Security Directory

W

Wanna Vapor

wannavapor.de

48

Wanna Vapor is a German-based e-commerce retailer specializing in vaping products including e-cigarettes, liquids, and accessories. The website targets mature consumers interested in vaping and related merchandise. The business operates a niche online retail model with a clear product focus and structured navigation. Technically, the site uses a modern tech stack including jQuery, Bootstrap, and integrates popular payment services such as PayPal and Mollie, hosted behind Cloudflare DNS for performance and security benefits. The site is mobile optimized and provides a generally good user experience, though some SEO and accessibility features could be improved. Security posture is adequate with HTTPS and payment SDKs in use, but lacks visible security headers and formal privacy or cookie policies, which are critical for GDPR compliance. No contact or incident response information is publicly available, which may impact trust and compliance. Overall, the site is functional and professional but would benefit from enhanced privacy disclosures and security best practices.

D

domainname.de

erette.de

50

The website represents a professional domain brokerage service specializing in the sale of premium domains such as erette.de. It offers a secure, escrow-based transaction process with multiple payment options and fast domain transfer guarantees. The platform targets businesses and individuals seeking valuable domain names, leveraging over 15 years of market experience. Technically, the site employs modern frontend technologies including Bootstrap and Google reCAPTCHA to ensure usability and security. The multi-step negotiation form collects necessary buyer information securely, enhancing user trust. Security posture is strong with HTTPS, security headers, and spam protection, though the absence of a cookie consent banner and explicit security policy pages are noted compliance gaps. Overall, the site is trustworthy, well-designed, and functional, supporting a medium-sized technology business in Germany.

D

DampfAlarm - alles für guten Dampf

dampfalarm.de

46

DampfAlarm.de is a German e-commerce website specializing in vaping products including devices, e-liquids, and accessories. The site targets vaping enthusiasts and customers in Germany, operating as a niche online retailer. The website is built on a modern tech stack including jQuery, Bootstrap, and integrates third-party search services like Doofinder. Hosting is provided by Timme Hosting, a reputable German hosting provider. The site demonstrates good mobile optimization and accessibility features, including a dedicated accessibility tool, enhancing user experience for diverse audiences. Security posture is adequate with HTTPS enabled and no visible sensitive data exposure, though security headers are missing and privacy compliance documentation is absent. The WHOIS data is consistent and transparent, indicating a legitimate domain registration aligned with the business. Overall, the site is professional and functional but would benefit from improved privacy and security policy disclosures and enhanced SEO metadata. Strategic recommendations include adding comprehensive privacy and cookie policies, security headers, and clear contact information to improve trust and compliance.

D

Damfastore

damfastore.de

37

Damfastore is a German-based e-commerce retailer specializing in e-cigarettes, liquids, aromas, and related accessories. The website targets both private customers and business clients, offering a broad product range with a focus on quality and fast delivery. The company positions itself as a specialist retailer with physical stores and an online presence, supported by ISO 9001 certification indicating adherence to quality management standards. Technically, the website employs modern web technologies including JavaScript, CSS, and trusted third-party widgets such as Trusted Shops and Doofinder for enhanced user experience and trust. The site is mobile-optimized and uses HTTPS to secure communications. However, there is a lack of publicly accessible privacy policy, terms of service, and explicit contact information, which impacts privacy compliance and user trust. Security posture is moderate with good SSL configuration but missing security headers and incident response contacts. Overall, the site is functional and professional but could improve transparency and compliance documentation.

L

Landratsamt Neustadt a.d.Aisch-Bad Windsheim

kreis-nea.de

49

The website www.kreis-nea.de serves as the official digital portal for the Landkreis Neustadt a.d.Aisch-Bad Windsheim government authority in Germany. It provides comprehensive information and services related to local administration, including vehicle registration, family services, waste management, and digital appointment booking. The site targets residents and stakeholders within the county, offering a user-friendly and well-structured platform to access governmental resources and news. The business model is that of a public sector entity focused on service delivery and information dissemination. Technically, the website is built on TYPO3 CMS with Bootstrap framework, enhanced by privacy-conscious tools such as Matomo analytics and a GDPR-compliant consent manager. Hosting is managed via INWX, a reputable German provider. The site demonstrates good performance, mobile responsiveness, and accessibility features, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms, and avoids exposing sensitive data. However, explicit security policies and incident response contacts are not publicly available, representing an area for improvement. No vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic recommendations include publishing a dedicated security policy, providing incident response contacts, and implementing a vulnerability disclosure mechanism to enhance transparency and security posture.

P

PDI Technologies, Inc.

pdisoftware.com

67

PDI Technologies, Inc. is an established enterprise-level company specializing in software solutions for fuel wholesale and convenience retail businesses. Their website presents a professional and well-structured digital presence, targeting B2B clients in the energy and retail sectors. The company leverages modern marketing and analytics tools such as Marketo and Google Tag Manager, indicating a mature digital infrastructure. The website is hosted via Cloudflare and built on WordPress, with SEO optimization through Yoast SEO Premium. Security posture is good with HTTPS enabled and domain transfer protections in place, though there is room for improvement in security headers and explicit security policies. Privacy compliance is currently weak, lacking visible privacy and cookie policies or consent mechanisms. Overall, the site is trustworthy and business credible, but could enhance user trust and compliance by publishing comprehensive privacy and security policies.

U babičky is a small hospitality business based in Banská Bystrica, Slovakia, specializing in preparing and delivering weekly lunch menus with soup, catering services for various social events, and large-volume food delivery for corporate clients. The website presents a clear and consistent brand image with detailed menu offerings including allergen information, and provides multiple contact channels including phone and email. The business targets local residents and companies seeking convenient and quality meal options. Technically, the website uses common web technologies such as jQuery, Bootstrap, FontAwesome, and Google Analytics, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and formal policies. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve compliance and security transparency.

