Security Directory

D

Digital Campus Zollverein

campus-zollverein.de

0

Digital Campus Zollverein is an educational and innovation hub based in Germany, focusing on digital transformation and technology development. The website presents a professional and well-structured platform built on WordPress with the Divi theme, targeting students, researchers, and digital professionals. The business model revolves around providing digital education, innovation projects, and community engagement at the Zollverein site. Technically, the site uses modern web technologies and plugins, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and no exposed sensitive data, but lacks advanced security headers and formal security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the website is credible and trustworthy but would benefit from enhanced privacy and security measures.

V

VEXO Lichttechnik GmbH & Co. KG

vexo-licht.de

0

VEXO Lichttechnik GmbH & Co. KG is a German company specializing in manufacturing and designing outdoor lighting solutions, including object lighting, park and square lighting, and municipal lighting concepts. The company targets public and municipal sectors primarily within Germany, positioning itself as a regional and national supplier of high-quality outdoor lighting products. The website content is primarily in German and focuses on showcasing their lighting products and services with a basic but functional design. Technically, the website employs older JavaScript libraries such as jQuery 1.10.0, along with Slick Carousel and Fancybox for UI elements. The site shows basic mobile optimization and moderate performance but lacks modern CMS identification or advanced frameworks. There is no evidence of analytics or tracking tools, and no social media integration is visible. The hosting appears to be managed via servers indicated by the domain's nameservers. From a security perspective, the site lacks visible HTTPS confirmation and security headers, which lowers its security posture. The use of outdated JavaScript libraries may expose it to vulnerabilities. Privacy compliance is minimal, with a privacy policy page present but no cookie consent mechanism or terms of service found. Contact information is not directly visible on the homepage, which may affect user trust and compliance. Overall, the website is functional but basic, with moderate business credibility but room for improvement in security, privacy compliance, and technical modernization. Strategic recommendations include implementing HTTPS, updating libraries, adding cookie consent, and improving contact transparency to enhance trust and compliance.

K

K-TEL Communications GmbH

ktel.de

0

K-TEL Communications GmbH is a German telecommunications consulting and service company with over 20 years of experience. They specialize in providing independent advice and transparent brokerage for business IT and telecommunications infrastructure, targeting a broad range of clients from global enterprises to regional startups. Their key services include strategic consulting, contract management, cloud solutions, mobile services, and smart IoT and 5G network deployments. The company positions itself as a trusted partner for modern, secure, and scalable communication solutions. Technically, the website is built on WordPress with a modern tech stack including jQuery and various plugins for user interaction, cookie compliance, and content management. Hosting appears to be with a German provider, and the site demonstrates good mobile optimization and SEO practices. The site uses HTTPS with strong SSL configuration and implements GDPR-compliant cookie consent mechanisms, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses cookie consent management but lacks explicit security headers and a public incident response or vulnerability disclosure policy. No vulnerabilities or exposed sensitive data were detected. WHOIS data is consistent with the business claims, and no privacy protection obscures registrant information, supporting legitimacy. Overall, the website is professional, secure, and compliant with privacy regulations, making it a trustworthy digital presence for K-TEL Communications GmbH. Strategic improvements could include adding security headers, publishing an incident response contact, and establishing a vulnerability disclosure policy to enhance security posture further.

L

L'Associazione I Borghi più belli d’Italia

borghipiubelliditalia.it

0

L'Associazione I Borghi più belli d’Italia is a well-established non-profit organization dedicated to promoting the cultural and historical heritage of Italy's small towns. Founded in 2002, it certifies and supports over 360 Borghi, positioning itself as a leader in cultural tourism within Italy. The website serves as a comprehensive platform for information, events, publications, and community engagement targeting tourists and cultural enthusiasts. Technically, the site is built on WordPress with modern plugins and frameworks, offering good mobile optimization and SEO practices. Security posture is solid with HTTPS, DNSSEC, and cookie consent mechanisms, though additional security headers and vulnerability disclosure policies could enhance trust. Overall, the site reflects a mature digital presence aligned with its mission and audience.

The website imagethumb.com is currently inaccessible due to a Cloudflare 504 Gateway Timeout error, indicating backend server issues preventing content delivery. The domain is registered since 2009 with Lexsynergy Limited and uses Cloudflare for DNS and CDN services. Due to the lack of accessible content, no business description, contact information, or policies are available for analysis. The technical infrastructure shows use of Cloudflare but lacks DNSSEC and security headers, and no CMS or analytics technologies are detected. Security posture is limited by the backend failure and absence of visible security best practices. Overall, the site is not currently functional, resulting in a low AI score and inability to assess business credibility or privacy compliance.

V

Vertikale

vertikale.it

0

Vertikale is a well-established climbing center located in Brixen, Italy, founded in 2012. The business offers a variety of climbing and bouldering courses, private lessons, kids programs, summer camps, and bar services, targeting families, youth, and adult climbing enthusiasts. The website is professionally designed using WordPress with Elementor and WooCommerce, providing a user-friendly experience with good SEO and mobile optimization. Social media integration and structured data enhance its digital presence. Security posture is solid with HTTPS and DNSSEC enabled, though additional security headers and formal policies could improve resilience. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the site reflects a credible, transparent, and customer-focused business with a moderate to high level of digital maturity.

