Security Directory

Giornale Diplomatico is an Italian online news portal specializing in political, diplomatic, economic, and cultural news with a focus on Italian government and international relations. The website targets Italian-speaking audiences interested in these sectors and operates as a niche media outlet with a small organizational size. Technically, the site is built on a custom PHP-based CMS using jQuery and jQuery UI libraries, with moderate performance and basic mobile optimization. Security posture is adequate with HTTPS and a Content-Security-Policy header, but the use of an outdated PHP version and lack of advanced security headers present risks. Privacy and cookie policies are present and GDPR compliant, with a consent mechanism implemented. Contact information is limited to a contact form, with no explicit emails or phone numbers found. Overall, the site is safe, professional, and trustworthy but could benefit from technical and security improvements.

H

Hyundai Import Gesellschaft m.b.H.

hyundai.at

67

Hyundai Import Gesellschaft m.b.H. operates as the official importer and distributor of Hyundai vehicles in Austria, offering a broad range of automotive products including electric vehicles, hybrids, and traditional combustion engine models. The company targets individual consumers, business clients, and entrepreneurs, providing services such as vehicle sales, leasing, test drives, and after-sales support through a network of partners. The website reflects a strong market position with comprehensive product information and customer engagement features such as newsletter subscriptions and social media integration. Technically, the website is built on a modern stack including jQuery, Piwik PRO analytics, and Umbraco CMS, with media assets hosted on Azure CDN. The site demonstrates good performance, mobile optimization, and accessibility. SEO practices are well implemented with proper meta tags and structured navigation. From a security perspective, the site enforces HTTPS, uses security best practices in form handling, and avoids exposing sensitive data. However, it lacks a visible cookie consent mechanism and explicit security or incident response policies. Privacy compliance is supported by a comprehensive privacy policy with GDPR consent in the newsletter form. Overall, the website is professional, trustworthy, and secure with minor gaps in privacy consent and security transparency. Strategic improvements in cookie consent and security disclosures would enhance compliance and user trust.

I

Institut für ökologische Wirtschaftsforschung (IÖW)

oekologisches-wirtschaften.de

10

Ökologisches Wirtschaften is a well-established German scientific journal focusing on social-ecological economic topics, bridging research and practical experience in politics and business. It serves a specialized audience interested in sustainable economic development and publishes issues with articles authored by experts. The website is powered by Open Journal Systems, a recognized platform for academic publishing, and is affiliated with reputable institutions such as the Institut für ökologische Wirtschaftsforschung (IÖW) and the oekom verlag publishing house. The content is professionally presented, with clear navigation and good mobile optimization. Technically, the site uses modern JavaScript libraries including jQuery, Bootstrap, and Popper.js, ensuring a responsive and interactive user experience. The hosting is managed via known providers with stable DNS configurations. Security posture is solid with HTTPS enforced and restricted access to subscriber-only PDFs, though the absence of explicit security headers and cookie consent mechanisms suggests room for improvement. No signs of blocking or WAF interference were detected, allowing full content accessibility. Overall, the security posture is good but could be enhanced by implementing security headers, cookie consent, and publishing incident response contacts. The business credibility is high due to institutional affiliations and professional presentation. No vulnerabilities or suspicious patterns were found. Strategic recommendations include improving privacy compliance and security best practices to further strengthen trust and compliance.

P

Party.Rent

partyrent.com

10

Party.Rent is a leading European rental company specializing in event equipment including furniture, tableware, and catering supplies. The company operates under the parent group Rent.Group and targets event planners, corporate clients, and private individuals across multiple European countries. Their website is professionally designed with a strong focus on user experience, multilingual support, and detailed product offerings. Technically, the site uses modern frameworks such as Bootstrap and integrates Google Tag Manager and reCAPTCHA for analytics and security. Security posture is good with HTTPS and CSRF protections, though explicit security policies and headers could be improved. Privacy compliance is partial due to missing explicit privacy and terms of service pages. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

E

Elementare Vielfalt

elementare-vielfalt.de

54

Elementare Vielfalt is an educational platform focused on providing comprehensive information about vocational training, salaries, career tools, application tips, and job vacancies in the chemistry and pharmaceutical sectors in Germany. The website targets students, companies, teachers, and parents interested in these fields. Technically, the site is built on TYPO3 CMS and leverages modern JavaScript libraries and Usercentrics for consent management, ensuring compliance with cookie regulations. Google Analytics 4 is integrated with IP anonymization to respect user privacy. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers and privacy policies are not clearly visible in the provided content. Overall, the site is professional, well-branded, and trustworthy, but could improve transparency by publishing detailed privacy and security policies and contact information.

T

Tiszántúli Református Egyházkerület

ttre.hu

40

The Tiszántúli Református Egyházkerület website serves as the official online presence of a Hungarian regional Reformed Church district. It provides comprehensive information about church activities, news, tourism, and spiritual resources targeted primarily at Hungarian-speaking church members and the broader community interested in religious heritage. The site is well-branded and consistent with its organizational identity, featuring clear contact details and a GDPR-compliant cookie consent mechanism. Technically, the website employs a custom CMS with common JavaScript libraries such as jQuery and Alertify.js, and integrates Google Tag Manager and Google Analytics for tracking. The site is mobile-optimized with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though security headers and incident response policies are absent. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It lacks advanced security documentation but does not exhibit any critical vulnerabilities or suspicious behavior. The domain WHOIS data aligns well with the organizational identity, supporting legitimacy and trustworthiness.

