Security Directory

S

softstack

softstack.io

69

softstack is a German-based company specializing in Web3 services including software development, cybersecurity, and consulting. Established in 2019, it positions itself as a trusted service partner for blockchain and decentralized application projects. The company emphasizes ethical business practices and close client collaboration to deliver tailored Web3 solutions. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive service descriptions. Technically, the site is built on WordPress with Elementor, leveraging modern web technologies and Google analytics tools. Security posture is good with HTTPS and domain protections, though improvements like DNSSEC and explicit security policies are recommended. Privacy compliance is strong with GDPR-aligned cookie and privacy policies. Overall, softstack demonstrates high business credibility and digital maturity.

V

VeChain

vechain.org

55

VeChain is a well-established blockchain platform focused on delivering sustainable, scalable, and secure blockchain solutions primarily targeting enterprises and the Web3 community. The company emphasizes its VeChainThor blockchain, which is EVM-compatible and designed for sustainability and performance. The website reflects a mature digital presence with professional design, clear navigation, and relevant content aimed at developers, enterprises, and blockchain enthusiasts. Technically, the site is built on WordPress with Elementor and uses modern libraries and analytics tools such as Matomo and Freshworks. Hosting appears to be on AWS infrastructure, ensuring reliable performance. Security posture is adequate with HTTPS enabled and domain-level protections like clientDeleteProhibited status; however, there is room for improvement by enabling DNSSEC and adding security headers. Privacy compliance is limited as no explicit privacy or cookie policies were found, which is a notable gap given GDPR and other regulations. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

O

OPTIMA Grupa d.o.o.

modrica-lubricants.com

49

Rafinerija ulja Modriča, operated by OPTIMA Grupa d.o.o., is a medium-sized regional manufacturer specializing in motor oils, lubricants, base oils, paraffins, and specialized products for extreme conditions. Established in 2022, the company holds a strong market position as the largest regional producer with distribution across more than 22 international markets. Their business model focuses on manufacturing, toll blending, and private label services, targeting automotive and industrial sectors. The website reflects a professional digital presence with clear branding, product information, and multiple contact channels. Technically, the site is built on WordPress with modern libraries and SEO optimizations, hosted via GoDaddy with DNS on european-server.com. Security posture is good with HTTPS and no exposed sensitive data, though improvements are recommended in DNSSEC and security headers. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

The Regulatory Authority for Electronic Communications and Postal Services (RATEL) of Serbia operates as a government regulatory body overseeing electronic communications and postal services. The website serves as an official portal providing regulatory information, public consultations, licensing, and consumer services. It targets operators, service providers, and the general public within Serbia. The domain is well-established since 2008, reflecting a mature presence in the regulatory sector. Technically, the website employs modern web technologies including JavaScript libraries such as Swiper.js and mmenu.js, and integrates Google reCAPTCHA for form security. The site is built on a Laravel-based backend inferred from CSRF tokens and form structures. It is mobile-optimized with good performance and basic accessibility features. SEO is basic but functional with meta tags and Open Graph data. Security posture is solid with HTTPS enforced, CSRF protection, and cookie consent mechanisms. However, some security headers like Content-Security-Policy and X-Frame-Options are missing, which could be improved. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy policy and cookie consent. Overall, RATEL's website is professional, trustworthy, and aligned with its government regulatory role. It provides clear contact information and links to partner portals, enhancing transparency and user engagement. Strategic improvements in security headers and accessibility would further strengthen its digital maturity.

V

verlag moderne industrie GmbH

packaging-machinery-conference.de

54

The Packaging Machinery Conference website represents a well-established event organizer, verlag moderne industrie GmbH, focusing on the packaging machinery industry. The conference is positioned as a leading platform for innovation, networking, and knowledge exchange in packaging technology, targeting professionals, manufacturers, and decision-makers in the sector. The business model centers on event hosting with ticket sales and partnerships, supported by a consistent and professional brand presence. Technically, the site is built on TYPO3 CMS with modern integrations for analytics and privacy compliance, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and consent management, though explicit security policies and headers could be enhanced. Overall, the site is trustworthy, GDPR compliant, and provides comprehensive contact information, supporting strong business credibility.

U

Ultima Media Germany GmbH

epts-conference.com

61

EPTS 2025 is a professional conference uniting experts in electric mobility production technologies, merging three established conferences to create a leading industry event. The website is well-structured, professionally designed, and targets engineers, researchers, industry leaders, and investors in electromobility. The technical infrastructure is based on TYPO3 CMS with modern tracking and privacy compliance tools such as Google Tag Manager and GDPR consent mechanisms. Security posture is solid with HTTPS and privacy management, though some security headers are not explicitly detected. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trust but does not detract from the professional presentation and partnerships. Overall, the site provides a comprehensive platform for event information, registration, and networking.

