Security Directory

The website blksamarinda.id is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) blocking the visitor. The HTML content returned is a Cloudflare challenge page indicating the visitor has been blocked due to triggered security rules. No actual website content, metadata, or business information is accessible for analysis. The domain WHOIS data is suspicious, showing a creation date in the future (July 2, 2025), which is inconsistent with the current date and suggests erroneous or manipulated registration data. The domain uses Cloudflare name servers but does not have DNSSEC enabled, which is a missed opportunity for enhanced DNS security. Due to the blocking and lack of accessible content, no privacy policies, contact information, or security policies can be identified or evaluated. The overall digital maturity and security posture cannot be properly assessed, and the website scores very low on all AI scoring metrics.

S

STIKes Bani Saleh Cerdas, Terampil, Berintegritas

stikesbanisaleh.id

0

STIKes Bani Saleh is a newly established higher education institution in Indonesia specializing in health sciences. The website presents a professional and modern digital presence built on WordPress, featuring a modern curriculum and professional faculty aimed at preparing students for medical challenges. The institution targets students and healthcare professionals within Indonesia, positioning itself as a regional educational provider with a focus on competence and integrity. Technically, the website uses standard WordPress technologies with SEO optimization but lacks advanced security headers and privacy compliance features. Security posture is moderate with HTTPS enabled and Cloudflare DNS usage, but absence of DNSSEC and security policies reduces overall security maturity. No privacy or cookie policies are published, and no contact information is provided, which impacts trust and compliance. Overall, the website is functional and professional but requires improvements in security and privacy transparency.

The website tajukpapua.id is currently inaccessible due to an HTTP 521 error indicating the origin web server is down. The site is protected by Cloudflare, which is functioning correctly, but the backend server is not responding. There is no accessible content beyond the error page, and no business or contact information is available. The domain WHOIS data shows a suspicious future creation date, which raises concerns about data accuracy or domain legitimacy. No privacy, cookie, or security policies are present, and no forms or analytics scripts are detected, indicating a very low digital maturity level. The security posture is weak due to the lack of security headers and the server downtime. Overall, the site is not currently functional, and the trustworthiness is low.

K

kalijaga.id

kalijaga.id

0

kalijaga.id is a small-scale informational website focused on the historical and cultural figure Sunan Kalijaga, a prominent Wali Songo in Indonesia. The site provides articles and news related to social services and government institutions, targeting a general Indonesian audience interested in cultural heritage and social information. The website is built on WordPress with a modern theme and uses common web technologies such as jQuery, Slick Slider, and FontAwesome. It is hosted behind Cloudflare DNS but lacks DNSSEC and security headers, which are recommended for enhanced security. The site does not provide privacy, cookie, or terms of service policies, nor does it offer contact information or incident response details, which limits its privacy compliance and business credibility. WHOIS data shows inconsistencies, including a domain creation date in the future, which reduces trust in domain registration legitimacy. Overall, the website is accessible, well-structured, and safe for general audiences but would benefit from improved security practices and compliance documentation.

P

Panti Rukmi Merawat dengan Hati, Membangun Masa Depan

pantirukmi.id

0

Panti Rukmi is a newly established Indonesian non-profit organization focused on providing shelter and care for vulnerable populations including children and the elderly. The website serves as an informational platform to communicate their mission and services to the local community. The organization appears to be in early stages, with domain registration in August 2025 and content dated October 2025. Technically, the website is built on WordPress with common plugins such as Yoast SEO and uses Cloudflare for DNS management, indicating a basic but modern infrastructure. Security posture is moderate with HTTPS enabled but lacks advanced DNS security and security headers. Privacy and compliance documentation are absent, which is a gap for trust and regulatory adherence. Overall, the site is accessible, well-structured, and provides relevant content for its audience but requires improvements in security and compliance to enhance credibility and protection.

The website puslapdik.id is currently inaccessible due to a database connection error, rendering all content unavailable. The site does not provide any privacy, cookie, or terms of service policies, nor does it offer contact information or business details. The domain WHOIS data is suspicious, showing a creation date in the future and a registrant listed as a registrar company, which does not align with typical business registrations. Technically, the site is hosted behind Cloudflare but lacks DNSSEC and security headers, indicating a low security posture. Overall, the website is non-functional and lacks any meaningful content or trust indicators.

A

Asuransi Allianz Indonesia

asuransiallianz.id

0

Asuransi Allianz Indonesia presents itself as an insurance service provider offering life, health, and investment insurance products targeted at families in Indonesia. The website is built on WordPress with Yoast SEO plugin, indicating a moderate level of digital maturity. The site content is well-structured and professionally branded, but lacks critical compliance documents such as privacy and cookie policies, as well as contact information. The domain WHOIS data raises concerns due to a future creation date and registrant mismatch, impacting trustworthiness. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. Overall, the website is functional and informative but requires improvements in compliance, transparency, and security to enhance credibility and trust.

