Security Directory

N

NOVASOL

novasol.nl

0

NOVASOL is a well-established European vacation rental company specializing in holiday homes, villas, and apartments across multiple countries. With over 50 years of experience and a strong market presence, NOVASOL offers a wide range of accommodations catering to diverse customer needs, including pet-friendly and luxury options. The company is part of the Awaze group, enhancing its credibility and operational scale. Technically, the website leverages modern frameworks like Next.js and integrates advanced monitoring and analytics tools such as New Relic and Google Tag Manager, ensuring robust performance and user experience. Security practices include HTTPS enforcement and use of Google reCAPTCHA Enterprise, although explicit security policies and incident response contacts are not publicly detailed. Overall, NOVASOL demonstrates a mature digital presence with good privacy compliance and trustworthy business information.

N

NOVASOL

novasol.no

0

NOVASOL is a well-established European holiday home rental company with a strong market presence, offering a wide range of vacation properties across 19 countries. The website is professionally designed, mobile-optimized, and uses modern web technologies including React and Next.js. Security measures such as HTTPS, Content Security Policy, and Google reCAPTCHA Enterprise are implemented, indicating a mature security posture. However, explicit security policies and incident response contacts are not publicly available, which could be improved. Overall, the site is trustworthy, compliant with GDPR, and provides a good user experience.

N

NOVASOL

novasol.dk

0

NOVASOL is a well-established European vacation rental company specializing in summer houses and holiday homes across 18 countries. Founded in 1968, it operates under the parent company Awaze and offers a broad portfolio of unique properties tailored to diverse customer needs. The website demonstrates a mature digital presence with modern technologies such as React and Next.js, integrated performance monitoring via New Relic, and marketing tools like Google Tag Manager. Privacy and cookie policies are present, indicating GDPR compliance. Security posture is strong with HTTPS, security headers, and CAPTCHA integration. However, the absence of WHOIS data and explicit contact information on the main site limits full trust verification. Overall, NOVASOL presents a professional and trustworthy platform for vacation rentals in Europe.

N

NOVASOL

novasol-vacances.fr

0

NOVASOL is a well-established European vacation rental company offering a wide range of holiday homes including villas, houses, and apartments across multiple European countries. The website is professionally designed with a clear focus on user experience, mobile optimization, and accessibility. It leverages modern web technologies such as React and Next.js, and integrates advanced analytics and monitoring tools including Google Tag Manager, New Relic, and Usercentrics for privacy compliance. Security measures are robust, with HTTPS enforced, content security policies, and reCAPTCHA Enterprise implemented to protect user interactions. However, the absence of publicly available WHOIS data suggests privacy protection, which is justified for this business type. Overall, the site demonstrates a mature digital presence with good compliance and security posture.

N

NOVASOL

novasol-vacaciones.es

0

NOVASOL is a well-established Danish company specializing in vacation home rentals across Europe since 1968. It offers a wide range of holiday homes, including pet-friendly options, with a strong focus on customer experience and competitive pricing. The company operates under the parent organization Awaze, which supports its broad European presence and service infrastructure. The website is professionally designed, mobile-optimized, and uses modern web technologies such as React and Next.js, supported by performance and error monitoring tools like New Relic and Boomerang. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to data protection. Security measures include HTTPS enforcement and use of Google reCAPTCHA Enterprise, although explicit security headers and incident response contacts could be more visible. Overall, NOVASOL presents a trustworthy and professional online presence suitable for its hospitality business model.

N

NOVASOL

novasol.co.uk

0

NOVASOL is a well-established European holiday villa rental company founded in 1968 and operating under the parent company Awaze. The website offers a comprehensive collection of holiday villas, apartments, and chalets across multiple European destinations, targeting holidaymakers seeking villa rentals. The business model is focused on online bookings with a strong market presence in the hospitality and real estate sectors. The website is professionally designed with consistent branding and good content quality, supporting a positive user experience.

N

NOVASOL

novasol.com

0

NOVASOL is a well-established European vacation rental company founded in 1968, offering thousands of unique holiday homes and villas across Europe. The company operates under the parent company Awaze and targets holiday travelers seeking private vacation homes. The website is professionally designed, mobile-optimized, and uses modern web technologies including React (Next.js), Google Tag Manager, and New Relic for monitoring. Security posture is strong with HTTPS, security headers, and anti-bot measures like Google reCAPTCHA Enterprise. Privacy and cookie policies are comprehensive and GDPR compliant. However, WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is mitigated by the company's market presence and branding consistency.

Q

QTE - Qualitytime Events UG (haftungsbeschränkt)

qualitytime-events.de

0

Qualitytime Events UG (haftungsbeschränkt) is a small German event planning company specializing in school trips, team events, weddings, and teambuilding activities. Their website, built on the Wix platform, presents a professional and consistent brand image targeting schools, companies, and families within Germany. The business operates primarily in the hospitality sector with a niche focus on experiential and interactive events. Technically, the website leverages Wix's Thunderbolt framework and standard JavaScript polyfills, offering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and visible privacy or cookie policies, indicating room for compliance improvement. Overall, the domain registration and hosting details align well with the business claims, suggesting legitimacy and consistent operation.