V

verlag moderne industrie GmbH

automation-next-conference.com

59

The Automation NEXT Conference website represents a professional event platform focused on the future of industrial automation, showcasing technologies such as AI, Edge Computing, and collaborative robots. The event is organized by verlag moderne industrie GmbH and Ultima Media Germany GmbH, targeting industry professionals including engineers, researchers, and decision-makers. The site provides comprehensive event information, speaker details, and registration options, reflecting a mature digital presence. Technically, the website is built on TYPO3 CMS and integrates modern tools like Google Tag Manager and Google Consent Mode to manage analytics and privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search visibility. Security posture is solid with HTTPS enforced and privacy mechanisms in place, though explicit security policies and incident response contacts are absent. The WHOIS data is missing, indicating either a recent domain registration or privacy protection, which slightly reduces trustworthiness. However, the professional content, clear contact information, and association with reputable companies mitigate concerns. Overall, the site demonstrates a strong business and technical foundation with room for enhanced security transparency.

V

verlag moderne industrie GmbH

automotive-computing-conference.com

60

The Automotive Computing Conference (ACC) is a well-established international event organized by verlag moderne industrie GmbH, focusing on cutting-edge automotive technology topics such as software-defined vehicles and semiconductor technologies. The conference attracts a global audience from Europe, Asia, and North America, featuring industry leaders and experts as speakers. The website demonstrates a mature digital presence with a professional design, comprehensive event information, and clear navigation. Technically, it is built on TYPO3 CMS and integrates modern tracking and consent management tools, ensuring GDPR compliance. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and incident response contacts are not published. The absence of WHOIS registration data for the domain is a notable concern, suggesting either privacy protection or a registration anomaly, which slightly impacts trustworthiness. Overall, the site is professional, informative, and trustworthy for its target audience.

V

verlag moderne industrie GmbH

automobil-elektronik-kongress.de

62

The Automobil-Elektronik Kongress (AEK) is a well-established, prestigious international conference focused on automotive electronics, organized by verlag moderne industrie GmbH. It serves as a key platform for industry experts, researchers, and executives to discuss innovations and network. The website demonstrates a mature digital presence with comprehensive event information, ticketing options, and rich multimedia content. Technically, it leverages TYPO3 CMS and integrates modern tracking and consent management tools, ensuring GDPR compliance. Security posture is strong with HTTPS and consent mechanisms, though some security headers could be enhanced. Overall, the site reflects a professional and trustworthy business with a clear market position in the transportation and technology sectors.

V

verlag moderne industrie GmbH

ai-assurance-eu.com

61

AI Assurance in Mobility Europe 2025 is a specialized conference event organized by verlag moderne industrie GmbH, focusing on the intersection of AI technology and regulatory frameworks in the automotive and mobility sectors. The website serves as a professional platform to provide event details, speaker information, partner recognition, and related industry events, targeting automotive industry professionals, regulators, and technology providers. The business model centers on event organization and industry networking, positioning itself as a niche leader in AI assurance for connected and automated driving in Europe. Technically, the website is built on TYPO3 CMS with modern tracking and consent management tools, demonstrating a good level of digital maturity. Security posture is solid with HTTPS and privacy compliance, though explicit security policies and incident response information are absent. Overall, the site is professional, trustworthy, and well-structured, supporting the business's credibility and market presence.

The website om-zeichen.de operates as a certification and database platform under the brand Offensive Mittelstand, targeting small and medium-sized enterprises in Germany. It focuses on providing verified sustainability and occupational safety certifications (OM-Zeichen) to companies, enabling them to demonstrate compliance to customers, suppliers, and regulatory bodies. The platform offers self-assessment tools and a searchable database of certified companies, positioning itself as a niche player in the German Mittelstand market. The website content is professional, well-structured, and consistent with its business purpose. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and the Swiper.js library for interactive content. It employs Matomo analytics with cookies disabled to respect user privacy. The site appears to be built on TYPO3 CMS, inferred from file paths. Performance and mobile optimization are moderate, with room for improvement in accessibility and SEO. Security posture is good with HTTPS enforced, but lacks advanced security headers and explicit cookie consent mechanisms. From a security perspective, the website does not expose sensitive data and uses privacy-conscious analytics. However, it lacks published security policies, incident response contacts, and vulnerability disclosure mechanisms. No WAF or blocking mechanisms were detected, and the site is fully accessible. WHOIS data is limited but does not raise suspicion, though registrant details are not fully disclosed. Overall, the website presents a trustworthy and professional front for its certification services, with moderate technical maturity and a good security baseline. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance its security posture and user trust.

S

StepStone Group

stepstonegroup.com

73

StepStone Group is a global private markets investment advisory and asset management firm, positioning itself as a trusted partner for private wealth and institutional investors worldwide. The company emphasizes its extensive assets under management, global office presence, and comprehensive private markets solutions including advisory services, asset management, data analytics, and private wealth solutions. The website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the website is built on WordPress with modern performance and SEO optimizations, including the use of Yoast SEO, Google Tag Manager, and New Relic monitoring. Accessibility features and cookie consent mechanisms are implemented, indicating a mature digital infrastructure. However, the absence of WHOIS data and explicit privacy and terms of service pages slightly detract from the overall digital maturity. Security posture is solid with HTTPS enforced and no obvious vulnerabilities detected, but the lack of explicit security policies, incident response contacts, and vulnerability disclosure mechanisms suggests room for improvement. The website uses multiple trusted external domains for fonts, analytics, and investor portals, supporting its operational ecosystem. Overall, the site is professional and trustworthy from a content and technical perspective, but the missing WHOIS transparency and incomplete privacy and security documentation present moderate risks. Strategic enhancements in these areas would strengthen trust and compliance.

