Security Directory

The website valao.de serves as a simple informational landing page announcing the rebranding of valao digital to Tidenhub Digital GmbH and the migration of all content to website-tutor.com. The business focuses on providing digital project guidance and educational content primarily targeting beginners in digital projects. The site is minimalistic with basic HTML and CSS, hosted via INWX nameservers, and lacks advanced technical frameworks or CMS. Security posture is limited with no detected security headers or privacy policies, and no analytics or tracking technologies are present. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional but basic, with room for improvement in security and privacy compliance.

H

Holzwerk GmbH

holzwerk-celle.de

0

Holzwerk GmbH is a small regional German company specializing in carpentry, roofing, and renovation services, particularly focusing on traditional woodwork and altbausanierung (old building restoration). The company serves the Celle area and nearby cities such as Hannover and Braunschweig, positioning itself as a trusted master craftsman business with a focus on quality and customer orientation. Their website provides detailed service descriptions, references, and contact information, supporting their local market presence. Technically, the website is a static or custom-built site using basic HTML, CSS, and JavaScript, with Google Analytics integrated for visitor tracking. The site lacks modern CMS or frameworks and shows basic mobile optimization and accessibility. Hosting is managed via nsentry.de nameservers, indicating a professional hosting environment. SEO is adequately addressed with meta tags and structured navigation. From a security perspective, the site lacks visible HTTPS enforcement and security headers, which are critical for protecting user data and ensuring trust. The presence of a cookie consent banner and privacy policy indicates some GDPR compliance, but incident response and security policies are absent. Google Analytics is configured with IP anonymization, reflecting some privacy awareness. Overall, the website is functional and credible for a small business but requires improvements in security posture and technical modernization to enhance trust and compliance.

E

echo medienhaus

echo.at

0

echo medienhaus is a medium-sized Austrian media company specializing in print and digital media, event management, and agency services. The website reflects a professional media house with a consistent brand presence and a diversified portfolio of media and event partners. The technical infrastructure is based on WordPress CMS using the Enfold theme and Avia framework, with moderate performance and good mobile optimization. Google Analytics is used for visitor tracking with a cookie consent mechanism implemented. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is limited due to the absence of a clear privacy policy and terms of service. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced compliance and security documentation.

M

MaxFun Sports GmbH

maxfunsports.com

0

MaxFun Sports GmbH operates a leading Austrian running sports platform focused on providing comprehensive content, event registration, race results, multimedia, and community engagement for runners and sports enthusiasts primarily in Austria and German-speaking regions. The website is well-structured, content-rich, and professionally designed, offering a broad range of services including news, training plans, and event calendars. The platform integrates modern web technologies such as jQuery, Bootstrap, and Google Tag Manager, and employs a custom CMS likely based on the Yii framework. Privacy compliance is robust with a comprehensive privacy policy and cookie consent mechanism implemented via CookieFirst. Security posture is good with HTTPS and CSRF protections, though some security headers are missing and no explicit security policy or incident response information is provided. The domain WHOIS data is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional appearance and active business presence. Overall, the website scores well on content quality, technical implementation, and privacy compliance but is penalized for the lack of verifiable domain registration data.

A

Anaveo

anaveo.com

0

Anaveo is a French company specializing in intelligent video surveillance and electronic security solutions. Positioned as a leader in the French market, it offers a comprehensive portfolio of services including video surveillance, access control, intrusion and fire detection, remote monitoring, and a suite of smart security and business applications. The website targets business customers across multiple sectors such as retail, hospitality, healthcare, logistics, and urban mobility. The company emphasizes transforming environments into safer, smarter, and more efficient spaces through innovative technology.

Z

ZUK

zuk.es

0

ZUK is a Barcelona-based digital agency specializing in web design, online stores, and digital marketing services including SEO and SEM. With over 20 years of experience, they position themselves as a trusted partner for businesses seeking digital transformation and enhanced online presence. Their website reflects a professional and modern approach, leveraging WordPress and Elementor for content management and design. The agency demonstrates compliance with GDPR and cookie consent regulations, integrating tools such as Complianz and Google reCAPTCHA to enhance privacy and security. While WHOIS data is unavailable due to registry restrictions, the website's content and contact information support its legitimacy. Security posture is good with HTTPS and anti-bot measures, though improvements in security headers could be made.

