Security Directory

A

Albertine

albertine.ch

0

Albertine.ch is the official website of the artist and illustrator Albertine, presenting a comprehensive portfolio of drawings, paintings, publications, prints, artist books, objects, posters, exhibitions, and films. The site targets art enthusiasts, collectors, galleries, and cultural institutions, serving primarily as a digital showcase for the artist's work. The business model is focused on portfolio presentation and promotion rather than direct e-commerce. Technically, the website is built with standard HTML, CSS, and JavaScript, featuring a responsive design and good navigation clarity. However, it lacks advanced frameworks or CMS indications and does not include analytics or tracking technologies. Security posture is basic, with no evident security headers or published policies, and the site uses obfuscated JavaScript to protect the contact email from scraping. No forms or data collection mechanisms are present, reducing privacy risks but also limiting user interaction. Overall, the site is professional and trustworthy but would benefit from enhanced security and privacy compliance measures.

P

Post-SV Tübingen

nikolauslauf-tuebingen.de

0

The website represents the 50th itdesign-Nikolauslauf Tübingen, a local half marathon event organized by Post-SV Tübingen. It targets runners and sports enthusiasts in the Tübingen region, providing event information, registration, and promotional content. The site is well-positioned as a regional sports event organizer with a clear focus on community engagement and event promotion. Technically, the website is built on WordPress using the Enfold theme, enhanced with Yoast SEO for search optimization and Real Cookie Banner Pro for privacy compliance. It integrates multiple third-party services such as Matomo for analytics, Google Maps for location display, and social media embeds from Facebook, Instagram, YouTube, and Spotify, reflecting a mature digital presence. Security-wise, the site enforces HTTPS, employs standard security headers, and implements cookie consent mechanisms, indicating a good security posture. However, it lacks a dedicated security policy or incident response information, which could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR, serving its audience effectively with moderate technical performance and good user experience.

The website 'Tag des Laufens' serves as a central platform for promoting a nationwide German running event celebrated annually on the first Wednesday of June. It is organized by prominent running associations German Road Races (GRR) and Deutscher Leichtathletik-Verband (DLV), with support from DATEV. The site provides event information, downloadable participation certificates, and promotes a charitable campaign for clean water access in Ghana. The target audience includes running enthusiasts, clubs, and socially conscious participants in Germany. Technically, the site is built on TYPO3 CMS with a combination of established frontend libraries such as Bootstrap 3 and jQuery, delivering a moderately performant and mobile-optimized experience. Security posture is adequate with HTTPS enabled and spam-protected emails, but lacks visible security headers and cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its community and charitable goals.

F

FlixBus UK

flixbus.co.uk

0

FlixBus UK operates as a major intercity coach travel provider offering affordable and extensive bus services across the UK and Europe. The company leverages a large network connecting thousands of destinations with modern amenities such as free Wi-Fi and real-time trip tracking. Their business model focuses on digital ticketing and app-based booking, targeting general consumers seeking cost-effective and sustainable travel options. The website reflects a mature, well-established brand with consistent branding and professional content. Technically, the website employs modern web technologies including React, Honeycomb UI framework, and cloud-based CDN hosting via AWS Cloudfront. It integrates multiple analytics and marketing tools such as Google Tag Manager, Datadog RUM, and Usercentrics for GDPR compliance. The site is mobile-optimized, accessible, and performs well with fast load times and good SEO practices. From a security perspective, the site enforces HTTPS and uses consent management platforms to comply with privacy regulations. While explicit security headers are not fully enumerated, the overall posture is strong with no visible vulnerabilities or exposed sensitive data. However, the absence of explicit incident response or security policy pages suggests room for improvement in transparency. Overall, the website is trustworthy, professional, and well-aligned with the company's business goals. The lack of WHOIS data for the www subdomain is explained by UK domain registration rules and does not detract from legitimacy. Strategic recommendations include enhancing visible security policies, verifying all security headers, and expanding contact information for improved user trust.

M

Mairie de Dardagny

dardagny.ch

0

The website dardagny.ch serves as the official digital presence for the Commune of Dardagny in the Canton of Geneva, Switzerland. It provides comprehensive information about local administration, political bodies, community services, cultural activities, and practical daily life resources for residents and visitors. The site is well-positioned as a local government authority platform, offering key services such as event agendas, news updates, and a newsletter subscription to keep the community informed. Technically, the website is built on WordPress 6.8.3, utilizing modern JavaScript libraries like jQuery, Swiper.js for sliders, and Altcha for CAPTCHA verification on forms. The infrastructure appears stable with moderate performance and good mobile optimization. Hosting is likely Swiss-based, enhancing regional trust and compliance. From a security perspective, the site enforces HTTPS and uses CAPTCHA to protect form submissions, but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance and overall security posture. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is trustworthy and professional, serving its purpose effectively. However, it would benefit from enhanced privacy compliance measures, improved security headers, and formalized incident response and vulnerability disclosure information to strengthen its security and compliance stance.