E

EB-SIM

eb-sim.de

59

EB-SIM is a German asset management company specializing in ethical and sustainable investments, with a strong focus on multi-asset strategies and renewable energy projects. The company positions itself as a leading player in the sustainable finance sector, leveraging its affiliation with the Evangelische Bank to underpin its Christian values and sustainability mission. The website is professionally designed, content-rich, and targets private investors, institutional investors, and financial advisors primarily in Germany and neighboring countries. Technically, the site is built on WordPress with modern plugins and frameworks, including Yoast SEO and Borlabs Cookie for privacy compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements in security headers and incident response disclosures are recommended. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and legitimate online presence.

U

Ultima Media Germany

ultimamedia.de

60

Ultima Media Germany is a professional B2B event organizer specializing in over 50 annual specialist events across sectors such as automotive, finance, production, medicine, insurance, and environment. The company operates under the parent group SV Veranstaltungen and provides knowledge transfer and networking opportunities through conferences, seminars, and congresses. The website is built on TYPO3 CMS and integrates modern marketing and privacy tools such as Google Tag Manager with consent mode and CleverPush for notifications. The site is well-structured, mobile-optimized, and provides detailed event information, reflecting a mature digital presence. However, explicit privacy policies, terms of service, and direct contact information are not found, which could be improved for better compliance and user trust. Security posture is good with HTTPS and consent mechanisms but lacks explicit security headers and incident response details.

M

MicroMedia

microacademy.ba

49

MicroAcademy is an educational platform specializing in practical courses for design, marketing, and web development, backed by the experienced agency MicroMedia. The website positions itself as a practical academy offering mentorship, real project experience, and employment opportunities for top students, targeting individuals seeking career advancement in digital fields. Technically, the site is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile devices, though performance is moderate. Security posture is solid with HTTPS and secure forms, but lacks advanced security headers and visible privacy compliance documentation. Overall, the site is professional, trustworthy, and content-rich, but would benefit from enhanced privacy and security policies to improve compliance and user trust.

I

InterSoft d.o.o. Sarajevo

klix.ba

65

Klix.ba is the most visited and influential news portal in Bosnia and Herzegovina, providing fast and important news from Sarajevo, the country, and the world. The website operates on an advertising-supported business model, leveraging multiple ad networks including Amazon Ads, PubMatic, and Google Ad Manager. The technical infrastructure includes modern JavaScript libraries, consent management via Didomi, and analytics through DotMetrics and Google Analytics. The site is well-optimized for mobile and desktop users with good SEO and accessibility practices. Security posture is solid with HTTPS enforcement, bot protection via reCAPTCHA, and GDPR-compliant consent mechanisms, although a dedicated security policy and incident response information are not publicly available. Overall, Klix.ba presents a professional, trustworthy, and compliant digital presence with a strong market position in the media sector of Bosnia and Herzegovina.

E

EUROS Osiguranje

eurososiguranje.com

52

EUROS Osiguranje is a local insurance company operating in Bosnia and Herzegovina since 2016, offering a range of insurance products including property, auto, and health insurance. The website presents a professional and well-structured digital presence with clear service offerings targeted at residents and businesses within Bosnia and Herzegovina. The technical infrastructure includes modern web technologies such as Google Analytics and Swiper.js, hosted on DNS servers associated with crohost.net. Security posture is adequate with HTTPS enabled and domain registration protections in place, though DNSSEC is not enabled and security headers are not evident. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Overall, the website is functional and trustworthy but would benefit from enhanced compliance and security measures.

G

Gemeinde Dossenheim

dossenheim.de

67

Gemeinde Dossenheim operates as a local government entity serving the residents and visitors of Dossenheim, Germany. The website provides comprehensive information about municipal services, local economy, culture, events, and digital citizen services. The municipality leverages modern web technologies including TYPO3 CMS and integrates ISO 27001 certified third-party services for recruiting and session management. The site is well-structured, accessible, and optimized for mobile devices, reflecting a mature digital presence. Security posture is strong with HTTPS, security headers, and privacy compliance mechanisms including a detailed cookie consent banner and privacy policy. However, explicit incident response and vulnerability disclosure information are absent, which could be improved to enhance trust and readiness. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with GDPR requirements.

M

meinKölnBonn

meinkoelnbonn.de

48

meinKölnBonn is a regional content platform operated in affiliation with Sparkasse KölnBonn, providing residents of the Köln and Bonn area with financial advice, lifestyle content, business insights, and local event information. The website positions itself as a trusted source for regional financial and lifestyle topics, leveraging the brand strength of Sparkasse KölnBonn. Technically, the site is built on WordPress with modern frontend technologies such as Swiper.js and lazy loading for images, ensuring a good user experience and mobile optimization. SEO practices are well implemented with Yoast SEO and structured data markup. Security posture is solid with HTTPS enforced and no visible sensitive data exposure, though the site lacks explicit security headers and a public security policy. Privacy compliance is moderate, with a cookie consent mechanism present but no explicit privacy policy page found. Overall, the site is professional, trustworthy, and safe for general audiences.