G

GLS Zukunftsstiftung Entwicklung

zukunftsstiftung-entwicklung.de

0

GLS Zukunftsstiftung Entwicklung is a German non-profit foundation dedicated to supporting sustainable development projects in Africa, Asia, and Latin America. The organization focuses on key areas such as emancipatory education, renewable energies, holistic health, microcredits, human and environmental rights, organic farming, sponsorships, and emergency aid. Their business model revolves around partnerships with local groups and funding through donations, targeting socially conscious donors and partners. The foundation maintains a strong market position within the non-profit development sector in Germany, supported by affiliations with GLS Bank and GLS Treuhand.

Z

Zukunftsstiftung Mensch und Gesellschaft

zukunftsstiftung-mensch-und-gesellschaft.de

0

Zukunftsstiftung Mensch und Gesellschaft is a German non-profit foundation affiliated with GLS Treuhand, focused on fostering social development through individual initiative and supporting innovative projects. The website clearly communicates its mission and services, targeting socially engaged individuals and organizations. The foundation operates within a niche market of social foundations and non-profit initiatives, leveraging partnerships with related foundations under the GLS Treuhand umbrella. Technically, the website is built on TYPO3 CMS, employs privacy-respecting Matomo analytics, and integrates accessibility tools such as eyeAble. The site is mobile-optimized, SEO-friendly, and provides a good user experience with clear navigation and professional design. The presence of cookie consent mechanisms and structured data indicates a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent tools, but lacks explicit security policy and incident response information. No critical vulnerabilities or exposed sensitive data were detected. The domain registration data is consistent and trustworthy, supporting the legitimacy of the foundation. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements could include publishing a dedicated security policy, incident response contacts, and enhancing security headers to further strengthen the security posture.

B

Bary

bary.app

0

Bary is a French company specializing in digital transformation for the transportation sector, offering a bespoke B2B e-commerce platform that enables transporters to sell their services online. Supported by major transport groups and federations, Bary positions itself as a trusted partner for transport companies seeking to modernize and grow their business. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content tailored to transporters and shippers. Technically, the site is built on WordPress with modern libraries and frameworks, integrating marketing and analytics tools such as HubSpot and Google Analytics, and implements GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the site demonstrates high business credibility and compliance with privacy regulations.

K

Kultursaat e.V.

kultursaat.org

0

Kultursaat e.V. is a German non-profit association dedicated to biodynamic plant breeding and the preservation of cultivated plant varieties. Established in 2004, the organization focuses on breeding open-pollinated vegetable varieties for ecological agriculture, aiming to conserve agricultural biodiversity and cultural heritage. Their website reflects a niche market position targeting ecological farmers, researchers, and supporters of biodynamic agriculture. The business model is centered on research, education, membership, and donations. Technically, the website is built on the TYPO3 CMS platform, utilizing modern web technologies and incorporating Matomo analytics for privacy-conscious user tracking. The site demonstrates good mobile optimization, clear navigation, and a professional design. Performance is moderate, with room for improvement in accessibility features. The hosting provider is not explicitly identified, but DNS uses powerdns.de name servers. From a security perspective, the site uses HTTPS and implements a comprehensive cookie consent mechanism aligned with GDPR requirements. However, DNSSEC is not enabled, and no advanced security headers were detected in the provided data. There is no published security policy or incident response contact information, which could be improved to enhance trust and compliance. No vulnerabilities or exposed sensitive data were found. Overall, the website is trustworthy, professional, and compliant with privacy regulations. The domain registration data aligns well with the organization's profile, indicating legitimacy and stability. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing security and incident response policies to strengthen the security posture and user trust.

E

EXPO-BOOK

expo-book.com

0

EXPO-BOOK is an international exhibition portal and social network established in 2012, offering a comprehensive platform for exhibitions, companies, tenders, jobs, and communities related to the exhibition industry. The website targets exhibitors, visitors, and professionals seeking information and networking opportunities in the exhibition sector. It maintains a large database of exhibitions, companies, and members, positioning itself as a significant player in the international exhibition market. Technically, the website employs a custom CMS with a technology stack including jQuery, jQuery UI, Google Translate integration, and Yandex Metrika for analytics. The site demonstrates moderate performance and basic mobile optimization. SEO and accessibility features are present but could be improved. Hosting and domain registration are managed through RU-CENTER with privacy protection enabled. From a security perspective, the site uses HTTPS and has domain transfer protection but lacks DNSSEC and important security headers such as Content-Security-Policy and HSTS. No explicit security or incident response policies are published, and cookie consent mechanisms are absent, indicating partial compliance with privacy regulations. The site does not expose sensitive data or use vulnerable libraries visibly. Overall, the website is professionally designed and functional with a moderate security posture and basic privacy compliance. Strategic improvements in security headers, DNSSEC, and privacy mechanisms would enhance trust and compliance. The domain's long age and stable registration support the site's legitimacy, with no suspicious indicators detected.