K

Kementerian Pariwisata dan Ekonomi Kreatif Republik Indonesia

kemenparekraf.id

0

The website represents the official online presence of the Kementerian Pariwisata dan Ekonomi Kreatif Republik Indonesia, a government ministry responsible for tourism and creative economy policy formulation and implementation in Indonesia. The site provides news, organizational information, and program details targeting the general public and government stakeholders. Technically, the site is built on WordPress with a modern tech stack including Bootstrap and jQuery, hosted with Cloudflare DNS services. The website is mobile optimized and SEO friendly but lacks privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and DNSSEC. WHOIS data shows inconsistencies such as a future domain creation date and registrant being a registrar company, which slightly reduces trustworthiness. Overall, the site is professional, content-rich, and trustworthy as a government resource but would benefit from improved privacy compliance and security hardening.

K

Kantor Kesehatan Pelabuhan

kkpsurabaya.id

0

Kantor Kesehatan Pelabuhan Surabaya operates as a government health authority providing essential health and quarantine services at the main port of Surabaya, Indonesia. The website serves as an informational portal detailing their mission to monitor health conditions of passengers, crew, and goods to prevent infectious disease spread. The site targets the general public and stakeholders involved in port health and safety. Technically, the website is built on WordPress with common plugins such as Yoast SEO and jQuery, hosted behind Cloudflare DNS but lacks DNSSEC. The site is moderately optimized for performance and mobile use, with good SEO practices but basic accessibility features. Security posture is adequate with HTTPS enabled but lacks security headers and DNSSEC, and no privacy or cookie policies are present, indicating compliance gaps. No contact emails or phone numbers are provided, limiting direct communication channels. Overall, the domain registration is legitimate and consistent with the website's purpose and content timeline. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and security.

The website hs-darmstadt.de currently serves a minimal directory index page with no substantive business content, policies, or contact information. The lack of privacy, cookie, and terms of service policies indicates low digital maturity and non-compliance with common data protection regulations such as GDPR. Technically, the site runs on LiteSpeed Web Server and uses basic JavaScript for table sorting but lacks modern frameworks or CMS platforms. Security posture is weak due to enabled directory listing and absence of security headers, although HTTPS is enabled with basic SSL configuration. Overall, the site presents a low trust profile with limited business credibility and minimal user engagement features.

G

Golfclub Wylihof

golfclub.ch

0

Golfclub Wylihof is a well-established Swiss golf club offering a 27-hole championship course, practice facilities, a restaurant, golf school, and shop. The club targets golf enthusiasts, members, and corporate clients in the Swiss Mittelland region. The website is built on WordPress with modern plugins supporting multilingual content, SEO, and user engagement. The club demonstrates commitment to sustainability through recognized certifications. Security posture is adequate with HTTPS and reCAPTCHA implemented, though some security headers and incident response details are missing. Privacy compliance is addressed with a cookie consent banner and privacy policy. Overall, the site is professional, trustworthy, and serves its audience effectively.

The website for landeshauptstadt-hannover.de is the official municipal site for the city of Hannover, Germany. However, the current content is minimal and consists solely of a placeholder page indicating that a new website is under construction. There is no substantive business or service information presented. The domain and hosting appear legitimate and consistent with a government entity, but the site lacks essential content and compliance features at this time. From a technical perspective, the site does not reveal any modern technologies, scripts, or CMS platforms. There is no evidence of HTTPS or security headers, and no privacy or cookie policies are present. The site does not collect user data or provide contact forms, limiting its digital maturity and user engagement capabilities. Security posture is weak due to the absence of HTTPS and security best practices. No incident response or vulnerability disclosure information is available. The WHOIS data is consistent with a legitimate government domain, but the lack of content and security features significantly lowers the overall trust and compliance scores. Overall, the site is currently non-functional as a public information portal and requires substantial development to meet modern standards for security, privacy, and user experience.

The website gmd-tg.ch currently serves as a default hosting start page provided by TRINTEC Hosting, indicating that the domain is hosted by TRINTEC and redirects users to the main site trintec.ch. The business focus appears to be web hosting services, targeting a general audience primarily in Switzerland. The site content is minimal, with no privacy, cookie, or terms of service policies present, and limited contact information consisting of an email and physical address. Technically, the site uses basic HTML and CSS without modern frameworks or CMS, and lacks mobile optimization and accessibility features. Security posture is weak due to absence of HTTPS and security headers, and no incident response or vulnerability disclosure information is provided.

S

Stolz WEB GmbH

stolzweb.ch

0

Stolz WEB GmbH is a Swiss-based small technology company specializing in custom web development, online shops, and web applications. Founded in 2012, the company offers tailored software solutions including their proprietary CMS 'Simpli', targeting designers, agencies, and businesses seeking bespoke digital solutions. The website reflects a professional and consistent brand image with clear service descriptions and customer testimonials, positioning Stolz WEB as a reliable niche player in the Swiss web development market. Technically, the site employs modern web technologies such as HTML5, CSS, JavaScript, PHP, and Bootstrap, with a moderate performance profile and good mobile optimization. Analytics are implemented using Google Analytics with IP anonymization and Matomo, indicating some privacy awareness. Security posture is adequate with HTTPS enabled but lacks standard security headers and explicit security policies. Contact information is comprehensive and clearly presented, though privacy and terms policies are missing. Overall, the website is trustworthy and professional but could improve in privacy compliance and security best practices.