I

Instituto de Turismo de la Región de Murcia

turismoregiondemurcia.es

0

The website www.turismoregiondemurcia.es serves as the official tourism portal for the Costa Cálida region in Murcia, Spain. Operated by the Instituto de Turismo de la Región de Murcia, it provides comprehensive travel information, event listings, activity bookings, accommodation search, and cultural insights aimed at tourists and visitors. The site is well-positioned as a government-backed tourism authority, offering a broad range of services to facilitate travel planning and regional exploration. Technically, the site employs modern web technologies including Bootstrap, jQuery, Swiper.js, and integrates multiple analytics and advertising tools such as Google Analytics, Facebook Pixel, and Adform. The site is mobile-optimized, accessible, and SEO-friendly, with consistent branding and professional design. Structured data (JSON-LD) is used to enhance search engine understanding. From a security perspective, the site uses HTTPS and includes several security best practices, though explicit security headers like CSP or X-Frame-Options were not confirmed in the provided data. No vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are present and include consent mechanisms, indicating good compliance with GDPR requirements. Overall, the website demonstrates a strong security posture, high content quality, and trustworthy business credibility. It effectively supports its mission as a regional tourism promotion platform. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining regular audits of third-party scripts to sustain security and compliance.

J

journaway

journaway.at

0

journaway is an online travel service offering customizable travel packages with inclusive pricing for flights and hotels. The website targets travelers interested in diverse destinations and travel themes, primarily in the German language. The site is built on TYPO3 CMS and integrates marketing and analytics tools such as HubSpot and Usercentrics for cookie consent management. However, the analyzed page is a 404 error page, indicating the requested content is missing or the URL is incorrect. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy. No privacy policy, terms of service, or contact information were found, which impacts trust and compliance. The website uses HTTPS with good SSL configuration but lacks security headers and explicit privacy compliance documentation.

A

Awaze Vacation Rentals Ltd

awaze.com

0

Awaze Vacation Rentals Ltd operates as the largest managed vacation rentals and holiday resorts business in Europe, aggregating multiple trusted travel brands such as cottages.com, Hoseasons, and NOVASOL. The company targets holidaymakers and property owners across Europe, offering a wide range of self-catering accommodations and villas. Their market position is strong as a leading group in the European hospitality sector, with a large employee base and extensive property portfolio. The website reflects a professional and consistent brand image with comprehensive business information and regulatory compliance references. Technically, the website is built on WordPress and leverages modern JavaScript libraries and analytics tools including Google Analytics and CookieScript for cookie consent management. The site is mobile optimized, accessible, and SEO friendly, with good performance metrics. However, some security headers are missing, and no explicit security or incident response policies are published, which could be improved. Security posture is solid with HTTPS enforced and no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. The absence of WHOIS domain registration data is a concern, potentially indicating privacy protection or query limitations, which slightly impacts trustworthiness. Overall, Awaze presents a credible and professional online presence with strong business and technical foundations. Strategic improvements in security transparency and domain registration clarity would enhance trust and compliance further.

N

NOVASOL

novasol.at

0

NOVASOL is a well-established European vacation rental company specializing in holiday homes and apartments across Europe, with a strong focus on Denmark. Owned by the parent company Awaze, NOVASOL leverages over 50 years of experience to provide a wide selection of vacation properties. The website is professionally designed, mobile-optimized, and uses modern technologies such as Next.js, Google Tag Manager, and reCAPTCHA Enterprise to ensure a smooth user experience and security. Privacy and cookie policies are present with consent management, supporting GDPR compliance. Security posture is strong with HTTPS, security headers, and bot protection, though explicit security policies and incident response contacts are not publicly disclosed. WHOIS data confirms the legitimacy and consistency of the domain registration. Overall, NOVASOL presents a trustworthy and professional online presence suitable for its target audience of European vacationers.

G

GetYourGuide

getyourguide.at

0

GetYourGuide operates as a leading global online marketplace specializing in booking tours, attractions, and travel activities worldwide. The platform targets travelers seeking convenient and direct access to local experiences, positioning itself strongly in the hospitality sector with a large-scale digital presence. The website demonstrates a mature technical infrastructure leveraging modern JavaScript frameworks, third-party analytics, and fraud prevention technologies, ensuring a fast, responsive, and user-friendly experience. Security posture is robust with HTTPS, Content Security Policy, and consent management integrated, although no explicit incident response or vulnerability disclosure pages were found. The absence of WHOIS data slightly impacts trust but is likely due to privacy protection measures common in large enterprises. Overall, the site is professional, secure, and compliant with GDPR, making it a trustworthy platform for travel bookings.

