benefit from enhanced security and privacy practices.

A

Asociace pracovníků pedagogicko-psychologických poraden, z.s.

apppp.cz

55

The website www.apppp.cz represents the Asociace pracovníků pedagogicko-psychologických poraden, z.s., a professional association dedicated to supporting and developing pedagogical-psychological counseling services in the Czech Republic. The site targets specialists and professionals in the educational counseling sector, providing information about the association, its mission, and contact avenues primarily through a contact form. The business model is non-profit and focused on professional development and collaboration within the education sector. The website is well-branded and content is relevant and professionally presented in Czech language. Technically, the website is built on the Webnode platform, leveraging AWS Cloudfront CDN for hosting static assets, and uses standard web technologies including HTML5, CSS, and JavaScript. The site is mobile-optimized with moderate performance and basic SEO and accessibility features. HTTPS is enforced, ensuring secure communication. However, no advanced security headers were detected, and privacy compliance is limited by the absence of a dedicated privacy policy page. From a security perspective, the site shows a moderate security posture with HTTPS and cookie consent mechanisms in place. The lack of security headers and absence of direct contact emails or phone numbers for security or incident response reduces the overall security maturity. WHOIS data is unavailable, likely due to privacy protection or domain registration issues, which slightly impacts trustworthiness but does not contradict the professional nature of the site content. Overall, the website is a credible and professional platform for a small non-profit educational association, with room for improvement in privacy compliance, security headers, and transparency of contact information. Strategic recommendations include adding a privacy policy, implementing security headers, and providing direct contact details for enhanced trust and compliance.

B

Bonnier News AB

sydsvenskan.se

72

Sydsvenskan.se is a leading regional news website serving the Skåne and Öresund regions in Sweden, operated by Bonnier News AB. The site provides continuous news coverage and targets a broad general audience in its region. It operates on a business model combining subscription services and advertising revenue, positioning itself as a key media player in the Swedish regional news market. Technically, the website employs modern web technologies including JavaScript frameworks, consent management via Didomi, and integrates advertising and analytics platforms such as Google Tag Manager and Rubicon Project. The site is well-optimized for mobile and desktop platforms, with good SEO and accessibility features.