The website ww1.weluma.com appears to be a non-registered or parked subdomain with minimal content. The site primarily consists of an embedded iframe from an unrelated external domain and includes tracking pixels. There is no visible business information, contact details, or privacy policies, indicating a lack of legitimate business presence or operational website. The domain WHOIS data confirms no registration, which further undermines trust and legitimacy. Technically, the site lacks HTTPS enforcement and security headers, and the content quality is poor with minimal user engagement features. Security posture is weak due to the absence of best practices and the presence of third-party tracking without transparency. Overall, the site is likely a placeholder or proxy with WAF or security filtering mechanisms limiting content access.

B

Bundeszahnärztekammer - Arbeitsgemeinschaft der Deutschen Zahnärztekammern e.V. (BZÄK)

bzaek.de

0

The Bundeszahnärztekammer (BZÄK) is the professional association representing all dentists in Germany. The website serves as an authoritative platform providing information, guidelines, and resources for dental professionals, patients, and the press. It maintains a strong national presence as the official body for dental health policy and professional standards. The site offers comprehensive content including press releases, prevention information, legal and regulatory guidance, and educational materials. The target audience includes dentists, dental teams, patients, and media representatives.

S

Stadtkino Basel

stadtkinobasel.ch

0

Stadtkino Basel operates as a cultural cinema venue in Basel, Switzerland, offering a diverse program of film screenings, special series, and events. The website reflects a well-established regional cinema with a focus on community engagement and cultural enrichment. The business model centers on ticket sales, memberships, and hosting film-related events, targeting general audiences and film enthusiasts. The site is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the website uses a modest tech stack including jQuery and Lightbox.js, with Google Fonts for typography. The site is mobile optimized and performs moderately well, though there is room for improvement in accessibility and SEO. No major CMS is detected, suggesting a custom or lightweight platform. Security-wise, HTTPS is enforced, but security headers are lacking, and no explicit security or incident response policies are published. Privacy compliance is partially addressed with a privacy policy and terms of service, but cookie consent mechanisms are absent. Overall, the security posture is adequate but could be enhanced by implementing security headers, vulnerability disclosure policies, and cookie consent. The domain registration data aligns well with the business identity, supporting legitimacy. No suspicious or malicious indicators were found. The website content is safe for general audiences, with no adult or explicit material detected.

J

Jede Minute

heromed.de

0

Jede Minute is a specialized German company focused on the sales and servicing of Automated External Defibrillators (AEDs), catering primarily to former Heromed customers and other clients requiring AED maintenance and support. Their offerings include original replacement parts, device checks by certified medical technicians, and a range of AED brands such as LIFEPAK, Progetti Rescue SAM, HeartSine, ZOLL Medical, Philips Medical Systems, and CU Medical Systems. The company operates an e-commerce platform built on WordPress with WooCommerce, enhanced by Elementor for design and Yoast SEO for search optimization. They leverage Cloudflare for DNS and CDN services, ensuring reliable hosting and performance.

S

Stiftung Nationale Anti Doping Agentur Deutschland (NADA)

nada.de

0

The Nationale Anti Doping Agentur Deutschland (NADA) is a German government-affiliated non-profit foundation established in 2002, serving as the authoritative body for anti-doping efforts in German sports. The organization focuses on ensuring fairness and equal opportunity in sports through testing, education, legal enforcement, and international cooperation. The website reflects this mission with professional content, clear navigation, and a focus on transparency and compliance. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs Cookiebot for GDPR-compliant cookie consent management. Matomo Analytics is used for privacy-conscious visitor tracking. The site is well-optimized for mobile devices and accessibility, with good SEO practices and a moderate performance profile. From a security perspective, the site enforces HTTPS, implements standard security headers, and manages cookie consent effectively. However, it lacks explicit published security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced trust and compliance. No critical vulnerabilities or suspicious patterns were detected. Overall, the website presents a trustworthy, professional, and compliant digital presence for a government-related non-profit organization. Strategic improvements in security transparency and incident response readiness would further strengthen its posture.