D

Debrecen Megyei Jogú Város Önkormányzata

debrecen.hu

62

The website www.debrecen.hu is the official online presence of the Municipality of Debrecen, Hungary. It serves as a comprehensive portal providing information and services for residents, tourists, and business stakeholders. The site offers access to local government services, tourism guides, business investment information, and public announcements, positioning itself as a key digital resource for the city. The target audience includes local citizens, visitors, and investors, reflecting a government service model focused on public administration and community engagement. Technically, the website employs a custom CMS with a technology stack that includes jQuery, jQuery UI, Google Fonts, and lazy loading libraries. It demonstrates good mobile optimization and accessibility features, although SEO optimization is basic. The site loads with moderate performance and uses multiple third-party analytics and marketing tools, all integrated with a clear cookie consent mechanism, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and implements cookie consent in compliance with GDPR. However, it lacks publicly available security policies and incident response contacts, and security headers are not explicitly detected in the provided data. No vulnerabilities or exposed sensitive data were found in the content. The domain registration is consistent with the official municipality, enhancing trustworthiness. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its role as a government portal effectively. Strategic improvements could include publishing security policies, enhancing SEO, and adding incident response information to strengthen security posture and user trust.

B

Bibellesebund Schweiz

bibellesebund.ch

57

Bibellesebund Schweiz is a well-established non-profit organization dedicated to encouraging people of all ages to engage with the Bible through reading and prayer. With a history dating back to 1925 in Switzerland and over 150 years internationally, it holds a strong position in the religious non-profit sector. The organization offers a variety of services including publications, apps, events, workshops, and camps, targeting individuals, families, and church communities. The website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site is built on the Contao CMS platform, utilizing modern JavaScript libraries and cookie consent tools, ensuring good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and CSRF protections, though some security headers could be improved. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent mechanism. Contact information is transparent and complete, enhancing business credibility.

F

Franz Neubauer Ges.m.b.H.

mercedes-benz-werkstatt.at

46

Franz Neubauer Ges.m.b.H. operates as an authorized Mercedes-Benz and smart vehicle service center located in Vienna, Austria. The company provides comprehensive automotive repair, maintenance, bodywork, and parts sales services, targeting Mercedes-Benz vehicle owners seeking quality and authorized service. The website reflects a small-sized, family-owned business with a clear focus on automotive transportation services. Technically, the site uses a CMS from Internetkonzepte.at and common JavaScript libraries such as jQuery and Modernizr, delivering a moderately performant and mobile-optimized experience. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and published security policies. Privacy compliance is basic but present, with a GDPR-compliant privacy policy and cookie banner. Overall, the website is professional, trustworthy, and well-structured, supporting the business's credibility and customer engagement.

S

samra Co.,Ltd

smgroup.co.kr

61

SM그룹 is a large South Korean conglomerate operating across multiple sectors including manufacturing, construction, shipping, media, and leisure. The company presents itself as a global leader with a diversified portfolio of subsidiaries, targeting general consumers, business partners, and potential employees. The website reflects a professional corporate identity with consistent branding and comprehensive information about its subsidiaries and business areas. Technically, the website uses modern JavaScript libraries and tracking tools such as Google Analytics and Tag Manager, hosted by Megazone, a Korean hosting provider. The site is moderately optimized for performance and mobile devices but lacks advanced accessibility features. Security-wise, the domain registration is transparent and consistent with the business, but the website lacks DNSSEC and security headers, and no cookie consent mechanism is present, which may affect compliance. Overall, the website is trustworthy and professional but could improve its security posture and privacy compliance to align with best practices.

1

11teamsports Vereinsshop

houseofclubs.at

50

The website houseofclubs.at operates as an e-commerce platform specializing in football-related sportswear and equipment under the brand 11teamsports Vereinsshop. It targets football clubs, teams, and sports enthusiasts primarily in Austria and German-speaking regions. The business model focuses on online retail sales of football shoes, clothing, and fan merchandise, positioning itself as a niche supplier within the sports retail market. The site integrates Amazon Pay for streamlined payment processing, enhancing user convenience. Technically, the website is built on the OXID eShop Community Edition platform, utilizing modern JavaScript libraries such as jQuery and Amazon Pay widgets. The site demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and Open Graph data. However, some security headers are missing, and no explicit incident response or security policy pages are published. From a security perspective, the site enforces HTTPS and employs secure login forms with anti-CSRF tokens. Cookie consent mechanisms are in place, indicating GDPR compliance. No critical vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data aligns well with the website's business claims, showing consistent registrant information and domain age appropriate for the business. Overall, the website presents a professional and trustworthy e-commerce presence with good content quality and privacy compliance. Security posture is adequate but could be improved by adding security headers and explicit security policies. The absence of direct contact emails or phone numbers slightly limits business credibility but is mitigated by a contact form and clear privacy documentation.

ASKÖ Steiermark operates the ASKÖ Ferienbetreuung website, providing holiday and sports camps for children and youth aged 5 to 16 in Austria. The organization focuses on holistic health, creativity, and active outdoor experiences, supporting families and working parents. The website is professionally designed using the Jimdo CMS platform, with clear navigation and mobile optimization. It integrates third-party services such as POWr.io widgets and Google Maps, and includes cookie consent mechanisms compliant with GDPR. Contact information and social media links are clearly presented, enhancing trust and accessibility. Security posture is adequate with HTTPS and cookie controls, though additional security headers could improve defenses. No critical vulnerabilities or suspicious content were detected, and the domain registration aligns with the organization's profile, indicating legitimacy and trustworthiness.

