Security Directory

F

fib Oberhavel

fib-oberhavel.de

0

fib Oberhavel is a regional workforce information office operating under the WInTO GmbH umbrella, focused on supporting companies, schools, and higher education institutions in the Oberhavel district of Germany. It provides coordination, networking, and advisory services to address the growing demand for skilled workers in the region. The website presents a professional and content-rich platform with clear navigation and responsive design, targeting local businesses, students, and educational institutions. Technically, the site uses modern front-end technologies including Font Awesome, Bootstrap, and Cookiebot for consent management, alongside Matomo for privacy-conscious analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and explicit policies could be improved. Overall, the site demonstrates a good balance of usability, privacy compliance, and business credibility, suitable for a government-affiliated entity.

B

Boch & Fernsh

bochfernsh.com

0

Boch & Fernsh is a well-established creative advertising agency based in Mumbai, India, with over two decades of experience. The company offers a comprehensive suite of services including branding, advertising campaigns, video production, digital marketing, social media management, and web design. Their market position is strong, supported by multiple industry awards and a reputable client portfolio. Technically, the website employs modern web technologies and integrates various analytics and marketing tools, hosted on DreamHost. The site is mobile-optimized and professionally designed, providing an excellent user experience. Security posture is good with HTTPS enforced, but lacks some advanced security headers and explicit privacy compliance mechanisms. Overall, the domain registration and WHOIS data align well with the business claims, indicating legitimacy and trustworthiness.

F

Flüchtlingsrat RLP e.V.

civi-kune-rlp.de

0

civi kune RLP is a non-profit project operated by Flüchtlingsrat RLP e.V., focusing on refugee support, community engagement, and volunteer coordination in the German state of Rheinland-Pfalz. The website serves as an informational hub providing news, event updates, and resources for volunteers and refugees. It maintains a consistent brand identity aligned with its parent organization and regional government partners. Technically, the site is built on WordPress, leveraging standard web technologies and hosted by Manitu GmbH. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some advanced security headers and formal security policies. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, serving its community-focused mission effectively.

The Liturgy Office website serves as the official online presence for the Department for Christian Life and Worship under the Catholic Bishops' Conference of England and Wales. It provides liturgical resources, calendars, prayers, and news relevant to the Catholic community in England and Wales. The site targets clergy, church members, and those interested in Catholic liturgy, positioning itself as a trusted non-profit religious resource provider with a long-standing domain since 2001. Technically, the website employs basic web technologies including HTML5, CSS, Google Fonts, and Google Analytics for tracking. The site lacks a modern CMS and advanced frameworks, indicating a simple but functional technical infrastructure. Performance and mobile optimization are basic, with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS (implied but not explicitly confirmed), but lacks visible security headers and published privacy or cookie policies, which are compliance gaps especially under GDPR. No forms collecting sensitive data are present, reducing attack surface. The WHOIS data confirms domain legitimacy and consistency with the organization's history, supporting trustworthiness. Overall, the website is a credible, safe, and content-relevant resource for its audience but would benefit from enhanced privacy compliance, security hardening, and technical modernization to improve user trust and regulatory adherence.

S

Störungsauskunft.de

xn--strungsauskunft-9sb.de

0

Störungsauskunft.de is a specialized German website providing real-time information on utility outages including electricity, gas, water, district heating, and street lighting. It serves end consumers in Germany by offering outage maps and reporting tools, positioning itself as a niche information portal in the energy sector. The website leverages modern web technologies such as Angular and Google Maps API to deliver an interactive and responsive user experience. Security posture is solid with HTTPS and standard security headers implemented, though it lacks explicit incident response and vulnerability disclosure mechanisms. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is professional, trustworthy, and focused on delivering relevant utility outage information to its audience.

R

rockit GmbH

rockit.at

0

rockit GmbH is a specialized TYPO3 CMS agency based in Vienna, Austria, offering comprehensive web development services including responsive design, accessibility, SEO, and GDPR-compliant solutions. The company holds certifications as TYPO3 integrators and serves a diverse client base including government and large organizations, positioning itself as a trusted technology service provider in the Austrian market. Their business model focuses on delivering tailored TYPO3 websites with ongoing maintenance and quality assurance. Technically, the website is built on a modern TYPO3 CMS platform with a rich technology stack including PHP, TailwindCSS, JavaScript frameworks like Vue.js and Alpine.js, and uses Matomo for privacy-conscious analytics. The site is well-optimized for mobile devices, accessibility, and SEO, reflecting a mature digital infrastructure. From a security perspective, the website enforces HTTPS and implements cookie consent mechanisms aligned with GDPR requirements. However, there is room for improvement in publishing explicit security policies, incident response contacts, and implementing additional HTTP security headers. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional and trustworthy digital presence with strong compliance and technical maturity. The lack of WHOIS data limits domain trust verification but does not detract from the evident business legitimacy. Strategic recommendations include enhancing security header implementation and publishing formal security policies to further strengthen trust and compliance.

B

Bider & Tanner

biderundtanner.ch

0

Bider & Tanner is a prominent bookstore and music house based in Basel, Switzerland, operating both a physical store and an online shop. The website showcases a wide range of books, music CDs, vinyl records, and cultural event tickets, positioning itself as a key cultural hub in the region. The business targets general consumers interested in literature, music, and cultural products, leveraging a retail e-commerce model complemented by physical store presence. The company enjoys a strong market position as the largest bookstore in Basel's Bankenplatz area.