I

Izrada web stranica

izradawebstranica.ba

47

Izrada web stranica is a small digital agency based in Bosnia and Herzegovina specializing in the creation of unique websites and e-commerce shops. The company positions itself as a full-service digital agency focused on brand growth and web development services. The website is built on WordPress using Elementor, enhanced with SEO tools like Rank Math, and includes modern web technologies such as Lottie animations and Google Analytics for tracking. The technical infrastructure is solid with HTTPS enabled and a professional design, although some security best practices like security headers and privacy policies are missing. The security posture is moderate with no visible vulnerabilities but lacks formal security and privacy documentation. Overall, the website is professional and trustworthy but would benefit from improved privacy compliance and security practices.

M

Merkle Inc.

eprize.com

70

Merkle Promotions, a division of Merkle Inc. and a dentsu company, specializes in digital promotions and gamification with over 25 years of experience. The company offers a broad range of promotional solutions including sweepstakes, instant win games, loyalty programs, and Web3 experiences, targeting brands seeking to engage customers through innovative digital activations. Their market position is strong, supported by notable clients such as Starbucks, Johnson & Johnson, and Coca-Cola, and a consistent brand presence. Technically, the website employs modern web technologies including GSAP for animations and Swiper.js for interactive galleries, delivering a visually engaging and mobile-optimized experience. While performance is moderate and SEO practices are good, there is room for improvement in accessibility and explicit CMS or hosting details are not evident. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit incident response or security policy disclosures. No critical vulnerabilities or exposed sensitive data were detected, but the absence of a cookie consent mechanism and incomplete WHOIS data for the domain reduce overall trust. The WHOIS query returned no registration data, which conflicts with the professional branding and may indicate privacy protection or domain registration issues. Overall, the website is professional and trustworthy in content and design but would benefit from enhanced security practices and clearer domain registration transparency. Strategic improvements in security headers, cookie consent, and WHOIS clarity are recommended to strengthen compliance and trust.

B

Bildungscampus Karlsruhe

bildungscampus-weststadt.de

56

Bildungscampus Karlsruhe is a cooperative educational and cultural initiative comprising three institutions: Badisches KONServatorium, Volkshochschule Karlsruhe, and Internationales Begegnungszentrum. The website serves as a platform to promote learning, cultural activities, and community events in Karlsruhe, targeting local residents interested in music, language, culture, and social engagement. The business model is non-profit and community-focused, emphasizing inclusivity and diversity. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and Real Cookie Banner Pro, ensuring good SEO and privacy compliance. Hosting is provided by PixelX, with a moderate performance profile and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and incident response information are absent. Overall, the site is professional, trustworthy, and compliant with GDPR, with no detected vulnerabilities or suspicious content.

F

FiXiT d.o.o.

fixit.ba

48

FiXiT d.o.o. is a small IT services company based in Bosnia and Herzegovina, founded in 2015. The company offers specialized IT services including IT support, web design, and toner distribution. Their website reflects a professional and consistent brand image, targeting business clients seeking reliable IT solutions. The company maintains a portfolio of reputable clients, indicating a solid market position locally. Technically, the website is built on WordPress using modern plugins such as Elementor and Yoast SEO, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and use of security plugins, but lacks some advanced security headers and published policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and professional but could improve compliance and security transparency.

P

Profi Aesthetics

profi-aesthetics.eu

39

Profi Aesthetics is a small graphic design portfolio business based in Germany, showcasing a diverse range of creative projects including artwork, book design, web design, exhibition design, and event campaigns. The website serves primarily as a visual portfolio targeting general audiences interested in graphic design services. The business model focuses on presenting past projects to attract potential clients or collaborators. Technically, the website employs standard web technologies such as HTML5, CSS3, JavaScript, jQuery 1.12.3, and Swiper.js for interactive slideshows. The site is moderately optimized for performance and mobile devices, with basic accessibility and SEO features. However, the use of an outdated jQuery version and lack of modern frameworks or CMS indicates room for technical modernization. From a security perspective, the site lacks visible security headers and explicit HTTPS confirmation from the provided data, which may expose it to certain risks. No privacy or cookie policies are present, indicating non-compliance with GDPR and related regulations. No contact or incident response information is available, limiting transparency and trust. No analytics or tracking scripts were detected, suggesting minimal user tracking. Overall, the website is functional and professionally designed but requires improvements in privacy compliance, security posture, and contact transparency to enhance trustworthiness and regulatory adherence.

U

U.G. BIHAMK

bihamk.ba

65

BIHAMK is the largest automotive club association in Bosnia and Herzegovina, with a long-standing history dating back to 1946. The organization provides a comprehensive range of services including roadside assistance, technical vehicle inspections, international driving documents, vehicle homologation, and rent-a-car services. Their market position is strong within the regional transportation sector, supported by memberships in international bodies such as FIA and AIT. The website reflects a mature digital presence with modern design, clear navigation, and rich content tailored to motorists and vehicle owners in Bosnia and Herzegovina and the wider region. Technically, the site employs modern JavaScript frameworks like Alpine.js and Swiper.js, integrates Google Analytics and Facebook Pixel for marketing and analytics, and uses HTTPS with strong security headers, indicating a solid security posture. However, the absence of explicit cookie consent mechanisms and dedicated security or incident response pages suggests areas for compliance and security improvement. Overall, the website is professional, trustworthy, and well-aligned with the organization's business objectives.