The website iatfglobaloversight.org currently serves a robot challenge screen that blocks direct access to its content. This challenge uses a JavaScript-based proof-of-work CAPTCHA mechanism, likely implemented as a Web Application Firewall (WAF) or security measure to prevent automated access. Due to this, no substantive business or contact information is accessible on the page. The domain is registered since 2007 with a reputable registrar and shows no privacy protection, indicating legitimacy. However, the lack of accessible content limits the ability to assess the company's business model, services, or compliance policies. Technically, the site uses advanced JavaScript for the CAPTCHA and is hosted on SiteGround with Cloudfront CDN for assets. Security posture is moderate given the presence of a WAF challenge but lacks standard security headers and DNSSEC. Privacy compliance and business credibility cannot be confirmed due to lack of visible policies or contact data.

U

UNIFAB - Union des Fabricants

unifab.com

0

UNIFAB - Union des Fabricants is a French non-profit association dedicated to the protection of intellectual property and the fight against counterfeiting. The organization provides consumer awareness campaigns, collaborates with customs and law enforcement, and publishes reports to support its mission. The website is professionally designed, primarily in French, and targets consumers, members, and stakeholders interested in intellectual property protection. The business model is focused on advocacy and education rather than commercial sales. Technically, the website is built on WordPress with WooCommerce, uses modern JavaScript libraries, and integrates analytics tools such as Google Tag Manager and Piwik PRO. The site is mobile-optimized and SEO-friendly, with structured data implemented for enhanced search visibility. Security-wise, the site enforces HTTPS and uses Google reCAPTCHA for forms, but lacks explicit security headers in the HTML source. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of WHOIS data for the domain www.unifab.com raises concerns about domain registration transparency, which impacts overall trustworthiness. Privacy policy is present and GDPR compliant, but no cookie consent mechanism was found. Overall, the website is functional, secure, and professional, but domain registration opacity and limited contact information reduce business credibility.

L

L’ECO ENTRETIEN®

ecoentretien.eu

0

L’ECO ENTRETIEN® is a French ecological automotive maintenance service focused on providing innovative and economical engine care solutions to reduce vehicle pollutant emissions. The company targets environmentally conscious vehicle owners seeking to limit over-emissions and improve air quality. The website is built on WordPress, leveraging popular plugins such as Yoast SEO and Slider Revolution, indicating a moderate level of digital maturity. The site is well-structured with good SEO practices and mobile optimization, although some accessibility features could be improved. Security posture is moderate; while HTTPS is presumably enabled, no security headers were detected, and no explicit privacy policy or terms of service pages were found. The site uses cookie consent mechanisms and Google Analytics for tracking, but lacks detailed privacy compliance documentation. Overall, the domain age and business founding date align, and the domain uses privacy protection common for small businesses. Strategic recommendations include enhancing security headers, publishing comprehensive privacy and terms policies, and providing clear contact information to improve trust and compliance.

The website 'DIETÜR - Digitales Türentool' appears to be a digital door tool or configurator platform based on its title. However, the current accessible content is minimal, showing only a loading spinner and a JavaScript module, indicating the site may be under development or experiencing loading issues. There is no visible business description, contact information, or user-facing content to assess the business model or market position. Technically, the site uses modern JavaScript ES modules but lacks visible SEO, accessibility, or performance optimizations. Security posture is weak due to the absence of HTTPS confirmation, security headers, and privacy policies. Overall, the site presents a low trust profile with limited business credibility and compliance indicators.

P

Paul Maschinenfabrik GmbH & Co. KG

paul.eu

0

Paul Maschinenfabrik GmbH & Co. KG is a well-established German manufacturer specializing in circular saw machines, prestressed concrete technology, and storage systems. With a strong export focus exceeding 80%, the company holds a leading global market position in its industrial sectors. The website reflects a professional and comprehensive digital presence, featuring detailed product information, recent news updates, and multilingual support. Technically, the site is built on TYPO3 CMS with modern web technologies, ensuring good performance and mobile optimization. Security measures include HTTPS, cookie consent, and privacy compliance, although explicit security policies and vulnerability disclosures are absent. Overall, the site demonstrates a mature digital infrastructure aligned with business needs.