T

The Hyperaudio Project

hyper.audio

0

Hyperaudio is a technology-focused company specializing in innovative tools for transcribing, translating, repurposing, and sharing audio and video content. Their platform targets podcasters, educators, conference organizers, and media professionals, offering interactive transcripts and captions to enhance media accessibility and usability. The company has a niche market position supported by reputable clients such as Mozilla, BBC, and Al Jazeera. Technically, the website is built on modern frameworks like Next.js and Material-UI, hosted on AWS infrastructure, and employs privacy-conscious analytics via Plausible. Security posture is adequate with HTTPS and domain transfer protections, but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and well-structured, though lacking direct contact emails or phone numbers.

M

MissioNET

missionet.org

0

MissioNET is a small non-profit multimedia platform owned by the Xaverian Missionaries, focused on missionary animation and vocational promotion through a video library. The website is built on Joomla CMS with Yootheme and UIkit frameworks, providing a good user experience with mobile optimization and clear navigation. The technical infrastructure is modern and includes Google Analytics for tracking, though lacks some advanced security headers and DNSSEC. Security posture is moderate with HTTPS enabled and domain transfer protections in place. However, the absence of privacy and cookie policies, as well as no visible incident response or security policies, indicates gaps in compliance and transparency. Overall, the website is legitimate, professionally presented, and serves a niche religious community audience effectively.

M

Missionari Saveriani

missioneoggi.it

0

Missionari Saveriani operates a comprehensive Italian-language web portal and magazine focused on missionary activities and religious community engagement. The organization provides subscription-based digital and print publications, event information, and community news. The website is well-structured, professionally designed, and targets Italian-speaking audiences interested in missionary work and religious topics. Technically, the site leverages Joomla CMS with modern frontend technologies including Bootstrap and Leaflet.js, ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS, CSRF protections, and secure login forms, though explicit security headers and incident response policies are not publicly documented. Privacy compliance is evident with GDPR-aligned privacy and cookie policies, though a consent mechanism is not implemented. Overall, the site is trustworthy, with clear contact information and active social media presence, supporting its legitimacy as a non-profit religious entity.

N

Naturpark Barnim

barnim-naturpark.de

0

Naturpark Barnim operates as a regional nature park jointly managed by Brandenburg and Berlin, focusing on nature conservation, environmental education, and tourism. The website serves as an informational portal for visitors and stakeholders, providing rich content about the park's landscapes, flora, fauna, and cultural heritage. Technically, the site is built on TYPO3 CMS, hosted by a professional hosting provider, and uses HTTPS for secure communication. However, it lacks explicit privacy and cookie policies, as well as visible contact information, which are important for compliance and user trust. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. Overall, the site is professional, trustworthy, and well-branded but could improve in privacy compliance and security best practices.

L

Lange Nacht der Wissenschaften (LNDW)

langenachtderwissenschaften.de

0

Lange Nacht der Wissenschaften (LNDW) is a well-established science event organizer based in Berlin, Germany, with a 25-year history. The website serves as an information hub for the event, targeting science enthusiasts, visitors, media, and partners. It provides event details, news, partner information, and newsletter subscription services. The organization appears to be a medium-sized entity operating in the education and non-profit sectors, with a strong local presence and community engagement. Technically, the website is built on TYPO3 CMS with modern front-end technologies such as Bootstrap and Swiper.js, ensuring good mobile responsiveness and accessibility. The site uses Matomo analytics configured for privacy by disabling cookies, and it implements a cookie consent banner compliant with GDPR requirements. Performance is moderate, with no major technical issues detected. From a security perspective, the site enforces HTTPS and employs privacy-conscious analytics. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data aligns well with the website content, confirming legitimacy and consistent domain age. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with room for improvement in security policy transparency and security header implementation.

H

Handeln JETZT!

handeln-jetzt.org

0

Handeln JETZT! is a German non-profit environmental project focused on empowering youth to implement projects related to biodiversity, climate, and climate justice. It provides financial support and mentorship through a network of project buddies. The website is well-structured, content-rich, and targets young people interested in environmental activism. Technically, the site uses modern JavaScript libraries and analytics tools with privacy compliance mechanisms such as Usercentrics CMP and CAPTCHA on forms. Security posture is good with HTTPS enforced, but lacks explicit security headers and WHOIS transparency. Overall, the site is trustworthy and professionally maintained, supported by recognized environmental youth organizations and federal funding.

N

NAJU (Naturschutzjugend im NABU)

trashbusters.de

0

Trashbusters.de is a German non-profit youth environmental campaign website operated under the umbrella of NAJU, the youth organization of NABU. The site focuses on mobilizing youth and environmental activists to combat plastic pollution through cleanup actions, political engagement, and educational initiatives. The website is well-branded, consistent, and provides relevant content for its target audience. Technically, it is built on the Jimdo Creator CMS platform, leveraging jQuery UI and third-party widgets such as POWr.io and Google Maps. The site is mobile-optimized and uses HTTPS with cookie consent mechanisms, reflecting good privacy compliance. However, explicit contact information and formal security or incident response policies are not present, which limits direct communication and security transparency. Overall, the site is trustworthy and professionally maintained, suitable for its non-profit mission.