C

Corazon Latino

corazonlatino.com

69

Corazon Latino is a UK-based e-commerce retailer specializing in handmade silver jewellery for women and men. The company emphasizes traditional craftsmanship, unique artisan partnerships, and high-quality sterling silver products hallmarked by the London Assay Office. Their market position is that of a niche artisan jewellery provider with a strong focus on customer service, fast UK delivery, and a money-back guarantee. Technically, the website is built on the Shopify platform using the Impulse theme, integrating modern marketing and analytics tools such as Google Tag Manager, Klaviyo, and Trusted Shops. The site is well-optimized for performance, mobile responsiveness, and SEO. Security posture is strong with HTTPS enforced and standard security headers, though explicit security policies and incident response contacts are not publicly available. The absence of WHOIS data slightly reduces trust but does not outweigh the strong business and technical indicators. Overall, the website presents a professional, trustworthy, and user-friendly e-commerce experience.

S

Stadtentwaesserungsbetriebe Koeln, AoeR

parkweiher.koeln

65

The website 'parkweiher.koeln' is an official public service platform managed by the Stadtentwässerungsbetriebe Köln, AöR, focusing on the 15 urban park ponds in Cologne. It provides comprehensive information about the ponds, their ecological importance, recreational activities, and related multimedia content. The site targets local residents and visitors interested in nature and urban green spaces. Technically, the site employs modern web technologies including Matomo for privacy-conscious analytics and Usercentrics for GDPR-compliant cookie management. The site is well-structured, mobile-optimized, and accessible, with clear navigation and professional design. Security posture is good with HTTPS enforced and cookie consent blocking third-party content until approval, though some security headers could be improved. WHOIS data aligns well with the website's public service nature, showing consistent registration details and no suspicious patterns. Overall, the site demonstrates a mature digital presence for a government entity with strong privacy and compliance adherence.

E

edudip

edudip.com

59

Edudip is a German-based company founded in 2010 that provides interactive webinar software and online training solutions. The platform targets training leaders, presenters, and participants, offering a collaborative and engaging learning experience. The website demonstrates a professional and consistent brand presence, with a focus on ease of use, interactivity, and corporate branding options. Technically, the site is built on WordPress with the Divi theme and uses modern web technologies and plugins to enhance user experience and SEO. Security posture is generally good with HTTPS enforced and domain transfer protection, but lacks DNSSEC and explicit security headers. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a clearly accessible privacy policy and terms of service pages. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and stability.

M

mainziel.de

mainziel.de

56

mainziel.de is an official municipal traffic and mobility information platform for Frankfurt am Main, providing comprehensive multimodal transport data including live public transport, bicycle routes, parking, and event-related traffic updates. The platform is built on TYPO3 CMS and uses modern web technologies such as jQuery, OpenLayers, and Matomo analytics configured with privacy protections. The website is well-designed, mobile-optimized, and offers a good user experience with clear navigation and relevant content for residents and visitors. Security posture is moderate with HTTPS and privacy-respecting analytics, but lacks explicit security headers and published security policies. No privacy policy or terms of service were detected in the provided content, though cookie consent is managed via Cookiebot. WHOIS data indicates municipal hosting consistent with the website's purpose, supporting legitimacy. Overall, the site is trustworthy and serves as a valuable public service resource.

G

Gingco Communication GmbH & Co. KG

die-region.de

58

Die-Region.de is an official regional portal serving the Braunschweig-Wolfsburg area in Germany, providing comprehensive information on local businesses, job offers, leisure activities, and cultural events. The website targets residents, visitors, job seekers, families, and students, positioning itself as a central hub for regional engagement and information dissemination. It is supported by regional partners and stakeholders, enhancing its credibility and reach. Technically, the site is built on TYPO3 CMS, a robust and widely used content management system, complemented by modern frontend technologies such as Swiper.js for interactive elements and Matomo for privacy-conscious analytics. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience across devices. From a security perspective, the website enforces HTTPS, implements key security headers, and provides a cookie consent mechanism compliant with GDPR. However, it lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced transparency and security posture. Overall, the site is trustworthy, professionally maintained, and compliant with relevant privacy regulations, making it a reliable resource for its audience. Strategic improvements in security transparency and contact information could further strengthen its position.

W

weber.digital GmbH

weber.digital

55

weber.digital GmbH is a German-based digital agency specializing in digital transformation, product development, and digital marketing services. Established in 2015, the company targets businesses seeking to modernize and innovate their digital presence. The website reflects a professional and consistent brand image, with comprehensive privacy and cookie policies indicating GDPR compliance. Technically, the site uses modern web technologies including custom fonts and JavaScript libraries like Swiper.js, with good mobile optimization and moderate performance. Security posture is solid with HTTPS enforced and domain lock statuses, though additional HTTP security headers and a published security policy would enhance trust. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the domain registration data aligns well with the website content, supporting legitimacy and trustworthiness.