V

Viakom

viakom.cloud

0

Viakom is a German technology company specializing in modular, open-source-based digital solutions focused on cloud providing, service providing, and infrastructure providing. The company targets business and public sector clients seeking digital sovereignty and tailored IT solutions. Their website is professionally designed, mobile-optimized, and SEO-friendly, built on WordPress with modern plugins and analytics integration. Security posture is good with HTTPS enabled, but lacks explicit security headers and formal privacy or cookie policies. No incident response or vulnerability disclosure information is present, indicating room for improvement in compliance and transparency. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

S

SN-Verlag Hamburg

snfachpresse.de

0

SN-Verlag Hamburg is a specialized B2B publishing company focusing on niche trade and craft sectors, particularly in interior decoration, textiles, and the food industry. The company operates multiple specialized trade magazines, online portals, and organizes digital trade fairs, positioning itself as a key media player in its market segment. The website content is professional and well-structured, targeting industry professionals and businesses. Technically, the site uses standard web technologies with PHP-driven CSS and Matomo analytics for privacy-conscious user tracking. The site is bilingual, enhancing accessibility for German and English speakers. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. Privacy compliance is basic, with a privacy policy linked but no cookie banner or GDPR-specific disclosures visible. Overall, the site is trustworthy and credible but could improve in privacy and security transparency.

SN-Verlag Hamburg operates as a small German publishing company providing digital access to various specialized press and magazine titles through a login portal. The website serves as a gateway for subscribers or readers to access content from multiple publications, each represented by distinct logos and secured behind login forms. The business model focuses on subscription-based digital publishing targeting a niche audience interested in specialized media content. The company was founded around 2015, consistent with the domain registration date, and operates primarily within the German media sector. Technically, the website employs basic HTML5 and CSS with server-side PHP forms for login functionality. The site is hosted by IONOS SE, a reputable hosting provider, and uses responsive design techniques to accommodate mobile devices, although mobile optimization and accessibility are basic. No modern CMS or advanced frameworks are detected, and the site lacks analytics or tracking technologies, indicating a minimalistic technical infrastructure. From a security perspective, the website lacks HTTPS enforcement visible in the HTML content and does not implement common security headers, which reduces its security posture. There is no visible cookie consent mechanism or comprehensive privacy policy, which may impact GDPR compliance. The absence of contact information and incident response channels further limits the site's security transparency. However, the domain registration is consistent and stable, with no suspicious patterns detected, supporting the legitimacy of the business. Overall, the website presents a basic but functional digital publishing portal with room for improvement in security, privacy compliance, and user engagement features. Strategic enhancements in HTTPS implementation, privacy mechanisms, and contact transparency would strengthen trust and compliance.

H

Hochparterre

klima-bauen.ch

0

Klima-bauen.ch is a Swiss media platform operated by Hochparterre AG, focusing on climate-conscious architecture, landscape architecture, and spatial planning. The website offers a rich collection of news articles, practical tips, publications, and videos aimed at professionals in the building and planning sectors. It positions itself as a niche media outlet dedicated to promoting sustainable and climate-friendly building practices. Technically, the site is built on TYPO3 CMS with Bootstrap and integrates advertising and tracking services such as adition and Google Tag Manager. The site is mobile-optimized and provides a professional user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and reCAPTCHA usage, but lacks important security headers and explicit privacy and cookie policies, indicating compliance gaps. Contact information is limited to a login form for subscribers, with no direct emails or phone numbers publicly available. WHOIS data confirms the domain's legitimacy and consistency with the business identity. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced privacy compliance and security best practices.

F

Fundació Mies van der Rohe

miesbcn.com

0

Fundació Mies van der Rohe is a well-established non-profit cultural foundation based in Spain, dedicated to promoting contemporary architecture and urban planning, with a special focus on the work of Ludwig Mies van der Rohe and the Modern Movement. The foundation offers a variety of services including exhibitions, research, publications, educational programs, and pavilion visits. The website reflects a professional and consistent brand image with good content quality and clear navigation, targeting architecture enthusiasts, researchers, and the general public. Technically, the website is built on WordPress with modern JavaScript libraries such as Vue.js and jQuery, and uses plugins for SEO and GDPR compliance. The site is mobile-optimized and performs moderately well. Security posture is adequate with HTTPS enabled and cookie consent implemented, though it lacks some security headers and DNSSEC is not enabled. No critical vulnerabilities or exposed sensitive data were detected. Overall, the domain registration is consistent with the business profile, showing a long-standing presence since 1996, enhancing trustworthiness. The site integrates Google Analytics and Mailchimp for marketing and analytics, with good privacy compliance indicators. Contact is primarily through forms and social media channels, with no direct emails or phone numbers published. Strategic recommendations include enhancing security headers, enabling DNSSEC, publishing security and incident response policies, and considering a vulnerability disclosure policy to improve transparency and security maturity.

S

Systemantics

systemantics.net

0

Systemantics is a specialized web development company focusing on CMS implementation and website creation primarily for clients in the arts, culture, architecture, education, museums, and theater sectors. Their extensive portfolio demonstrates a strong market position within these niche industries, collaborating with various designers and agencies to deliver tailored digital solutions. The company operates primarily in Germany and targets organizations seeking professional and accessible web presence. Technically, the website employs modern JavaScript frameworks and CMS platforms such as Hylex and Wordpress, with Matomo analytics for user tracking. The site is well-designed, mobile-optimized, and accessible, reflecting a mature digital infrastructure. Security posture is generally good with HTTPS enforced, but lacks some security headers and explicit privacy and cookie policies, which are areas for improvement. WHOIS data is unavailable or protected, which slightly impacts trust but is mitigated by the professional site content and clear contact information. Overall, Systemantics presents a credible and professional business with room to enhance privacy compliance and security transparency.