The website at celigny.ch is currently inaccessible, presenting only a minimal error message indicating the host name is not valid for the server. Due to the lack of accessible content, no meaningful business information, metadata, or technical details can be extracted. This severely limits the ability to assess the company's market position, services, or digital maturity. The absence of any visible security headers, HTTPS enforcement, or privacy policies suggests a poor security posture and lack of compliance with standard data protection regulations. Overall, the site appears non-functional or misconfigured, posing a significant risk to trust and user experience.

C

Commune de Collex-Bossy

collex-bossy.ch

0

The website for Commune de Collex-Bossy serves as the official digital presence for the local government of Collex-Bossy, Switzerland. It provides residents and visitors with access to municipal news, administrative services, event information, and contact details. The site targets local citizens and stakeholders interested in community affairs and public services. The business model is governmental, focusing on public administration and community engagement. The website is well-branded and consistent with local government standards, offering key services such as a virtual administrative counter and up-to-date news.

C

Commune de Bernex

bernex.ch

0

The website www.bernex.ch serves as the official online presence for the Commune de Bernex, a local government entity in Switzerland. It provides municipal information and services targeted primarily at residents and visitors of Bernex. The site employs modern web technologies such as Nuxt.js and jQuery, with Google Tag Manager integrated for analytics purposes. The design and content quality are basic but consistent with a small government entity's needs. Security posture is limited, with no visible security headers or published security policies, and privacy compliance is minimal due to the absence of privacy and cookie policies. Overall, the site is accessible and safe, but improvements in security and privacy transparency are recommended.

L

La Commune de Bardonnex

bardonnex.ch

0

The website www.bardonnex.ch serves as the official online presence for the Commune de Bardonnex, a local government entity in Switzerland. It provides residents and visitors with access to community news, municipal services, event calendars, and administrative information. The site is positioned as a trusted source for local governance and public service information. Technically, the site is built on WordPress with a modern tech stack including popular plugins for events and sliders, ensuring good mobile responsiveness and accessibility. Security posture is solid with HTTPS enabled and no exposed sensitive data, though it lacks some security headers and formal policies such as privacy and cookie policies. Overall, the site is professional, trustworthy, and well-structured but could improve compliance and security transparency.

C

Commune d'Avusy

avusy.ch

0

The website www.avusy.ch serves as the official online presence of the Commune d'Avusy, a local government entity in Switzerland. It provides residents and visitors with comprehensive information about municipal services, local news, political life, and community events. The site targets local citizens and stakeholders interested in the governance and social activities of the Avusy commune. Technically, the website is built on WordPress, utilizing common web technologies such as jQuery, Splide.js for sliders, and Ajax Search Pro for enhanced search functionality. It integrates Google Analytics and Google Tag Manager for visitor analytics and employs Google reCAPTCHA to secure forms. Security-wise, the site enforces HTTPS, includes standard security headers, and avoids exposing sensitive data, reflecting a good security posture. However, it lacks visible cookie consent mechanisms and explicit GDPR compliance statements, which are areas for improvement. Overall, the website is professional, trustworthy, and well-structured, serving its governmental function effectively.

C

Commune d'Avully

avully.ch

0

The Commune d'Avully website serves as the official digital portal for the local government of Avully, Geneva, Switzerland. It provides residents and visitors with access to administrative services, community news, event agendas, and practical information about living in the commune. The site is well-structured and professionally designed, targeting local citizens with relevant public service content. Technically, the site is built on WordPress, leveraging common web technologies such as jQuery and Slick Carousel, and integrates Google Tag Manager for analytics. While the site uses HTTPS and has a consistent branding approach, it lacks explicit privacy and cookie policies, which are important for GDPR compliance. Security headers are not evident, and no incident response or vulnerability disclosure information is provided. Overall, the site is trustworthy and functional but could improve its privacy and security posture.

C

Commune d'Aire-la-Ville

aire-la-ville.ch

0

The website www.aire-la-ville.ch serves as the official online presence for the Commune d'Aire-la-Ville, a local government entity in the Canton of Geneva, Switzerland. It provides residents and visitors with information about municipal administration, political bodies, administrative procedures, territorial planning, communication, foundations, regulations, job offers, and election information. The site is primarily targeted at local citizens and government stakeholders. Technically, the site is built on WordPress 6.8.3, incorporating standard web technologies such as HTML5, CSS3, Google Maps API, and Swiper.js for interactive elements. The site demonstrates moderate performance and good mobile optimization, with a clear navigation structure and consistent branding. Security-wise, the site uses HTTPS with a good SSL configuration but lacks visible security headers and published security policies. Privacy compliance is weak, with no privacy or cookie policies detected, and no consent mechanisms in place. Contact information is not clearly visible in the provided HTML content. Overall, the site is legitimate and trustworthy as a government portal but would benefit from enhanced privacy and security disclosures.