A

Alma Career Slovakia s.r.o.

profesiadays.sk

59

Profesia Days is a major career event organizer in Slovakia, operated by Alma Career Slovakia s.r.o., a subsidiary of Alma Career. The website promotes the largest festival of job opportunities in Slovakia, providing career counseling, job offers, and workshops tailored to job seekers and employers. The site is well-branded and targets the Slovak market with a professional and consistent presentation. Technically, the website is built on WordPress with modern JavaScript libraries and includes SEO optimizations and mobile responsiveness. Security measures include HTTPS, Google reCAPTCHA, and cookie consent management, though explicit privacy and security policies are missing. Overall, the website is trustworthy and professionally maintained, with room for improvement in compliance documentation and security transparency.

A

Alma Career Slovakia, s.r.o.

sosrdcom.sk

50

The website www.sosrdcom.sk represents a social inclusion program operated by Alma Career Slovakia, s.r.o., under the brand 'Výpomoc so srdcom'. The program focuses on improving employment opportunities for people with health disadvantages in Slovakia, leveraging pilot projects and cooperation with employers. The site is professionally designed using WordPress and Elementor, featuring Slovak and English language options, and provides resources, testimonials, and contact mechanisms to support its mission. Technically, the site uses modern web technologies, including Google reCAPTCHA for form security and Yoast SEO for optimization. Security posture is good with HTTPS and secure form handling, though explicit security policies and incident response contacts are absent. Privacy compliance is partial, with cookie consent present but no visible privacy policy. WHOIS data confirms the legitimacy and consistency of the domain registration with the business identity. Overall, the site is trustworthy, well-structured, and serves a clear social purpose.

N

netgo group

netgo.de

58

netgo group is a well-established German IT service provider specializing in comprehensive IT and software solutions that enable digital transformation for businesses across various industries. The company offers a broad portfolio including cloud infrastructure, IT security, software development, workplace solutions, and managed IT services. Recognized by multiple industry awards and certifications, netgo positions itself as a trusted partner for enterprises seeking to modernize and secure their IT environments. Technically, the website is built on the HubSpot CMS platform, leveraging modern analytics and marketing tools such as Google Tag Manager, Cookiebot, and Matomo, ensuring good digital maturity and privacy compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though the absence of explicit security policies and incident response contacts suggests room for improvement. Overall, the domain registration data aligns well with the website's claims, indicating legitimacy and consistency. The site is professionally designed, mobile-optimized, and user-friendly, supporting a high level of trust and business credibility.

M

MBmedien Group GmbH

mbmedien.de

61

MBmedien Group GmbH is a German B2B marketing services company specializing in lead generation, data services, and content marketing with over 30 years of experience. Their website showcases a comprehensive portfolio including account-based marketing, intent data, webinars, and a large proprietary B2B database. The company targets B2B marketers and enterprises seeking precise and data-driven marketing solutions. Technically, the website is built on WordPress with Elementor and Yoast SEO, hosted on Hetzner infrastructure, and includes modern tracking and cookie consent mechanisms. Security posture is good with HTTPS and domain transfer protections, though DNSSEC is not enabled and no explicit security or privacy policies are published. Overall, the website is professional, well-branded, and trustworthy with strong social media presence and partner relationships, notably with Heise Medien.

F

funk (Content-Netzwerk von ARD und ZDF)

funk.net

64

The website play.funk.net is a content network operated by the German public broadcasters ARD and ZDF, targeting young audiences aged 14 to 29. It offers a wide range of video content, podcasts, and channels covering various topics such as politics, culture, comedy, and social issues. The site demonstrates a professional and consistent brand presence with high-quality content and a modern, responsive design. Technically, it leverages React and Material UI frameworks, with good mobile optimization and SEO practices. However, explicit privacy and cookie policies are not evident in the provided content, and WHOIS data for the domain is unavailable, which slightly impacts trustworthiness. Security headers and explicit security policies are not visible, suggesting room for improvement in security posture. Overall, the site is legitimate, well-branded, and content-rich, but could enhance transparency and security compliance.

T

Technology Research Hub

technology-research-hub.de

51

Technology Research Hub is a German-based technology research and vendor comparison portal focused on providing high-quality studies, precise comparisons, and vendor insights to business and IT decision makers. The platform offers independent professional user ratings and detailed analyses to assist companies in selecting appropriate software solutions and IT service providers. The website is professionally designed, regularly updated, and uses modern WordPress technologies including Elementor and Yoast SEO to ensure good content presentation and search engine optimization. Hosting is provided by Hetzner, a reputable German hosting provider. Security posture is adequate with HTTPS enabled and cookie consent implemented, though there is room for improvement in security headers and explicit privacy and security policies. Overall, the site is trustworthy, business-focused, and safe for general audiences.

A

Abfallwirtschaftsbetrieb des Landkreises Rastatt

awb-landkreis-rastatt.de

52

The Abfallwirtschaftsbetrieb des Landkreises Rastatt is a regional government entity responsible for waste management services in the Landkreis Rastatt area of Germany. The organization focuses on progressive waste policies, fair waste fees, and high recycling rates, serving local residents and businesses. Their website provides comprehensive information on services such as waste container registration, collection schedules, and recycling education, supported by a mobile app and digital tools. The site is well-branded and consistent with government standards, targeting the local population effectively. Technically, the website is built on the cEasy CMS platform, utilizing modern JavaScript libraries like Swiper.js for interactive elements and FontAwesome for icons. The site is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Hosting appears to be German-based, aligning with the organization's regional focus. Privacy and cookie compliance are well implemented, including a consent mechanism and detailed privacy policy. From a security perspective, the site enforces HTTPS and employs cookie consent but lacks explicit security headers and a published security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the website's regional government identity, showing no suspicious patterns. Overall, the security posture is solid but could be improved with additional headers and transparency. The overall risk assessment is low, with no signs of malicious content or compliance issues. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to strengthen trust and compliance further.