P

plazy GmbH

plazy.travel

0

plazy GmbH operates a German-based travel platform offering personally curated travel tips and guides, primarily targeting travelers interested in Germany and worldwide destinations. The platform leverages expert journalist insights and provides content via a website and a podcast named 'places to go'. The company positions itself as a niche player in the hospitality sector, emphasizing 'lazy planning' for travel enthusiasts. Technically, the website is built on modern frameworks such as Angular and Ionic, with good mobile optimization and accessibility features. Analytics are handled via Matomo, respecting user privacy with a cookie consent mechanism. Security posture is solid with HTTPS enforced, though some security headers are missing and no explicit security policies or vulnerability disclosures are published. The WHOIS data is privacy protected or unavailable, which is typical for small businesses, but the website content and business information appear consistent and professional. Overall, the site is trustworthy, well-designed, and compliant with GDPR requirements.

B

Bielefeld Marketing GmbH

bielefeld-convention.de

0

Bielefeld Marketing GmbH operates the Bielefeld Convention website to promote the city of Bielefeld as a prime location for congresses, conferences, and events. The organization targets event planners and businesses seeking professional event services and locations in central Germany. The website offers detailed information about the location, services, partners, and contact persons, supported by a newsletter subscription and active social media presence. Technically, the site is built on Drupal CMS with Bootstrap framework, employing modern analytics and marketing tools such as Matomo and Facebook Pixel. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers are missing and no explicit security or incident response policies are published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, making it a reliable digital presence for the organization.

G

Gigerlas Lössel

gigerlas-loessel.de

0

Gigerlas Lössel is a traditional hospitality business based in Germany, specializing in Bavarian cuisine such as grilled chicken (Gigerla), Haxn, and homemade sausages. Established since 1927, the company has a strong local presence and participates in regional festivals like the Nürnberger Volksfest and Frühlingsfest. Their website reflects a well-maintained digital presence with clear branding and customer engagement features including online reservations and event information. The target audience is general public and festival attendees seeking authentic traditional food experiences. Technically, the website is built on WordPress using popular plugins and frameworks such as Bootstrap, Visual Composer, Slider Revolution, and Contact Form 7. The site is mobile optimized and includes GDPR-compliant cookie consent mechanisms via the Complianz plugin. Performance is moderate with good SEO and accessibility basics in place. From a security perspective, the site uses HTTPS with IP anonymization for Google Analytics and includes a cookie consent banner. However, it lacks advanced security headers and dedicated security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the security posture is adequate but could be improved with additional headers and formal policies. The website is trustworthy with clear contact information, consistent branding, and no suspicious content. The domain WHOIS data is partially consistent with the business claims, showing stable name servers but limited registrant details. No WAF or blocking mechanisms were detected, allowing full content access and analysis.

B

Bielefeld Marketing GmbH

bielefeld.jetzt

0

Bielefeld.JETZT is a professionally maintained city marketing and tourism website operated by Bielefeld Marketing GmbH, targeting residents, tourists, families, and students interested in cultural and recreational activities in Bielefeld, Germany. The site offers comprehensive event calendars, tourist information, online shopping for souvenirs and vouchers, and city tours, positioning itself as an essential resource for experiencing Bielefeld. Technically, the website is built on Drupal CMS with Bootstrap framework, ensuring responsive design and good accessibility. It integrates Matomo Analytics and Facebook Pixel for minimal user tracking with GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS enforcement and standard security headers, though no explicit security policy or incident response contacts are published. WHOIS data is unavailable due to privacy protection, which is justified for this type of public-facing marketing site. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with privacy regulations.

I

Instituto de Turismo de la Región de Murcia

murciaturistica.es

0

The website www.turismoregiondemurcia.es serves as the official tourism portal for the Costa Cálida region in Murcia, Spain. It is operated by the Instituto de Turismo de la Región de Murcia and provides comprehensive information on tourism activities, accommodations, events, and cultural experiences. The site targets tourists and visitors interested in exploring the Murcia region, offering multilingual support and booking functionalities. Technically, the site employs modern web technologies including Bootstrap, jQuery, Swiper, and integrates multiple tracking and analytics tools such as Google Analytics, Facebook Pixel, and Adform. The website is well-designed with good mobile optimization and clear navigation, reflecting a professional and trustworthy government tourism platform. Security-wise, the site uses HTTPS and secure external scripts but lacks visible security headers and explicit privacy or cookie policies, which are areas for improvement. WHOIS data is unavailable due to access restrictions, limiting domain trust verification, but the official branding and content quality support legitimacy. Overall, the site is a reliable and informative resource for tourism in Murcia with moderate technical and security maturity.

F

Ferienanlage Schönhagen

ferienanlage-schoenhagen.de

0

Ferienanlage Schönhagen is a well-established holiday and seminar facility located in Germany, offering accommodation and diverse program packages primarily for schools, sports clubs, and leisure groups. The website presents detailed information about the facility, its services, and recreational activities, reflecting a mature business with a strong regional presence. Technically, the site is built on WordPress with Elementor, uses modern plugins like Borlabs Cookie for consent management, and is hosted on INWX nameservers. Security posture is good with HTTPS enforced, though some security headers and policies could be improved. Privacy compliance is basic, lacking explicit privacy and terms of service pages. Overall, the site is professional, user-friendly, and trustworthy, with no signs of malicious content or blocking mechanisms.