L

LALIKBUS

lalikbus.sk

53

LALIKBUS is a Slovak passenger transport company with over 15 years of experience, offering a range of vehicle options including buses, microbuses, and personal autocars for various transport needs such as airport transfers and events. The website is built on WordPress and uses modern web technologies including Google Fonts, FontAwesome, and MasterSlider for a professional presentation. Contact information is clearly provided, including phone, email, and social media links, supporting customer engagement. Security measures include HTTPS with DNSSEC and Google reCAPTCHA for form protection, though the absence of security headers and privacy/cookie policies indicates room for improvement in compliance and security posture. Overall, the site is functional, trustworthy, and professionally presented, but would benefit from enhanced privacy compliance and security best practices.

S

STEFE SK, a.s.

stefe.sk

59

STEFE SK, a.s. is a well-established Slovak energy company specializing in centralized heat supply, energy production, and related services. With over 25 years of experience and a strong parent company, Energie Steiermark AG, STEFE SK serves more than 250,000 customers across multiple Slovak cities. The website reflects a mature digital presence with comprehensive service descriptions, news updates, and customer engagement features including a detailed contact form and city-specific service options. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and Google reCAPTCHA, ensuring a secure and user-friendly experience. Security posture is strong with HTTPS, form protections, and cookie consent management, though some security headers could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

The website www.urpiner.shop represents a regional Slovak brewery, Banskobystrický pivovar, a.s., offering a comprehensive e-commerce platform for their Urpiner beer products and related merchandise. The site targets mature consumers interested in purchasing draft and bottled beer, gift items, and dispensing equipment, with options for local pickup and delivery. The business maintains a consistent brand presence with clear contact information and legal compliance documents accessible to users. Technically, the site is built on the BiznisWeb CMS platform, utilizing modern JavaScript libraries, Google Analytics, and Facebook Pixel for marketing and analytics, all managed with user consent mechanisms. Security posture is solid with HTTPS enforced and privacy controls in place, though additional security headers could enhance protection. Overall, the site is professional, user-friendly, and trustworthy, with no indications of malicious activity or suspicious registrations.

C

CREBISO

crebiso.com

63

CREBISO is a Slovak-based technology company specializing in innovative digital solutions including online marketing, custom software development, and business process digitalization. The company positions itself as a reliable partner for SMEs seeking to enhance their digital presence and operational efficiency through tailored applications and marketing strategies. Their website reflects a professional and consistent brand image with clear service offerings and client testimonials, targeting Slovak and regional businesses. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and Google services, hosted on a Slovak hosting provider, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain transfer protection, though improvements are recommended in security headers and DNSSEC. Privacy compliance is well addressed with a cookie consent mechanism and accessible terms of service. Overall, CREBISO demonstrates a mature digital presence with a solid business credibility and moderate security maturity.

I

Inlogic

inlogic.sk

56

Inlogic is a Slovakia-based game development and publishing studio specializing in Android and HTML5 mobile games. Established in 2003, the company boasts over 16 years of experience and a portfolio of more than 300 completed games. Their global distribution network spans over 150 countries, positioning them as a reputable player in the mobile gaming industry. The website reflects a professional and consistent brand image, targeting gamers, publishers, and mobile users worldwide. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good SEO, mobile optimization, and user experience. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. Privacy compliance is strong with clear GDPR policies and cookie management. Overall, the site is trustworthy, well-maintained, and aligned with the company's business claims.

S

Shtoodio

shtoodio.com

67

Shtoodio is a boutique podcast production studio based in Banská Bystrica, Slovakia, specializing in custom podcast creation, studio rental, and marketing packages tailored for small and medium-sized businesses. The company positions itself as a strategic partner for brands seeking to establish a presence in the podcasting space, offering professional audio production and related services. Their market niche is well-defined, focusing on quality and strategic marketing integration within the podcast medium. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and GDPR cookie consent tools, hosted on a Slovak hosting provider. The site is mobile-optimized and SEO-friendly, with good content quality and clear navigation. Security posture is adequate with HTTPS enabled and cookie consent implemented, though DNSSEC is not enabled and some security headers are missing. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with clear privacy and cookie policies linked. Overall, the domain registration is consistent with the business timeline and shows no suspicious patterns. The website is professional, trustworthy, and well-positioned in its niche.

T

TLS Logistic

tls-logistics.sk

42

TLS Logistic is a Slovakian transport and logistics company specializing in national and international freight road transport, warehousing, customs services, and distribution. Established in 2009, the company has a strong market presence with multiple logistics centers across Slovakia and official partnerships, including for the Balkan region. Their website reflects a professional business model targeting companies requiring flexible and efficient logistics solutions. Technically, the website is built on WordPress with modern plugins and SEO optimizations, offering good mobile responsiveness and user experience. Security posture is solid with HTTPS and no exposed sensitive data, though it lacks some security headers and visible incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and well-maintained, supporting the company's credibility in the logistics sector.

