Security Directory

W

WE media

wemedia.group

9

WE media is a Russian-language media platform focused on advertising and brand promotion services. The platform leverages a strong community and live content to connect brands with audiences, aiming to convert attention into trust and sustainable growth. The website is built on the Tilda CMS platform, utilizing modern web technologies and integrated with Yandex Metrika for analytics. While the site demonstrates good design quality, mobile optimization, and user experience, it lacks critical privacy and cookie policies, and no explicit contact information is provided. Security posture is basic with no visible security headers or advanced configurations. The domain WHOIS data is privacy-protected, which is common for small media businesses but limits transparency. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security measures.

V

Vista Musical Instruments

vistamusic.com

10

Vista Musical Instruments is a global collective of music-related brands specializing in the manufacturing, retail, and distribution of musical instruments and accessories. The company manages several historic and well-known brands such as MONO, Teisco, Harmony, Heritage Guitars, Dawsons, Manny's, and Swee Lee. The website reflects a professional and consistent brand image, targeting musicians, retailers, and the broader music community worldwide. The parent company is Caldecott Music Group, which is referenced and linked on the site. Technically, the website is built using modern web technologies including React and Next.js, with optimized images and good mobile responsiveness. Hosting and domain registration are stable and consistent with the business profile. Google Tag Manager is used for analytics and tracking, indicating moderate user tracking levels. However, there is a lack of explicit privacy and cookie policies, which presents compliance gaps. From a security perspective, the site uses HTTPS with a good SSL configuration and domain status protections to prevent unauthorized changes. However, DNSSEC is not enabled and no security headers are detected, which are areas for improvement. No critical vulnerabilities or exposed sensitive data were found. The absence of privacy and cookie policies and consent mechanisms lowers the privacy compliance score. Overall, the website is professional, trustworthy, and technically sound but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include publishing privacy and cookie policies, enabling DNSSEC, adding security headers, and providing incident response contact information to improve trust and compliance.

M

MINT Zukunft schaffen!

mintzukunftschaffen.de

63

MINT Zukunft schaffen! is an educational initiative focused on promoting STEM (MINT in German) education in Germany. The website serves as a platform to honor STEM ambassadors and provide resources related to STEM education. It targets students, educators, and STEM enthusiasts, positioning itself as a niche educational platform with a small organizational size. Technically, the website is built on WordPress, hosted on WordPress.com infrastructure, and uses modern tools such as Google Tag Manager and Cookiebot for analytics and cookie consent management. The site is mobile-optimized and performs moderately well. Security-wise, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies. No vulnerabilities or exposed sensitive data were detected. Overall, the website is safe, professional, and trustworthy, but could improve privacy and security transparency by publishing privacy policies and incident response information.

I

Initiative Neue Qualität der Arbeit (INQA)

inqa.de

46

The Initiative Neue Qualität der Arbeit (INQA) is a German government-backed initiative focused on supporting small and medium-sized enterprises (KMU) in developing sustainable and future-oriented workplace cultures. The website serves as a comprehensive resource hub offering coaching, checks, networking, and publications to promote quality work environments. It is positioned as a trusted government entity under the Bundesministerium für Arbeit und Soziales (BMAS), leveraging official branding and partnerships. Technically, the website employs a government site builder CMS, integrates a consent management platform for GDPR compliance, and uses Etracker for analytics. The site is mobile-optimized, accessible, and SEO-friendly, though some security headers are missing. The SSL configuration is excellent, ensuring secure HTTPS connections. From a security perspective, the site demonstrates good practices with HTTPS and consent mechanisms but lacks explicit security policies, incident response contacts, and some security headers. WHOIS data is minimal but does not raise immediate concerns. Overall, the site is safe, professional, and trustworthy, with room for improvement in transparency and security hardening. The overall risk is low, but strategic recommendations include publishing privacy and security policies, adding security headers, and providing clear contact information for security incidents to enhance trust and compliance.

A

Arbeitgeberverband Gesamtmetall

gesamtmetall.de

51

Gesamtmetall is the leading employer association representing the metal and electrical industry in Germany, encompassing over 26,000 companies and nearly 3.9 million employees. The website serves as a comprehensive platform for industry news, policy updates, educational initiatives, and event information, targeting employers, policymakers, and industry stakeholders. Technically, the site is built on WordPress with modern plugins such as Gravity Forms and uses Matomo for privacy-conscious analytics. The site is well-structured, mobile-optimized, and accessible, reflecting a mature digital presence. Security-wise, the site enforces HTTPS and implements cookie consent but lacks visible security headers and explicit security or privacy policy documents, which are recommended for compliance and trust. Overall, the website is professional, trustworthy, and content-rich, with room for improvement in privacy documentation and security hardening.

H

Henkel

henkelna.com

10

Henkel North America operates as a major division of Henkel AG & Co. KGaA, a global leader in manufacturing consumer and industrial chemical products. The website reflects a mature enterprise with a strong brand legacy of nearly 150 years, offering products in hair care, laundry detergents, adhesives, and coatings. The company targets both consumer and industrial markets in North America, emphasizing sustainability and innovation. Technically, the website employs a modern tech stack with various JavaScript libraries and a CoreMedia CMS, delivering a responsive and accessible user experience. Security posture is strong with HTTPS and Content-Security-Policy headers, alongside cookie consent mechanisms ensuring GDPR compliance. However, the absence of WHOIS registration data introduces some uncertainty regarding domain legitimacy, though the website content and branding strongly support authenticity. Overall, the site is professional, secure, and compliant, suitable for enterprise-level operations.