O

OITS - ISTO

oits-isto.org

0

The website for OITS - ISTO represents a non-profit organization dedicated to promoting social and sustainable tourism globally. It provides informational resources, event announcements, and partnership details targeting tourism professionals and stakeholders interested in social tourism. The site is built on a JavaServer Faces framework with PrimeFaces and jQuery, hosted behind Cloudflare DNS, and uses a recently registered domain. While the content is relevant and well-structured, the site lacks critical privacy and cookie policies, security headers, and modern analytics tools, indicating room for improvement in compliance and security maturity. The domain's recent registration date contrasts with the apparent organizational maturity, suggesting a possible recent domain acquisition or migration.

G

GSTC - Global Sustainable Tourism Council

gstcouncil.org

0

The Global Sustainable Tourism Council (GSTC) operates as an international non-profit organization focused on managing global standards for sustainable travel and tourism. It serves as the accreditation body for sustainable tourism certification, providing standards, certification accreditation, training programs, and membership services. The website targets a broad audience including hotels, tour operators, destinations, business travelers, certification bodies, consultants, and travelers. The organization is positioned as a key authority in sustainable tourism with a professional and comprehensive digital presence. Technically, the website is built on WordPress using the Avada theme framework, enhanced with multilingual support via WPML, and optimized for SEO with Yoast SEO Premium. It employs modern technologies including Google Tag Manager, LinkedIn Insight, and CookieYes for cookie consent management. The site is fast, mobile-optimized, and accessible, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses security headers, and integrates bot management services from Akamai and Cloudflare. The cookie consent mechanism is robust, offering detailed categories and user customization. However, the absence of a publicly accessible privacy policy, explicit contact information, and a vulnerability disclosure policy are notable gaps. WHOIS data is unavailable or privacy protected, which is common for non-profit organizations but limits domain trust analysis. Overall, the website presents a low-risk profile with strong professionalism and security posture but would benefit from enhanced transparency in privacy and contact disclosures to improve compliance and trustworthiness.

C

Café Stoa Basel

cafestoa.ch

0

Café Stoa Basel is a small hospitality business located near the Christoph-Merian-Park in Basel, Switzerland. The café offers coffee specialties, food including pizza, focaccia, vegetarian and vegan menus, as well as apéro and catering services. The website positions the business as a local eatery with weekend and lunch offerings, targeting general audiences in the Basel area. The site is built on WordPress with a moderate technical infrastructure including modern JavaScript libraries and embedded Google Maps for location. Social media presence on Facebook and Instagram supports customer engagement. Security posture is adequate with HTTPS enabled but lacks advanced security headers and formal privacy or cookie policies, indicating room for compliance improvement. No forms or analytics scripts are detected, suggesting minimal data collection and tracking. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security best practices.

I

Input interior

inputinterior.dk

0

Input interior is a leading independent interior design and furnishing group operating across the Nordic region, specializing in tailored solutions for offices, hospitality, education, and care sectors. The company emphasizes sustainability and offers a broad product range supported by multiple regional websites and active social media engagement. The website demonstrates a mature digital presence with multilingual support and comprehensive content showcasing projects, news, and services. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies are not publicly documented. The absence of WHOIS data limits domain trust verification, but the professional presentation and business transparency mitigate concerns. Overall, Input interior presents a credible and well-established business with a strong online footprint.

I

Input interior

inputinterior.se

0

Input interiör is a leading independent interior design group in the Nordic region, specializing in tailored interior solutions for offices, hospitality, education, and healthcare sectors. The company operates multiple showrooms and offers a broad product range with a strong emphasis on sustainability and functionality. Their market position is strong, supported by certifications and a professional digital presence. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for performance, SEO, and mobile responsiveness. The use of Google Tag Manager and reCAPTCHA indicates a mature digital infrastructure. Security practices are good with HTTPS and cookie consent mechanisms, though some HTTP security headers could be improved. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent. Contact information is clearly presented, enhancing business credibility. Overall, the website and business present a low risk profile with strong trust indicators. The missing WHOIS data for the subdomain is not a significant concern given the overall professionalism and transparency of the site. Strategic recommendations include enhancing HTTP security headers and publishing a vulnerability disclosure policy.

S

Studio Bloc GmbH

studiobloc.de

0

Studio Bloc GmbH operates a regional chain of bouldering gyms serving the cities of Darmstadt, Mannheim, and Wiesbaden in Germany. The company positions itself as a local hospitality and sports service provider with a clear focus on climbing and bouldering activities. The website is professionally designed with consistent branding and clear navigation to subdomains representing each location. Contact information is prominently displayed and consistent across multiple data formats, enhancing trust and accessibility. From a technical perspective, the website uses standard HTML5 and CSS3 technologies hosted on 1blu servers, with no detected CMS or advanced frameworks. The site is moderately optimized for performance and mobile devices, with good SEO practices evident in meta tags and structured data. However, there is room for improvement in accessibility and modern technical enhancements. Security posture is moderate; while HTTPS is presumably enabled (inferred from URLs), no explicit security headers or policies are published. There is no cookie consent mechanism or incident response information, which are important for GDPR compliance and user trust. No analytics or tracking scripts were detected, indicating minimal user tracking. Overall, the website presents a low-risk profile with a legitimate business presence and good content quality. Strategic improvements in security headers, privacy compliance, and incident response transparency would enhance the security posture and regulatory adherence.