H

Huan Qiu Guo Ji Shi Pin Tong Xun She You Xian Gong Si

amsp.link

49

The website amsp.link represents a media service platform operated by Huan Qiu Guo Ji Shi Pin Tong Xun She You Xian Gong Si, a Chinese organization. The platform focuses on providing global international video agency services including news exchange, special features, cooperation zones, and related multimedia services. The site targets media professionals and international audiences interested in multimedia content. The business is relatively new, founded in 2022, and operates primarily in Chinese with some English elements. The domain registration and website content are consistent, indicating legitimacy. Technically, the website uses modern JavaScript modules and likely the Vue.js framework, with CSS styling and Swiper.js for interactive elements. Hosting is provided by DNSPod, a Chinese registrar and hosting provider. The site shows moderate performance and basic mobile optimization. SEO and accessibility features are basic but present. However, there is room for improvement in technical implementation and user experience. From a security perspective, the website lacks visible security headers, published security policies, and incident response information. DNSSEC is not enabled, and no cookie consent mechanism is present, which impacts privacy compliance. The SSL configuration details are not fully available, but HTTPS is implied. The site does not expose sensitive data or show signs of vulnerabilities in the provided content. Overall security posture is moderate but could be enhanced with standard best practices. The overall risk assessment suggests a legitimate media service platform with moderate technical maturity and some gaps in security and privacy compliance. Strategic recommendations include enabling DNSSEC, implementing security headers, publishing security and incident response policies, and adding cookie consent mechanisms to improve compliance and trust.

T

TheGamecockClub.com

thegamecockclub.com

57

TheGamecockClub.com is a well-established non-profit organization supporting the University of South Carolina's student-athletes through memberships, donations, and ticketing services. The website serves alumni, fans, and donors with comprehensive information about membership benefits, premium seating, and sport-specific giving programs. The organization leverages partnerships with ticketing platforms and digital content providers to enhance member engagement. Technically, the website is built on WordPress and integrates a modern tech stack including jQuery, Swiper.js, and multiple analytics and marketing tools such as Google Analytics, Facebook Pixel, TikTok Pixel, and LinkedIn Insight Tag. Hosting is provided by Bluehost Inc., and the site uses HTTPS with domain transfer lock enabled, ensuring a secure browsing experience. The site is mobile-optimized and offers good navigation and content quality. From a security perspective, the site follows basic best practices like HTTPS and domain locking but lacks advanced security headers and a published security or incident response policy. The absence of a cookie consent mechanism despite extensive tracking indicates a gap in privacy compliance. WHOIS data confirms domain legitimacy with consistent registration details and appropriate domain age. Overall, the website presents a professional and trustworthy front for the Gamecock Club, with room for improvement in privacy compliance and security policy transparency to enhance user trust and regulatory adherence.

P

Plazma Plus s.r.o.

plazma.plus

47

Plazma Plus s.r.o. operates a network of modern plasma donation centers across the Czech Republic, with a focus on safe and convenient plasma donation services. Founded in 2020, the company has expanded to 10 centers by 2025, targeting plasma donors with incentives and health monitoring. The website is professionally designed, mobile-optimized, and provides comprehensive information about donation processes, rewards, and locations. Technically, the site is built on WordPress with modern JavaScript libraries and integrates multiple marketing and analytics tools, including Google Analytics, TikTok, and Facebook pixels. Security posture is good with HTTPS enabled and cookie consent implemented, though additional security headers could enhance protection. WHOIS data aligns well with the business profile, indicating legitimacy and consistent registration details. Overall, the site demonstrates a mature digital presence with strong business credibility and privacy compliance.

C

cleverQ

cleverq.de

59

cleverQ is a German-based company specializing in digital queue and appointment management solutions, primarily serving government agencies and enterprises. Their offerings include an online appointment booking system, digital call systems, business intelligence modules, and hardware solutions such as kiosks and sensors. The company operates on a SaaS business model, providing scalable and centralized management platforms that enhance customer experience and operational efficiency. cleverQ holds ISO 27001 certification and complies with GDPR, reflecting a strong commitment to security and privacy. The website is professionally designed, well-structured, and optimized for SEO and mobile devices, indicating a mature digital presence.

L

Landratsamt Heidenheim

karriere-hdh.de

64

Landratsamt Heidenheim operates a professional career portal targeting job seekers interested in public sector employment within the Landkreis Heidenheim region in Germany. The website provides comprehensive job listings, employee benefits, and contact information, positioning itself as a trusted regional government employer. The content is well-structured, primarily in German, and includes employee testimonials and official branding elements that enhance trust and credibility. Technically, the site leverages modern JavaScript libraries such as jQuery, Swiper.js, and bxSlider, alongside Bootstrap and FontAwesome for UI and iconography. The CMS identified is dvv-Mastertemplates, indicating a specialized government or institutional platform. Hosting appears to be localized within Germany, supported by domain nameservers.