S

Slovenská letecká agentúra

festivalletectva.sk

58

The Festival letectva Piešťany website represents a well-established aviation event organizer in Slovakia, managed by Slovenská letecká agentúra. The site promotes an annual airshow event featuring air acrobatics, aircraft displays, and family-friendly activities, targeting aviation enthusiasts and the general public. The business holds a strong market position as a leading aviation festival in the region, supported by reputable partners and sponsors. Technically, the website employs modern web technologies including jQuery, Bootstrap, and FontAwesome, and is built on the WebJET CMS platform. It demonstrates good mobile optimization, SEO practices, and accessibility features, although some improvements could be made in accessibility and security headers. Security posture is solid with HTTPS enforced and CSRF protections in place, complemented by GDPR-compliant cookie consent mechanisms and privacy policies. No critical vulnerabilities or blocking mechanisms were detected, indicating a stable and trustworthy online presence. Overall, the website scores well on content quality, technical implementation, security, privacy compliance, and business credibility, making it a reliable source for event information and engagement.

H

Hairless Skin Augsburg

hairlessskin-augsburg.de

55

Hairless Skin Augsburg is a specialized healthcare service provider focused on permanent hair removal using advanced laser and needle epilation technologies. Established in 2013, the company has built a strong local presence in Augsburg, Germany, with over 20,000 treatments performed. Their website reflects a professional and customer-centric approach, featuring detailed service descriptions, expert team presentation, and positive customer testimonials. The business targets individuals seeking effective and safe hair removal solutions, emphasizing quality and personalized care. Technically, the website is built on WordPress with modern plugins and frameworks such as React for booking, Yoast SEO for optimization, and Borlabs Cookie for privacy compliance. The site is well-optimized for performance, mobile responsiveness, and SEO, leveraging Google Analytics and Google Ads for marketing and tracking. Hosting appears to be provided by OVH, indicated by the nameservers. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or suspicious content were detected. Privacy compliance is basic, with no visible privacy policy or terms of service pages, which is a notable gap. Overall, Hairless Skin Augsburg presents a trustworthy and professional online presence with room for improvement in formal privacy and security disclosures to enhance compliance and customer trust.

S

Slovenská letecká agentúra, s. r. o.

siaf.sk

56

The website www.siaf.sk represents the official online presence of the Medzinárodné letecké dni SIAF, an international air show event organized by Slovenská letecká agentúra, s. r. o. The site provides comprehensive event information, news updates, multimedia galleries, and partner details, targeting aviation enthusiasts and the general public interested in air shows. The business operates primarily in the transportation sector with a focus on event organization and media dissemination, maintaining a consistent and professional brand image since its founding in 2006. Technically, the website employs a modern technology stack including jQuery, Bootstrap, and FontAwesome, managed via the WebJET CMS platform. It demonstrates good mobile optimization and SEO practices, with a moderate performance profile. The site incorporates a cookie consent mechanism compliant with GDPR, uses HTTPS with strong SSL configuration, and implements CSRF tokens for AJAX requests, reflecting a solid digital maturity. From a security perspective, the site enforces HTTPS and includes cookie consent management, but lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or exposed sensitive data were detected in the analyzed content. The domain registration details align well with the business claims, indicating legitimacy and trustworthiness. Overall, www.siaf.sk is a well-maintained, trustworthy website with good content quality and privacy compliance. Strategic improvements in security headers, incident response transparency, and accessibility could further enhance its security posture and user trust.

B

Budapesti Kereskedelmi és Iparkamara

bkik.hu

56

Budapesti Kereskedelmi és Iparkamara (BKIK) is a well-established chamber of commerce and industry serving Budapest, Hungary. The organization provides a broad range of services including business registration, consulting in legal, tax, GDPR, and labor law matters, adult education and training, international business support, advocacy, and event organization. The website reflects a professional and consistent brand image targeting local businesses and entrepreneurs. Technically, the site employs modern web technologies such as Bootstrap, jQuery, and Google Analytics, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforcement and CSRF protection, though some security headers are missing and no explicit security or incident response policies are published. Privacy compliance is strong with a clear cookie consent mechanism and a comprehensive privacy policy in Hungarian. Overall, the site is trustworthy, safe, and well-maintained, with no signs of malicious content or blocking mechanisms.

K

KB, de nationale bibliotheek

kb.nl

72

The KB (Koninklijke Bibliotheek) is the national library of the Netherlands, providing extensive digital and physical collections including manuscripts, books, newspapers, and maps. It serves a broad audience including researchers, publishers, members, cultural enthusiasts, and the general public. The website is built on Drupal 10, featuring modern web technologies and analytics tools such as Matomo and Ahrefs. It offers multilingual support and comprehensive navigation for various user groups. Security posture is solid with HTTPS and responsible disclosure policies, though some security headers could be improved. Privacy compliance is well addressed with clear policies, though a cookie consent mechanism is not evident. Overall, the site is professional, trustworthy, and aligned with its governmental and cultural mission.

B

Bundesamt für Bauwesen und Raumordnung (BBR)

tag-der-staedtebaufoerderung.de

50

The website 'Tag der Städtebauförderung' serves as an official platform for a German government initiative promoting urban development and community engagement through events and information dissemination. It is supported by the Bundesamt für Bauwesen und Raumordnung and related governmental bodies. The site provides comprehensive content including event programs, photo competitions, downloads, and contact resources aimed primarily at municipalities and stakeholders in urban planning. Technically, the site is built on TYPO3 CMS with Bootstrap and jQuery, featuring a cookie consent mechanism and Matomo analytics for visitor tracking. The infrastructure appears stable and hosted within German governmental or research networks, ensuring reliability and compliance with local regulations. The site is mobile-optimized, accessible, and SEO-friendly. From a security perspective, HTTPS is enforced, and cookie consent is properly managed. However, the site lacks explicit security headers and a published security policy or incident response contact. No vulnerabilities or suspicious elements were detected in the content or scripts. Overall, the website demonstrates a strong compliance posture with GDPR, clear business credibility, and a trustworthy presentation. Strategic improvements could include enhancing HTTP security headers and publishing a vulnerability disclosure policy to further strengthen security transparency.