The Laboratory of Manuel Bürger is a small creative design studio specializing in visual identities, art direction, and design services based in Berlin and Paris. The website serves primarily as a portfolio showcasing the studio's work and design philosophy. The business appears niche and focused on cultural and social discourse through design. Technically, the website uses an older jQuery library and is hosted by IONOS SE with domain registration dating back to 2008, indicating a mature online presence. However, the site lacks modern security practices such as DNSSEC, security headers, and privacy or cookie policies, which limits its compliance and security posture. No contact information or forms are present, reducing direct engagement opportunities and trust signals. Overall, the site is functional and professionally designed but would benefit from enhanced security and compliance features.

T

Tollkirsch AG

tollkirsch.ch

0

Tollkirsch AG is a creative marketing and branding agency based in Winterthur, Switzerland, specializing in branding, corporate identity, corporate design, SEO, web design, and digital marketing. The company positions itself as a boutique agency delivering tailored, bold, and effective brand strategies and communications to businesses seeking to enhance their market presence. The website reflects a professional and consistent brand image with clear service offerings and a portfolio of references, targeting companies looking for comprehensive marketing solutions. Technically, the website is built on the Cmsbox CMS platform, integrating modern web technologies including Google reCAPTCHA for security and Mailchimp for marketing automation. The site is mobile-optimized, SEO-friendly, and uses analytics tools such as Piwik/Matomo for user tracking. Performance is moderate with good accessibility and navigation clarity. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security policies or incident response contacts. No critical vulnerabilities or suspicious activities were detected. Privacy compliance is strong with GDPR-aligned policies and transparent data collection practices. Overall, the website demonstrates a high level of professionalism, trustworthiness, and digital maturity, with minor recommendations to enhance security headers and publish formal security policies to further strengthen its posture.

Sportschule Tennis Academy GmbH operates a specialized tennis training and facility business in Switzerland, targeting a broad audience from toddlers to seniors and from beginners to top athletes. The website presents core services including a tennis academy and indoor tennis halls with multiple courts and an indoor golf facility. The business is positioned as a local sports education and facility provider with a small company size and a focused service offering. Technically, the website is built on the Flectra CMS platform, utilizing modern web technologies such as Google Analytics and Google Tag Manager for user tracking. The site is moderately optimized for mobile devices and has basic SEO and accessibility features. Performance is moderate with no critical technical issues detected. However, the site lacks advanced security headers and explicit privacy or cookie policies. From a security perspective, HTTPS is enabled and CSRF tokens are present in scripts, indicating some security awareness. Nonetheless, the absence of security headers, privacy policies, and incident response contacts represents gaps in compliance and security maturity. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is functional and moderately professional but requires improvements in privacy compliance, security best practices, and contact transparency to enhance trust and regulatory adherence.

S

SN-Verlag Michael Steinert

parkettmagazin.de

0

Parkett Magazin is a specialized German media publisher focused on providing daily news and industry insights for the parquet and flooring sector. The website serves professionals such as manufacturers, retailers, and installers by delivering relevant news, product updates, and event coverage. The business operates under SN-Verlag Michael Steinert with a clear presence in Hamburg, Germany. The site offers magazine issues, newsletters, and advertising opportunities, positioning itself as a niche industry publication with a loyal readership. Technically, the website uses standard web technologies including HTML5, CSS3, and JavaScript, with Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized and includes SEO best practices such as Open Graph metadata and canonical URLs. However, it lacks visible security headers and a cookie consent mechanism, which are areas for improvement. Hosting and analytics services are professional and consistent with the business model. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. The absence of security headers and explicit security policies suggests moderate security maturity. No vulnerabilities or malware indicators were found. Privacy compliance is partial, with a privacy policy present but no cookie consent banner. Contact information is comprehensive, enhancing trustworthiness. Overall, Parkett Magazin presents a professional and trustworthy online presence with good content quality and business credibility. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance its security posture and compliance standing.

The website fordaq.com is currently inaccessible beyond a Cloudflare security challenge page that requires human verification via Turnstile captcha. This prevents access to any substantive content, including business descriptions, contact information, or policies. The domain is long-established, registered since 2000 with Gandi SAS, and uses IBM Cloud DNS servers, indicating a professional hosting environment. However, the lack of accessible content and security/privacy policies limits the ability to assess the company's market position or services. The technical infrastructure includes Cloudflare's WAF and captcha service, which enhances security but also blocks automated analysis. Overall, the security posture is partially observable but lacks visible security headers or policies on the accessible page. The website's privacy compliance and business credibility cannot be confirmed due to blocked content.

B

BM online

bm-online.de

0

BM online is a specialized German media platform targeting woodworking professionals such as carpenters, joiners, interior fitters, and window manufacturers. It provides industry news, product tests, expert advice, and premium subscription content under BMPlus. The platform is operated by Konradin Medien GmbH, a reputable media company. The website demonstrates a mature digital presence with a WordPress CMS, SEO optimization, and integration of advertising and subscription management tools. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or privacy compliance issues were detected. Overall, BM online is a credible and professional resource within its niche market.