N

Nemzeti Média- és Hírközlési Hatóság

onlineplatformok.hu

43

The website onlineplatformok.hu is the official digital services coordinator portal of the Hungarian National Media and Infocommunications Authority (NMHH). It serves as a comprehensive resource for regulatory information, research, and educational content related to online platforms and the Digital Services Act (DSA). The site targets a broad audience including the general public, researchers, policymakers, and digital platform users in Hungary. It provides authoritative content on digital rights, platform governance, and safe online practices. Technically, the website employs modern web standards with HTML5, CSS3, and JavaScript, including integration of Google Analytics with IP anonymization and Spotify embeds. The site is hosted by NMHH and demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with a strong SSL configuration and implements GDPR-compliant cookie consent mechanisms. However, explicit security policies and incident response information are not published, and security headers are not explicitly detected. No vulnerabilities or suspicious elements were found, indicating a solid security posture appropriate for a government informational site. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It effectively fulfills its role as a government portal providing transparency and education about online platforms. Strategic recommendations include publishing detailed security policies, enhancing security headers, and considering a vulnerability disclosure policy to further strengthen trust and security posture.

Szentiras.hu is a Hungarian non-profit website operated by Iron Illustration Kft., dedicated to providing online access to multiple Bible translations and daily scripture verses for the Hungarian-speaking Christian community. The site serves as a religious educational resource with a clear focus on scripture study and community engagement through features like a message board. The business model is informational and non-commercial, targeting a niche religious audience in Hungary. Technically, the website employs a modern tech stack including Bootstrap 5.2.3 and custom JavaScript, with a responsive design optimized for mobile devices. The site uses HTTPS with a valid SSL configuration and includes a cookie consent mechanism, reflecting a moderate level of digital maturity. However, no CMS or advanced analytics tools are detected, and some security headers are missing, indicating room for improvement in security hardening. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the website's claims, showing a recently registered domain without privacy protection, which supports legitimacy. Overall, Szentiras.hu presents a trustworthy, well-structured, and content-rich platform for its target audience. Strategic recommendations include enhancing security headers, publishing security policies, and considering vulnerability disclosure to improve trust and compliance further.

kozadat.hu is a Hungarian government-operated public data search portal managed by Nemzeti Infokommunikációs Szolgáltató Zrt. The site provides access to various public data sets, legal drafts, government documents, and archives, serving citizens, researchers, and public sector stakeholders. The platform is part of the official Közadat program and links to multiple authoritative government resources, reinforcing its position as a trusted government information source. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and Modernizr for feature detection. It integrates Google Analytics for user tracking but lacks visible cookie consent mechanisms. The site appears moderately optimized for performance and mobile use, with basic accessibility features. The CMS or platform is not explicitly identified, suggesting a custom or government-developed solution. From a security perspective, the site uses HTTPS and avoids exposing sensitive data in its HTML. However, no explicit security headers such as CSP or HSTS were detected in the provided content, indicating room for improvement. The absence of privacy and cookie policies and consent mechanisms also represents a compliance gap. No vulnerabilities or suspicious content were found, and the domain's WHOIS data confirms a long-standing, consistent registration aligned with the government entity. Overall, kozadat.hu is a credible and professional government portal with good content quality and business credibility. To enhance security posture and privacy compliance, it should implement security headers, publish clear privacy and cookie policies, and introduce user consent mechanisms for tracking technologies.

The website petits-trains.com appears to be related to a business or service involving small trains, likely in a French context given the language and domain. However, the site content is minimal and lacks detailed business descriptions, contact information, or trust indicators. The technical infrastructure is based on WordPress with the Divi theme, indicating a standard CMS setup but with basic optimization and limited advanced features. Security posture is weak due to the absence of visible HTTPS/SSL details, security headers, and privacy policies. The WHOIS data is unavailable or indicates the domain may not be registered, which raises significant legitimacy concerns. Overall, the site presents a low trust profile and requires substantial improvements in security, compliance, and business transparency to be considered reliable.

S

Senic

senic.com

67

Senic is a small technology-focused e-commerce company specializing in smart switches compatible with Philips Hue, Sonos, and HomeKit ecosystems. The company targets consumers and businesses interested in smart home automation, offering niche products that enhance smart home control. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations such as Weglot for multilingual support and various marketing and analytics tools. The technical infrastructure is robust, with fast performance, mobile optimization, and good accessibility. Security posture is solid with HTTPS enforced and standard security headers likely in place, though explicit security policies and incident response information are absent. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR considerations. However, the absence of WHOIS registration data reduces domain trustworthiness and warrants further verification. Overall, the website presents a professional and trustworthy front for its business, with room for improvement in transparency around security and domain registration.

The CISPA Helmholtz Center for Information Security is a prominent German national research institution specializing in cybersecurity, privacy, and trustworthy artificial intelligence. It operates as a Big Science institution within the Helmholtz Association and is recognized as a world-leading center in its field. The website showcases extensive research achievements, faculty expertise, and collaborations, particularly with the Technical University of Munich. The institution focuses on foundational and applied research, technology transfer, and knowledge dissemination to benefit society and industry.