E

ethicDeals

ethicdeals.de

0

ethicDeals is a German-based e-commerce platform specializing in sustainable, fair trade, organic, and eco-friendly products. It offers consumers exclusive discount vouchers to try ethical brands, positioning itself as a niche leader in green lifestyle retail. The website is built on Drupal 9 with Commerce 2, integrating modern marketing and analytics tools such as Google Tag Manager and Facebook Pixel. The platform demonstrates good digital maturity with mobile optimization, clear navigation, and GDPR-compliant privacy and cookie policies. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers and incident response contacts could be improved. Overall, the site is professional, trustworthy, and well-aligned with its sustainability mission.

ProfiDOM is a German-based professional hosting service provider specializing in domain registration, webspace hosting, SSL certificates, spam protection, and server hosting with a focus on high performance and availability. Their services cater to a broad audience including small to large businesses, self-employed individuals, and private customers. The company emphasizes personal service and technical support for CMS and shop systems, hosting data in an ISO-certified data center in Frankfurt am Main. Technically, the website is built on the Contentserver24 CMS platform, utilizing Bootstrap and FontAwesome for design, and integrates Google Analytics with privacy-conscious settings. Security posture is moderate with HTTPS and some anti-bot measures in forms, but lacks explicit security headers and published incident response policies. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism. The domain WHOIS data is limited but consistent with the business profile. Overall, the website is professional, trustworthy, and well-structured, with room for improvement in security practices and transparency.

The website anbi.nl currently serves a robot challenge screen implementing a proof-of-work captcha mechanism to verify visitors, indicating the presence of a Web Application Firewall (WAF) or similar security protection. This challenge page blocks direct access to the main content, limiting the ability to analyze the actual business or services offered. The domain is registered since 2006 with DNSSEC enabled, suggesting a legitimate and stable domain registration. However, no business or contact information, privacy policies, or terms of service are present on the challenge page. The technical implementation uses advanced JavaScript with Web Workers for cryptographic computations, served via AWS Cloudfront CDN, indicating a modern infrastructure for the challenge mechanism. Security posture is moderate due to DNSSEC and captcha usage but lacks visible security headers or compliance documentation. Overall, the site is inaccessible for full content and business analysis due to the security challenge, resulting in a low AI score and limited insights.

I

IAB SA

iabsa.net

0

IAB SA is a South African industry association focused on enabling growth for stakeholders in the digital advertising ecosystem including brands, agencies, publishers, and platforms. The organization appears established since 2013 and serves as a key player in media industry advocacy and standards development within South Africa. The website is built on WordPress using modern tools such as Elementor and Astra theme, reflecting a moderate level of digital maturity. While the site design and content quality are good, there are gaps in privacy compliance and security posture, including the absence of privacy and cookie policies, lack of security headers, and no visible incident response contacts. The domain registration is consistent and stable, supporting the legitimacy of the organization. Overall, the website is professional and relevant but would benefit from enhanced security and compliance measures to improve trust and regulatory adherence.

The website effectivemeasure.net is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, which prevents access to any substantive content or business information. The domain WHOIS data is suspicious, showing a creation date in the future (January 2025), which undermines trust and legitimacy. No privacy, cookie, or terms of service policies are present, and no contact information or forms are available. The site relies on Cloudflare for security and hosting, but DNSSEC is not enabled, which is a missed opportunity for enhanced DNS security. Due to the block, a full technical and business analysis is not possible, and the overall risk is elevated due to lack of transparency and accessibility.

The website cs4.me currently serves only as a default AlmaLinux HTTP server test page, indicating that the server is operational but no actual business or service content is published. The domain is registered since 2013 with a reputable German registrar, suggesting a legitimate registration, but the lack of content and contact information implies the site is either under development or abandoned. Technically, the site uses AlmaLinux with Apache and NGINX references, but no CMS or advanced frameworks are detected. Security posture is weak due to absence of HTTPS and security headers, and no privacy or cookie policies are present, indicating non-compliance with common data protection regulations. Overall, the site is low trust and low maturity from a business and security perspective.

D

Deutsche Hochschulmedizin e.V.

deutsche-hochschulmedizin.de

0

Deutsche Hochschulmedizin e.V. is a non-profit association representing university hospitals and medical faculties across Germany. It serves as a central body advocating for the interests of university medicine, promoting collaboration in teaching, research, and patient care. The organization targets stakeholders in politics, science, and society, positioning itself as a key player in the German healthcare sector. The website reflects a professional and consistent brand image, with clear communication of its mission and services. Technically, the website is built on WordPress 6.8.3, utilizing modern JavaScript libraries such as jQuery, Swiper.js, and Borlabs Cookie for consent management. The site is mobile-optimized and demonstrates good SEO practices with structured data and meta tags. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms, but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is limited but consistent with the website's legitimacy, supported by authoritative nameservers and external partner links. Overall, the website presents a low-risk profile with strong business credibility and good privacy compliance. Strategic improvements in security headers, incident response transparency, and accessibility would enhance its security posture and user trust.