The website costa-rica.com is currently inaccessible beyond a robot challenge screen that implements a proof-of-work captcha mechanism, indicating the presence of a Web Application Firewall (WAF) or similar security protection. This prevents access to any substantive business content or user-facing information. The domain is registered since 2003 with a reputable registrar, but no registrant or business details are publicly available. The technical infrastructure includes advanced JavaScript and uses AWS Cloudfront CDN for hosting. However, no privacy, cookie, or terms of service policies are present, and no contact information or social media links are found. Security headers and SSL configuration details are not visible, and DNSSEC is not enabled. Overall, the site appears to be protected against automated access but lacks visible transparency or business information.

N

N&B Stiftung

nb-stiftung.de

0

N&B Stiftung is a small German non-profit foundation focused on supporting young people through education, community engagement, and funding innovative ideas. The website clearly communicates its mission to empower youth by fostering talents and providing opportunities for personal development. The foundation appears to be recently established in 2020, consistent with the domain registration date. Technically, the website is built on WordPress using Elementor and Yoast SEO, with Borlabs Cookie managing GDPR-compliant cookie consent. The site is well-structured, mobile-optimized, and uses HTTPS with good SSL configuration. Security practices include cookie consent and no visible exposed sensitive data, though additional security headers could enhance protection. Contact information is clearly provided, including company emails and phone numbers, supporting business credibility. No terms of service or explicit security policies are published, which could be improved. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its target audience effectively.

C

Crain Communications

crain.com

0

Crain Communications operates as a leading global business media publisher with a portfolio of 26 brands delivering trusted news, data, and insights across multiple sectors including advertising, automotive, healthcare, finance, and staffing. The company targets business leaders, advertisers, prospective employees, vendors, and media professionals, positioning itself as a key information provider with a long-standing history dating back to 1916. The website reflects a professional and consistent brand image with comprehensive content and a clear business focus. Technically, the website is built on a modern WordPress platform utilizing popular plugins such as Yoast SEO, Elementor, and Slider Revolution. It employs Google Analytics and Google Tag Manager for analytics and tracking, with asynchronous script loading to optimize performance. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features are basic. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers and visible security or incident response policies. No cookie consent mechanism was detected, which may impact GDPR compliance. The absence of WHOIS data for the domain is a notable anomaly, suggesting either privacy protection or a registration discrepancy, which should be investigated further. Overall, the website presents a low risk with strong business credibility and technical maturity but would benefit from enhanced security policies, privacy compliance mechanisms, and WHOIS transparency to improve trust and compliance posture.

D

Die Siedlung Saarbrücken

siedlung-saarbruecken.de

0

Die Siedlung Saarbrücken operates as a municipal housing provider for the city of Saarbrücken, Germany, offering rental apartments through a transparent and fair process. The website serves as a portal for current housing offers and provides a registration option for notifications about new listings. The target audience is local residents seeking affordable housing solutions. The business model is focused on public sector housing management with a medium-sized operational scale. Technically, the website uses basic HTML and CSS with custom fonts but lacks advanced frameworks or CMS indications. The site is moderately optimized for performance and mobile use but lacks accessibility and SEO enhancements. No analytics or tracking technologies were detected, indicating a privacy-conscious or minimalistic approach. From a security perspective, the site lacks visible security headers and published policies such as privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response channels are provided, limiting transparency and user trust. The domain registration data is consistent with the business's geographic and operational profile, supporting legitimacy. Overall, the website is functional and provides relevant content but requires improvements in privacy compliance, security posture, and user contact transparency to enhance trust and regulatory adherence.

B

BDEW Bundesverband der Energie- und Wasserwirtschaft e.V.

bdew.de

0

BDEW Bundesverband der Energie- und Wasserwirtschaft e.V. is a leading German industry association representing over 2,000 companies in the energy and water sectors, including electricity, natural gas, heating, and water/wastewater. The organization serves as a key partner for policymakers, industry stakeholders, and the public by providing industry positions, data, publications, and events. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding consistent with its market position. Technically, the site employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, and Usercentrics for consent management, indicating a commitment to privacy compliance and user experience. Hosting is managed via DomainControl DNS services, and the site shows good mobile optimization and SEO practices. Performance is moderate, with lazy loading and carousel features enhancing usability. From a security perspective, the site uses HTTPS and integrates consent management but lacks visible security headers and explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. However, the absence of terms of service and vulnerability disclosure pages suggests areas for improvement. Overall, the website is trustworthy, professionally maintained, and aligned with the organization's business goals. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and adding vulnerability disclosure mechanisms to strengthen security posture and trust.

L

Le Caquelon

fondue-gondel.ch

0

Le Caquelon is a Swiss hospitality business specializing in unique fondue dining experiences hosted in gondolas and mountain huts. The company operates seasonal event locations such as Adväntsgass and Walzwerk in Münchenstein, targeting general audiences seeking memorable social dining occasions. Their market position is niche, leveraging themed dining concepts to differentiate from traditional hospitality offerings. The website is built on WordPress with modern plugins and demonstrates good digital maturity with responsive design and integrated spam protection via Google reCAPTCHA. Security posture is solid with HTTPS and basic best practices, though improvements in security headers and privacy compliance (cookie consent) are recommended. Overall, the site is professional, trustworthy, and well-branded, supported by active social media and local partnerships.