H

Haufe-Lexware GmbH & Co. KG

advolux.de

68

Haufe-Lexware GmbH & Co. KG operates the Advolux website, offering specialized legal practice management software tailored for law firms in Germany. The company is a subsidiary of Haufe Group SE, a well-established entity headquartered in Freiburg im Breisgau. Advolux provides a comprehensive suite of digital tools including document management, deadline tracking, and integration with the German electronic lawyer mailbox (beA), supporting both cloud and on-premises deployments. The website demonstrates a strong market position with professional branding, extensive feature descriptions, and customer testimonials, targeting legal professionals seeking efficient digital solutions.

T

Training-Fit : Fitness- und Muskelaufbaugeräte

training-fit.ch

66

Training-Fit.ch is an e-commerce retailer specializing in fitness, muscle building, crossfit, yoga, and martial arts equipment and apparel. The website offers a broad catalog of products from well-known brands, targeting fitness enthusiasts primarily in Switzerland and neighboring regions. The business model focuses on online sales with fast shipping options and secure payment methods. The site demonstrates consistent branding and a professional design, supporting a medium-sized retail operation. Technically, the website is built on the Magento OpenMage platform, utilizing modern web technologies including Google Analytics, Google Ads, and reCAPTCHA for security and marketing. The site is mobile-optimized and features good SEO practices, although accessibility could be improved. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. However, explicit security headers are not clearly present, and there is no published security policy or incident response contact. Privacy compliance is partially addressed with a cookie consent mechanism, but no clear privacy policy or terms of service pages were found. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a moderate risk profile with good business credibility but some gaps in privacy and security transparency. Strategic improvements in policy publication, security headers, and contact information would enhance trust and compliance.

D

Direct-Volley : Nummer 1 Website für Online-Volleyball

direct-volley.ch

67

Direct-Volley.ch is a German-language e-commerce website specializing in volleyball equipment, apparel, and accessories. It positions itself as the leading online volleyball shop, targeting volleyball players and enthusiasts primarily in German-speaking regions such as Switzerland and Germany. The site offers a broad catalog including shoes, clothing, balls, protective gear, and club equipment, supported by a structured navigation and search functionality. The business model is retail-focused, leveraging an online platform to reach its audience efficiently. Technically, the website is built on the Magento OpenMage platform, integrating modern web technologies such as Google Analytics, Google Ads, and reCAPTCHA for security and marketing purposes. The site is mobile-optimized and demonstrates good SEO practices, although some accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS and uses bot protection mechanisms. However, it lacks explicit security headers like Content-Security-Policy and X-Frame-Options, and no visible privacy policy or terms of service pages were found in the provided content. Contact information for security incidents or data protection officers is also absent, indicating areas for improvement in compliance and transparency. Overall, the website is professional and trustworthy for its retail purpose but would benefit from enhanced privacy disclosures, security header implementation, and clearer contact channels to improve its security posture and compliance with GDPR requirements.

D

Direct-Running: Laufschuhe, Lauftextilien, Laufausrüstung

direct-running.ch

67

Direct-Running.ch is a specialized e-commerce retailer focused on running shoes, sports apparel, and related equipment primarily targeting German-speaking customers in Switzerland. The website offers a broad catalog of well-known brands such as Adidas, Saucony, Puma, and Mizuno, emphasizing fast shipping and secure payment options. The business model is retail-oriented with a clear focus on the running and fitness market segment. Technically, the site is built on a Magento-based platform (OpenMage variant) and integrates modern marketing and analytics tools including Google Analytics, Google Ads, and Actito marketing automation. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Security-wise, the website enforces HTTPS and uses reCAPTCHA to mitigate bot activity. However, it lacks explicit security headers and does not publicly disclose a security policy or incident response contacts. Privacy compliance is partially addressed through a consent mechanism, but no dedicated privacy or terms of service pages were detected in the provided content. WHOIS data confirms the domain's legitimacy and consistency with the business claims, indicating a trustworthy online presence. Overall, the site is professional and secure but would benefit from enhanced privacy disclosures and security transparency.

H

Home | Hallo Bibel

hallobibel.ch

7

The website www.hallobibel.ch appears to be a small-scale informational or religious site hosted on the Wix platform. The content is minimal with no explicit business descriptions, contact information, or privacy policies visible in the provided HTML content. The technical infrastructure relies on Wix's Thunderbolt platform with standard polyfills and scripts, indicating a modern but basic technical setup. Security posture is moderate with no explicit security headers detected, but HTTPS is assumed due to Wix hosting. Privacy compliance is low due to absence of privacy and cookie policies. Overall, the site is functional but lacks comprehensive business and security information, limiting trust and credibility.