K

K-Swiss

kswiss.de

0

K-Swiss.de is the official German-language online shop for the established American tennis brand K-Swiss, specializing in sneakers and racketsport apparel. The website targets European tennis enthusiasts and operates on the Shopify platform with localized versions for multiple European countries. The site offers a professional e-commerce experience with product releases, promotions, and customer engagement through forms protected by Google reCaptcha. Technically, the site leverages modern web technologies and integrates marketing and analytics tools such as Klaviyo, Microsoft Clarity, and Trustpilot, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and secure form handling, though explicit security headers could be improved. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site presents a trustworthy and professional retail presence with no critical vulnerabilities detected.

T

TENNIUM GERMANY GMBH

hamburgopenatp500.com

0

The Bitpanda Hamburg Open ATP 500 website serves as the official digital presence for a major professional tennis tournament scheduled for May 16-23, 2026 in Hamburg, Germany. The site provides comprehensive information about the event including tournament details, player profiles, ticket purchasing options, news updates, and sponsor information. The business is positioned as a medium-sized event organizer within the hospitality and sports sectors, leveraging partnerships with notable sponsors such as Bitpanda and Betway. The website demonstrates a good level of digital maturity, utilizing WordPress CMS with modern front-end libraries and integrations for social media and marketing tools. However, it lacks explicit privacy and cookie policies, which are critical for GDPR compliance and user trust. Contact information is clearly presented, enhancing business credibility.

The domain carediogroup.com is registered since 2016 with Register SPA and uses nameservers consistent with the registrar. However, the website content is currently inaccessible, returning a 403 Forbidden error page, indicating that access is blocked or restricted. No business-related content, contact information, or policies are available on the site, which severely limits the ability to assess the company's operations or services. The lack of HTTPS and security headers further reduces the security posture of the domain. Overall, the website appears to be down or intentionally restricted, resulting in a poor user experience and low trustworthiness.

T

Transports Brevet

brevet.fr

0

Transports Brevet is a well-established French transportation company specializing in the logistics and transport of fresh and frozen products nationwide. Founded in 1966, it operates multiple logistics platforms and offers professional transport and storage services tailored to business clients. The website reflects a medium-sized enterprise with a clear focus on transportation and logistics within France. Technically, the site is built on Joomla CMS with modern front-end libraries such as Bootstrap and jQuery, and it includes Google Analytics for visitor tracking. The site is mobile-optimized and presents a professional design with clear navigation and relevant content. Security-wise, the site uses HTTPS and implements a cookie consent banner, but lacks visible security headers and explicit security or incident response policies. The absence of WHOIS registration data is a notable gap, limiting domain trust verification. Overall, the website is functional, professional, and safe for general audiences, but could improve in security transparency and compliance documentation.

T

Transports Baudouin

transports-baudouin.fr

0

Transports Baudouin is a medium-sized French transportation and logistics company established in 2017, offering a wide range of freight and vehicle rental services across France and 45 European countries. The company maintains a professional and consistent online presence with a well-structured Drupal 9 website, providing detailed service information and customer testimonials. The technical infrastructure is modern and includes standard analytics and cookie consent mechanisms, reflecting a good level of digital maturity. Security posture is adequate with HTTPS and cookie consent, though improvements in HTTP security headers and incident response disclosures are recommended. Overall, the website is trustworthy, compliant with GDPR, and serves its business audience effectively.

G

Groupe Bernardi

bernardi-logistique.fr

0

Groupe Bernardi is a well-established French transportation and logistics company founded in 1961, specializing in national and international freight transport, storage, and distribution services. The company leverages its membership in the ASTRE network to extend its market reach and offers a variety of services including palletized freight, bulk transport, and logistics solutions. Their digital presence includes an online booking platform and client portals, reflecting a moderate level of digital maturity. Technically, the website is built on the SPIP CMS with modern web technologies such as Bootstrap and JavaScript libraries. It features responsive design and good SEO practices, although some accessibility features could be improved. The site uses HTTPS and includes GDPR-compliant cookie consent mechanisms, indicating attention to privacy and security. From a security perspective, the website demonstrates good practices such as HTTPS enforcement and cookie consent but lacks explicit security policies and incident response contacts. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with the business claims, supporting the legitimacy of the domain and company. Overall, the website presents a professional and trustworthy image with solid business credibility and compliance. Strategic improvements in security headers and incident response transparency would further enhance their security posture.