The website represents the Sportamt Stadt Graz, a municipal government entity providing an online platform for booking district sports fields in Graz, Austria. It offers a structured multi-step booking process including service selection, appointment scheduling, user data input, and payment options. The platform is designed primarily for local residents and sports teams, facilitating fair and organized access to public sports facilities. The business model is a public service, leveraging a third-party SaaS platform (eTermin) for appointment management. Technically, the website employs standard web technologies such as jQuery and SVG for UI elements, with a responsive design suitable for mobile devices. The site includes privacy and cookie policies linked to official city resources, indicating compliance with GDPR. However, no advanced security headers or explicit SSL configuration details were found in the provided data, suggesting room for security enhancements. From a security perspective, the platform shows good practices like encrypted data transmission and user authentication mechanisms. The absence of WHOIS data for the domain www.etermin.net raises questions about domain registration legitimacy, though the website content and contact details align with a legitimate municipal service. No critical vulnerabilities or adult content were detected. Overall, the website is a functional, government-backed service with moderate technical maturity and good privacy compliance. Strategic improvements in security headers, domain registration transparency, and enhanced security audits are recommended to strengthen trust and resilience.

R

REMONDIS-Gruppe

remondis-standorte.de

52

REMONDIS-Gruppe is a large international enterprise specializing in waste disposal, recycling, and environmental services with approximately 800 locations across four continents. The website serves primarily as a location tool and informational portal for customers and potential employees, focusing on service availability and career opportunities. The business model centers on providing comprehensive environmental services with a strong market position in the energy and transportation sectors. Technically, the website uses legacy JavaScript libraries such as jQuery 1.10.2 and basic CSS frameworks, indicating moderate digital maturity. Mobile optimization and accessibility are basic, and SEO practices are minimal but present. Security posture is moderate with cookie consent implemented for Google Maps usage; however, no security headers or explicit SSL configuration details were found, suggesting room for improvement. No forms or direct contact details are visible, limiting user engagement and transparency. Overall, the website is functional but could benefit from modernization and enhanced security measures.

The website freiwilligendiensteimsport.nrw is a regional non-profit platform operated by Landessportbund NRW e.V., focused on facilitating volunteer placements in sports organizations within North Rhine-Westphalia, Germany. It targets young people seeking opportunities in the Bundesfreiwilligendienst (BFD) and Freiwilliges Soziales Jahr (FSJ) programs. The platform offers user registration, profile management, and direct application to available positions, positioning itself as a key regional resource for sports volunteer services. Technically, the site employs a modern but basic tech stack including jQuery, Bootstrap, and ASP.NET MVC framework. The design is professional and content-rich with good navigation and mobile responsiveness at a basic level. Performance is moderate, and SEO and accessibility features are present but could be improved. Hosting details are limited but the domain is registered with United Domains AG and uses secure HTTPS connections. From a security perspective, the site demonstrates some good practices such as HTTPS usage and anti-CSRF tokens in forms. However, it lacks DNSSEC, explicit security headers, and a cookie consent mechanism, which are important for GDPR compliance and overall security posture. No incident response or security policy information is published, which limits transparency. No vulnerabilities or malicious content were detected. Overall, the website is trustworthy and professionally managed with a clear business purpose. Strategic improvements in security headers, cookie consent, and published policies would enhance compliance and user trust. The domain registration details align well with the business, supporting legitimacy and credibility.

F

Fédération Nationale des Transports Routiers

fntr.fr

56

The Fédération Nationale des Transports Routiers (FNTR) is a leading professional organization representing the road transport and logistics sector in France. Established since 1998, it serves as a key advocacy and support body for transport companies, providing regional syndicate coordination, publications, and industry representation. The website reflects a mature digital presence with a professional design, clear navigation, and integration of modern web technologies such as Drupal 9, Bootstrap, and FontAwesome. Analytics tools including Google Analytics, Matomo, and Facebook Pixel are employed with privacy considerations like IP anonymization and cookie consent via tarteaucitron.io. Security posture is generally good with HTTPS enforced and no evident vulnerabilities, though explicit security headers and policies are not fully documented. The absence of explicit privacy policy and terms of service pages is a notable compliance gap. Overall, the site is trustworthy, well-branded, and serves its target audience effectively.

Bayer AG is a globally recognized enterprise operating primarily in healthcare, agriculture, and related life sciences sectors. The website serves as the German country platform, providing localized content, news, and corporate information. Bayer holds a strong market position as a leader in pharmaceuticals and crop science, supported by a large enterprise scale and multiple subsidiaries such as Monsanto and Covestro. The site reflects a professional and consistent brand image with comprehensive content tailored to a broad audience including customers, investors, and partners. Technically, the website is built on Drupal 11, leveraging modern web technologies and third-party services such as Google Analytics, Hotjar, and OneTrust for cookie compliance. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and employs security best practices including cookie consent mechanisms and security modules. However, explicit security headers like Content-Security-Policy and X-Frame-Options were not confirmed in the HTML and should be verified. No vulnerabilities or exposed sensitive data were detected. The absence of a public incident response or vulnerability disclosure page suggests an area for improvement. Overall, the website is trustworthy, compliant with GDPR, and professionally maintained. The missing WHOIS data is likely due to registry restrictions or privacy protection and does not detract from the site's legitimacy. Strategic recommendations include enhancing security header implementation, publishing incident response policies, and continuous monitoring of third-party libraries for vulnerabilities.