D

dm drogerie markt ČR

dm-drogeriemarkt.cz

67

dm drogerie markt ČR operates a comprehensive online shop offering a wide range of products including cosmetics, health care, nutrition, household items, and pet supplies. The website targets general consumers in the Czech Republic and provides multiple delivery options including home delivery and store pickup. The business is positioned as a leading retail drugstore with a strong brand presence and customer loyalty programs. Technically, the website uses modern JavaScript frameworks and a proprietary design system, ensuring good mobile optimization and accessibility. Security posture is strong with HTTPS enforced and OAuth2 login integration, though some security headers and explicit security policies are not publicly documented. Overall, the site is professional, trustworthy, and compliant with privacy regulations, though WHOIS data is unavailable likely due to registry policies. Strategic recommendations include enhancing security header implementation and publishing incident response information.

D

dm drogerie markt s.r.o.

activebeauty.cz

57

The website www.activebeauty.cz is an online magazine operated by dm drogerie markt s.r.o., focusing on beauty, health, lifestyle, and family content targeted at a general audience in the Czech Republic. It serves as a brand engagement platform complementing dm's retail operations, offering articles, tutorials, recipes, and travel tips. The site demonstrates consistent branding aligned with dm drogerie markt and maintains a professional content presentation. Technically, the site uses modern JavaScript libraries including jQuery and Usercentrics for consent management, with a custom CMS backend inferred. The site is mobile-optimized with good SEO practices and moderate performance. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is unavailable, which limits domain trust assessment; however, the website's content quality, branding, and social media presence strongly indicate legitimacy. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Contact information is available via a contact form, but no direct emails or phone numbers are publicly listed. Overall, the site is a trustworthy, professionally maintained content platform supporting dm drogerie markt's brand presence in the Czech market, with recommendations to enhance security headers and provide clearer terms of service for improved compliance and trust.

TRAVELBOOK is Germany's largest online travel magazine, offering unique travel destinations, news, tips, and entertaining content for travelers primarily in the German-speaking market. The website is professionally designed with a strong brand presence, including partnerships with major media like Bild. The technical infrastructure leverages WordPress CMS, modern JavaScript libraries, and integrates advanced advertising and consent management platforms, reflecting a mature digital presence. Security posture is solid with HTTPS, GDPR compliance, and no visible vulnerabilities, though some security headers could be explicitly confirmed. Overall, the site demonstrates a high level of professionalism, content quality, and compliance, making it a trustworthy source for travel information.

TECHBOOK is a well-established German digital lifestyle and technology magazine offering a wide range of content including guides, tips, and product reviews focused on mobile lifestyle, home entertainment, streaming, and smart finance. The website targets tech-savvy and lifestyle-interested audiences primarily in Germany. The business model is based on online media publishing with revenue generated through advertising and partnerships. TECHBOOK maintains a consistent brand presence with active social media channels and structured data for SEO enhancement. Technically, the website is built on WordPress CMS and employs modern web technologies such as JavaScript, JSON-LD for structured data, and CSS. Hosting and content delivery are managed via Akamai CDN, ensuring good performance and availability. The site is mobile-optimized and implements basic accessibility features. SEO practices are well implemented with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS with strong SSL configuration and includes security headers like CSP, HSTS, and X-Frame-Options. GDPR compliance is evident through comprehensive privacy and cookie policies and a consent management platform. However, explicit security policies and incident response contacts are not published, which could be improved to enhance trust and readiness. Overall, TECHBOOK presents a low-risk profile with a professional online presence, good privacy compliance, and a solid technical foundation. Strategic recommendations include publishing a dedicated security policy, adding vulnerability disclosure information, and enhancing accessibility and incident response transparency to further strengthen security posture and user trust.

PETBOOK is a German online magazine dedicated to pet owners and animal lovers, providing daily news, tips, and guidance on healthy pet care and maintenance. The site targets both beginners and professionals in pet ownership, positioning itself as a niche media outlet within the pet care sector. The business model primarily revolves around content publishing supported by advertising revenue. Technically, the website is built on WordPress and leverages modern technologies including JavaScript frameworks, consent management platforms, and advertising networks such as AppNexus. Hosting and content delivery are managed via Akamai, ensuring reliable performance and scalability. The site demonstrates good SEO practices and mobile optimization, contributing to a positive user experience. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit privacy and terms of service documents are not found in the provided content. Overall, PETBOOK presents as a professional and trustworthy media site with moderate to good technical maturity and compliance, suitable for general audiences without any adult or unsafe content.

H

Henkel Polska

kongresroznorodnosci.pl

54

The website kongresroznorodnosci.pl represents the Kongres Różnorodności, an annual diversity and inclusion conference organized by Henkel Polska and BETTER. It serves as a key CSR event in Poland, promoting inclusive organizational culture and diversity management. The site targets CSR professionals, business leaders, and practitioners interested in diversity topics. The content is professionally presented in Polish, with consistent branding and media patronage, reflecting a reputable and established event. Technically, the site uses a modern JavaScript stack including libraries like GSAP, Highcharts, SwiperJS, and integrates OneTrust for cookie consent management. The CMS appears to be a proprietary Henkel platform. The site is mobile-optimized with moderate performance and basic accessibility features. SEO is basic but sufficient for the content presented. Security posture is strong with HTTPS enforced and a Content-Security-Policy header present. Cookie consent mechanisms comply with GDPR requirements, though explicit privacy and terms of service pages were not found in the provided content. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent from the analysis. Overall, the site is a credible and professional platform for the Kongres Różnorodności event, with room for improvement in privacy disclosures and contact transparency. The lack of public WHOIS data is typical for .pl domains and does not detract from the site's legitimacy given the strong brand association with Henkel Polska.