P

Pro Generika e.V.

progenerika.de

0

Pro Generika e.V. is a German non-profit association representing generics and biosimilar pharmaceutical companies. The organization plays a key role in advocating for the interests of its members who supply the majority of generic medicines in Germany. The website provides comprehensive information including studies, market data, news, and policy positions, targeting healthcare professionals, policymakers, and the general public interested in pharmaceutical topics. Technically, the site is built on WordPress with modern web technologies, optimized for mobile and SEO, and includes cookie consent mechanisms. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-maintained, supporting the association's mission effectively.

Thebluecoatspub.com appears to be a hospitality business website for a pub established in 2018. However, the website content is currently inaccessible due to a security challenge page implementing a proof-of-work captcha, likely a WAF or anti-bot mechanism. This prevents direct access to the actual website content and business information. The technical infrastructure includes use of AWS CloudFront CDN and JavaScript-based cryptographic challenges. The domain is registered with GoDaddy and shows standard domain status locks but lacks DNSSEC. No privacy, cookie, or terms of service policies are visible, nor is there any contact information or social media presence on the accessible page. Overall, the website is poorly accessible and provides minimal content or business transparency.

The website kerbfood.com is currently inaccessible, presenting a 403 Forbidden error page that blocks access to any meaningful content. The domain is registered since 2012 with IONOS SE, indicating an established presence, but the lack of accessible content prevents detailed business or security analysis. No privacy, cookie, or terms of service policies are found, and no contact information or interactive elements are available on the landing page. The technical infrastructure shows no DNSSEC enabled and no visible security headers, which are areas for improvement. Overall, the site appears to be either restricted intentionally or misconfigured, resulting in a very limited digital footprint and low trust indicators.

S

Stephen Budd Music Management

record-producers.com

0

Stephen Budd Music Management is a London-based company specializing in the management of music artists, record producers, songwriters, mix engineers, and related professionals. The company represents a diverse and influential roster including notable names such as Rick Nowels and Nick Zinner. Their services extend beyond management to consultancy, music festival advising, A&R, and DJ activities, positioning them as a key player in the music industry media sector. The website reflects a professional and well-maintained digital presence with clear branding and comprehensive content about their roster and services. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Google reCAPTCHA v3 for spam protection. It uses standard web technologies including jQuery, Flickity for carousels, and FontAwesome icons. The site is mobile optimized and performs moderately well, with good SEO practices evident in meta tags and structured data. However, some security best practices such as security headers are missing, and there is no cookie consent mechanism despite the use of tracking technologies. From a security perspective, the site uses HTTPS with a presumably strong SSL configuration and employs Google reCAPTCHA to protect forms. No obvious vulnerabilities or exposed sensitive data were detected. However, the absence of security headers and lack of published security or incident response policies indicate room for improvement in security posture and compliance. The WHOIS data for the domain is unavailable, which reduces trust in domain legitimacy, although the website content itself appears professional and consistent with a legitimate business. Overall, the website is a credible and professional platform for a niche music management business, but it would benefit from enhanced security measures, improved privacy compliance (notably cookie consent), and verification of domain registration details to strengthen trust and compliance.

F

Fire Records

firerecords.com

0

Fire Records is an established independent record label with a strong online presence offering music releases, merchandise, and artist promotion primarily targeting indie music fans and vinyl collectors. The website is professionally designed using WordPress and WooCommerce, integrating modern technologies such as jQuery, Flickity carousels, Google reCAPTCHA, and Mailchimp for newsletter management. Security posture is generally good with HTTPS enforced and secure form handling, though the absence of security headers and explicit privacy and cookie policies indicates room for improvement. The lack of WHOIS registration data reduces domain trustworthiness, but the website content and business information suggest a legitimate and reputable operation. Overall, the site provides a positive user experience with clear navigation and relevant content.

W

Weird Walk

weirdwalk.co.uk

0

Weird Walk is a small creative project and journal focused on exploring the histories, mysteries, and folklore of the British Isles through multiple media including publishing, music, podcasts, events, and an online shop. The website presents a niche cultural offering targeting enthusiasts of British landscape and heritage. Technically, the site is built on WordPress with common optimizations and uses HTTPS, but lacks advanced security headers and formal privacy or cookie policies. The WHOIS data for the domain www.weirdwalk.co.uk is missing due to domain naming rules, indicating the domain is likely a subdomain or alias rather than a registered domain, which slightly reduces trust. Overall, the site is accessible, professionally designed, and safe for general audiences, but would benefit from improved privacy compliance and security hardening.

H

Heritage Orchestra

theheritageorchestra.com

0

Heritage Orchestra is a well-established UK-based music organization specializing in non-classical and electronic orchestral collaborations. The website showcases their projects with high-profile artists and offers merchandise through an integrated WooCommerce shop. The business targets music fans and collaborators interested in innovative orchestral performances. Technically, the site is built on WordPress with modern JavaScript libraries and is mobile-optimized, though performance is moderate. Security posture is adequate with HTTPS enabled but lacks DNSSEC and security headers, and no explicit privacy or cookie policies are present, indicating compliance gaps. Overall, the domain registration is consistent with the business history, enhancing trustworthiness.