K

Urlaub in Kitzbühel, Tirol buchen | Wandern, Skifahren & mehr

kitzbuehel.com

0

The website www.kitzbuehel.com serves as a comprehensive tourism portal for the Kitzbühel region in Tirol, Austria. It provides information on year-round alpine activities including hiking and skiing, accommodation options, and local events. The site targets tourists and travelers seeking alpine vacation experiences. Technically, the site is built on TYPO3 CMS and integrates modern web technologies including Cookiebot for consent management, Google Tag Manager, Matomo analytics, and Facebook Pixel for marketing and tracking. The presence of a chat widget enhances user engagement. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and incident response information are not explicitly found. Privacy compliance is good with cookie consent and GDPR-related mechanisms, but no explicit privacy policy or terms of service pages were detected in the provided content. WHOIS data for the domain is missing, which raises concerns about domain registration transparency but does not necessarily indicate illegitimacy given the professional nature of the site. Overall, the site is well-designed, user-friendly, and trustworthy for its target audience.

A

Advantour

advantour.com

0

Advantour is a specialized boutique tour operator focusing on private and group tours along the Silk Road, Central Asia, and the Caucasus regions. Established in 2001, the company offers authentic, custom-made travel experiences emphasizing safety, comfort, and expert local partnerships. The website reflects a strong market position with clear branding, rich content, and a professional presentation targeting culturally curious travelers interested in niche destinations. Technically, the site employs a modern tech stack including Bootstrap and jQuery, with integrated analytics and marketing tools such as Google Analytics, Facebook Pixel, and Yandex Metrika. Mobile optimization and SEO practices are well implemented, though accessibility features are basic. Security posture is solid with HTTPS enforced and secure form handling, but lacks some advanced security headers and explicit incident response or security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Contact information is primarily via a web form, with no direct emails or phone numbers visible. Overall, the site is trustworthy, professional, and safe for general audiences.

T

TENNIUM GERMANY GMBH

hamburgopenatp500.com

0

The Bitpanda Hamburg Open ATP 500 website serves as the official digital presence for a major professional tennis tournament scheduled for May 16-23, 2026 in Hamburg, Germany. The site provides comprehensive information about the event including tournament details, player profiles, ticket purchasing options, news updates, and sponsor information. The business is positioned as a medium-sized event organizer within the hospitality and sports sectors, leveraging partnerships with notable sponsors such as Bitpanda and Betway. The website demonstrates a good level of digital maturity, utilizing WordPress CMS with modern front-end libraries and integrations for social media and marketing tools. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. Contact information is clearly presented, enhancing business credibility.

A

ASKÖ Sport GmbH

abc-ooe.at

0

ASKÖ Sport GmbH operates the ABC Bewegungscenter Oberösterreich, a regional sports and event center located in Linz, Austria. The company provides a range of services including sports activities, seminar facilities, accommodation, and restaurant services, targeting a general audience interested in sports and events. The website reflects a medium-sized regional business with consistent branding and clear contact information, supporting its market position as a trusted local service provider. Technically, the website is built on the Internetkonzepte.at CMS platform and utilizes modern JavaScript libraries such as jQuery, Owl Carousel, and integrates Google Analytics and Facebook SDK for tracking and marketing purposes. The site is mobile optimized with good navigation and SEO practices, although some accessibility features are basic. Performance is moderate, with room for improvement in loading speed and technical modernization. From a security perspective, the site enforces HTTPS and includes a cookie consent mechanism, indicating basic privacy compliance. However, it lacks explicit security policies, incident response information, and security headers, which are recommended to enhance its security posture. No vulnerabilities or exposed sensitive data were detected, and the WHOIS data confirms the legitimacy of the domain and company. Overall, the website presents a professional and trustworthy digital presence with moderate technical and security maturity. Strategic improvements in security policies, technical modernization, and enhanced privacy compliance would further strengthen the site's reliability and user trust.

S

Sportzentrum Niederösterreich

sportzentrum-noe.at

0

Sportzentrum Niederösterreich operates as a regional sports center in Austria, providing sports facilities and services primarily to athletes and sports enthusiasts within Niederösterreich. The website is built on WordPress and employs standard plugins such as Contact Form 7 and Complianz GDPR for cookie consent management. The site demonstrates a moderate level of digital maturity with good design quality, mobile optimization, and basic SEO practices. Security measures include HTTPS enforcement and Google reCAPTCHA integration, but lack explicit security policies and comprehensive contact details for incident response. Overall, the domain registration data aligns well with the website's regional focus, indicating legitimacy and trustworthiness.