H

Henkel

phenion-us.com

10

Phenion, a brand under the multinational Henkel, specializes in advanced 3D tissue engineered human skin models used for in vitro research and risk assessment. The website presents a professional and comprehensive overview of their products and services, targeting scientific researchers and companies seeking alternatives to animal testing. The technical infrastructure is modern, leveraging multiple JavaScript libraries and a proprietary CMS, with good mobile optimization and accessibility. Security posture is strong with HTTPS and Content-Security-Policy headers, alongside a robust cookie consent mechanism. However, WHOIS data is unavailable or privacy protected, which slightly impacts domain trust analysis but is mitigated by the strong brand presence and professional website. Overall, the site is well-positioned in the healthcare and biotechnology sector with a clear business model and market presence.

H

Henkel

henkel-life-iberica.pt

10

Henkel Portugal is a leading enterprise in the manufacturing sector, specializing in industrial and consumer products including hair care, laundry detergents, adhesives, sealants, and functional coatings. The website reflects a mature digital presence with a professional design, multi-language support, and clear navigation aimed at both consumers and business clients. The company maintains a strong market position with a focus on sustainability and corporate responsibility. Technically, the site employs a modern technology stack with various JavaScript libraries and analytics tools, hosted likely on a CoreMedia CMS platform. Security posture is solid with HTTPS and Content Security Policy in place, though explicit security and incident response policies are not publicly disclosed. Privacy compliance is partially addressed with a cookie consent mechanism, but a dedicated privacy policy page was not found in the provided content. Overall, the domain registration aligns well with the corporate identity, indicating high legitimacy and trustworthiness.

H

Henkel

henkel.nl

10

Henkel Nederland operates as a regional branch of the global Henkel AG & Co. KGaA, a leading enterprise in manufacturing and consumer goods. The company holds leading positions in industrial adhesives, consumer hair care, detergents, and functional coatings. The website reflects a mature business with a clear focus on sustainability and innovation, targeting both business clients and consumers in the Netherlands. The digital infrastructure is built on a modern technology stack including JavaScript libraries and CoreMedia CMS, with good mobile optimization and SEO practices. Security posture is strong with HTTPS and Content-Security-Policy headers, complemented by a comprehensive cookie consent mechanism via OneTrust. However, explicit privacy policies and incident response information are not directly visible, indicating room for improvement in transparency. Overall, the domain registration and website content align well, supporting the legitimacy and trustworthiness of the business presence online.

H

Henkel AG & Co. KGaA

henkel-renntag.de

41

Henkel AG & Co. KGaA operates the website www.henkel-renntag.de to promote and provide information about its sponsorship of horse racing events, specifically the Henkel-Stutenpreis and the Henkel-Preis der Diana at the Düsseldorf-Grafenberg racecourse. The site targets horse racing enthusiasts and the general public interested in these events. The business model focuses on brand visibility through sports sponsorship, positioning Henkel as a key player in this niche market segment. The website is well-branded, professionally designed, and provides relevant content about the events and related partners.

H

Henkel

henkel-life-iberica.es

58

Henkel is a leading multinational company operating in both industrial and consumer goods sectors, with a strong presence in Spain through www.henkel.es. The company offers a diverse portfolio including hair care products, laundry detergents, fabric softeners, adhesives, sealants, and functional coatings. The website reflects a mature digital presence with consistent branding and a clear navigation structure targeting both general consumers and business clients. Technically, the site employs modern JavaScript libraries and frameworks, uses HTTPS with a strong Content-Security-Policy, and integrates comprehensive cookie consent via OneTrust, indicating good digital maturity and privacy compliance. Security posture is robust with no visible vulnerabilities or exposed sensitive data, although explicit security policies and incident response information are not publicly detailed. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting Henkel's reputation as a credible enterprise.

H

Henkel

henkel.be

61

Henkel is a leading global manufacturer specializing in industrial and consumer products including hair care, laundry detergents, fabric softeners, adhesives, sealants, and functional coatings. The Belgian localized website reflects a mature digital presence with comprehensive content tailored to both consumers and industrial clients. The technical infrastructure leverages modern JavaScript libraries and a custom CMS, ensuring good performance and mobile optimization. Security posture is strong with HTTPS enforcement and Content-Security-Policy headers, complemented by a robust cookie consent mechanism. However, explicit security policies and incident response details are not publicly disclosed, representing an area for improvement. Overall, the website demonstrates high professionalism and trustworthiness, supporting Henkel's enterprise stature.

D

DABCOM SA

dabcom.ch

58

DABCOM SA is a Swiss company operating a DAB+ digital radio network serving the French-speaking region of Switzerland. The company holds a concession to operate this network, targeting radio broadcasters and listeners transitioning from FM to digital radio. The website presents a professional and consistent brand image with clear contact details and social media presence. Technically, the site uses standard web technologies including HTML5, CSS, JavaScript, and jQuery, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage implied, but lacks advanced security headers and updated libraries. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the website is trustworthy and functional but could improve compliance and security practices.