HSC Schwarzenbruck e.V. is a German dog sports and training club offering a variety of courses and activities for dog owners, including puppy training, young dog training, basic courses, and specialized dog sports such as Tunierhundesport and Spürhundsport. The club serves a local audience of dog enthusiasts and provides a platform for course registration and event scheduling. The website is professionally designed using WordPress and Elementor, hosted by Manitu, and demonstrates good digital maturity for a small non-profit organization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though improvements in security headers and privacy compliance mechanisms are recommended. Overall, the website is trustworthy and well-suited for its target audience.

U

University of Massachusetts Dartmouth

umassd.edu

61

University of Massachusetts Dartmouth is a nationally recognized public research university offering a wide range of undergraduate, graduate, and doctoral programs. The institution targets prospective and current students, faculty, staff, alumni, and the local community, positioning itself as a leader in innovation and academic excellence within the region. The website reflects a mature digital presence with comprehensive content, multimedia integration, and clear navigation tailored to its audience. Technically, the site leverages modern frameworks such as Bootstrap and Adobe Typekit fonts, and is managed via the TerminalFour CMS platform, indicating a robust infrastructure supporting content management and delivery. Security posture is strong with HTTPS enforced, use of security headers, and no visible vulnerabilities, although there is room for improvement by adding explicit security policies and vulnerability disclosure mechanisms. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and aligns well with the university's brand and mission.

Bornegyed.hu is a local tourism and cultural event portal focused on the Budafok-Tétény district of Budapest, Hungary. The website promotes wine cellar tours, cultural programs, and local events, targeting residents and tourists interested in the region's wine culture and gastronomy. The business operates as an information and event promotion platform with a niche market position in hospitality and tourism. Founded in 2018, it maintains a consistent brand presence and offers newsletter subscriptions with GDPR-compliant consent mechanisms. Technically, the website uses a modern frontend stack including Bootstrap, jQuery, FontAwesome, and Google Maps API. It is mobile-optimized with good SEO practices and moderate performance. The site employs Google Analytics and Google Tag Manager for user tracking, though it lacks a visible cookie consent banner. The CMS appears custom or unknown, and no hosting provider details are evident. From a security perspective, the site enforces HTTPS and secures user input forms such as the newsletter subscription modal. However, it lacks visible security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is partial, with a privacy policy document available but no cookie policy or terms of service pages. Overall, the website presents a moderate risk profile with good business credibility and technical implementation but could improve privacy compliance and security posture. Strategic recommendations include implementing cookie consent mechanisms, adding security headers, publishing security policies, and maintaining regular vulnerability assessments.

C

camindu GmbH

ihr-maklervergleich.de

52

Ihr Maklervergleich, operated by camindu GmbH, is a German online platform specializing in the verification, rating, and recommendation of real estate agents for buying, selling, renting, and leasing properties. The website offers comprehensive educational content, customer reviews, and a free, non-binding service to connect users with qualified real estate professionals. The platform positions itself as a trustworthy intermediary in the German real estate market, emphasizing verified credentials and customer satisfaction. Technically, the website employs a modern tech stack including jQuery, Bootstrap, Matomo Analytics, Google Tag Manager, and custom captcha solutions. It is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine understanding. Hosting appears stable with dedicated nameservers, and the site uses HTTPS with CSRF protection on forms, indicating a solid digital infrastructure. From a security perspective, the site demonstrates good practices such as HTTPS enforcement, captcha on forms, and CSRF tokens. However, explicit security headers and a published security policy or incident response contacts are not evident. No vulnerabilities or suspicious content were detected. Privacy compliance is strong with clear privacy and cookie policies and GDPR adherence. Overall, Ihr Maklervergleich presents a professional, secure, and user-friendly platform with strong business credibility in the real estate sector. Strategic improvements in security policy transparency and header implementation could further enhance trust and resilience.

I

Inclusion Canada

inclusioncanada.ca

61

Inclusion Canada is a Canadian national federation dedicated to advancing the full inclusion and human rights of people with intellectual disabilities and their families. Established in 2012, it operates as a medium-sized non-profit organization with a strong market position as a leading advocate in the disability rights sector. The organization provides advocacy, community transformation, and resource services, targeting individuals with intellectual disabilities, their families, and stakeholders in Canada. The website reflects a professional and consistent brand with clear messaging and a focus on inclusion and rights advocacy. Technically, the website is built on WordPress with modern plugins and technologies such as jQuery, FontAwesome, and multilingual support via WPML. It employs Google Analytics for tracking and CleanTalk for anti-spam protection. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. Hosting details are limited but the domain is registered with DomainPeople, Inc., a reputable registrar. From a security perspective, the site uses HTTPS with a good SSL configuration and employs anti-spam and captcha protections on forms. However, DNSSEC is not enabled, and no explicit security headers were detected, indicating room for improvement. Privacy compliance is partial, with a privacy policy present but no clear cookie consent mechanism. No incident response or security policy pages were found. Overall, the website is trustworthy and professional, with a strong business credibility score. Recommendations include enabling DNSSEC, adding security headers, implementing cookie consent mechanisms, and enhancing privacy compliance to align with GDPR standards. These improvements would strengthen the security posture and user trust further.