A

AVANZINI

avasped.it

0

Avanzini is a well-established Italian logistics and transportation company with over 30 years of experience, primarily serving clients in Italy and across Europe. The company offers comprehensive transport and integrated logistics solutions, including specialized services for wine, beer, and alcoholic products. Their market position is strong in Verona, supported by multiple operational sites and a significant volume of shipments and warehouse space. Technically, the website employs modern JavaScript libraries and frameworks, ensuring a good user experience with mobile optimization and basic accessibility. Privacy compliance is robust, featuring a comprehensive cookie consent mechanism and GDPR-aligned policies. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response documentation are recommended. Overall, the website reflects a professional and trustworthy business with clear contact information and certifications that enhance credibility.

A

Anexa Logística

anexalogistica.com

0

Anexa Logística is a medium-sized Spanish logistics company specializing in omnichannel logistics, global forwarding, and land transport services. With over 20 years of experience, it serves B2B, B2C, and B2B2C clients, offering comprehensive supply chain solutions including customs clearance and value-added services. The website is professionally designed using WordPress and Elementor, featuring modern technologies and GDPR-compliant privacy and cookie policies. Security posture is good with HTTPS and reCAPTCHA protections, though some security headers could be improved. The absence of WHOIS data reduces domain trustworthiness, but the business content and certifications support legitimacy. Overall, the site is well-structured, user-friendly, and trustworthy for its target audience.

A

Allied Express Cargo S.L.

allied-express.com

0

Allied Express Cargo S.L. is a Spanish logistics and transportation company founded in 2000, providing national and international distribution, customs clearance, and supply chain management services. The company is a member of Grupo ASTRE, which enhances its market position and service network. The website reflects a professional business with clear service offerings targeted at businesses requiring logistics solutions. Technically, the site is built on WordPress with common plugins and uses Google Analytics for tracking. The site is mobile optimized and has good design and navigation, though SEO and accessibility are basic. Security posture is adequate with HTTPS enabled but lacks DNSSEC and security headers, and no explicit incident response or vulnerability disclosure policies are present. Privacy compliance is basic with privacy and cookie policies present but no consent mechanism. Overall, the domain age and WHOIS data support the legitimacy of the business. Strategic improvements in security and privacy compliance would enhance trust and resilience.

T

Transports Allemand

transports-allemand.fr

0

Transports Allemand is a well-established French transportation and logistics company specializing in road freight, storage, and freight forwarding services. Founded in 1942, it operates primarily in the regional, national, and international transport sectors and is a member of the ASTRE European transport group. The company emphasizes reliability, rapid delivery, and sustainable practices, including a fully Euro 6 compliant vehicle fleet and an ongoing RSE commitment. Their website reflects a professional business presence with clear service offerings and contact information. Technically, the website is built on WordPress using Elementor and Yoast SEO, hosted by OVH, and incorporates modern web technologies including Google Tag Manager and Facebook SDK for analytics and marketing. The site is mobile-optimized and SEO-friendly, though accessibility features are basic. Security posture is good with HTTPS enforced and cookie consent implemented, but lacks advanced security headers and explicit security policies. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. The domain registration data aligns well with the company's history and business claims, supporting legitimacy. The site complies with GDPR through cookie consent and privacy policy presence. No WAF or blocking mechanisms were detected, allowing full content access. Strategically, the company should enhance its security transparency by publishing security policies and incident response contacts, improve accessibility, and maintain regular audits of third-party scripts. These steps will strengthen trust and compliance in an increasingly regulated environment.

T

Tempologis

tempologis.fr

0

Tempologis is a French transportation and logistics group comprising subsidiaries Auto Express Moderne (AEM) and Transports Pluviaud Organisation (TPO). The company offers tailored transport and logistics solutions including road freight, specific transport, warehousing, packaging, and related services. It is a member of the ASTRE network, enhancing its market reach and service quality. The website demonstrates a mature digital presence with modern technologies, SEO optimization, and GDPR compliance. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and policies could be improved. WHOIS data is unavailable, which slightly impacts domain trust but does not detract from the business legitimacy evidenced by certifications and customer testimonials.