H

Heilpädagogische Schule Turbenthal

hps-turbenthal.ch

47

Heilpädagogische Schule Turbenthal is a specialized day school located in Turbenthal, Switzerland, providing educational services to children and youth with special learning and life needs. The institution offers a range of services including therapies, lunch programs, school social work, and parent forums, positioning itself as a local leader in special education. The website is professionally designed using WordPress with a focus on accessibility and clear navigation, targeting families and stakeholders in the education sector. Technical infrastructure leverages common WordPress plugins and frameworks, ensuring moderate performance and mobile optimization. Security posture is adequate with HTTPS enforced and cookie consent implemented, though lacking advanced security headers and explicit incident response policies. Overall, the site demonstrates a trustworthy and compliant digital presence suitable for its educational mission.

E

EXPO-BOOK

expo-book.com

45

EXPO-BOOK is an international exhibition portal and social network established in 2012, offering a comprehensive platform for exhibitions, companies, tenders, jobs, and communities related to the exhibition industry. The website targets exhibitors, visitors, and professionals seeking information and networking opportunities in the exhibition sector. It maintains a large database of exhibitions, companies, and members, positioning itself as a significant player in the international exhibition market. Technically, the website employs a custom CMS with a technology stack including jQuery, jQuery UI, Google Translate integration, and Yandex Metrika for analytics. The site demonstrates moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. Hosting and domain registration are managed through RU-CENTER with privacy protection enabled. From a security perspective, the site uses HTTPS and has domain transfer protection but lacks DNSSEC and important security headers such as Content-Security-Policy and HSTS. No explicit security or incident response policies are published, and cookie consent mechanisms are absent, indicating partial compliance with privacy regulations. The site does not expose sensitive data or use vulnerable libraries visibly. Overall, the website is professionally designed and functional with a moderate security posture and basic privacy compliance. Strategic improvements in security headers, DNSSEC, and privacy mechanisms would enhance trust and compliance. The domain's long age and stable registration support the site's legitimacy, with no suspicious indicators detected.

D

Deutsche Apotheker- und Ärztebank

apobank.de

70

Deutsche Apotheker- und Ärztebank (apoBank) is a specialized financial institution serving healthcare professionals and their organizations in Germany. The website clearly communicates its banking and financial services tailored to this niche, including accounts, financing, asset management, and insurance products. The bank positions itself as the leading financial service provider in the healthcare sector, targeting professionals such as pharmacists, doctors, and related entities. The business model focuses on specialized banking solutions with a strong emphasis on customer service and sector expertise. Technically, the website is built on a modern infrastructure using Magnolia CMS, jQuery UI, and integrates consent management via Usercentrics and CAPTCHA protection through FriendlyCaptcha. The site is hosted on UltraDNS name servers and employs HTTPS with proper security headers, ensuring secure and reliable access. The design is professional, mobile-optimized, and accessible, providing a positive user experience. From a security perspective, the site demonstrates good practices including HTTPS enforcement, CAPTCHA on forms, and privacy compliance with GDPR. However, there is room for improvement by adding additional security headers and publishing incident response contacts or a security.txt file. No vulnerabilities or suspicious content were detected. Overall, the apoBank website is a trustworthy, professional, and secure platform that aligns well with its business goals and regulatory requirements. It effectively serves its target audience with clear communication and robust technical implementation.

S

Stiftung Leistungssport Hamburg

stiftung-leistungssport.de

10

Stiftung Leistungssport Hamburg is a non-profit foundation established in 2002 by the Hamburg Chamber of Commerce to sustainably support performance sports in Hamburg. The foundation focuses on talent management, youth promotion, and securing elite sports through its TEAM HAMBURG project. The website serves as an information and networking platform for athletes, sports organizations, and supporters. Technically, the site is built on WordPress with WooCommerce and membership plugins, employing modern JavaScript libraries and a responsive design. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie management. Overall, the site is professional, trustworthy, and well-positioned in its niche.

The website www.rkk-reinach.ch represents the Roman Catholic Parish St. Nikolaus located in Reinach, Switzerland. It serves as an informational portal for parishioners and the local community, providing updates on religious services, sacraments, community events, and social services. The site targets local church members and those interested in parish life, operating as a non-profit religious organization. The content is well-structured, relevant, and presented in German, with clear navigation and a consistent branding approach. Technically, the website is built on the Jimdo Creator CMS platform, utilizing standard web technologies including jQuery UI and POWr.io widgets. It is hosted by Jimdo GmbH and employs HTTPS with a cookie consent mechanism, ensuring basic privacy compliance. The site is moderately optimized for performance and mobile responsiveness, though accessibility features are basic. SEO optimization is present but could be enhanced. From a security perspective, the website enforces HTTPS and includes cookie consent controls, but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's local and religious nature, supporting legitimacy. No WAF or blocking mechanisms interfere with content access. Overall, the website demonstrates a solid foundation for a small non-profit parish site with good content quality and privacy compliance. Strategic improvements in security headers, incident response policies, and SEO could enhance its posture and trustworthiness further.