H

Henkel

phenion.com

67

Phenion is a specialized brand under Henkel, providing advanced 3D tissue engineered human skin models and related products for in vitro research and risk assessment. The website demonstrates a professional and scientific focus, targeting researchers and industry professionals in healthcare and tissue engineering sectors. The digital infrastructure leverages modern JavaScript libraries and cookie consent frameworks, ensuring GDPR compliance and a good user experience across devices. Security posture is strong with HTTPS and Content-Security-Policy headers, though explicit security policies and incident response information are not published. The absence of WHOIS data for the domain is unusual and should be verified for legitimacy. Overall, the site is credible, well-structured, and compliant with privacy standards, supporting Henkel's brand reputation.

H

Henkel AG & Co. KGaA

henkel-ventures.com

61

Henkel Ventures is the corporate venture capital arm of Henkel AG & Co. KGaA, focusing on early-stage investments up to Series B in startups aligned with Henkel's strategic business units such as Adhesive Technologies, Beauty Care, and Laundry & Home Care. The website presents a professional and comprehensive overview of their investment focus, partnership approach, and strategic objectives, targeting startups and innovation partners globally. The technical infrastructure is modern, leveraging a custom CMS with advanced JavaScript libraries and analytics tools, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS and Content-Security-Policy headers, complemented by GDPR-compliant privacy and cookie policies with user consent mechanisms. However, the absence of WHOIS registration data for the domain is a notable anomaly that requires further verification to confirm domain legitimacy. Overall, the site reflects a mature corporate digital presence with good security and privacy practices.

H

Henkel

henkel.de

64

Henkel is a leading global enterprise operating in both industrial and consumer goods sectors, specializing in hair care, colorants, detergents, cleaning agents, fabric softeners, adhesives, sealants, and functional coatings. The company maintains a strong market position with a comprehensive portfolio targeting both B2B and B2C customers. The website reflects a mature digital infrastructure with modern JavaScript libraries, a corporate CMS, and extensive multilingual support. Security posture is robust with HTTPS enforcement, Content Security Policy, and cookie consent mechanisms aligned with GDPR. While no critical vulnerabilities or exposed sensitive data were detected, there is room for improvement in security headers and incident response visibility. Overall, the website demonstrates high professionalism, trustworthiness, and compliance, supporting Henkel's reputation as a global manufacturing leader.

H

Henkel

henkel-gcc.com

62

Henkel GCC operates as a regional branch of the global Henkel corporation, specializing in both industrial and consumer products including adhesives, hair care, and laundry detergents. The website reflects a mature enterprise with a strong market position in the GCC region, targeting both business clients and consumers. The digital infrastructure is built on modern JavaScript libraries and a CoreMedia CMS platform, delivering a responsive and accessible user experience. Security posture is solid with HTTPS and Content-Security-Policy headers, complemented by GDPR-compliant privacy and cookie policies. However, the absence of WHOIS registration data raises questions about domain registration transparency, though the website content and branding strongly support legitimacy. Overall, the site demonstrates professionalism and compliance with regional and international standards.

H

Henkel

henkel-northamerica.com

67

Henkel North America is a well-established enterprise with a legacy of nearly 150 years, specializing in manufacturing and consumer goods including hair care products, laundry detergents, fabric softeners, adhesives, sealants, and functional coatings. The company holds leading market positions in both industrial and consumer sectors, emphasizing innovation and sustainability. The website reflects a mature digital presence with professional design, clear navigation, and mobile optimization. Technically, the site employs a modern JavaScript stack with various libraries and frameworks to enhance user experience and analytics capabilities. Security posture is strong with HTTPS enforcement and Content-Security-Policy headers, complemented by a comprehensive cookie consent mechanism. However, the absence of WHOIS data and explicit privacy and security policy pages suggests areas for improvement in transparency and compliance. Overall, the site is trustworthy and professional but would benefit from enhanced security disclosures and clearer contact information for incident response.

M

MeinBezirk.at

meinbezirk.at

68

MeinBezirk.at is a prominent Austrian local news platform providing regional and community news, reports, opinions, and multimedia content. It targets a broad general audience across Austria with a focus on local relevance. The website operates on a modern technical infrastructure utilizing JavaScript frameworks, Google Tag Manager, and multiple advertising networks to monetize content. While the site employs HTTPS and standard analytics tools, it lacks comprehensive security headers and a robust cookie consent mechanism, indicating room for improvement in privacy compliance and security posture. The absence of explicit contact and incident response information suggests limited transparency in security governance. Overall, the site is professionally designed, content-rich, and trustworthy, serving as a key media outlet in Austria's regional news market.

W

Wir für Kinderrechte

kinder-rechte.at

53

Wir für Kinderrechte is a small Austrian non-profit organization dedicated to advocating for children's rights. Their website provides educational resources and information targeted at parents, educators, and policymakers. The organization maintains a consistent brand presence and complies with GDPR regulations, including a comprehensive privacy policy and cookie consent mechanism. Technically, the website is built on WordPress using the Divi theme, with Matomo analytics for privacy-respecting user tracking. Security posture is good with HTTPS enforced and standard security headers present, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and safe for general audiences.