Bazar de Noël is a community-driven event organizer hosting an annual Christmas market at the Walzwerk industrial area in Switzerland. The event showcases local artisans, cultural activities, and social engagement, attracting a general audience interested in holiday festivities and local craftsmanship. The website is built on WordPress with Elementor, reflecting a moderate level of digital maturity with good design and mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy and professional but could improve in compliance and security transparency.

E

European Tour Destinations

europeantourdestinations.com

0

European Tour Destinations operates a professional website promoting a network of world class golf venues associated with The European Tour group. The site targets golf enthusiasts, travelers, and real estate investors, offering information on golf destinations across multiple countries and continents. The business model focuses on venue promotion, real estate, and business news related to golf tourism. Technically, the website is built on WordPress with popular plugins like Visual Composer and Slider Revolution, and integrates analytics and tracking tools such as Google Tag Manager and Facebook Pixel. The site is mobile optimized and performs moderately well, though the WordPress version is outdated, which could pose security risks. Security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks explicit security headers and incident response information. Privacy compliance is basic, with no visible privacy policy or terms of service pages. Overall, the website is trustworthy and professionally maintained but would benefit from enhanced privacy and security disclosures.

The Leading Golf Courses operates a premium membership service offering access to 20 exclusive golf courses in Austria, supplemented by partner courses in Germany and Switzerland. The business emphasizes quality assurance through a proprietary testing methodology involving mystery players, aiming to deliver a high-standard golfing experience. The website is professionally designed, mobile-optimized, and provides clear navigation and rich content focused on its niche audience of golf enthusiasts and club members. Technically, the site uses modern frameworks such as UIkit and Tailwind CSS, with privacy-conscious analytics via Matomo. However, it lacks visible privacy and cookie policies, which are important for GDPR compliance. Security posture is moderate, with HTTPS usage but missing explicit security headers and incident response information. Overall, the domain registration aligns well with the business claims, indicating legitimacy and trustworthiness.

V

VIECC® Vienna Comic Con

viecc.com

0

VIECC® Vienna Comic Con is a prominent event organizer specializing in pop culture and gaming conventions in Austria, particularly in Vienna. Established in 2015, it has positioned itself as a leading event in the region, offering a wide range of services including ticket sales, cosplay competitions, and exhibitor opportunities. The website reflects a professional and engaging digital presence tailored to its target audience of pop culture and gaming enthusiasts. Technically, the site is built on WordPress with a modern tech stack including Avada theme, Yoast SEO, and multilingual support via WPML. While performance and mobile optimization are good, there is room for improvement in accessibility and security headers. Security posture is solid with HTTPS and cookie consent mechanisms in place, but lacks advanced security headers and public incident response information. Privacy compliance is strong with comprehensive GDPR-aligned policies and cookie management. Overall, the site is trustworthy and well-maintained, supporting the business's market position effectively.

The website bildungsportal-niedersachsen.de is currently inaccessible due to a Cloudflare Turnstile security challenge page, which blocks access to the actual content. This prevents extraction of meaningful business, security, or compliance information. The domain appears to be protected by Cloudflare, indicating an intent to secure the site from automated abuse or attacks. Without access to the real content, no privacy policies, contact information, or business details can be confirmed. The technical infrastructure includes Cloudflare's security mechanisms but lacks visible analytics or advertising technologies in the provided content. The security posture cannot be fully evaluated due to the content block, but the presence of Cloudflare indicates a baseline security measure. Overall, the site is likely a public educational portal, but the analysis is limited by the WAF challenge.

T

The Greens/EFA in the European Parliament

greens-2024.eu

0

The website greens-2024.eu serves as the official campaign and informational platform for The Greens/EFA group in the European Parliament, focusing on political advocacy, environmental issues, social justice, and human rights. It targets European citizens interested in these topics, providing multilingual content and encouraging voter engagement for the 2024 European Parliament elections. The site is professionally designed with consistent branding and clear navigation, reflecting a medium-sized political entity with a strong presence in European governance. Technically, the website is built on WordPress using Elementor, enhanced with jQuery and integrated with Matomo for analytics and Trengo for customer interaction. Hosting is provided by domainfactory GmbH, a reputable registrar and hosting provider. The site demonstrates good mobile optimization and SEO practices, though accessibility features are basic. Performance is moderate, with no critical technical issues detected. From a security perspective, the site enforces HTTPS and disables cookies in Matomo to enhance privacy. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for compliance and security hardening. No incident response or security policies are published, and no direct contact emails or phone numbers are provided, relying instead on chat and newsletter forms for communication. Overall, the website is trustworthy and safe, with no adult or explicit content. The domain registration is consistent and legitimate, supporting the site's credibility. Strategic improvements include implementing cookie consent, adding security headers, and publishing security and incident response policies to strengthen compliance and user trust.

O

one4vision GmbH

one4vision.saarland

0

one4vision GmbH is a specialized IT consulting firm focused on barrier-free web design using TYPO3 CMS and secure network infrastructure solutions. The company serves primarily municipal and public sector clients in Saarland and Luxembourg, offering a comprehensive range of IT services including hosting, connectivity, and network security. Their website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the site is built on TYPO3 CMS with integration of modern libraries such as jQuery and Matomo for analytics, demonstrating a moderate level of digital maturity. Privacy compliance is well addressed through a comprehensive privacy policy and a cookie consent mechanism that respects GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although the absence of explicit security policies and incident response information suggests room for improvement. Overall, the website presents a trustworthy and credible business presence with good technical implementation and privacy practices.