K

Kliniken an der Paar

klipa.de

62

Kliniken an der Paar operates as a regional healthcare provider in Bavaria, Germany, managing two hospitals: Krankenhaus Friedberg and Krankenhaus Aichach. The website serves as an informational portal for patients, visitors, and healthcare professionals, offering updates on hospital news, visitor regulations, and career opportunities. The business model focuses on providing hospital and emergency medical services within the local community. Technically, the website is built on Joomla CMS with Smart Slider 3 for dynamic content presentation. The site demonstrates moderate performance and good mobile optimization, though accessibility features are basic. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit incident response policies. Privacy compliance is supported by a privacy policy and cookie banner with opt-out options. Overall, the website is professional, trustworthy, and well-aligned with its healthcare mission.

B

Bundesverband Soziokultur e.V.

utopolis.online

47

Utopolis.online is a German non-profit cultural initiative operated by Bundesverband Soziokultur e.V., focusing on promoting socio-cultural activities in urban neighborhoods through artistic and community engagement projects. The website serves as an information hub for the UTOPOLIS program, showcasing project results, providing a toolbox of methods, and sharing news and events. The platform targets cultural practitioners, local communities, and stakeholders interested in neighborhood development through culture. Technically, the site is built on WordPress with modern plugins and frameworks, including Matomo for privacy-conscious analytics. The site is well-structured, mobile-optimized, and integrates cookie consent mechanisms, reflecting good privacy compliance. Security posture is adequate with HTTPS and domain transfer protection, though DNSSEC is not enabled and security headers are missing, representing areas for improvement. No contact emails or phone numbers are explicitly provided, which may limit direct communication. Overall, the site is trustworthy, professionally maintained, and aligned with its non-profit mission.

B

Borgmann Automobilhändler GmbH

borgmann-krefeld.de

55

Borgmann Automobilhändler GmbH operates as a medium-sized automobile dealership based in Krefeld, Germany, specializing in new and used vehicle sales and servicing for Volkswagen Group brands including VW, Audi, Skoda, Seat, Cupra, as well as GWM commercial vehicles. The company targets local customers seeking passenger cars, transporters, and motorhomes, positioning itself as a trusted regional dealer with comprehensive service offerings. The website reflects this business focus with clear branding, relevant content, and a professional presentation. Technically, the website is built on the TYPO3 CMS platform, leveraging modern frontend libraries such as jQuery, FontAwesome, Owl Carousel, and Bootstrap components. Hosting is provided by SchlundTech, a reputable German hosting provider. The site is mobile-optimized and incorporates SEO best practices including structured data and meta tags. Cookie consent is managed via Cookiebot, ensuring compliance with GDPR and providing users with granular control over cookie categories. From a security perspective, the site enforces HTTPS and integrates standard tracking tools like Google Analytics and Facebook Pixel responsibly with user consent. While explicit security headers are not fully confirmed, no critical vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contact is noted as an area for improvement. Overall, the site demonstrates a solid security posture appropriate for its business scale. The domain WHOIS data aligns with the website's business claims, showing consistent hosting and domain usage without suspicious patterns. No WAF or blocking mechanisms interfere with content accessibility, allowing full analysis. The site maintains a high level of trustworthiness and professionalism, making it a reliable digital presence for the Borgmann Automobilhändler GmbH. Strategic recommendations include enhancing security headers, publishing terms of service and security policies, and maintaining up-to-date third-party libraries to further strengthen compliance and security posture.

T

Tourismusverband Silberregion Karwendel

silberregion-karwendel.com

50

Silberregion Karwendel is a regional tourism organization promoting a diverse vacation destination in Tyrol, Austria. The website provides comprehensive information on mountain summer and winter activities, cultural events, accommodations, and regional offers. It targets tourists seeking nature, culture, and leisure experiences in the region. The organization appears well-established with a domain age since 2004 and consistent WHOIS data. Technically, the site uses Contao CMS with modern web technologies and offers a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and cookie consent mechanisms, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the site is professional, trustworthy, and serves its business purpose effectively.

R

Romantic Road Coach

romanticroadcoach.com

50

Romantic Road Coach is a small transportation business specializing in day trips and minibus tours along the Romantic Road in Germany, targeting tourists and travelers seeking scenic and cultural experiences. The company offers online booking and optional services such as wine tasting and hotel pick-up, positioning itself as a niche regional tourism provider. The website is built on WordPress with modern plugins and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

B

Bundesverband Soziokultur e.V.

neustartkultur.de

44

The website soziokultur.neustartkultur.de serves as an informational and administrative portal for the Bundesverband Soziokultur e.V., a German non-profit organization responsible for managing the NEUSTART KULTUR funding program. This program was established as a cultural rescue and future initiative by the German government to support cultural and media sectors during and after the Covid-19 pandemic. The site provides comprehensive information about the program, including funding rounds, downloadable documents, blog articles, and social media integration. The target audience includes cultural institutions, funding applicants, and the general public interested in cultural funding. Technically, the website is built on WordPress 6.8.1 with a modern tech stack including jQuery, Matomo analytics for privacy-conscious tracking, Leaflet.js for mapping, and integration with CiviCRM for case and funding management. The site is hosted on servers indicated by the nameservers agenturserver.co, .de, and .it. The site is mobile optimized and has good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses some security best practices such as a cookie consent banner and honeypot anti-spam measures. However, the Content-Security-Policy header is commented out and some other security headers are missing, indicating room for improvement. No incident response or vulnerability disclosure information is published. The WHOIS data is consistent with the organization and domain usage, indicating legitimacy. Overall, the website is professional, trustworthy, and serves its purpose well. Security posture is adequate but could be enhanced by activating CSP and publishing security policies. Privacy compliance is good with GDPR-aligned cookie consent and privacy policy. No critical issues or blocking mechanisms were detected.