Lumeum Verein Bethanien operates a cultural and spiritual venue in St. Niklausen, Switzerland, offering an immersive 360° film experience centered on the historical figures Niklaus von Flüe and Dorothee Wyss. The organization targets visitors interested in culture, spirituality, and history, providing ticketing, visitor information, and group visit services. The website is professionally designed, consistent in branding, and provides clear contact details and social media presence, positioning it as a trustworthy small non-profit entity in the hospitality and media sectors. Technically, the website is built on the Contao CMS platform and employs modern JavaScript libraries such as jQuery, Handorgel, and Swipe.js. It integrates third-party booking and tracking services from Smeetz and Google Analytics. The site is mobile-optimized with moderate performance and basic accessibility and SEO features. From a security perspective, the site uses HTTPS with good SSL configuration but lacks explicit security headers and visible security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Contact information is clearly provided, but incident response and vulnerability disclosure information are absent. Overall, the website is safe, family-friendly, and professionally maintained with a good security posture but could improve privacy compliance and security transparency. No WAF or blocking mechanisms were detected, allowing full content access and analysis.

A

Arosa Tourismus Genossenschaft

arosalenzerheide.swiss

0

Arosa Tourismus Genossenschaft operates the website arosalenzerheide.swiss, promoting the Arosa and Lenzerheide ski areas in Switzerland. The site targets tourists and winter sports enthusiasts, offering information about regional activities and attractions. The business is positioned as a regional tourism leader in Graubünden, Switzerland, with a medium-sized cooperative structure founded in 2015. Technically, the website employs modern frontend technologies such as Bootstrap 4, jQuery UI, and Cookiebot for cookie consent management. The site is served over HTTPS with a valid SSL certificate, but lacks some security headers and explicit privacy and terms of service documents. Security posture is moderate with room for improvement in headers and incident response contact information. Overall, the website is professional and trustworthy, but could enhance privacy compliance and security transparency to improve user trust and regulatory adherence.

B

Bitburger Braugruppe GmbH

dasgastroportal.de

0

DasGastroPortal is a professional B2B service portal operated by Bitburger Braugruppe GmbH, targeting both aspiring and experienced gastronomy professionals in Germany. The portal offers a comprehensive suite of services including a B2B shop for promotional materials, educational resources, partnership programs, and a marketplace for gastronomy properties. The website is well-branded, consistent, and designed to support the hospitality industry with a focus on alcohol-related products and services. Technically, the site is built on TYPO3 CMS with modern web technologies, optimized for mobile and SEO, and integrates privacy and cookie consent mechanisms. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. The site complies with GDPR and provides clear contact information but lacks explicit public security policies or incident response details. Overall, the site is trustworthy, professional, and mature audience appropriate due to alcohol content.

G

Göttingen Tourismus

goettingen-marketing.de

0

Göttingen Tourismus operates a comprehensive and professionally designed official tourism website for the city of Göttingen, Germany. The site provides extensive information on local attractions, events, accommodations, and cultural offerings, targeting tourists, families, and business visitors. The business model focuses on destination marketing and visitor engagement through digital content, event promotion, and booking facilitation. The website demonstrates strong branding consistency and trust indicators, including social media integration and structured data usage. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, Oxygen Builder, and Usercentrics for cookie consent management. It employs various third-party services for analytics (etracker), booking (Regiondo), and email marketing (Sendinblue). The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate and could benefit from further optimization. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. While no critical vulnerabilities or exposed sensitive data were detected, the site lacks explicit security headers and a published security policy or incident response contact. The WHOIS data is consistent with the website's official nature, showing no suspicious patterns or privacy protection that would raise concerns. Overall, Göttingen Tourismus presents a low-risk, trustworthy online presence with good privacy compliance and a solid technical foundation. Strategic improvements in security headers and incident response transparency could further enhance its security posture.

The website www.hotel-in-gstaad.com serves as a regional hospitality and tourism platform focused on the Gstaad area in Switzerland. It provides hotel booking services, restaurant listings, event information, and sightseeing guides tailored to tourists and travelers seeking accommodation and leisure activities in the Swiss Alps. The business model centers on facilitating bookings and promoting regional tourism, positioning itself as a specialized local service provider. The website content is professionally presented with good design quality, clear navigation, and relevant information for its target audience. Technically, the site is built on the MASCH CM Studio CMS platform, utilizing standard web technologies such as JavaScript, CSS, and jQuery UI components. While the site is moderately optimized for performance and mobile use, there is room for improvement in accessibility and mobile responsiveness. The presence of a TripAdvisor conversion pixel indicates integration with third-party marketing tools, but no extensive analytics or tracking services are detected. From a security perspective, the website enforces HTTPS and implements a cookie consent banner compliant with GDPR. However, no explicit security headers are detected in the HTML source, and no dedicated security or incident response policies are published. The absence of WHOIS registration data for the domain is a notable concern, as it reduces transparency and trust in domain ownership. Despite this, the website itself appears legitimate and professional, with no signs of malicious activity or vulnerabilities visible in the content. Overall, the site demonstrates a solid foundation for a regional hospitality platform but would benefit from enhanced security practices, improved domain registration transparency, and clearer contact information to strengthen trust and compliance.