Z

Zum Isaak Gastronomie und Kultur

zum-isaak.ch

0

Zum Isaak is a small hospitality business operating a restaurant located at Münsterplatz 16 in Basel, Switzerland. The website presents a professional and well-structured digital presence focused on promoting their culinary and cultural offerings including lunch, dinner, and event hosting services. The business targets a general audience, primarily local and visitors to Basel, emphasizing tradition and quality dining experiences. The website is built on WordPress using modern plugins such as Elementor and Yoast SEO, ensuring good SEO and user experience. The site is mobile optimized and includes a cookie consent mechanism compliant with GDPR requirements. Security posture is solid with HTTPS enabled and no exposed sensitive data, though security headers and explicit security policies are absent. Overall, the website reflects a trustworthy and legitimate business with clear contact information and transparent privacy practices.

G

GGG Wegweiser

ggg-wegweiser.ch

0

GGG Wegweiser is a non-profit organization based in Basel, Switzerland, providing comprehensive social advice and support services to residents of all ages and backgrounds. The website serves as an information hub offering guidance on social issues, assistance with document writing, and referrals to specialized services. It is affiliated with GGG Basel and partners with the social offers database sozialesbasel.ch to extend its reach. The organization emphasizes accessibility and personal support, offering free services to the community. Technically, the website is built on WordPress using Elementor and Yoast SEO plugins, ensuring a modern and SEO-optimized platform. It employs Google reCAPTCHA v3 for bot protection and uses standard web technologies such as jQuery and Swiper.js for interactive elements. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. From a security perspective, the site uses HTTPS with good SSL configuration and includes reCAPTCHA for form protection. However, explicit security headers are not evident in the HTML content, and there is no visible security policy or incident response contact information. Privacy compliance is partially addressed with a privacy policy and terms of service, but no cookie consent mechanism was detected. Overall, the website presents a trustworthy and professional front for a local social service organization, with minor gaps in security and privacy compliance that could be improved to enhance user trust and regulatory adherence.

L

liberladen

liberladen.org

0

liberladen.org is an e-commerce platform specializing in literature and cultural magazines, primarily serving a German-speaking audience interested in literary and cultural content. The website offers a variety of literary magazines and cultural publications, positioning itself as a niche player in the media sector focused on literature. The platform is built on WordPress with WooCommerce, leveraging modern web technologies and a professional design that supports good user experience and mobile responsiveness. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although security headers and incident response policies are not explicitly published. Privacy compliance is partially addressed with a comprehensive privacy policy and terms of service, but lacks a cookie consent mechanism and explicit contact information. The absence of WHOIS data limits trust assessment, but the website content and structure suggest a legitimate and professional operation. Strategic improvements include enhancing privacy compliance, publishing security policies, and improving contact transparency.

Daniel Kurth's website serves as a personal portfolio for an artist specializing in various media including sculpture, video, installation, sound, text, and drawing. The site is modest in scope, focusing on showcasing artwork with minimal additional business or contact information. The market position is that of an individual artist presenting their work to a broad audience without commercial e-commerce or transactional features. Technically, the website is built with basic HTML and CSS, hosted by Hoststar, and lacks modern CMS or frameworks. The site is accessible and moderately optimized for mobile, but lacks advanced SEO and accessibility features. Security posture is basic; while the domain uses HTTPS, it lacks DNSSEC and security headers, and no privacy or cookie policies are present. No forms or contact details are embedded in the HTML, limiting direct engagement. Overall, the site is safe and suitable for general audiences but would benefit from enhanced security and compliance features.

The website zapalote.com serves as a photography and design portfolio primarily showcasing travel photography, wallpapers, and website design projects. The business appears to be a small-scale creative portfolio operated by an individual or small team, with a focus on visual content and design. The domain has been registered since 2006, indicating a stable presence, but the website content is minimal and lacks comprehensive business or contact information. Technically, the site uses basic HTML, CSS, and JavaScript without any detected CMS or advanced frameworks. The performance and mobile optimization are basic, with no detected accessibility or SEO enhancements beyond standard meta tags. There is no evidence of analytics or tracking technologies, which suggests minimal data collection and user tracking. From a security perspective, the site lacks critical security headers and does not have DNSSEC enabled. There is no visible privacy or cookie policy, nor any incident response or security contact information. The domain registration is consistent and legitimate, but the absence of security best practices and compliance documentation reduces the overall security posture. Overall, the site is low risk due to its limited functionality and content but would benefit from improved security measures, privacy compliance, and enhanced business transparency to increase trust and professionalism.

A

Aruba Business Srl

goodwoodproject.eu

0

The Good Wood Project website represents an EU-funded initiative aimed at fostering green social dialogue within the wood sector, promoting sustainable labor market practices. The project targets stakeholders across the European Union, including businesses and employees in the wood industry, focusing on balancing business flexibility with employee security. The website is built on Joomla CMS and leverages common web technologies such as jQuery, Bootstrap, and Revolution Slider, hosted by Aruba Business Srl. It offers multilingual support and integrates social media channels on Facebook and LinkedIn. Security-wise, the site enforces HTTPS and includes CSRF tokens in forms but lacks explicit security headers and an active cookie consent mechanism. No contact emails or phone numbers are directly provided, which limits direct communication channels. Overall, the site is professional and content-rich but could improve in security and privacy compliance aspects.