P

Pitch & Sync

pitchandsync.com

0

Pitch & Sync is a specialized 360° brand consultancy focused on music and audio, offering a comprehensive suite of services including brand strategy, talent partnerships, sync licensing, audio branding, and studio production. Established in 2005, the company has a strong market presence with nearly two decades of experience, serving brands seeking to leverage music and audio for emotional and cultural engagement. The website reflects a professional and consistent brand image with a well-structured service offering and active social media presence. Technically, the site is built on WordPress with modern integrations such as Vimeo for video content and Typekit for fonts, delivering a good user experience with mobile optimization and moderate performance. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and there are no visible privacy or cookie policies, which are compliance gaps. Contact information is limited to an email address, with no phone or physical address provided. Overall, the site is trustworthy and professional but would benefit from enhanced security and privacy compliance measures.

D

DJ History

djhistory.com

0

DJ History is a niche media platform dedicated to preserving and celebrating dance music history and culture. Founded in 1999, it offers a rich collection of articles, podcasts, and a community forum, targeting dance music enthusiasts, DJs, and historians. The site also supports e-commerce through a partner store selling books and merchandise related to DJ culture. Technically, the website is built on WordPress, leveraging modern SEO tools and analytics, with Cloudflare DNS and GoDaddy as registrar. The site is mobile-optimized and provides a professional user experience with clear navigation and rich content. Security posture is solid with HTTPS enforced and domain locks in place, but lacks DNSSEC and explicit security headers, representing areas for improvement. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism despite tracking usage. Overall, the domain's age and content consistency indicate a trustworthy and legitimate online presence.

The website therealalcompany.co.uk is currently inaccessible due to a JavaScript-based robot challenge screen, likely implemented as a Web Application Firewall (WAF) or security mechanism to prevent automated access. This challenge blocks direct content access, resulting in minimal visible information about the business or its services. The domain is mature, registered since 2012, indicating a potentially established entity, but no business details or contact information are exposed on this page. The technical infrastructure includes modern JavaScript features and uses Cloudfront CDN for hosting static assets. However, the lack of visible security headers and privacy policies limits the assessment of compliance and security posture. Overall, the site appears to prioritize security through access control but lacks transparency in public-facing business and compliance information.

S

Sunny Jim Films

sunnyjimfilms.com

0

Sunny Jim Films is a small, established media production company founded by Damian Saber, a professional with BBC training and extensive experience in lighting and camera work. The company offers end-to-end video production services targeting businesses and organizations seeking high-quality film production. The website is built on WordPress with modern technologies such as the Yoast SEO plugin and Flickity carousel, and hosts video content via Vimeo. The site is well-designed, mobile-optimized, and provides a good user experience, though it lacks some compliance elements such as privacy and cookie policies. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and enabling DNSSEC. Tracking is implemented via WiredMinds eMetrics without a visible consent mechanism, indicating a privacy compliance gap. Overall, the domain is legitimate, long-registered, and consistent with the business claims.

T

tirol kliniken

tirol-kliniken.blog

0

The Tirol Kliniken Blog is an informational healthcare blog operated by the Tirol Kliniken GmbH, a large healthcare provider in Austria. The blog provides health-related articles, patient education, and updates relevant to the regional healthcare sector. The website is built on WordPress with modern optimization plugins and uses HTTPS for secure communication. Social media presence across major platforms supports its outreach efforts. However, the domain WHOIS data is not publicly available, indicating privacy protection which slightly reduces transparency. The site lacks explicit contact information and cookie consent mechanisms, which are important for GDPR compliance. Hidden gambling-related content embedded offscreen raises concerns about possible SEO spam or content injection, which should be investigated and remediated. Security headers are absent, suggesting room for improvement in security posture. Overall, the site is professionally designed and provides valuable content but would benefit from enhanced security and privacy compliance measures.

The website www.kaha.at represents a small Austrian advertising agency led by Katharina Haselwanter, now integrated with Huber Web Media. The business focuses on graphic and web design services for local clients in the Tirol region. The website is professionally designed using WordPress and the Enfold theme, providing clear contact information and basic legal compliance documents such as privacy policy and terms of service. Technically, the site uses standard web technologies and is mobile optimized with moderate performance. Security posture is adequate with HTTPS enforced and cookie consent mechanisms in place, though additional security headers and explicit security policies are absent. Overall, the site is trustworthy and suitable for its business purpose, with no signs of malicious activity or content safety concerns.