Z

zur Mägd

zurmaegd.ch

0

Zur Mägd is an Italian restaurant located in Basel, Switzerland, offering authentic Italian cuisine, private events, and banquet services. The business operates under the parent company groupe-Oniro and targets local residents and visitors seeking Italian dining experiences. The website is built on WordPress with modern technologies such as jQuery and integrates Mailchimp for newsletter subscriptions. The site is professionally designed with good mobile optimization and clear navigation, providing comprehensive contact information and booking options. Security posture is solid with HTTPS enforced and no exposed sensitive data, though improvements can be made by adding security headers and cookie consent mechanisms. Privacy policies and terms of service are present and linked to the parent company’s domain, indicating compliance with GDPR. Overall, the website reflects a trustworthy and credible hospitality business with a moderate to good digital maturity level.

L

Le Rhin Bleu

lerhinbleu.ch

0

Le Rhin Bleu is a small hospitality business operating a seasonal restaurant located on the banks of the Rhine in Basel, Switzerland. The restaurant specializes in Mediterranean cuisine and offers additional services such as event hosting and gift voucher sales. The website is professionally designed using WordPress and integrates modern marketing and analytics tools including Google Tag Manager and Mailchimp. The business maintains a clear and consistent brand presence with active social media channels and partner affiliations. Technically, the website is well-implemented with HTTPS and cookie consent mechanisms, though it lacks explicit security and incident response policies. Overall, the site demonstrates a good security posture with no critical vulnerabilities detected. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

R

Restaurant Brauerei

brauerei-basel.ch

0

Restaurant Brauerei is a traditional Swiss hospitality business located in Basel, Switzerland, offering restaurant dining, an exclusive enothek wine shop, catering services, and event hosting. The business targets a general audience including locals and visitors seeking traditional and innovative Swiss cuisine, complemented by a curated wine selection. The website reflects a well-established local presence with clear contact information, partner affiliations, and a focus on customer experience. Technically, the site is built on WordPress with modern plugins and tools such as Yoast SEO, Google Tag Manager, and Mailchimp, indicating a moderate level of digital maturity. The site is mobile optimized and SEO friendly, supporting good user engagement. Security posture is solid with HTTPS enforced and cookie consent implemented, though some security headers and explicit policies could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, with no critical vulnerabilities detected.

R

Rifonsa AG

safran-zunft.ch

0

Safran Zunft is a traditional yet modern restaurant located in the heart of Basel, Switzerland, operated by Rifonsa AG. The business offers a blend of traditional ambiance with innovative cuisine focusing on local and seasonal products. It caters to a diverse clientele including local residents, tourists, and corporate clients, providing services such as restaurant dining, event hosting, catering, and home delivery. The website reflects a well-established hospitality business with multiple certifications and a strong local presence. Technically, the website is built on WordPress using modern tools such as WPBakery Page Builder, Google Tag Manager, and Mailchimp for marketing automation. It employs HTTPS with good SSL configuration and uses lazy loading for images to optimize performance. The site is mobile optimized and SEO friendly with structured data implemented via JSON-LD. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms compliant with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly present and there is no visible security policy or vulnerability disclosure page, which could be improved. The WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining regular audits of third-party scripts to further strengthen security posture.

O

Optimize AG

eventlokale.ch

0

eventlokale.ch is a well-established Swiss event portal operated by Optimize AG, offering a comprehensive marketplace for event locations, service providers, and event-related job listings. The platform targets event planners and individuals in Switzerland, positioning itself as the largest event portal in the country. The website provides rich content including editorial articles, event ideas, and the Swiss Location Award information, enhancing its market presence and user engagement. Technically, the site is built on modern frameworks such as Nuxt.js and Vue.js, with integrations of Google Analytics, Google Tag Manager, and Hotjar for analytics and user behavior tracking. The site is mobile-optimized and features good SEO practices, although accessibility could be improved. Security-wise, the site enforces HTTPS and includes standard security headers, but lacks visible privacy and cookie policies, which are critical for GDPR compliance. No contact emails or phone numbers were found, which may impact user trust and compliance. Overall, the site is professional and trustworthy but should address privacy compliance and contact transparency to enhance its security posture and user confidence.

G

Groupe-oniro

groupe-oniro.ch

0

Groupe-oniro is a Swiss hospitality group operating six distinct restaurant venues and catering services primarily located in Basel, Switzerland. Their business model focuses on delivering high-quality culinary experiences across diverse settings, from historic guild halls to modern terraces and Italian cuisine. The company targets a broad audience including locals, tourists, and event organizers, emphasizing authenticity and personal hospitality. Technically, the website is built on WordPress with modern SEO and cookie consent implementations, providing a good user experience with multi-language support and mobile optimization. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though formal security policies and incident response contacts are not published. The WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable digital presence for the hospitality group.

E

Ege Carpets

egecarpets.com

0

Ege Carpets is a Denmark-based company specializing in designing and manufacturing high-quality carpets for commercial use, including wall-to-wall carpets, carpet tiles, planks, and rugs. The company emphasizes sustainability and innovative design, targeting commercial sectors such as hospitality, office, retail, healthcare, and marine industries. Their website showcases rich multimedia content, custom design tools, and a strong sustainability agenda, positioning them as a reputable player in the commercial carpet market. Technically, the website employs modern JavaScript libraries, video integrations, and cookie consent management, reflecting a mature digital infrastructure. Security posture is generally good with HTTPS and cookie consent but lacks some advanced security headers and published security policies. WHOIS data is unavailable, which raises some legitimacy concerns, but the presence of detailed contact information and social media presence supports business credibility. Overall, the website is professional, user-friendly, and trustworthy, with room for improvement in security transparency and domain registration clarity.