I

Inside Groupement Flo

inside-flo.fr

0

Inside Groupement Flo operates a secure login portal likely intended for members or employees, providing controlled access to internal services. The website is minimalistic, focusing on authentication without public-facing content or detailed business descriptions. The technical infrastructure uses the Foundation CSS framework and jQuery library, hosted via OVH, a reputable provider. Mobile optimization and accessibility are basic but functional. Security posture shows some positive practices such as CSRF token implementation in the login form; however, the absence of visible security headers and privacy policies indicates room for improvement. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the site is moderately secure but lacks transparency and compliance documentation.

The website porotech.com is currently inaccessible due to a security challenge page implementing a JavaScript-based proof-of-work CAPTCHA. This indicates the presence of a Web Application Firewall (WAF) or similar security mechanism blocking direct access to the site's content. As a result, no business, contact, or policy information is available for analysis. The visible page is minimal, focused solely on verifying the visitor is not a bot, with no SEO or user engagement content. The technical infrastructure includes modern JavaScript features and uses AWS Cloudfront CDN for content delivery. However, no security headers or SSL configuration details are visible in the provided data. Overall, the site’s security posture cannot be fully assessed due to the blocking mechanism, and the lack of accessible content limits the ability to evaluate privacy compliance or business credibility.

S

SECURTRUCK

securtruck.fr

0

SECURTRUCK is a French company specializing in anti-siphoning technology for fuel tanks, targeting transportation and fleet management sectors. Their flagship product, SECURTANK, uses advanced 3D digital sensors to detect tampering and theft attempts in real-time. The company positions itself as a niche provider with a focus on innovation and ease of installation, emphasizing a non-intrusive, tool-free setup. The website reflects a professional and modern digital presence built on WordPress with Elementor, featuring multimedia content to demonstrate product capabilities. Social media integration and client logos enhance credibility. However, the absence of a privacy policy and explicit security policies indicates room for compliance improvement.

F

Förderverein Landesgartenschau Bad Nenndorf 2026

foerderverein-laga26.de

0

The Förderverein Landesgartenschau Bad Nenndorf 2026 is a small non-profit organization dedicated to supporting the Landesgartenschau 2026 event in Bad Nenndorf, Germany. The website serves as an informational and engagement platform for local citizens, clubs, and businesses to participate in the event's development and related projects. The organization emphasizes sustainable and community-focused development of local parks and infrastructure. Technically, the website is built on WordPress with Elementor and Astra theme, employing modern web technologies and a cookie consent mechanism via Borlabs Cookie. Security posture is moderate, with HTTPS enabled but lacking some recommended security headers and formal privacy documentation. No contact emails or phone numbers are explicitly provided in the accessible content, which limits direct communication channels. Overall, the site is professionally designed, mobile-optimized, and trustworthy for its intended audience, but could improve compliance and security practices.

L

LaGaSaGa

lagasaga.de

0

LaGaSaGa is a German cultural storytelling project centered around the character Nennia, the guardian of the Süntelbuchen forests near Bad Nenndorf. The website promotes stories, podcasts, and cultural events related to the Landesgartenschau 2026 in Bad Nenndorf. The site is built on WordPress with modern SEO and multimedia integration, including podcasts on Spotify and embedded YouTube videos. The technical infrastructure is solid, hosted on kasserver.com with HTTPS enabled and uses popular plugins like Yoast SEO and WPBakery Page Builder. Security posture is good with no obvious vulnerabilities or exposed sensitive data, but lacks some security headers and formal policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanisms. Overall, the site is professional, trustworthy, and well-branded but should improve compliance and security documentation.

C

Central Asian Expo Uzbekistan

caexuzbekistan.com

0

CAEx Uzbekistan is a modern international exhibition center located in Tashkent, Uzbekistan, serving as a major business arena in Central Asia. It offers versatile pavilion spaces adaptable for various projects and event formats. The center is a member of prestigious international exhibition associations UFI and IAEE, underscoring its commitment to quality and international standards. The website targets businesses and event organizers seeking exhibition and event hosting services in the region. Technically, the website employs modern web technologies including Swiper.js for interactive galleries, AOS for animations, Google Tag Manager and Yandex Metrika for analytics, and a live chat widget for customer engagement. The site is hosted behind Cloudflare DNS and CDN services, ensuring reliable performance and security. The design is professional, mobile-optimized, and provides clear navigation and relevant content. From a security perspective, the site uses HTTPS with a valid SSL certificate and has domain transfer protections enabled. However, DNSSEC is not enabled, and no explicit security headers were detected, which are areas for improvement. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or GDPR-specific disclosures. Contact information is clearly provided, but no incident response or vulnerability disclosure policies are available. Overall, the website presents a trustworthy and professional image suitable for its business purpose. Strategic improvements in security headers, DNSSEC, and privacy compliance would enhance its security posture and regulatory adherence.