H

HolzLand GmbH

holzland.com

0

HolzLand GmbH operates as a cooperative network of approximately 280 independent wood dealers across Europe, positioning itself among the top 25 cooperative groups in Germany. The website reflects a business-to-business focus within the timber retail sector, targeting wood dealers and related stakeholders. The digital presence is built on TYPO3 CMS, integrating modern consent management tools such as Usercentrics and analytics via Google Tag Manager and Google Analytics, indicating a moderate level of digital maturity and compliance with cookie consent regulations. From a security perspective, the website enforces HTTPS and employs consent management, but lacks explicit security headers and published privacy or terms of service documents. The absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency, which could impact trustworthiness. No contact information or incident response channels are publicly available, limiting direct communication avenues for security or compliance issues. Overall, the website demonstrates a professional and consistent business presentation with good technical implementation but requires improvements in transparency, privacy documentation, and security best practices. The domain registration inconsistency is a notable risk factor that should be addressed to enhance credibility and trust.

G

Gesamtverband Deutscher Holzhandel e. V. (GD Holz)

azubi-competition.de

0

The website azubi-competition.de is operated by the Gesamtverband Deutscher Holzhandel e. V. (GD Holz), a German wood trade association. It promotes a video competition aimed at apprentices in the wood trade sector, focusing on climate protection themes. The site is well-structured, professionally designed, and targets a niche audience of trainees and industry stakeholders. The business model is non-profit and educational, supporting industry awareness and engagement. The website uses modern WordPress technologies with Elementor and Astra theme, hosted on kasserver.com. It demonstrates good digital maturity with mobile optimization and SEO best practices. Security posture is solid with HTTPS and no obvious vulnerabilities, though some security headers and policies could be improved. Privacy compliance is good with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the site is trustworthy, professional, and aligned with its business purpose.

The website gdholz-events.de is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. Due to this restriction, no business information, contact details, or policy documents are available for review. The domain is registered with two name servers, but WHOIS data is minimal and does not provide registrant details or domain age. The lack of accessible content and metadata prevents a thorough technical and security assessment. Consequently, the website's security posture cannot be confidently evaluated, and no evidence of compliance with privacy regulations such as GDPR is found. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a poor user experience and low trustworthiness.

L

La Sphères des Possibles

laspheredp.com

0

La Sphères des Possibles is a French event communication agency established in 1992, serving primarily the Auvergne Rhône-Alpes region. The company offers specialized event communication services and positions itself as a local, experienced player in the event management sector. Their website reflects a professional and consistent brand image with a focus on clear communication and client engagement through social media channels. Technically, the website is built on WordPress with Elementor and uses modern web technologies, ensuring good performance and mobile optimization. The presence of GDPR-compliant cookie consent mechanisms indicates attention to privacy regulations. Security posture is adequate with HTTPS enforced, but could be improved by enabling DNSSEC and adding security headers. No critical vulnerabilities or blocking mechanisms were detected, and the domain registration data aligns well with the company's history, supporting legitimacy. Overall, the website is professional, secure, and compliant with privacy standards, suitable for its business purpose.

F

Fiev

fiev.fr

0

Fiev is a French professional syndicate representing automotive equipment manufacturers, garage equipment producers, and other automotive solution providers. It promotes sustainable and innovative mobility and represents over 130 groups and 300 companies. The website is professionally designed, content-rich, and targets industry professionals. It offers news, events, press releases, and member directories. Technically, the site runs on WordPress with modern libraries like jQuery and Select2, and it is mobile-optimized with good SEO and accessibility features. Security posture is solid with HTTPS and secure forms, though explicit security headers and policies could be improved. Privacy compliance is well addressed with cookie consent and a privacy policy. No WHOIS data is available, which limits domain ownership verification, but the site appears legitimate and active.

The website novamatrix.de is a small, German-language blog focused on philosophy, branded as 'Mindblown: a blog about philosophy.' It operates on the WordPress platform using the default 'twentytwentythree' theme with minimal content and no evident business or commercial activity. The site lacks essential business contact information, privacy policies, and terms of service, indicating a personal or hobbyist nature rather than a commercial enterprise. Technically, the site uses modern web standards and is mobile-optimized with good accessibility features, but it lacks advanced SEO and security headers. HTTPS is enabled, providing a secure connection. Security posture is basic with no detected vulnerabilities but missing security best practices such as security headers and incident response information. Overall, the site is safe with no adult or questionable content detected.

H

Hutterli AG

hutterli-ag.ch

0

Hutterli AG is a Swiss-based manufacturing company specializing in precision CNC machining services including milling, turning, 3D and 5-axis machining, and measurement. With over 35 years of experience since its founding in 1979, the company serves industrial clients requiring high-quality, complex single and series parts. The website reflects a medium-sized, established business with a focus on quality and technical expertise. Technically, the site is built on WordPress using common plugins such as Yoast SEO and WPBakery Page Builder, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks important security headers and formal security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in compliance and security transparency.