M

Musée de la contrefaçon

musee-contrefacon.com

0

Musée de la contrefaçon is a specialized museum located in France, dedicated to educating the public about counterfeit goods, their history, and the importance of intellectual property. The museum offers exhibitions, guided tours, workshops, and educational resources targeting families, tourists, and groups. The website is built on WordPress with WooCommerce for ticketing and uses Piwik PRO for analytics. The technical infrastructure is modern and moderately performant, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled and domain protections, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is professional and trustworthy, but could improve in privacy and security transparency.

L

Lohosopo - Vertrieb für Ferienunterkünfte und Dmos

lohospo.de

0

Lohospo is a small German company specializing in sales and software solutions for vacation rentals, hotels, and destination management organizations (DMOs). Their website presents a professional image with clear business focus on hospitality sector services including booking software and channel management. The company leverages WordPress with the Divi theme and integrates SEO and analytics tools to support their digital presence. While the technical infrastructure is modern and performance is moderate, the site lacks published privacy and terms of service policies, which impacts compliance and trust. Security posture is generally good with HTTPS and anti-spam measures, but could be improved with additional security headers and published policies. Overall, the website is accessible, well-branded, and targets B2B hospitality clients effectively.

H

Holidu Hosts GmbH

bookiply.com

0

Bookiply is a vacation rental management platform focused on helping hosts maximize bookings and reduce administrative workload. It operates primarily in Europe and is part of the Holidu Group, a recognized entity in the hospitality sector. The website offers a comprehensive suite of services including property listing, channel management, and personal support for hosts. The company targets vacation rental owners and agencies, providing an all-in-one solution to increase visibility and revenue. Technically, the website is built using modern web technologies such as React and Next.js, hosted on AWS in Ireland, and integrates multiple analytics and marketing tools including Google Analytics, Hotjar, and Facebook Pixel. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not publicly disclosed, which could be improved. The WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is mitigated by the professional presentation and detailed imprint. Overall, Bookiply presents a trustworthy and professional online presence with strong compliance and technical maturity. Strategic improvements in transparency around security policies and incident response would enhance its security posture and trustworthiness further.

B

Bad Egelsee

badegelsee.ch

0

Bad Egelsee is a public family and sports swimming facility located in Kreuzlingen, Switzerland, offering a variety of aquatic and wellness services including sport pools, family pools, saunas, and steam baths. The website presents a professional and consistent brand image targeting families, sports swimmers, and wellness seekers in the local community. The business model focuses on providing recreational and health-related aquatic services with a clear emphasis on family-friendly and sports-oriented offerings. Technically, the website uses modern JavaScript frameworks such as Alpine.js and integrates Matomo for analytics, indicating a moderate level of digital maturity. The site is mobile-optimized and SEO-friendly with good accessibility features, although some accessibility aspects could be improved. Security posture is solid with HTTPS enforced and cookie consent implemented, but lacks published security policies or incident response information. Overall, the website is trustworthy and professionally maintained with no signs of malicious activity or content safety concerns.

U

Up spot

upspot.app

0

UP Spot operates a French-language website promoting a mobile application for guided tourist visits, focusing on cultural, historical, and architectural heritage. The business targets tourists and residents seeking flexible, self-paced tours via curated circuits with multimedia content. The website is professionally designed, mobile-optimized, and integrates modern web technologies including Bootstrap 4, jQuery, and Google Analytics. Privacy and cookie policies are implemented with GDPR compliance, and social media presence is established on Facebook and Instagram. However, direct contact emails and phone numbers are not explicitly provided, relying instead on contact forms. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks explicit security policies or vulnerability disclosure channels.

W

Winti Mäss GmbH

wintimaess.ch

0

Winti Mäss GmbH operates a regional event website focused on the Winti Mäss event in Winterthur, Switzerland, targeting families and the general public with offerings including gastronomy, live music, and entertainment. The website is built on WordPress with a modern tech stack including Bootstrap and jQuery, and it employs standard plugins such as Real Cookie Banner for GDPR compliance. The site demonstrates good digital maturity with mobile optimization and SEO best practices. Security posture is strong with HTTPS enforced and appropriate security headers, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is trustworthy, professional, and compliant with relevant privacy regulations.

E

Eiscafé Acero GmbH

acero.ch

0

Eiscafé Acero GmbH operates a small hospitality business in Basel, Switzerland, specializing in homemade Italian ice cream and bistro offerings. The company runs a main bistro location and a seasonal ice cream kiosk, targeting local customers and visitors seeking authentic Italian-style treats. The website is built on the Contao CMS platform and uses common JavaScript libraries such as jQuery and Isotope, providing a moderate performance and good mobile optimization. Security posture is adequate with HTTPS usage but lacks advanced security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional and trustworthy, reflecting a legitimate small business with clear contact information and social media presence.