P

power4me

power4me.at

46

Power4me.at is a small Austrian educational organization focused on prevention and self-defense programs primarily targeting children in kindergarten and primary school. The website presents a professional and consistent brand image with clear descriptions of its services, emphasizing empowerment and safety education. The technical infrastructure is based on standard web technologies including HTML5, CSS3, JavaScript, jQuery, and Bootstrap, providing a responsive and user-friendly experience. Security posture is moderate with no evident vulnerabilities or exposed sensitive data, but lacks advanced security headers and incident response information. Privacy compliance is basic but present, with a privacy policy page accessible. Overall, the website is trustworthy and well-positioned within its niche educational market.

O

Opferberatung Zürich

onlineopferberatung.ch

47

The website www.onlineopferberatung.ch serves as an online platform for victim support and counseling services primarily in the canton of Zürich, Switzerland, with expanding cooperation across multiple Swiss cantons. It offers confidential, free, and anonymous chat and online counseling for victims of various forms of violence including domestic, sexual, and traffic-related incidents. The service is operated by Opferberatung Zürich, a non-profit organization under Stiftung Opferhilfe Zürich, and is supported by several cantonal and federal entities. The platform is designed to be accessible to adults, youth, children, and their relatives, emphasizing confidentiality and ease of access. Technically, the website employs a modern but straightforward technology stack including HTML5, CSS3, JavaScript with jQuery and Bootstrap 4 for responsive design. It includes a cookie consent mechanism compliant with EU cookie directives. The site is well-structured with clear navigation and good mobile optimization, although accessibility features are basic. No advanced CMS or analytics tools are detected, indicating a focus on privacy and minimal tracking. From a security perspective, the site uses HTTPS (assumed but not explicitly verified here) and implements cookie consent. However, no explicit security headers or incident response contacts are provided. The site does not expose sensitive data or vulnerable libraries. The WHOIS data is privacy protected, which is justified given the sensitive nature of the service. Overall, the security posture is moderate with room for improvement in headers and incident response transparency. Overall, the website is trustworthy, professional, and well-aligned with its mission to provide victim support. It scores well on content quality, business credibility, and privacy compliance, with minor technical and security enhancements recommended to further strengthen its posture.

B

Bundesamt für Familie und zivilgesellschaftliche Aufgaben

hilfetelefon.de

58

The website www.hilfetelefon.de is an official German government-supported platform operated by the Bundesamt für Familie und zivilgesellschaftliche Aufgaben. It provides a nationwide, free, and anonymous counseling service for women affected by violence, accessible 24/7 via phone (116 016) and online channels. The service targets women of all nationalities, including those with disabilities, as well as their relatives, friends, and professionals. The site is professionally designed with strong accessibility features including sign language and easy language options, supporting a broad and inclusive audience. Technically, the site is built on TYPO3 CMS, uses Matomo for privacy-conscious analytics, and is hosted with domainfactory for analytics services. The website employs HTTPS and cookie consent mechanisms aligned with GDPR requirements, ensuring user privacy and data protection. However, explicit security policies and incident response contacts are not found, and security headers are not evident, representing areas for improvement. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy standards.

Hutchison Drei Austria GmbH operates the website drei.at, a leading Austrian telecommunications provider offering mobile telephony, internet, TV streaming, and green energy services. The company targets private customers in Austria with a broad portfolio of products including 5G mobile plans, device financing, and energy supply. The website is professionally designed, mobile-optimized, and provides comprehensive information about services and offers, reflecting a mature digital presence. Technically, the site is built on modern frameworks such as Next.js and uses Storyblok CMS, ensuring a responsive and performant user experience. Security best practices are observed, including HTTPS enforcement and security headers, though explicit security policy and incident response information are not publicly detailed. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. The security posture is robust with no visible vulnerabilities or exposed sensitive data. The WHOIS data confirms the legitimacy of the domain and company, matching the business claims and geographic focus. Overall, the website demonstrates a high level of professionalism, trustworthiness, and technical maturity, suitable for a large telecommunications enterprise. Strategic recommendations include publishing a dedicated security policy and incident response contacts, enhancing transparency and trust, and considering a vulnerability disclosure program to further strengthen security culture.

D

Direct-Running: Skor, textilier, löputrustning

direct-running.se

56

Direct-Running.se is a Swedish e-commerce retailer specializing in running shoes, sportswear, and related equipment. The website offers a broad selection of well-known brands such as Adidas, Nike, and Saucony, targeting running enthusiasts primarily in Sweden. The business appears to be relatively new, with domain registration dating to 2023, and positions itself as a niche player with promises of fast delivery and secure payment options. Technically, the site is built on Magento, uses modern web fonts, and integrates Google Analytics and Google Ads for marketing and analytics purposes. The presence of a consent management platform indicates awareness of GDPR requirements, although explicit privacy and cookie policies were not found in the provided content. Security posture is generally good with HTTPS enabled and no visible sensitive data exposure, but the absence of security headers and vulnerability disclosure mechanisms suggests room for improvement. Overall, the website is professional and trustworthy, but enhancing transparency around privacy, security policies, and contact information would strengthen its compliance and user trust.

J

JYSK

jysk.dk

60

JYSK is a well-established Danish retail company specializing in furniture and home goods, operating both online and through physical stores. The website demonstrates a strong market position with a comprehensive product offering and a clear focus on consumer and B2B customers. The site is professionally designed, mobile-optimized, and provides a seamless user experience with clear navigation and search capabilities. The business is supported by a mature digital infrastructure leveraging Drupal CMS, advanced marketing tools like Dynamic Yield, and robust analytics via Google Tag Manager and New Relic.