G

GerroMed Pflege- und Medizintechnik GmbH Hamburg

gerromed.de

50

GerroMed Pflege- und Medizintechnik GmbH Hamburg is a specialized provider of patient care and medical technology products, focusing on patient positioning and decubitus prophylaxis. The company has recently integrated its operations into Arjo Deutschland GmbH, which now manages its rental business. The website clearly communicates this transition and provides resources such as user manuals and contact information for existing customers. The target audience primarily consists of healthcare professionals and institutions requiring specialized patient care equipment. Technically, the website is built on the Contao CMS platform, utilizing modern JavaScript libraries such as jQuery and jQuery UI, and is hosted on a reputable provider (1&1 IONOS). The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the site enforces HTTPS and uses session cookies with CSRF protection, but lacks explicit security headers and published security policies. Privacy compliance is addressed with a cookie consent banner and a privacy policy page, though terms of service and incident response information are absent. Overall, the website is trustworthy and professional, with room for improvement in security transparency and policy disclosures.

A

ASKÖ Burgenland

wirbewegenburgenland.at

42

ASKÖ Burgenland is a regional non-profit sports association based in Austria, focused on promoting diverse sports activities and supporting local sports clubs. The organization offers a variety of services including training, event organization, funding facilitation, and health programs. It operates under the umbrella of the ASKÖ Bundesorganisation, indicating a structured and established presence in the Austrian sports sector. The website reflects a professional and consistent brand image, targeting sports clubs, athletes, and the general public interested in sports within the Burgenland region. Technically, the website is built on the Internetkonzepte.at CMS and utilizes modern JavaScript libraries such as jQuery, Font Awesome, and Owl Carousel to provide a responsive and user-friendly experience. The site is mobile optimized and includes SEO best practices, although accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and uses trusted external libraries but lacks explicit security headers and publicly available security policies or incident response information. Privacy compliance is strong, with a clear GDPR-compliant privacy policy and cookie consent mechanism. Contact information is transparent and professionally presented, enhancing trustworthiness. Overall, ASKÖ Burgenland's website is a well-maintained digital presence that supports its mission effectively. Strategic improvements in security headers and incident response transparency could further enhance its security posture and stakeholder confidence.

A

ASKÖ Sport GmbH

abc-ooe.at

45

ASKÖ Sport GmbH operates the ABC Bewegungscenter Oberösterreich, a regional sports and event center located in Linz, Austria. The company provides a range of services including sports activities, seminar facilities, accommodation, and restaurant services, targeting a general audience interested in sports and events. The website reflects a medium-sized regional business with consistent branding and clear contact information, supporting its market position as a trusted local service provider. Technically, the website is built on the Internetkonzepte.at CMS platform and utilizes modern JavaScript libraries such as jQuery, Owl Carousel, and integrates Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile optimized with good navigation and SEO practices, although some accessibility features are basic. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, indicating basic privacy compliance. However, it lacks explicit security policies, incident response information, and security headers, which are recommended to enhance its security posture. No vulnerabilities or exposed sensitive data were detected, and the WHOIS data confirms the legitimacy of the domain and company. Overall, the website presents a professional and trustworthy digital presence with moderate technical and security maturity. Strategic improvements in security policies, technical modernization, and enhanced privacy compliance would further strengthen the site's reliability and user trust.

I

Internetkonzepte.at GmbH

internetkonzepte.at

46

Internetkonzepte.at GmbH is a small Austrian technology company specializing in custom web and software development, content management systems, hosting, and related IT services. With over 20 years of experience and numerous client references, the company holds a solid market position in the Austrian and German-speaking business sectors. Their website reflects a professional and consistent brand image, targeting businesses seeking tailored internet solutions. The company emphasizes security and support, with a 24/7 support offering and a strong partnership with their hosting provider myNET.at. Technically, the website employs a modern tech stack including jQuery, Font Awesome, and Matomo analytics, running on a proprietary CMS developed by the company. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is strong with HTTPS and no visible vulnerabilities, but lacks some advanced security headers and formal policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the security posture is good, with no detected vulnerabilities or blocking mechanisms. The WHOIS data confirms the legitimacy and consistency of the business registration. Strategic improvements include implementing cookie consent, publishing security and incident response policies, and adding security headers to enhance protection and compliance.

Ö

ÖFT - Österr. Fachverband für Turnen

oeft.at

49

Turnsport Austria is the official Austrian federation representing approximately 450 gymnastics clubs with over 90,000 members across various disciplines including artistic gymnastics, rhythmic gymnastics, trampoline, sport aerobics, and more. The organization serves both grassroots and elite sports communities, providing event organization, training, and certification services. The website reflects a well-maintained digital presence with comprehensive event calendars, news updates, and social media integration, targeting athletes, coaches, clubs, and sports enthusiasts in Austria. Technically, the site uses a custom CMS by Internetkonzepte.at, leveraging modern JavaScript libraries such as jQuery and Owl Carousel, and is mobile responsive with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected, indicating stable and accessible infrastructure. Overall, the site demonstrates a mature digital footprint appropriate for a national sports federation.

A

ASKÖ WAT Wien

askoewat.wien

42

ASKÖ WAT Wien is a well-established regional sports association based in Vienna, Austria, operating under the umbrella of the ASKÖ Bundesorganisation. The organization focuses on providing diverse sports programs, supporting sports clubs, and promoting health and fitness activities for a broad audience including athletes, clubs, and the general public. Their website reflects a professional and community-oriented approach with clear navigation and relevant content. Technically, the site uses a mix of established JavaScript libraries and a proprietary CMS, delivering moderate performance and good mobile responsiveness. Security posture is adequate with HTTPS enabled but lacks advanced security headers and cookie consent mechanisms, indicating room for improvement in compliance and security best practices. The absence of WHOIS data reduces transparency but does not detract significantly from the site's legitimacy given the professional presentation and active content. Overall, the site is trustworthy and serves its community well, though enhancements in privacy compliance and security hardening are recommended.