E

Elisabeth Böhni

praxis-boehni.ch

0

Praxis Böhni is a small natural medicine healthcare practice based in Kreuzlingen, Switzerland, specializing in holistic treatments including hormonal dysregulation, allergies, metabolic disorders, musculoskeletal pain, autoimmune diseases, and tumor support. The website is professionally designed using WordPress with Elementor and provides clear contact information and a contact form for patient inquiries. The business targets local patients seeking alternative medical treatments. Technically, the site uses modern WordPress plugins and themes but lacks advanced security headers and cookie consent mechanisms, which are important for compliance and security. The site is served over HTTPS with a valid SSL certificate, ensuring secure communication. Security posture is moderate with room for improvement in headers and incident response transparency. Overall, the website is trustworthy and professional but could enhance privacy compliance and security best practices.

D

Die Urologie

dieurologie.ch

0

Die Urologie is a specialized urology medical center based in the Thurgau region of Switzerland, offering comprehensive urological services including consultation, operative treatments, men's health checks, and second opinions. The website presents a professional image with detailed information about doctors, services, and multiple physical locations, targeting patients in the local German-speaking community. The business is positioned as a leading urology provider in the region with experienced specialists and FMH membership credentials. Technically, the website is built on WordPress with common plugins such as Yoast SEO, WPBakery Page Builder, and Contact Form 7, providing a modern and responsive user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements can be made by adding security headers and incident response information. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is trustworthy and professionally maintained, suitable for its healthcare audience.

E

ERMARINE GmbH

ermarine.ch

0

ERMARINE GmbH operates as a specialized boat service provider and dealer located in Switzerland, serving the Boden- and Zürichsee regions. Their offerings include boat winter storage, repairs, rentals, sales, and motorhome rentals, targeting boat owners and leisure travelers. The company maintains a professional online presence with clear contact details and social media engagement, positioning itself as a trusted local partner in the transportation sector. Technically, the website is built on Joomla CMS using the Helix Ultimate framework, incorporating modern libraries such as jQuery and Bootstrap, and is mobile responsive with moderate performance. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and privacy/cookie policies indicates room for improvement. Overall, the site is professional and trustworthy but lacks some compliance and security best practices.

F

fahrion&partner gartenbau ag

fp-gartenbau.ch

0

fahrion&partner gartenbau ag is a Swiss small business specializing in garden construction, landscaping, and maintenance services primarily targeting private homeowners and residential developers in the Kreuzlingen region. Their website presents a professional and consistent brand image with clear service offerings including garden design, planting, pool installation, and garden care. The company positions itself as a passionate and reliable local expert in garden services. Technically, the website uses a modern Bootstrap 4 framework with jQuery and integrates Google Analytics and a consent management platform to comply with privacy regulations. Performance and mobile optimization are adequate, though accessibility features are basic. Security posture is moderate with HTTPS implied but lacking explicit security headers and published security policies. No critical vulnerabilities or blocking mechanisms were detected. Contact information is clearly provided with a physical address, phone number, and company email. Overall, the website is trustworthy and professionally maintained but could improve in security transparency and technical hardening.

G

Gemeinde Ermatingen

ermatingen.ch

0

Gemeinde Ermatingen operates as the official municipal government website for the community of Ermatingen in Switzerland. It provides residents and visitors with comprehensive information about local government services, community events, public notices, and administrative contacts. The website targets local citizens and stakeholders, serving as a central hub for municipal communication and service delivery. The business model is typical of a government entity, focusing on transparency, accessibility, and community engagement. From a technical perspective, the website employs a modern technology stack including jQuery, Bootstrap, Isotope, Fancybox, and Matomo analytics, indicating a moderate level of digital maturity. The site is mobile optimized and features interactive elements such as digital tours and event calendars. The CMS appears to be a custom or specialized system (Simpli CMS), supporting structured content management. Security posture is adequate with HTTPS enforced and no visible exposure of sensitive data. However, the absence of security headers and cookie consent mechanisms suggests room for improvement in compliance and defense-in-depth strategies. The use of Matomo analytics reflects a privacy-conscious approach to user tracking, though GDPR compliance could be enhanced by adding explicit cookie consent and privacy notices. Overall, the website is trustworthy and professional, with clear contact information and consistent branding. The risk level is low, but strategic enhancements in security policies, privacy compliance, and technical hardening are recommended to maintain and improve trust and regulatory adherence.