I

Im Tschumpus

tschumpus.com

0

Im Tschumpus is a cultural summer festival organizer based in Brixen, Italy, focusing on providing a unique cultural experience titled 'Kultursommer hinter Gittern'. The website serves as an information and reservation platform for their events and productions, supported by public and private sponsorships. The organization targets a general audience interested in cultural events and local festivals. Technically, the website is built on Webflow CMS, uses Typekit fonts, and includes jQuery for interactivity. The site is mobile-optimized with a good design and clear navigation, though accessibility features are basic. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. The absence of WHOIS data for the domain is a notable anomaly, reducing trust in domain legitimacy despite the professional and transparent nature of the website content. Overall, the site is functional and trustworthy for its cultural event purpose but would benefit from enhanced security and privacy compliance measures.

B

Brixen Tourism / Brixen.org

brixen.org

0

The website www.brixen.org is a regional tourism portal dedicated to promoting holidays in Brixen, Italy, located in South Tyrol. It provides comprehensive information about local attractions, outdoor activities, cultural events, and accommodation options. The site targets tourists and holidaymakers interested in exploring the region's natural and cultural offerings. The business model focuses on tourism promotion and facilitating holiday planning through rich content and booking links. The website is positioned as an important regional player in the hospitality sector, leveraging official regional tourism branding and consistent design. Technically, the site is built on the TYPO3 CMS platform, integrating modern marketing and analytics tools such as Google Tag Manager, Hotjar, and Usercentrics for cookie consent management. The site demonstrates good mobile optimization and SEO practices, although performance is moderate. The technical infrastructure is solid but could benefit from enhanced security headers and clearer privacy documentation. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms, which are positive indicators. However, the absence of explicit privacy policy and terms of service pages, lack of security.txt or vulnerability disclosure information, and missing WHOIS transparency reduce the overall security posture. No WAF or blocking mechanisms were detected, and no vulnerabilities were apparent in the provided content. The domain WHOIS data is incomplete or malformed, limiting trust verification. Overall, the website is a professional and trustworthy tourism information portal with good content quality and user experience. Strategic improvements in privacy compliance, security headers, and WHOIS transparency would enhance trust and security posture. The risk level is moderate with no critical issues detected.

The website lavoix.com is currently inaccessible, returning a 403 Forbidden error page which blocks access to any meaningful content. The domain is registered since 1997 with a reputable registrar, indicating a potentially long-standing presence, but the lack of accessible content severely limits the ability to assess the business or its services. No metadata, contact information, or security policies are publicly available, and no HTTPS or security headers are detected, indicating a weak security posture. Due to the blocked content, the overall risk assessment is high, and the site cannot be fully analyzed for compliance or trustworthiness.

The website dcm-emag.de currently serves only a default Apache HTTP server test page powered by CentOS, indicating that the site is either under construction or inactive. There is no business-related content, contact information, or compliance policies present. The technical infrastructure is minimal, relying on Apache and CentOS with basic Bootstrap styling. No advanced technologies, CMS, or analytics are detected. Security posture is weak due to lack of HTTPS and security headers, and no privacy or cookie policies are implemented. Overall, the site lacks credibility and trust indicators, making it unsuitable for business or customer engagement in its current state.

The domain uniroma1.it corresponds to Sapienza Università di Roma, a large and historic public university in Italy. However, the website content is currently inaccessible, returning a 404 Not Found error on the main page, indicating a misconfiguration or missing content. There is no metadata, structured data, or contact information available on the page. The domain is well-established, registered since 1996, and DNSSEC enabled, which supports its legitimacy. The lack of HTTPS and security headers, combined with missing privacy and cookie policies, indicates a poor security posture and compliance status. Overall, the website is non-functional in its current state, severely limiting its usability and trustworthiness.

itrium is a small German software development company specializing in custom software solutions to support organizational processes across various industries. The company emphasizes combining IT and business expertise to improve workflow efficiency and has been active for approximately 15 years with a stable team based in Wuppertal. The website is built on the Contao CMS platform and uses modern JavaScript libraries like Isotope for UI enhancements. While the site is accessible and professionally designed with clear navigation, it lacks visible contact information and advanced privacy or security features. No forms or data collection mechanisms are evident on the main page, and no social media presence is linked. Security posture is moderate but could be improved by implementing HTTPS verification, security headers, and cookie consent mechanisms. The WHOIS data aligns well with the website's claims, showing consistent domain ownership and appropriate domain age.