A

Association Out of the Box

biennaleoutofthebox.ch

0

The website biennaleoutofthebox.ch represents the Association Out of the Box, a Swiss cultural organization that organizes the Biennale Out of The Box, an inclusive arts festival scheduled for May 2025. The festival showcases a variety of artistic performances and exhibitions created by artists with disabilities, targeting a broad audience including persons with different forms of handicap. The site is professionally designed with good accessibility features and clear navigation, reflecting a well-established niche cultural event. Technically, the website is built on WordPress and leverages modern JavaScript libraries such as jQuery, Underscore.js, and media players like Plyr, along with a slick carousel for image sliders. The site is mobile-optimized and uses HTTPS with a strong SSL configuration. SEO is enhanced by the Yoast SEO plugin, and accessibility is supported by features like text resizing and easy-to-read content indicators. From a security perspective, the site enforces HTTPS and does not expose sensitive data or use vulnerable libraries. However, it lacks published privacy and cookie policies, terms of service, and incident response information, which are important for GDPR compliance and user trust. No security headers were detected, and no vulnerability disclosure mechanisms are present. The WHOIS data aligns well with the website's claims, indicating legitimacy. Overall, the site is a credible and professional platform for a cultural festival with good technical and security foundations but requires improvements in privacy compliance and security transparency to enhance trust and regulatory adherence.

Ö

Österreichische Gesellschaft für Pneumologie (ÖGP)

ogp.at

0

The Österreichische Gesellschaft für Pneumologie (ÖGP) is a well-established Austrian scientific society dedicated to the research, education, and patient care in the field of lung diseases. The website serves as a comprehensive portal offering information on expert groups, publications, events, and educational resources targeting medical professionals and patients interested in pneumology. The organization leverages international networks to provide high-quality knowledge dissemination and advocacy within the Austrian healthcare system. Technically, the website is built on WordPress with modern plugins for SEO, analytics, and cookie consent, demonstrating a mature digital infrastructure. Security posture is strong with HTTPS enforced and cookie consent implemented, though explicit privacy and security policies are missing. Overall, the site is professional, trustworthy, and well-positioned within its niche.

L

Landesbund für Vogelschutz in Bayern e.V. (LBV)

botschafter-spatz.de

0

The website botschafter-spatz.de represents a non-profit environmental conservation project managed by the Landesbund für Vogelschutz in Bayern e.V. (LBV). It focuses on the protection and monitoring of building-nesting birds in Bavaria, such as sparrows, swallows, and swifts. The site provides educational resources, a reporting platform for bird nesting sites, and promotes citizen participation in urban nature conservation. The project is regionally significant and well-integrated with the LBV's broader conservation efforts. Technically, the website is built on the Contao Open Source CMS platform and leverages modern JavaScript libraries including jQuery and mmenu for responsive navigation. It is hosted on servers associated with kasserver.com and uses HTTPS with a good SSL configuration. The site includes cookie consent mechanisms and detailed privacy policies, reflecting compliance with GDPR requirements. Social media integration is present via Facebook and Instagram links. From a security perspective, the site employs HTTPS and cookie consent but lacks explicit security headers and incident response contact information. No vulnerabilities or suspicious content were detected in the provided HTML. The absence of a security.txt or vulnerability disclosure page suggests room for improvement in transparency and security posture. Overall, botschafter-spatz.de is a professionally maintained, trustworthy website serving a clear non-profit mission. Strategic recommendations include enhancing security headers, publishing incident response contacts, and maintaining up-to-date libraries to further strengthen security and compliance.

W

WELLMADE

wellmade.studio

0

WELLMADE is a London-based digital design and development studio specializing primarily in the music and arts industries. Their website showcases a strong portfolio of clients including notable music labels and creative agencies, positioning them as a niche player in the creative digital services market. The business model focuses on bespoke digital solutions for creative clients, leveraging collaborations and a curated client base to maintain market relevance. Technically, the website employs standard web technologies such as jQuery and Google Analytics, with a modern responsive design that supports good user experience across devices. However, there is room for improvement in accessibility and performance optimization. Security posture is moderate; while no critical vulnerabilities are evident, the absence of security headers and privacy policies indicates gaps in best practices and compliance. The WHOIS data is limited due to privacy protection and unsupported TLD, but no suspicious indicators were found. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and security hardening.

M

Mute Song

mutesong.com

0

Mute Song is a niche media website focused on music licensing, news, and related content. The site targets music industry professionals and artists, offering services such as licensing and music scoring. The website is built on WordPress and uses several JavaScript libraries including jQuery and Isotope, with hosting likely provided by Krystal Hosting. The technical infrastructure is basic but functional, with moderate performance and limited mobile optimization. Security posture is average; HTTPS is enabled but no DNSSEC or security headers are present, and the WordPress version is outdated, posing potential vulnerabilities. Privacy and cookie policies are absent, indicating compliance gaps. Overall, the site is accessible and moderately trustworthy but would benefit from security and compliance improvements.

The website europetaekwondo.org currently serves a robot challenge screen that blocks direct access to its content via a JavaScript proof-of-work captcha mechanism. This indicates the presence of a Web Application Firewall (WAF) or similar security layer designed to prevent automated access or abuse. Due to this blocking, no substantive business content, contact information, or policies are accessible for analysis. The domain is recently registered in March 2023 and uses SiteGround hosting services. The lack of DNSSEC and security headers, combined with minimal visible content, limits the ability to assess the site's security posture fully. Privacy and cookie policies are absent, and no contact or incident response information is provided, which negatively impacts compliance and trustworthiness scores.