A

ASKÖ Salzburg

askoe-salzburg.at

47

ASKÖ Salzburg is a well-established regional non-profit sports association based in Salzburg, Austria, focused on promoting diverse sports activities, supporting local sports clubs, and providing training and community programs. The website reflects a professional and consistent brand presence with clear navigation and relevant content tailored to sports enthusiasts and community members in the region. Technically, the site uses a modern JavaScript stack including jQuery and FontAwesome, built on the Internetkonzepte.at CMS platform, and is mobile-optimized with good SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response disclosures. Overall, the site is trustworthy, GDPR compliant, and provides comprehensive contact information and partner links.

A

ASKÖ Oberösterreich

askoe-ooe.at

52

ASKÖ Oberösterreich is a regional non-profit sports association dedicated to promoting diverse sports activities and supporting sports clubs in Upper Austria. The organization provides a wide range of services including club support, sports education, fitness and health programs, and competitive sports event organization. It serves sports clubs, athletes, and community members, positioning itself as a key regional player in sports promotion. The website reflects a professional and consistent brand image aligned with its mission. Technically, the website uses a moderate technology stack including jQuery, FontAwesome, Owl Carousel, and a proprietary CMS by Internetkonzepte.at. The site is mobile optimized and performs moderately well, with basic SEO and accessibility features. Privacy and cookie policies are present and GDPR compliant, though explicit security policies and incident response contacts are not found. From a security perspective, the site enforces HTTPS and uses secure external scripts but lacks advanced security headers and a vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the website's claims, indicating a legitimate and established organization. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic improvements in security headers, incident response transparency, and accessibility could enhance its security posture and user trust.

C

Caritas beider Basel

caritas-beratung.ch

52

Caritas beider Basel operates the Caritas Beratung website, providing free social counseling services to individuals facing temporary financial difficulties in the Basel region of Switzerland. The organization offers budget relief advice, information on social benefits, and potential financial bridging. The website is well-structured, primarily in German, and targets local residents seeking social support. It holds recognized certifications such as SQS and ZEWO, enhancing its credibility and trustworthiness. Technically, the site is built on WordPress with popular plugins like Yoast SEO and Elementor, ensuring good SEO and user experience. Security posture is adequate with HTTPS enforced, though some security headers could be improved. Privacy compliance is basic but present, with a cookie consent mechanism and a privacy policy page. Overall, the site is professional, trustworthy, and serves a clear non-profit social service mission.

C

Caritas

kulturlegi.ch

57

KulturLegi.ch is a Swiss non-profit initiative operated by Caritas that provides a discount card to individuals with limited financial means, enabling access to over 4,200 offers in culture, sports, education, and health sectors across Switzerland. The website is well-branded, consistent, and targets socially disadvantaged groups to promote inclusion. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates Google Analytics and Tag Manager for analytics. The site is mobile-optimized and SEO-friendly with good navigation and content quality. Security posture is solid with HTTPS enforced and privacy compliance evident through cookie consent and a comprehensive privacy policy. However, explicit security policies and incident response contacts are not published, representing an area for improvement. Overall, the domain registration aligns well with the business claims, enhancing trust and legitimacy.

Lumeum Verein Bethanien operates a cultural and spiritual venue in St. Niklausen, Switzerland, offering an immersive 360° film experience centered on the historical figures Niklaus von Flüe and Dorothee Wyss. The organization targets visitors interested in culture, spirituality, and history, providing ticketing, visitor information, and group visit services. The website is professionally designed, consistent in branding, and provides clear contact details and social media presence, positioning it as a trustworthy small non-profit entity in the hospitality and media sectors. Technically, the website is built on the Contao CMS platform and employs modern JavaScript libraries such as jQuery, Handorgel, and Swipe.js. It integrates third-party booking and tracking services from Smeetz and Google Analytics. The site is mobile-optimized with moderate performance and basic accessibility and SEO features. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and visible security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, but incident response and vulnerability disclosure information are absent. Overall, the website is safe, family-friendly, and professionally maintained with a good security posture but could improve privacy compliance and security transparency. No WAF or blocking mechanisms were detected, allowing full content access and analysis.

A

Arosa Tourismus Genossenschaft

arosalenzerheide.swiss

61

Arosa Tourismus Genossenschaft operates the website arosalenzerheide.swiss, promoting the Arosa and Lenzerheide ski areas in Switzerland. The site targets tourists and winter sports enthusiasts, offering information about regional activities and attractions. The business is positioned as a regional tourism leader in Graubünden, Switzerland, with a medium-sized cooperative structure founded in 2015. Technically, the website employs modern frontend technologies such as Bootstrap 4, jQuery UI, and Cookiebot for cookie consent management. The site is served over HTTPS with a valid SSL certificate, but lacks some security headers and explicit privacy and terms of service documents. Security posture is moderate with room for improvement in headers and incident response contact information. Overall, the website is professional and trustworthy, but could enhance privacy compliance and security transparency to improve user trust and regulatory adherence.