R

Romantische Straße

romantischestrasse.de

51

Romantische Straße is a well-established German tourism organization promoting the country's oldest and most popular holiday route, spanning 29 towns over 460 kilometers. The website serves as an information hub for travelers interested in nature, culture, art, culinary experiences, and hospitality along this scenic route. It offers key services including tourist information, interactive maps, bus service bookings via the Romantic Road Coach, and an online shop for related products. The site targets tourists and cultural travelers primarily within Germany and internationally via its English version. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Borlabs Cookie for GDPR compliance. It integrates Google Analytics and Google Tag Manager for tracking and marketing purposes. The site demonstrates good mobile optimization and SEO practices, though accessibility features could be enhanced. Performance is moderate, with a rich media presence including interactive SVG maps and sliders. From a security perspective, the site uses HTTPS with anonymized IP tracking for analytics and implements a cookie consent mechanism. However, it lacks visible security headers and published privacy or security policies, which are recommended for compliance and trust. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the provided content. Overall, Romantische Straße presents a professional and trustworthy online presence with strong business credibility in the tourism sector. Strategic improvements in privacy documentation, security headers, and accessibility would further enhance its security posture and compliance standing.

A

Annafest: Annafest Forchheim

annafest.bayern

47

The website www.annafest.bayern serves as the official information portal for the Annafest, a traditional folk festival held in Forchheim, Bavaria. It provides comprehensive details about the event including schedules, attractions, food and drink options, accessibility, and reservation information. The site targets festival attendees, families, and cultural enthusiasts, positioning itself as a regional cultural event platform. Technically, the site is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and jQuery, ensuring good mobile responsiveness and user experience. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks some advanced security headers and explicit incident response contacts. WHOIS data is privacy protected, which is typical for event domains, and does not raise suspicion given the regional focus and content consistency. Overall, the site is professional, trustworthy, and well-optimized for its purpose.

S

Stadt Meerbusch

meerbusch.de

46

The website meerbusch.de serves as the official digital portal for the city of Meerbusch, Germany, providing comprehensive municipal information, citizen services, news, and event updates. It targets residents, local businesses, and visitors, offering a broad range of public services and administrative resources. The site is well-positioned as a local government authority platform with a clear focus on accessibility and user engagement.

F

Frankenhotel Drei Kronen Memmelsdorf GmbH

drei-kronen.de

43

Frankenhotel Drei Kronen Memmelsdorf GmbH operates a traditional hotel and brewery guesthouse located in Memmelsdorf near Bamberg, Germany. The business emphasizes a blend of Franconian culinary tradition and modern hospitality, offering hotel accommodations, brewery tours, event hosting, and regional tourism packages. The company holds recognized certifications such as the 3-Sterne-Superior hotel classification and the DEHOGA Umweltcheck Gold award, underscoring its commitment to quality and environmental responsibility. The website is professionally designed, mobile-optimized, and rich in content, targeting tourists, business travelers, and local visitors interested in authentic Franconian experiences. Technically, the site uses a modern stack including Bootstrap, jQuery, Matomo analytics, and Pimcore CMS, hosted on Hetzner infrastructure, ensuring reliable performance and good SEO practices.

O

Ott Landmaschinen AG

falc.ch

47

Ott Landmaschinen AG is a Swiss-based market leader specializing in tractor attachments and agricultural machinery. The company operates through three main business areas: Ott, Agriott, and Rauchcenter, targeting agricultural machinery buyers and dealers primarily within Switzerland. The website reflects a professional business presence with clear branding, consistent messaging, and comprehensive contact information. Technically, the site is built on the ProcessWire CMS platform and leverages modern JavaScript libraries and UI frameworks, ensuring a good user experience and mobile optimization. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and published security policies indicates room for improvement. Privacy compliance is lacking due to missing privacy and cookie policies, which should be addressed to meet GDPR requirements. Overall, the website is trustworthy and professional, supporting the company's strong market position.

M

mapAds

mapads.net

44

mapAds is a German-based technology company specializing in AI-driven advertising solutions that enable rapid creation, targeting, and deployment of ad campaigns across multiple platforms including Google, Facebook, Instagram, YouTube, and AddressableTV. The platform targets local businesses, agencies, and publishers, offering both white-label self-service and managed service options. The website is professionally designed using WordPress and Elementor, with good mobile optimization and clear navigation. Hosting is provided by Hetzner Online GmbH in Germany, aligning with the domain's registration country. Security posture is adequate with HTTPS enabled and cookie consent mechanisms in place, though improvements are recommended in DNSSEC, security headers, and incident response transparency. No critical vulnerabilities or suspicious content were detected, and the site maintains a high level of trustworthiness and compliance with GDPR. Overall, mapAds presents a credible and modern digital presence suitable for its business model.

H

HS subrosa

hafenschaenke.de

65

HS subrosa operates as a small hospitality business based in Dortmund, Germany, offering a live music club, bar services, and event hosting including rent-a-bar options. The website presents a local venue with a focus on live performances, talent shows, and a cozy bar atmosphere. The business targets a mature audience interested in nightlife and live entertainment. Technically, the website is built on WordPress using the Elementor page builder and Astra theme, reflecting a moderate level of digital maturity with good mobile optimization and basic SEO. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and incident response information. Privacy compliance is addressed with a privacy policy and cookie banner, indicating GDPR awareness. Overall, the site is professional and trustworthy for its business type but could improve in security and transparency aspects.