U

Universitätsmedizin Bayern (UMB) e.V.

unimedizin-bayern.de

0

Universitätsmedizin Bayern (UMB) e.V. is a non-profit association representing the collaboration of Bavarian university medical faculties and university hospitals. Founded in 2017, it aims to promote cooperation in teaching, research, and patient care across six locations in Bavaria. The website serves as an informational and representative platform targeting academic, clinical, and political stakeholders within the Bavarian healthcare ecosystem. Technically, the site is built on WordPress with modern JavaScript libraries, offering a professional and responsive user experience. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and incident response information are lacking. Privacy compliance is supported by a comprehensive privacy policy, but cookie consent mechanisms are absent. Overall, the site reflects a trustworthy and credible organization with a clear mission and professional presentation.

M

MARS – Center for Entrepreneurship

checkyouridea.com

0

CheckYourIdea is an educational and startup support platform developed by the MARS Center for Entrepreneurship at Mannheim University of Applied Sciences, in collaboration with Worms University of Applied Sciences. The platform offers a free online tool to assess the maturity level of business ideas and provides personalized two-page feedback reports. It targets founders, startup consultants, and investors, aiming to facilitate efficient startup consulting and investment decision-making. The business model focuses on providing value through academic partnerships and embedding options for institutions. Technically, the website is built using modern web technologies including React and Next.js, hosted under a reputable registrar. The site is well-optimized for performance, mobile-friendly, and accessible, with a clean and professional design. SEO and metadata are properly implemented, enhancing discoverability. From a security perspective, the site uses HTTPS and secure form inputs but lacks advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with a comprehensive privacy and cookie policy, including consent mechanisms. However, terms of service and incident response information are absent. Overall, the website presents a low-risk profile with strong business credibility and technical maturity. Recommendations include enabling DNSSEC, adding security headers, publishing security policies, and considering a vulnerability disclosure program to further enhance trust and security posture.

Clever2App is a small German technology service provider specializing in affordable and customized mobile app development for Android and iOS platforms. Their offerings include app concept, design, programming, push notifications, login functions, and ongoing marketing and support. The company also provides complementary digital services such as website flat rates, online shop integration, newsletters, and SEO services. The website is professionally designed, mobile-optimized, and uses a CMS platform (Contentserver24) with Bootstrap and FontAwesome technologies. Google Analytics is implemented with privacy-conscious IP anonymization and a cookie consent mechanism. Security posture is moderate with HTTPS enforced but lacks explicit security headers and documented security policies. WHOIS data is minimal but consistent with a legitimate small business. Overall, the website presents a trustworthy and professional digital presence suitable for its target audience of businesses seeking app development solutions.

G

GeWaShop

gewashop.de

0

GeWaShop is a German-based small business specializing in providing simple, no-installation online shop systems that integrate seamlessly into existing websites. Their market position is niche-focused on ease of use and quick deployment, complemented by additional digital services such as website flat rates, mobile app creation, newsletters, and SEO. The website is professionally designed with good navigation and mobile optimization, leveraging modern web technologies including Contentserver24 CMS, Bootstrap, and FontAwesome. Security posture is adequate with HTTPS and cookie consent mechanisms in place, but lacks explicit security headers and documented incident response policies. Privacy compliance is addressed with a privacy policy and GDPR cookie consent, though terms of service and security policies are absent. Overall, the website is trustworthy and functional with moderate risk, suitable for its business scope.

The website www.websiteflatrate.de is operated by atrego GmbH, a small German technology company specializing in professional web design and CMS development since 2001. The company offers subscription-based web design flatrates tailored to small and medium businesses, freelancers, and agencies. The site demonstrates a mature digital infrastructure using ContentServer24 CMS, Bootstrap, and modern JavaScript libraries, with responsive design and good SEO practices. Security posture is strong with HTTPS, cookie consent, and anonymized analytics, though some security headers could be improved. Contact information and GDPR compliance are clearly addressed, enhancing trustworthiness. Overall, the site presents a professional and credible business presence with a good balance of technical and business maturity.

A

Alfred Wegener Museum Zechlinerhütte

alfred-wegener-museum.de

0

The Alfred Wegener Museum website serves as an educational and cultural platform dedicated to the life and scientific achievements of Alfred Wegener, focusing on meteorology, geophysics, and polar research. The museum targets a general audience including science enthusiasts, students, and researchers, providing exhibits and educational content related to climate change and natural sciences. The website is built on TYPO3 CMS and uses standard web technologies such as jQuery and Lightbox, reflecting a moderate level of digital maturity. The site is accessible, with a cookie consent mechanism and a privacy policy linked externally, but lacks explicit contact information and security policies publicly available. Security posture is adequate with HTTPS implied, but could be improved by adding security headers and incident response information. Overall, the website is trustworthy and professionally presented, though there is room for enhancement in mobile optimization and accessibility.