C

Confapi Confederazione italiana della piccola e media industria privata

confapi.org

0

Confapi is a well-established Italian confederation representing small and medium private industries, primarily in manufacturing, transport, and services sectors. Founded in 1999, it provides collective labor contracts, advocacy, and various business support services to SMEs across Italy. The website reflects a professional and consistent brand presence targeting Italian SMEs with a comprehensive menu of services and European project partnerships. Technically, the site is built on Joomla CMS with Gantry 5 framework and uses modern JavaScript libraries and Google Analytics for tracking. The site is mobile optimized and offers a good user experience with clear navigation. Security posture is adequate with HTTPS enabled and IP anonymization in analytics, but lacks DNSSEC and security headers, and does not publish explicit privacy or security policies. Overall, the domain registration data supports the legitimacy and long-term operation of the business. Strategic improvements in privacy disclosures and security hardening would enhance trust and compliance.

C

cpress

cpress.ch

0

cpress is a small independent media publisher based in Switzerland, founded in 2014 by Christof Nüssli and Christoph Oeschger. The company focuses on publishing books and films, targeting a general audience interested in niche media content. The website reflects this business model with clear navigation to books and films sections and news updates about upcoming releases and events. The market position appears to be that of a specialized publisher serving a focused community rather than a mass-market player. Technically, the website is built using standard HTML5, CSS3, and JavaScript without reliance on major CMS or frameworks. The site is moderately optimized for performance and mobile use, though accessibility and SEO features are basic. No advanced analytics or advertising technologies are detected, indicating a minimalistic digital footprint. From a security perspective, the site lacks published privacy, cookie, or terms of service policies, and no security headers are detected. There is no visible contact information for security incidents or data protection officers. The domain registration data is consistent with the business claims, showing no privacy protection and a domain age matching the founding year, which supports legitimacy. Overall security posture is moderate but could be improved by implementing standard compliance and security best practices. The overall risk is low given the nature of the business and content, but the lack of privacy and security policies and contact information could impact trust and compliance with regulations such as GDPR. Strategic improvements in these areas would enhance the company's security posture and user trust.

Boabooks is a small Swiss-based art book publisher and bookstore located in Geneva. The website showcases their catalogue of artist books, exhibition announcements, and provides contact details for visitors. The business targets art enthusiasts and collectors interested in niche artist publications. Technically, the website uses basic web technologies including jQuery and custom scripts, served over HTTPS, but lacks advanced security headers and privacy policies. No forms or tracking scripts are present, indicating minimal data collection. The absence of WHOIS data raises concerns about domain registration legitimacy, though the website content and contact information suggest a legitimate small business. Security posture is moderate with room for improvement in headers and compliance documentation. Overall, the site is functional and professional but would benefit from enhanced privacy and security measures.

The website arboreditions.com is currently inaccessible beyond a robot challenge CAPTCHA page, indicating the presence of a Web Application Firewall or similar security mechanism blocking direct access. This prevents a full assessment of the site's business content and user-facing features. The domain is registered with Tucows Domains Inc. since 2021 and uses SiteGround hosting, suggesting a legitimate but relatively new online presence. The technical infrastructure includes advanced JavaScript-based CAPTCHA challenge scripts to mitigate automated access. However, no privacy, cookie, or terms of service policies are present on the accessible page, and no contact or business information is visible. This limits the ability to evaluate the company's business model, compliance posture, or customer engagement strategies. Security posture is minimal with no visible security headers or SSL details, but the presence of a WAF challenge indicates some level of protection. Overall, the site appears to be in a protected or restricted state, requiring resolution of the CAPTCHA to access full content.

F

FLINC CYCLES

flinccycles.com

0

FLINC CYCLES is a small Swiss-based company specializing in compact cargo bicycles designed for urban customers who need versatile transport solutions. The website presents a professional and consistent brand image with clear product information, a journal, and an online shop. The business model focuses on direct sales and customer engagement through test rides and detailed product specs. Technically, the site uses modern JavaScript frameworks such as Alpine.js and Flickity for UI components and employs Plausible Analytics for privacy-conscious visitor tracking. Hosting is provided by hosttech.ch, a Swiss hosting provider, ensuring local infrastructure. Security posture is generally good with HTTPS enforced and domain transfer protection, but lacks DNSSEC and some security headers. Privacy compliance is strong with a comprehensive privacy policy and GDPR adherence, though no cookie consent mechanism is present. Overall, the site is trustworthy, well-designed, and suitable for its target audience.

V

von Bartha

vonbartha.com

0

von Bartha is a well-established Swiss art gallery specializing in contemporary and modern art, operating since 1970 with locations in Basel and Copenhagen. The gallery represents a diverse roster of artists and hosts exhibitions, fairs, and publishes related materials. The website reflects a professional and polished digital presence, leveraging modern web technologies such as Nuxt.js and Vue.js, ensuring fast performance and excellent mobile optimization. Security posture is solid with HTTPS and no obvious vulnerabilities, though improvements in security headers and incident response transparency are recommended. Privacy compliance is good with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a gap. Overall, the website is trustworthy and serves its target audience effectively.