P

Papoo Software & Media GmbH

ccm19boros.de

0

The website ccm19boros.de serves as a login portal for CCM19, a cookie consent management software product developed by Papoo Software & Media GmbH. The business focuses on providing software solutions to help website operators manage cookie consent in compliance with privacy regulations. The site targets businesses requiring cookie consent management and offers a multilingual login interface. The market position appears niche, with a small company footprint and limited publicly available business information. Technically, the website uses standard web technologies including HTML5, CSS3, JavaScript, and jQuery. The infrastructure is hosted on servers indicated by the nameservers your-server.de and second-ns.de. The site shows moderate performance and basic mobile optimization but lacks advanced SEO and accessibility features. No CMS or major frameworks are detected beyond custom theme scripts. From a security perspective, the site uses HTTPS (assumed from URL) and a POST login form with autocomplete attributes. However, no security headers such as Content-Security-Policy or HSTS are present, and no privacy or cookie policies are visible on the login page. There is no contact information or incident response details provided, which limits transparency and trust. The WHOIS data is minimal, showing only nameservers without registrant details, reducing domain trustworthiness. Overall, the website is functional for its login purpose but lacks comprehensive privacy, security, and business transparency features. The risk level is moderate due to missing policies and security headers. Strategic improvements in privacy compliance, security hardening, and business information disclosure are recommended to enhance trust and compliance.

D

Druckkollektiv Phönix

phoenixdruck.ch

0

Druckkollektiv Phönix is a small, self-managed copy shop and printing business located in Basel, Switzerland. Founded in 2015, it offers digital and letterpress printing services both in-store and through an online webshop. The website is professionally designed using WordPress and WooCommerce, providing a good user experience with clear navigation and relevant content in German. The business targets local customers seeking printing and copying solutions with convenient online ordering and local pickup options. The company maintains a consistent brand presence and provides comprehensive contact and legal information, enhancing trustworthiness. Technically, the website leverages a modern WordPress infrastructure with popular plugins such as WooCommerce and WPBakery Page Builder. It uses HTTPS with good SSL configuration, includes structured data for SEO, and integrates Google Analytics for traffic monitoring. The site is moderately performant and mobile-optimized, though accessibility features are basic. There is room for improvement in security headers and cookie consent mechanisms to enhance compliance and security posture. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No WAF or blocking mechanisms are detected, and no vulnerabilities are apparent from the HTML content. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. Overall, the site demonstrates a reasonable security posture for a small retail business but should address cookie consent and security headers to improve compliance and protection. The overall risk assessment is low, with no critical issues detected. Strategic recommendations include implementing cookie consent, adding security headers, publishing a security policy, and maintaining regular updates. These steps will enhance trust, compliance, and security culture, supporting the business's continued growth and customer confidence.

V

Verein «sur le pont» Basel

surlepont.ch

0

sur le pont is a small non-profit collective based in Basel, Switzerland, focused on organizing community events, sports activities, and cultural programs. The organization operates through collective coordination and relies on donations to sustain its activities. The website serves as an information hub for upcoming events and donation requests, targeting local community members interested in social and cultural engagement. Technically, the website is built on WordPress using the Lay Theme 4.1.8 and employs modern JavaScript libraries such as jQuery, Backbone.js, and Swiper.js. The site is mobile optimized and uses HTTPS with a valid SSL certificate, ensuring secure communication. However, there is a lack of privacy and cookie policies, and no visible security headers, which are areas for improvement. No forms or analytics scripts were detected, indicating minimal data collection and tracking. Overall, the website presents a trustworthy and community-focused presence but would benefit from enhanced privacy compliance and security best practices.

Kollektiverhalt is a small non-profit initiative based in Basel, Switzerland, focused on supporting self-organized cultural and political collectives financially impacted by the COVID-19 pandemic. The platform serves as a fundraising hub and information source for various collectives and venues, promoting solidarity and collective action within the local community. The website offers multilingual content (German, English, French) and includes a newsletter subscription form to engage supporters. Technically, the website is built with basic HTML and JavaScript, utilizing Google Fonts and Mailchimp for newsletter management. The site is functional but lacks advanced technical features such as modern frameworks or CMS platforms. Mobile optimization and accessibility are basic, and SEO practices are minimal. No advanced analytics or tracking beyond Mailchimp are present, indicating a low level of user tracking. From a security perspective, the site uses HTTPS (assumed from URL), but no explicit security headers were detected in the provided data. There is no privacy or cookie policy, which is a compliance gap, especially under GDPR. Contact information is clearly provided, but no incident response or security policy details are available. Overall, the security posture is moderate but could be improved with standard best practices. The overall risk is low given the non-profit nature and community focus, but the lack of privacy and cookie policies and security headers are notable gaps. Strategic recommendations include implementing privacy and cookie policies, adding security headers, improving mobile responsiveness, and enhancing accessibility to improve compliance and user trust.

IdéeSport is a Swiss non-profit foundation dedicated to promoting physical and mental health through sports and community programs targeting youth, children, and families. The organization offers a variety of structured programs such as CoachProgramm, MiniMove, OpenSunday, MidnightSports, and others, operating across multiple cantons in Switzerland. The website reflects a well-established entity with consistent branding and a clear mission to foster health and social inclusion through sports activities. Technically, the website employs modern web technologies including Google Tag Manager and Google Maps API, providing moderate performance and good mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though the absence of security headers and explicit privacy/cookie policies indicates room for improvement. WHOIS data confirms the legitimacy and transparency of the domain registration, aligning with the organization's non-profit status. Overall, the website is professional, trustworthy, and serves its target audience effectively, but could enhance compliance and security transparency.