H

HDG Group

hdg-group.it

0

HDG Group is a small Italian company founded in 2022 specializing in integrated branding and communication strategies. Their website presents a professional image with a focus on helping brands find their voice across communication touchpoints. The company targets businesses seeking branding and marketing services. Technically, the website is built on WordPress using modern libraries such as jQuery and Swiper.js, with SEO optimization via Yoast and cookie compliance through Iubenda. Security posture is solid with HTTPS and DNSSEC enabled, though some security headers and explicit policies are missing. Privacy compliance is partially addressed with a cookie consent mechanism but lacks a visible privacy policy or terms of service. Overall, the website is well-designed, mobile-optimized, and trustworthy, supported by consistent WHOIS data and partner domain references.

Ostprignitz-Ruppiner Personennahverkehrsgesellschaft mbH operates as a regional public transportation company in Germany, providing bus services, ticketing options, and mobility support primarily for residents and commuters within the Ostprignitz-Ruppin region. The website offers comprehensive timetable information, ticket purchase options, and details about special services such as Rufbus, bus rental, and advertising. The company targets local users seeking reliable and accessible public transport solutions. Technically, the website is built on a modern stack including Bootstrap 4.3.1, jQuery, Font Awesome, and Moment.js, ensuring responsive design and usability across devices. Forms on the site submit data securely to trusted external domains, indicating integration with regional transport information systems. While performance is moderate, the site is well-structured and navigable, with good mobile optimization. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and published security or incident response policies, which are recommended for enhanced protection and transparency. Privacy compliance is partially met with a privacy policy present, but no cookie consent mechanism is implemented. Overall, the site demonstrates a solid security posture but could improve in compliance and security best practices. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include implementing security headers, adding cookie consent, publishing incident response contacts, and auditing third-party libraries regularly. These steps will enhance trust, compliance, and security resilience for the company and its users.

K

Kagiso Media

kmradio.co.za

0

Kagiso Media Radio is a prominent South African media company specializing in radio broadcasting, audio content, and digital publishing. Established in 2024, it operates multiple well-known radio stations and offers services including research and analytics, publishing, digital development, and podcast production. The company targets South African audiences and advertisers, positioning itself as a leading media entity in the region. Technically, the website is built on WordPress with modern front-end technologies like Swiper.js and is optimized for mobile devices with good SEO practices. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though improvements can be made by enabling DNSSEC and adding security headers. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism or terms of service. Overall, the website is professional, trustworthy, and content-rich, reflecting a medium-sized enterprise with a clear market presence.

F

Future Managers

futuremanagers.com

0

Future Managers is an educational platform providing high-quality learning materials and resources targeted primarily at college students and lecturers across Africa. The website positions itself as a relevant and practical resource hub for academic content, leveraging a WordPress-based infrastructure with Elementor and WooCommerce plugins to deliver its services. The site demonstrates good SEO practices and a professional design, indicating a moderate level of digital maturity. However, the absence of WHOIS registration data raises concerns about domain legitimacy and ownership transparency. Security posture is moderate with no visible security headers or explicit SSL configuration details, and privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is functional and content-rich but requires improvements in security, compliance, and transparency to enhance trustworthiness and risk posture.

K

Keiper & Co. KG

keiper-co.de

0

Keiper & Co. KG is a well-established German professional services firm specializing in auditing, tax consulting, and business advisory services since 1934. The company operates multiple offices across Germany, providing tailored solutions to medium-sized enterprises, entrepreneurs, freelancers, private individuals, foundations, and associations. Their website reflects a mature digital presence with comprehensive service descriptions, certifications, and a clear focus on client engagement. Technically, the site is built on WordPress with modern plugins such as Elementor and Yoast SEO, ensuring good SEO and user experience. Security measures include HTTPS, Google reCAPTCHA, and a cookie consent mechanism, although explicit security policies and incident response contacts are not published. Overall, the site demonstrates a strong professional image with high trustworthiness and compliance with GDPR.

H

Heidelberg Startup Partners e.V.

heidelberg-startup-partners.de

0

Heidelberg Startup Partners e.V. is a regional innovation ecosystem enabler focused on supporting technology and science-driven startups in Heidelberg, Germany. The organization collaborates with leading research institutes and offers services including accelerator programs, mentoring, venture capital access, and office/lab space. Their website reflects a professional and consistent brand image targeting entrepreneurs and investors in life sciences, industrial technology, and machine learning sectors. Technically, the website uses Bootstrap and related technologies, is mobile optimized, and has moderate performance. However, it lacks visible security headers and cookie consent mechanisms, which are important for GDPR compliance and security best practices. No contact emails or phone numbers are directly visible, relying on a contact form instead. The domain WHOIS data is limited but shows no privacy protection and uses reputable DNS providers, supporting legitimacy. Overall, the site is safe, professional, and trustworthy but could improve in security and privacy compliance.