S

STUDIO RR

studio-rr.info

0

STUDIO RR is a small creative studio specializing in various artistic disciplines including choreography, photography, installation art, publications, video, and research. The website is professionally designed using WordPress and supports multiple languages (German, English, French), targeting an audience interested in arts and culture. The technical infrastructure includes modern web technologies such as jQuery and Swiper.js, with a custom WebGL slideshow enhancing the user experience. The site is mobile optimized and presents a consistent brand image with custom fonts and styling. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit incident response contacts. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism detected. Overall, the website is trustworthy and suitable for its niche audience, though improvements in security and privacy transparency are recommended.

M

MOULURE MAGAZINE

mouluremagazine.ch

0

MOULURE MAGAZINE is a small interdisciplinary art and design collective based in Switzerland, providing a platform for artists and designers to share their creative processes and works. The website serves as an online magazine and includes an online shop, targeting artists, designers, and art enthusiasts. The platform is hosted on Cargo Collective and integrates Stripe for payment processing. The technical infrastructure is modern and functional, with good mobile optimization and a clean design. Security posture is adequate with HTTPS and secure payment integration, but lacks advanced security headers and formal privacy and cookie policies. Overall, the site is professional and trustworthy but could improve compliance and security practices.

F

Flavia Sistiaga

flaviasistiaga.com

0

The website flaviasistiaga.com serves as a professional portfolio for the artist Flavia Sistiaga, showcasing her exhibitions, publications, projects, and commissioned works. The site is hosted on the Cargo Collective platform and presents a clean, well-structured design suitable for art enthusiasts and potential collaborators. The business model focuses on portfolio presentation and artistic promotion, targeting a niche audience interested in contemporary art. The domain is registered since 2018 with a reputable registrar and shows consistency with the website content. From a technical perspective, the site uses standard web technologies including JavaScript, Google Analytics, and WebFont Loader, with hosting likely provided by Cargo Collective. The performance is moderate with basic mobile optimization and accessibility features. SEO optimization is minimal but present through meta tags and Open Graph data. Security posture is adequate with HTTPS enabled and domain transfer protection active. However, the absence of DNSSEC and security headers such as Content-Security-Policy and Strict-Transport-Security represents areas for improvement. Privacy compliance is weak due to the lack of privacy and cookie policies and no visible consent mechanisms. No contact information or incident response details are provided, limiting transparency. Overall, the website is functional and professional but would benefit from enhanced security practices and privacy compliance measures to improve trust and regulatory adherence.

The website tott.ch serves as an online presence for Thomas Ott, a Swiss comic artist and cartoonist. The site primarily functions as a portfolio or promotional platform showcasing his artistic work. The content is minimal on the main domain and is delivered via a frameset loading content from an external domain (trinity.ch). The business model is focused on artist promotion and engagement with fans and art enthusiasts. The site targets a niche audience interested in comics and graphic art, with a small-scale operation based in Switzerland. From a technical perspective, the website uses a legacy frameset structure, which is outdated and limits mobile optimization and accessibility. There is no evidence of modern CMS or frameworks, and no analytics or tracking scripts were detected. The hosting appears to be provided by trinity.ch. SEO and accessibility are poor due to minimal content and lack of meta descriptions or structured data. Security posture is weak, with no visible security headers or policies, and no HTTPS confirmation in the provided data. There are no privacy, cookie, or terms of service policies, and no contact or incident response information. The WHOIS data is consistent with the website's Swiss artist identity, indicating legitimacy. Overall, the site lacks modern security and privacy compliance features, which could expose it to risks and reduce user trust. Recommendations include implementing HTTPS, adding privacy and cookie policies, improving mobile responsiveness and accessibility, and providing clear contact and incident response information to enhance trust and compliance.

Azienda Agricola Rio del Lupo is a small family-owned winery and agriturismo located in the Monferrato region of Piedmont, Italy. The business focuses on producing high-quality traditional wines such as Monferrato Rosso (Nebbiolo), Monferrato Bianco (Arneis), and Dolcetto D'Asti, combining traditional viticulture with modern techniques. The website is primarily in German, targeting wine enthusiasts and tourists interested in agriturismo experiences. The company markets its wines internationally and offers accommodations integrated into the vineyard setting. Technically, the website uses an older jQuery version and custom scripts for UI effects but lacks modern frameworks or CMS. It is hosted on rzone.de servers and shows basic mobile optimization and SEO practices. However, there is no evidence of HTTPS usage or security headers, which weakens the security posture. No analytics or tracking scripts are present, and no forms collect personal data, reducing privacy risks but also limiting user interaction. From a security perspective, the site lacks critical protections such as HTTPS and security headers, and no formal privacy or cookie policies are provided beyond a basic statement. There is no incident response or vulnerability disclosure information. The WHOIS data is minimal but consistent with the business profile. Overall, the site is functional and professional but requires improvements in security and privacy compliance. The overall risk is moderate, with recommendations to implement HTTPS, security headers, and formal privacy and cookie policies to enhance trust and compliance. Adding vulnerability disclosure and incident response contacts would further strengthen security culture.