B

Bodensee Energie

bodensee-energie.de

60

Bodensee Energie is a regional energy provider in Germany offering electricity and gas services with a focus on certified eco-friendly energy. The website targets residential and commercial customers in the Bodensee region, emphasizing competitive pricing and customer service excellence. The digital infrastructure includes modern web technologies such as jQuery, Google Tag Manager, and an advanced accessibility tool by digi·access GmbH, reflecting a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The site demonstrates good privacy compliance with a comprehensive cookie policy and GDPR adherence. Overall, the website is professional, accessible, and trustworthy, supporting the company's market position as a reliable regional energy supplier.

Müllverbrennung Kiel GmbH & Co. KG (MVK) operates a highly efficient and environmentally friendly waste-to-energy facility in Kiel, Germany, processing approximately 140,000 tons of household and commercial waste annually. The company serves around 500,000 residents and employs about 70 staff members. Ownership is split between the City of Kiel (51%) and REMONDIS GmbH (49%), positioning MVK as a key regional player in waste management and energy recovery. The website reflects a professional and consistent brand image with clear business information and contact details. Technically, the site is built on the Contao CMS platform, utilizing common JavaScript libraries and a cookie consent mechanism compliant with GDPR requirements. Analytics are handled via Matomo, ensuring privacy-conscious tracking.

한미글로벌 E&C is a South Korean construction management company specializing in responsible Construction Management (CM) services. The company showcases a portfolio of architectural projects emphasizing customer-centric construction processes and quality assurance. The website reflects a medium-sized business with a focus on the Korean market and related construction sectors. Technically, the website uses legacy JavaScript libraries such as jQuery 1.12.4 and bxSlider, with basic mobile optimization and moderate performance. Security posture is limited, with no visible HTTPS enforcement or security headers, and no privacy or cookie policies present, indicating gaps in compliance and security best practices. The domain registration is consistent with the business claims, registered since 2016 with a reputable Korean registrar, supporting legitimacy. Overall, the website is professional and functional but requires improvements in security, privacy compliance, and modern technical standards.

LMD is a South Korean real estate development company specializing in premium residential and commercial projects primarily in Seoul. The website highlights several key projects and presents the company as a medium-sized player in the real estate sector with a focus on quality development and consulting services. The technical infrastructure relies on legacy JavaScript libraries such as jQuery 1.12.4 and uses fullPage.js for navigation, indicating moderate digital maturity. The website is accessible and well-structured but lacks modern security headers and visible HTTPS enforcement, which impacts its security posture. Contact information is clearly provided, but privacy and cookie policies are absent, indicating gaps in compliance. Overall, the site is professional but could improve in security and privacy transparency.

O

Otak

otak.com

55

Otak, Inc. is a professional integrated design and project delivery firm specializing in architecture, engineering, environmental consulting, planning, and project management services. The company emphasizes sustainability, integrity, and community engagement as core values, serving government agencies, developers, and communities primarily in the United States. Their market position is that of a medium-sized, reputable firm with a strong focus on delivering community-centric projects and sustainable solutions. Technically, the website is built on WordPress with a modern technology stack including Google Analytics, Google Tag Manager, and various performance and SEO optimization plugins. The site is well-optimized for mobile devices, features good accessibility, and demonstrates excellent SEO practices. The infrastructure appears robust with fast loading times and a professional design. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms compliant with GDPR. However, it lacks visible security headers, a published security policy, and incident response contact information. The absence of WHOIS domain registration data raises some concerns about domain transparency, although the website content and social media presence support its legitimacy. Overall, Otak presents a professional and trustworthy online presence with minor gaps in security transparency and domain registration information. Strategic improvements in security policy publication and domain WHOIS transparency would enhance trust and compliance.

J

JUNG KOREA ELECTRIC CO., LTD.

jungswitch.co.kr

50

JUNG KOREA ELECTRIC CO., LTD. operates a corporate website representing the premium German electrical switch brand JUNG in Korea. The company offers customized electrical switch products and smart floor heating control systems, targeting residential and commercial customers. The website showcases global project references and provides access to an online store, reflecting a medium-sized business with a focus on energy sector products. The digital presence is professionally designed with responsive layouts and modern JavaScript libraries, supporting a good user experience across devices. However, the technical infrastructure lacks explicit security headers and cookie consent mechanisms, indicating room for improvement in security and privacy compliance. The WHOIS data is transparent and consistent with the business identity, supporting legitimacy. Overall, the site is functional, trustworthy, and business-focused but would benefit from enhanced security and privacy features.

Duravit.no is the Norwegian localized website of Duravit, a well-established international brand specializing in bathroom furniture and porcelain products. The company has a long history dating back to 1817 and collaborates with renowned designers to offer high-quality, stylish, and functional bathroom solutions. The website provides rich content including product categories, design inspiration, and tools for customers to plan their bathrooms. Technically, the site uses modern JavaScript libraries, consent management tools, and performance monitoring, hosted likely on a CDN with good SSL configuration. Security posture is solid but could be improved with additional headers and explicit security policies. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a clearly accessible privacy policy page in the provided content. No WHOIS data is publicly available due to Norwegian domain registry privacy policies, but the domain appears legitimate and consistent with the brand. Overall, the website is professional, trustworthy, and well-positioned in the retail bathroom products sector.