Henkel AG & Co. KGaA is a global leader in manufacturing, specializing in Adhesive Technologies and Consumer Brands. The company operates worldwide with a strong emphasis on innovation, sustainability, and corporate governance. Their website reflects a mature digital presence with comprehensive content targeting industrial customers, consumers, partners, and investors. The business model combines B2B and B2C approaches, leveraging a broad portfolio of products and technologies. Henkel maintains a strong market position supported by ISO certifications and a consistent brand image. Technically, the website employs a modern technology stack including JavaScript libraries like GSAP, Highcharts, and SwiperJS, and is built on the CoreMedia CMS platform. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security measures include HTTPS enforcement, a robust Content Security Policy, and cookie consent mechanisms, indicating a strong security posture. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear privacy and cookie policies, GDPR compliance, and a visible data protection officer contact. The site uses multiple analytics and marketing tools, balancing user tracking with privacy considerations. Overall, the website demonstrates high professionalism, trustworthiness, and a secure environment suitable for a large multinational enterprise. Strategically, Henkel should continue enhancing its security posture by minimizing unsafe inline scripts, implementing a formal vulnerability disclosure program, and improving incident response visibility to maintain trust and compliance in an evolving regulatory landscape.

Mundo de Pesquisadores is an international educational initiative by Henkel Ltda. focused on promoting science education for primary school children through experiments, teaching materials, and training courses. The program leverages Henkel's expertise in adhesives, cleaning, personal care, and sustainability to provide engaging scientific learning experiences. The website is professionally designed, mobile-optimized, and integrates modern JavaScript libraries and CMS technology, reflecting a mature digital infrastructure. Privacy and cookie policies are well implemented with consent mechanisms, and the site maintains a good security posture with HTTPS and Content-Security-Policy headers. However, explicit security policies and incident response contacts are not publicly available. Overall, the website is trustworthy, safe for general audiences, and effectively supports Henkel's educational mission.

H

Henkel

henkel-swiatmlodychbadaczy.pl

54

The website www.henkel-swiatmlodychbadaczy.pl represents the Polish branch of Henkel's international educational program 'Świat Młodych Badaczy' (World of Young Researchers). The program focuses on engaging primary school children with science through interactive workshops, educational materials, and multimedia content. The site is well-branded with Henkel's corporate identity and offers resources for children, parents, and teachers. Technically, the site uses modern web technologies and includes comprehensive privacy and cookie consent mechanisms, reflecting good GDPR compliance. Security posture is strong with HTTPS and Content Security Policy in place, though additional headers could enhance protection. The absence of WHOIS data limits domain trust verification, but the strong corporate branding and content quality support legitimacy. Overall, the site is a professional, secure, and user-friendly educational platform aligned with Henkel's corporate social responsibility initiatives.

H

Henkel

henkel-kesifdunyasi.com

61

Henkel's Keşif Dünyası website is a well-structured educational platform aimed at introducing children and teachers in Turkey to scientific concepts through experiments and multimedia content. The initiative aligns with Henkel's corporate social responsibility and brand engagement strategies, focusing on areas relevant to their business such as adhesives, personal care, and sustainability. Technically, the site employs modern web technologies and complies with privacy regulations, including GDPR, with a robust cookie consent mechanism. Security posture is good with HTTPS and Content-Security-Policy headers, though additional security headers and published policies could enhance trust. The absence of WHOIS data is a notable anomaly but does not detract significantly from the site's legitimacy given the strong corporate branding and content quality. Overall, the site presents a professional, trustworthy, and user-friendly experience suitable for its target audience.

H

Henkel

henkel-ricercamondo.it

57

Ricercamondo is an educational initiative by Henkel AG & Co. KGaA aimed at promoting STEM education among primary school children in Italy. The website provides scientific experiments, workshops, and educational content designed to engage young learners and educators. The initiative is well-branded and consistent with Henkel's corporate social responsibility efforts. Technically, the website uses a modern tech stack including JavaScript libraries such as GSAP, Highcharts, and SwiperJS, and is built on the CoreMedia CMS platform. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is strong with HTTPS enforced and a Content-Security-Policy header present, alongside a cookie consent mechanism compliant with GDPR. No critical vulnerabilities or suspicious activities were detected. Contact information is available via email and contact forms, although no phone numbers or detailed physical addresses were found. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations.

H

Henkel

henkel-forscherwelt.com

62

Henkel Researchers’ World is a well-established educational initiative by Henkel AG & Co. KGaA aimed at introducing children and educators to scientific methods and experiments in areas aligned with Henkel's business sectors such as adhesives, personal care, and sustainability. The website is professionally designed with rich content, including videos and interactive experiments, targeting a young audience and educators. The platform leverages modern web technologies and complies with GDPR through comprehensive privacy and cookie policies. However, the absence of WHOIS data for the domain raises questions about domain registration transparency, though the website content and branding strongly support its legitimacy. Security posture is strong with HTTPS and Content Security Policy in place, but additional security headers and explicit security policies could enhance trust. Overall, the site presents a credible, secure, and user-friendly educational resource with room for improvement in transparency and security documentation.