Stretcher is a small, artist-run exhibition project based in Basel, Switzerland, founded in 2023 by artists Karin Borer and Daniel Kurth. The project focuses on contemporary art exhibitions, artist editions, readings, and collaborative art events, operating within the InfoSpace collective art community. The website provides detailed program information, contact details, and event schedules, targeting a general audience interested in contemporary art. Technically, the website is built with standard HTML and CSS, uses Google Fonts, and integrates a newsletter subscription via Mailchimp. The site is mobile-optimized with good navigation and content relevance but lacks advanced technical frameworks or CMS. Security posture is moderate with no explicit HTTPS or security headers information available, and no privacy or cookie policies are present, indicating compliance gaps. Overall, the domain registration data aligns well with the business claims, supporting legitimacy.

M

Moritz Schermbach

moritzschermbach.ch

0

Moritz Schermbach is a Swiss-based professional photographer specializing in photography and cinematography services including still lifes, portraits, fashion, and landscapes. The website serves as a portfolio showcasing artistic works primarily targeting a general audience interested in visual arts. The business operates on a small scale with a niche local market focus in Basel, Switzerland. Technically, the website employs older versions of jQuery and Bootstrap frameworks, alongside Google Analytics and Tag Manager for visitor tracking. The site is mobile responsive and has a moderate performance profile but lacks modern CMS or advanced frameworks. Security posture is basic with no visible security headers or HTTPS enforcement details in the provided content. Privacy compliance is minimal with no privacy or cookie policies present, and no GDPR compliance indicators. Contact information is limited but present in meta tags. Overall, the site is functional and professional but requires improvements in security, privacy, and technology modernization to enhance trust and compliance.

M

mosaik

mosaikzeitschrift.at

0

mosaik is a small non-profit cultural platform and magazine based in Austria, focusing on new literature and culture. The website serves as a hub for literary publications, cultural events, and community engagement, targeting German-speaking literature enthusiasts. The business model relies on subscriptions, memberships, and event participation, positioning mosaik as a niche cultural media entity within the Austrian and broader German-speaking market. Technically, the website is built on WordPress using the Uncode theme, leveraging standard web technologies such as jQuery and MediaElement.js. The site demonstrates good mobile optimization and moderate performance, with a clean and professional design. SEO practices are adequately implemented, though accessibility features are basic. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks several security headers and a formal vulnerability disclosure policy. Privacy compliance is supported by a comprehensive privacy policy, though cookie consent mechanisms are absent. Contact information is primarily via contact forms, with no direct emails or phone numbers published. Overall, mosaik presents a trustworthy and professional online presence for a cultural non-profit. The absence of WHOIS data limits full domain trust analysis, but the website's content quality and social media presence support legitimacy. Strategic improvements in security headers, cookie consent, and incident response transparency would enhance the security posture and compliance standing.

Innenzines.com is an online platform dedicated to the promotion and sale of independent art publications, including zines, magazines, posters, and other cultural materials. The website serves a niche audience of art enthusiasts and collectors, providing a comprehensive catalog of artists and publications. The business appears to be small-scale and focused on the art media sector, with a domain registration dating back to 2007, indicating an established presence in its niche. Technically, the website is built using the Indexhibit CMS and utilizes jQuery for client-side scripting. The site lacks modern security implementations such as HTTPS, security headers, and privacy policies, which indicates a low level of digital maturity and security posture. The website's performance and mobile optimization are basic, and no advanced analytics or tracking mechanisms are detected. From a security perspective, the absence of HTTPS and security headers, along with missing privacy and cookie policies, poses risks to user data protection and compliance with regulations such as GDPR. No incident response or security contact information is provided, limiting the site's readiness to handle security events. The WHOIS data shows a consistent and legitimate domain registration, supporting the business's credibility. Overall, the website is functional and content-rich but requires significant improvements in security, privacy compliance, and technical modernization to enhance trustworthiness and protect users. Strategic recommendations include implementing HTTPS, adding privacy and cookie policies with consent mechanisms, enhancing security headers, and providing clear contact information for security and business inquiries.

HUMBUG is a cultural venue based in Basel, Switzerland, focusing on queer, feminist, and alternative cultural events. The website provides a comprehensive program of past and current events, showcasing a vibrant community engagement. Technically, the site uses standard web technologies including Google Analytics and Tag Manager for tracking, but lacks advanced security headers and privacy policies. The absence of WHOIS data limits domain trust assessment, though the content and event listings indicate a legitimate operation. Security posture is moderate with room for improvement in privacy compliance and security best practices.

F

Feel Good Festival

feelgood-festival.at

0

Feel Good Festival is a well-established wellness and fitness event based in Vienna, Austria, focusing on yoga, fitness, workshops, and community engagement. Since its inception in 2017, it has attracted over 10,000 participants, positioning itself as a notable regional event in the wellness sector. The website reflects a professional and consistent brand image, targeting fitness and wellness enthusiasts with a clear business model centered on event organization and ticket sales. Technically, the site is built on WordPress with Elementor and integrates modern marketing and analytics tools such as Google Analytics, Facebook Pixel, and LinkedIn Insight Tag. The presence of a cookie consent mechanism demonstrates attention to privacy compliance, although explicit privacy and terms of service pages were not detected in the main content. Security posture is good with HTTPS enforced and no obvious vulnerabilities, but could be improved by adding standard security headers. WHOIS data is unavailable, likely due to privacy protection, which is common for event businesses but reduces transparency. Overall, the site is trustworthy and professionally maintained with moderate technical sophistication.