O

O‘zbekiston Avtomobil Biznesi Uyushmasi

abauzbekistan.uz

0

O‘zbekiston Avtomobil Biznesi Uyushmasi is a national non-profit association uniting automotive manufacturers, component producers, distributors, and dealers in Uzbekistan. The organization aims to develop the automotive industry, promote standards, support export and localization, and represent member interests. The website is professionally designed, content-rich, and targets industry stakeholders and partners. Technically, it uses modern JavaScript libraries and analytics tools, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and CSRF protections, though some security headers and policies could be improved. Privacy compliance is basic with a cookie consent mechanism and privacy policy present. Overall, the domain registration aligns well with the business founding date, supporting legitimacy.

K

Komtrans Tashkent + Futuroad Expo Tashkent

comtrans.uz

0

Komtrans Tashkent + Futuroad Expo Tashkent is a newly established international exhibition platform focused on cargo and commercial transport in Uzbekistan and Central Asia. The website serves as a B2B platform for showcasing products, technologies, and solutions in the commercial transport sector. The event is positioned as a leading regional exhibition with a professional digital presence built on the Tilda CMS platform. The technical infrastructure includes modern web technologies and integration with Google Tag Manager for analytics. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal privacy and cookie policies, indicating room for improvement in compliance and security maturity. Overall, the website is functional, professionally designed, and trustworthy, with clear contact information and social media presence. Strategic recommendations include enhancing privacy compliance, implementing security headers, and publishing incident response policies to strengthen trust and security posture.

B

Bundesverband BioEnergie e.V. (BBE)

fachverband-holzenergie.de

0

Fachverband Holzenergie is a German industry association dedicated to promoting sustainable wood energy usage. It operates under the umbrella of Bundesverband BioEnergie e.V. (BBE) and provides advocacy, publications, events, and working groups to support the wood energy sector. The website is professionally designed, content-rich, and targets industry stakeholders, policymakers, and environmental advocates. The association holds a solid market position within Germany's renewable energy landscape, focusing on sustainable forestry and climate protection through wood energy. Technically, the website is built on the Concrete5 CMS platform, utilizing modern JavaScript libraries such as jQuery and LayerSlider for interactive content. The site is mobile-optimized with good navigation and accessibility features, although some accessibility aspects could be improved. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and does not provide visible security policies or incident response contacts. No vulnerabilities or exposed sensitive data were found. Analytics are handled via Matomo, emphasizing privacy compliance with cookie opt-in. Overall, the website presents a trustworthy and professional front for the Fachverband Holzenergie association. Strategic improvements in security headers, incident response transparency, and accessibility would enhance its security posture and compliance. The domain WHOIS data is minimal but consistent with the website's German focus, supporting legitimacy. No WAF or blocking mechanisms interfere with content access.

S

Schweizerischer Katholischer Presseverein

skpv.ch

0

The Schweizerischer Katholischer Presseverein (SKPV) is a well-established non-profit organization dedicated to promoting Catholic media work in Switzerland. With a history spanning over a century, the organization offers key services including a media kiosk, educational courses for church media professionals, a comprehensive media list, and a historical chronicle of Catholic media. The website reflects this mission with focused content and a consistent brand presence. Technically, the site is built on a modern WordPress platform using the Kadence theme and blocks, ensuring good mobile optimization and moderate performance. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is minimal, with no visible privacy or cookie policies or consent mechanisms. Overall, the site is trustworthy and professional but would benefit from enhanced privacy and security disclosures.

B

b&s creations

bs-creations.ch

0

b&s creations is a small Swiss-based service provider specializing in design, web design, and text content creation. The website presents basic information about their services and showcases client projects, targeting small to medium businesses or individuals seeking creative digital services. The technical infrastructure is based on CMSimple with older jQuery libraries and includes basic interactive elements such as sliders and cookie consent banners. Security posture is limited with no visible HTTPS confirmation or security headers, and no explicit contact emails or phone numbers are provided, relying on a contact form instead. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page in German. Overall, the website is functional but basic in design and security, with room for modernization and enhanced trust signals.