AB Hyllteknik is a well-established Swedish manufacturer specializing in strong and flexible shelving and sken systems since 1957. The company serves B2B customers primarily in the Nordic region, including offices, schools, libraries, and furniture resellers. Their product portfolio includes office furniture, library shelving, school cloakroom furniture, and related interior systems. The website reflects a mature business with a consistent brand presence and a clear market position as a leader in their niche. Technically, the site uses a modern tech stack with popular JavaScript libraries, CDN hosting, and standard analytics tools, providing a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and CSRF protections, though improvements are recommended in DNSSEC deployment and security headers. Privacy compliance is basic with cookie usage disclosed but lacking a formal privacy policy and consent mechanism. Overall, the domain registration data supports the legitimacy and trustworthiness of the business, with a domain age consistent with the company's long history.

K

Komm.ONE

komm-one.net

70

Komm.ONE is a medium-sized IT service provider focused on delivering specialized solutions to municipal and state administrations in Baden-Württemberg, Germany. The company offers a range of services including consulting, cloud solutions, innovation management, and security services tailored for public sector clients. The website reflects a professional and consistent brand presence with clear navigation and relevant content targeted at government entities. Technically, the site employs a modern technology stack with popular JavaScript libraries and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, leveraging Matomo analytics for privacy-conscious tracking. Overall, the domain registration details align well with the business profile, indicating legitimacy and trustworthiness.

P

Primarschule Turbenthal

ps-turbenthal.ch

48

Primarschule Turbenthal is a public primary school serving approximately 500 children across multiple school units in Turbenthal, Switzerland. The institution provides comprehensive educational services including kindergartens, special education, and various support offerings such as speech therapy and school social work. The website is professionally designed using WordPress and includes clear navigation and contact information targeted at parents and the local community. The school holds a stable market position as a key educational provider in the region. Technically, the site uses common WordPress plugins and libraries, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and CAPTCHA on forms, but lacks advanced security headers and published security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and well-maintained, suitable for its educational purpose.

S

Schinkels

schinkels-brauhaus.de

56

Schinkels is a regional German brewery and hospitality business offering craft beers, a restaurant experience, and event hosting services. The company emphasizes quality, sustainability, and creating memorable moments for its customers. Their website is professionally designed using WordPress with SEO and event management plugins, providing a rich user experience and structured event data. Security posture is good with HTTPS and cookie consent mechanisms, though explicit privacy and security policies are missing. Overall, the site reflects a mature digital presence suitable for their business model and target audience.

Burgergemeinde Bern is a municipal government entity serving the city and canton of Bern, Switzerland. It provides a broad range of social, cultural, environmental, educational, and scientific services aimed at improving the quality of life for its residents. The website reflects a well-established public institution with clear communication of its mission and services, supported by active social media channels and event listings. Technically, the site is built on the Plone CMS platform, leveraging modern JavaScript libraries and a responsive design that supports good user experience across devices. Security posture is solid with HTTPS enforced and CSRF protections in place, though some improvements in security headers and incident response transparency are recommended. Privacy compliance is good with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a notable gap. Overall, the website is professional, trustworthy, and aligned with the expectations for a government organization.

K

Kirchgemeinde Zürich

kirche-zh.ch

50

The kirche-zh.ch website functions as a portal for the Kirchgemeinde Zürich, serving as a gateway to various church communities in Zurich. It provides basic information and links to affiliated church websites, targeting local residents and church members. The site is modest in content and design, reflecting its non-profit and community-oriented nature. Technically, the site uses a variety of JavaScript libraries including jQuery, Bootstrap, and Piwik/Matomo for analytics, but lacks modern CMS identification and advanced SEO or accessibility features. Security posture is basic with no visible security headers or privacy policies, and no forms or user input mechanisms are present. The domain uses privacy protection in WHOIS, which is justified for this type of organization. Overall, the site is functional but could benefit from improved privacy compliance, security hardening, and richer content to enhance user trust and engagement.

Heitech Service GmbH is a small German web agency specializing in web design, hosting, and consulting services primarily for regional clients. Their website is professionally designed using the Contao CMS and offers hosting under the Lausitz-Hosting brand. The technical infrastructure includes modern JavaScript libraries and a cookie consent mechanism, indicating GDPR awareness. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS enabled but lacking security headers and explicit incident response information. Overall, the website is functional and trustworthy in appearance but requires verification of domain registration and enhanced security practices.

L

Landessportverband Schleswig-Holstein e.V.

lsv-sh.de

11

The Landessportverband Schleswig-Holstein e.V. is a regional non-profit sports association dedicated to supporting sports clubs and organizations in Schleswig-Holstein, Germany. The website provides comprehensive information about the association's services, including sports promotion, education, funding opportunities, and community projects. It targets sports clubs, volunteers, and sports enthusiasts within the region. The organization holds a strong market position as the leading sports association in Schleswig-Holstein, supported by reputable partners and sponsors. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as jQuery and Owl Carousel for enhanced user experience. The site is mobile-optimized, accessible, and SEO-friendly, with a well-structured navigation system. Privacy compliance is robust, featuring GDPR-compliant privacy and cookie policies with active consent mechanisms. From a security perspective, the site enforces HTTPS and employs cookie consent tools, with no visible vulnerabilities or exposed sensitive data. However, it lacks publicly available security policies and incident response contacts, which could be improved to enhance trust and preparedness. Overall, the website is professional, trustworthy, and well-maintained, reflecting the organization's commitment to transparency and community engagement. Strategic recommendations include publishing a dedicated security policy, incident response information, and enhancing security headers to further strengthen the security posture.