V

VHS Bergisch Gladbach

vhs-gl.de

49

VHS Bergisch Gladbach is a regional adult education provider offering a wide range of courses and continuing education programs primarily targeting the general public in Bergisch Gladbach and nearby areas in Germany. The website serves as a portal for course discovery, registration, and information dissemination, positioning itself as a trusted local educational institution. The business model is centered on paid educational services with a focus on accessibility and community engagement. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as Bootstrap and jQuery, and integrates etracker for analytics. The site is hosted on servers associated with kasserver.com, with a secure HTTPS connection and a responsive design optimized for mobile devices. SEO and accessibility features are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. While basic security best practices are observed, there is room for improvement in implementing security headers and publishing formal security policies or incident response contacts. No critical vulnerabilities or suspicious activities were detected. Overall, the website demonstrates a solid security posture, good privacy compliance, and a professional presentation suitable for its educational purpose. The domain registration details are consistent with the website's claims, supporting its legitimacy. Strategic recommendations include enhancing security headers, formalizing security policies, and adding vulnerability disclosure information to further strengthen trust and compliance.

M

MicroMovieMedia Gesellschaft fuer Medienproduktionen mbH

cultur.social

65

Cultur.social is a decentralized social networking platform operating as a Mastodon instance, administered by MicroMovieMedia Gesellschaft fuer Medienproduktionen mbH based in Germany. The platform targets creative individuals interested in federated social media, offering services such as user profiles, post exploration, and community interaction. The website is built on Mastodon 4.2.21 with a React frontend, demonstrating a modern technical infrastructure with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though it lacks advanced security headers and explicit incident response policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific indicators. Overall, the platform appears legitimate and trustworthy with consistent WHOIS data and transparent administration, but could improve in security and privacy transparency.

H

Hamburger Morgenpost

mopop.de

53

MOPOP.de is a well-established regional online portal dedicated to music and pop culture in Hamburg, operated under the Hamburger Morgenpost media brand. The site offers a comprehensive range of content including news, concert and festival information, artist interviews, reviews, and music charts, targeting music enthusiasts primarily in the Hamburg region. The business model is content-driven, supported by advertising and partnerships, positioning MOPOP.de as a key player in local cultural media.

Z

Združenie informatikov samospráv Slovenska

ziss.sk

53

Združenie informatikov samospráv Slovenska (ZISS) is a Slovak non-profit association dedicated to uniting IT professionals working in local government and public administration. Established in 2007, the organization focuses on fostering communication, knowledge exchange, and professional development through conferences and projects such as ZlatyErb.sk. The website serves as an information hub for members and interested parties, providing news, event details, and resources relevant to the public sector IT community in Slovakia. Technically, the website is built on WordPress and leverages common web technologies including jQuery, Google Analytics, and FontAwesome. It is hosted on WebSupport infrastructure with DNSSEC enabled and uses HTTPS, indicating a baseline of security best practices. However, the site lacks explicit privacy and cookie policies, and no consent mechanisms are present, which are important for GDPR compliance. The site also does not publish a security policy or incident response contacts, limiting transparency in security governance. From a security perspective, the site benefits from HTTPS and DNSSEC, and the presence of Wordfence scripts suggests some level of active security monitoring. Nonetheless, the absence of HTTP security headers and vulnerability disclosure policies represents areas for improvement. User tracking via Google Analytics is implemented without visible consent, which may pose privacy compliance risks. Overall, the security posture is moderate but could be enhanced with additional controls and transparency. The website content is professional and relevant to its target audience, with clear navigation and consistent branding. The domain registration data aligns well with the organization's history and purpose, supporting legitimacy. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include implementing comprehensive privacy and cookie policies, enhancing security headers, and publishing incident response information to improve trust and compliance.

C

Citizen Journal

citizenjournal.net

60

Citizen Journal is a small media and blog website launched in early 2024, providing well-researched long-form content across diverse topics such as health, business, tech, travel, and lifestyle. The site operates on WordPress with performance optimizations via WP Rocket and uses affiliate marketing through the Amazon Associates program. The technical infrastructure is modern but basic, with Cloudflare DNS and no detected WAF challenges. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers. Privacy compliance is basic with presence of privacy and cookie policies but no explicit GDPR statements. Overall, the site is professional and trustworthy for general audiences.

Kulturgemeinde Alsdorf e.V. is a small non-profit cultural organization based in Germany, focused on organizing theater performances, literary breakfasts, and other cultural events for the local community. The website serves as a platform for event promotion, ticket sales, and membership information, positioning itself as a key cultural player in Alsdorf. The business model revolves around community engagement and event-driven revenue streams, supported by partnerships with local venues and ticketing services. Technically, the website is built on a modern stack including Bootstrap, jQuery, and FontAwesome, hosted by Pixelfarm with assets stored on S3. The site is mobile responsive and offers a good user experience with clear navigation and event information. Cookie consent mechanisms are implemented in compliance with GDPR, though no advanced analytics or tracking services are detected. From a security perspective, the site enforces HTTPS and uses cookie consent banners, but lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website content and hosting, indicating a legitimate and trustworthy domain registration. Overall, the website is professional, secure, and compliant with privacy regulations, serving its target audience effectively. Strategic improvements in security policy transparency and incident response readiness could further enhance trust and resilience.

Meteocentrum.sk is a Slovak weather information website providing real-time meteorological data and weather station information primarily for Slovakia. The site features interactive maps powered by Google Maps API and displays current weather conditions from various stations. The business operates as a regional weather data provider with a focus on delivering accurate and timely weather updates to the general public. The website is built using modern web technologies including Bootstrap, jQuery, and integrates Google services for mapping and analytics. Hosting is provided by Exohosting, a regional hosting provider, consistent with the domain's Slovak origin. Security posture is moderate with HTTPS enabled but lacks important security headers and privacy compliance documentation. Advertising and tracking are implemented via Google Ads and Google Analytics, indicating moderate user tracking. Overall, the website is functional and professional but would benefit from enhanced privacy compliance and security hardening to improve trust and regulatory adherence.