T

TIMIFY

timify.com

70

TIMIFY is a well-established SaaS provider specializing in online appointment scheduling and resource management software tailored for small to large businesses across multiple industries including retail, finance, healthcare, and government sectors. The platform offers a comprehensive suite of features such as online calendars, booking management, resource and service management, and a marketplace with integrations to popular services like Google and Facebook. The company supports over 45,000 businesses worldwide, demonstrating a strong market presence and customer trust. Technically, the website employs modern JavaScript frameworks and integrates multiple analytics and marketing tools such as HubSpot, Google Tag Manager, Microsoft Clarity, and Facebook Pixel. The site is mobile-optimized, fast-loading, and well-structured with good SEO and accessibility practices. Security measures include HTTPS enforcement, reCAPTCHA, and ISO 27001:2022 certification, reflecting a mature security posture. While WHOIS data is unavailable, which is unusual, the website's professional presentation, certifications, and compliance with GDPR provide strong trust signals. No critical vulnerabilities or security issues were detected in the content or scripts. Privacy and cookie policies are comprehensive and include consent mechanisms. Overall, TIMIFY presents a secure, professional, and trustworthy online presence suitable for its business model. Strategic recommendations include publishing explicit security headers, incident response contacts, and vulnerability disclosure policies to further enhance trust and security transparency.

L

Landkreis Schwäbisch Hall

lrasha.de

68

Landkreis Schwäbisch Hall operates as a local government authority in Germany, providing a wide range of public services including administration, waste management, health, and economic development. The website serves residents, businesses, and visitors with comprehensive information and digital services. It is well-positioned as a trusted government entity with a clear focus on accessibility and user engagement. The technical infrastructure is based on TYPO3 CMS, hosted on German telecom servers, and integrates modern web technologies and accessibility features. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is robust, with detailed cookie and privacy policies and a named data protection officer. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with relevant regulations.

L

Landkreis Emmendingen

landkreis-emmendingen.de

55

The Landkreis Emmendingen website serves as the official digital presence of the regional government authority in Germany, providing residents and businesses with access to administrative services, news, and public resources. The site is built on TYPO3 CMS and integrates modern web technologies such as Swiper.js and LightGallery for enhanced user experience. It employs Google Analytics with IP anonymization and a robust cookie consent mechanism to comply with GDPR requirements. The website demonstrates a good level of technical maturity with mobile optimization and accessibility features. Security posture is solid with HTTPS enforced and privacy policies clearly presented, though some security headers and explicit incident response contacts could be improved. Overall, the site is trustworthy, professional, and well-suited for its government service role.

U

University of South Carolina Athletics

gamecocksonline.com

64

The University of South Carolina Athletics official website serves as a comprehensive digital platform delivering extensive coverage of the South Carolina Gamecocks sports teams. It provides schedules, scores, multimedia content, and fan engagement tools, positioning itself as the authoritative source for collegiate athletics related to the university. The site targets sports fans, students, alumni, and the broader university community, leveraging a content-driven business model supported by partnerships and ticketing services. Technically, the website is built on WordPress and integrates modern JavaScript libraries and APIs such as YouTube, Hotjar, and Iubenda for cookie management. Hosting is provided by Rackspace, and the site demonstrates good mobile optimization, accessibility, and SEO practices. The technical infrastructure supports a moderate performance level with a focus on user experience and content delivery. From a security perspective, the site enforces HTTPS, employs multiple security headers, and implements a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security policies and incident response contact information, which could be improved. No vulnerabilities or suspicious activities were detected, and the WHOIS data confirms a long-standing, legitimate domain registration consistent with the university's branding. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic enhancements in security transparency and direct contact information for incident response would further strengthen its security maturity and trustworthiness.

U

University of Oklahoma

soonersports.com

57

The University of Oklahoma's official athletics website serves as a comprehensive digital platform for collegiate sports fans, students, and alumni. It provides extensive coverage of sports news, schedules, rosters, ticketing, and multimedia content, positioning itself as the authoritative source for all things related to University of Oklahoma athletics. The site leverages modern web technologies including Vue.js and Nuxt.js frameworks, hosted on AWS infrastructure with Cloudfront CDN, ensuring fast and responsive user experiences across devices. Privacy and cookie policies are well established and GDPR compliant, reflecting a mature approach to user data protection. Security posture is strong with HTTPS enforced and domain registration locked, though there is room for improvement in publishing explicit security policies and vulnerability disclosures. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical sophistication appropriate for a large educational institution's athletics department.

U

University of Georgia Athletics

georgiadogs.com

64

The GeorgiaDogs.com website serves as the official athletics platform for the University of Georgia Bulldogs, providing comprehensive sports news, schedules, rosters, ticketing, and merchandise services. It targets sports fans, students, alumni, and media, positioning itself as the authoritative source for university athletics information. The site leverages modern web technologies including Vue.js and the Sidearm Sports CMS, hosted on AWS infrastructure with CDN support for performance optimization. The design is professional, mobile-optimized, and accessible, offering a high-quality user experience with clear navigation and rich content. Security posture is solid with HTTPS enforcement and domain registration protections, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Overall, the site is trustworthy, technically mature, and business credible, supporting the university's athletics brand effectively.