K

Kreis Bergstrasse

kreis-bergstrasse.de

64

Kreis Bergstrasse operates as a regional government authority in Germany, providing a broad range of public services including local administration, citizen services, education, health, culture, and tourism. The website serves as a comprehensive portal for residents and stakeholders, offering structured navigation and extensive content relevant to the district. The business model is focused on government service delivery with a medium-sized organizational footprint. Technically, the site uses a modern CMS (ionas4), JavaScript frameworks, and is hosted by a regional IT provider, indicating a mature digital infrastructure. The site is mobile-optimized and accessible, with good SEO practices. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks explicit security headers and published security policies. Privacy compliance is basic, with no explicit privacy policy or terms of service detected in the provided content. Overall, the domain registration and hosting details align with legitimate government use, supporting a high trust level.

W

WGV Recycling GmbH

wgv-quarzbichl.de

43

WGV Recycling GmbH operates as a regional waste management and recycling service provider for the Landkreis Bad Tölz – Wolfratshausen area in Germany. The company offers a comprehensive range of waste collection services including biotonne, papiertonne, restabfalltonne, and packaging waste, alongside managing recycling centers and specialized waste treatment facilities such as biogas and composting plants. The website reflects a well-structured and professional digital presence, targeting local residents and businesses with clear service information and contact options. Technically, the website is built on WordPress 6.8.1 using the Customizr Pro theme, enhanced with common plugins like Contact Form 7 and GTranslate for multilingual support. The site demonstrates good mobile optimization and moderate performance, though there is room for improvement in accessibility and security header implementation. Hosting appears to be managed through your-server.de, consistent with the domain's nameservers. From a security perspective, the site enforces HTTPS and uses validated contact forms, but lacks some recommended security headers and a cookie consent mechanism, which are important for GDPR compliance. No explicit vulnerabilities or exposed sensitive data were detected in the provided content. Certifications such as Entsorgungsfachbetrieb and Qualitätsmanagement add to the trustworthiness of the business. Overall, the website is safe, professional, and credible with a strong focus on regional waste management services. Strategic enhancements in privacy compliance and security headers would further strengthen its posture and regulatory adherence.

S

Stadt Arnsberg

arnsberg.de

64

The website www.arnsberg.de serves as the official digital presence of the city of Arnsberg, Germany. It provides extensive information and services related to tourism, economic development, community engagement, sustainability, culture, politics, and municipal administration. The site targets residents, local businesses, tourists, and community stakeholders, positioning itself as a comprehensive municipal government portal. The business model is that of a government entity providing public services and information. Technically, the website is built on the TYPO3 CMS platform, leveraging modern web technologies such as jQuery, Bootstrap, Video.js, Leaflet, and accessibility tools like ReadSpeaker. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is moderate. The technical infrastructure appears stable and consistent with a government website. From a security perspective, the site uses HTTPS but lacks visible security headers and explicit security or privacy policies. No vulnerability disclosure or incident response information is present. The absence of cookie and privacy policies indicates potential compliance gaps with GDPR and related regulations. No critical vulnerabilities or exposed sensitive data were detected, but security posture could be improved by implementing standard security headers and formal policies. Overall, the website is trustworthy and professional, serving its purpose as a municipal information portal. Strategic recommendations include enhancing privacy and cookie disclosures, implementing security headers, and establishing a vulnerability disclosure policy to improve compliance and security maturity.

A

ANHALT-BITTERFELDER KREISWERKE GmbH

abikw.de

45

ANHALT-BITTERFELDER KREISWERKE GmbH (ABIKW) is a regional municipal waste management company serving the Landkreis Anhalt-Bitterfeld in Germany. Founded in 2009 through a merger, it provides comprehensive waste disposal services including household and commercial waste, bio and green waste, bulky waste, and electronic waste collection. The company emphasizes sustainability and quality in its service offerings. The website is professionally designed, mobile-optimized, and provides clear contact and legal information, reflecting a mature digital presence. Technically, the site runs on WordPress with common plugins and modern web technologies, delivering moderate performance and good SEO. Security posture is solid with HTTPS enforced, though security headers and incident response details are lacking. Privacy compliance is mostly met with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the domain and website content align well with the company's municipal service role, showing high trustworthiness and no suspicious indicators.

A

Abfallwirtschaftsbetrieb Landkreis Altenkirchen

awb-ak.de

41

The Abfallwirtschaftsbetrieb Landkreis Altenkirchen is a public waste management entity operating as an Eigenbetrieb of the Landkreis Altenkirchen in Germany. The organization provides comprehensive waste disposal and recycling services, supported by an evolving waste management concept recognized as one of the most successful in Rheinland-Pfalz. The website serves as an information portal for residents and businesses, offering news, service registrations, and detailed guidance on waste types and collection schedules. Technically, the website employs standard web technologies including Bootstrap, jQuery, and FontAwesome, delivering a responsive and user-friendly experience. While the site is moderately optimized for performance and mobile devices, there is room for improvement in accessibility and SEO. The use of embedded iframes for news content from a third-party domain is noted. From a security perspective, the site appears to use HTTPS (assumed), but lacks visible security headers and cookie consent mechanisms, which are important for compliance and protection. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is limited but does not raise suspicion, aligning with the site's government affiliation. Overall, the website is professional, trustworthy, and serves its public service role effectively. Strategic improvements in privacy compliance, security headers, and accessibility would enhance its security posture and user trust.