The website willhaben.at is currently inaccessible due to an IP address block, as indicated by the custom error page displayed. This prevents access to the site's normal content and services, limiting the ability to analyze the business offerings and technical infrastructure in detail. The domain WHOIS data is unavailable, likely due to privacy or access restrictions, which reduces transparency and trustworthiness assessment. The site appears to be a recognized brand but the lack of accessible content and WHOIS data limits comprehensive evaluation. From a technical perspective, the provided HTML is minimal and lacks scripts, external libraries, or metadata that would indicate the use of modern frameworks or analytics tools. No privacy, cookie, or terms of service policies are present in the accessible content, and no contact information or forms are available. This suggests a lack of compliance transparency and user engagement mechanisms on the blocked page. Security posture cannot be fully assessed due to missing HTTP headers and SSL configuration details. The IP block itself is a security control but may negatively impact user experience and accessibility. No vulnerabilities or security best practices can be confirmed from the provided data. Overall, the site is currently in a blocked state for the requesting IP, resulting in a low AI score and limited insights. Strategic recommendations include resolving IP blocking issues, publishing comprehensive privacy and security policies, and improving transparency with contact and incident response information.

Fake-Shop Detector is a specialized security tool offered as a browser plugin designed to protect online shoppers from fraudulent e-commerce websites by providing real-time detection and warnings. The website is well-positioned in the Austrian market, supported by reputable partners and government funding, and recognized as a test winner by AV Comparatives in 2024. The business model focuses on consumer protection and security awareness in online shopping environments. Technically, the site is built on TYPO3 CMS with modern web standards, offering good mobile optimization, accessibility, and SEO. Security posture is strong with HTTPS enforced and no visible vulnerabilities, although explicit security headers and incident response policies are not publicly documented. Privacy compliance is good with a comprehensive privacy policy, but lacks a visible cookie consent mechanism. Overall, the site is professional, trustworthy, and focused on delivering a niche security service.

BetterDays srl is a well-established creative agency based in Milan, Italy, specializing in the design and production of live events, communication projects, editorial content, and professional development within the Italian music sector. With over 20 years of experience, the company targets a young, urban, and innovative audience. Their market position is strong within the creative and media industries, supported by a portfolio of notable projects and partnerships with recognized brands and organizations. The website reflects a professional and consistent brand image, with clear business information and active social media presence. Technically, the website is built on WordPress with modern web technologies including Yoast SEO, Swiper.js, and Quantcast Choice for GDPR-compliant cookie consent. The site is mobile-optimized and demonstrates good SEO practices. Performance is moderate, with room for improvement in accessibility features. Security posture is solid with HTTPS enforced, DNSSEC enabled, and no visible vulnerabilities or exposed sensitive data. However, the site lacks explicit security headers and a formal security policy. Overall, the security posture is good, with GDPR compliance evident through consent management and privacy policy availability. No incident response or vulnerability disclosure policies are found, which could be areas for enhancement. The domain registration data is consistent with the business claims, showing legitimacy and trustworthiness. The website content is safe for general audiences, with no adult or questionable content detected. Strategic recommendations include implementing security headers, publishing a vulnerability disclosure policy, enhancing accessibility, and continuing to maintain GDPR compliance. These steps will further strengthen the company's digital maturity and trustworthiness.

F

Fondazione Cassa di Risparmio di Ascoli Piceno

fondazionecarisap.it

0

Fondazione Cassa di Risparmio di Ascoli Piceno is a well-established Italian non-profit foundation founded in 1842, focused on fostering collaboration between public, private, and third sector entities. The foundation offers grants, supports community development, and promotes cultural and educational initiatives. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to its community audience. Technically, the site is built on WordPress with modern plugins and SEO tools, ensuring good performance and mobile responsiveness. Security posture is strong with HTTPS enforcement and GDPR-compliant cookie consent mechanisms, although some security headers could be improved. Overall, the domain registration and business information are consistent and trustworthy, supporting the foundation's legitimacy.

B

Better Days

rockit.it

0

Rockit is a prominent Italian music portal established in 1997, operated by Better Days. It serves as a comprehensive platform offering music reviews, interviews, artist databases, concert listings, and an e-commerce shop. The site targets musicians, producers, and music enthusiasts primarily in Italy, positioning itself as a leading community and media outlet in the Italian music industry. Technically, the website employs modern JavaScript libraries, integrates payment gateways like PayPal and Stripe, and uses Google Analytics and Tag Manager for tracking. The site is mobile-optimized with good SEO and accessibility basics. Security-wise, Rockit enforces HTTPS, uses security headers, and implements a consent management platform for GDPR compliance, though it lacks a dedicated security policy or incident response page. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with no signs of blocking or WAF interference.

A

asisto des Pürgstaller Stefan

mizu.co

0

Asisto des Pürgstaller Stefan is a small technology service provider based in Italy, specializing in programming and web project implementation with over 10 years of experience and a portfolio exceeding 300 projects. The company primarily targets advertising agencies and clients seeking competent partners for web projects. The website is professionally designed, mobile-optimized, and provides clear navigation, reflecting a good level of digital maturity. The technical infrastructure includes modern analytics tools such as Google Analytics and Matomo, with HTTPS and DNSSEC enabled, ensuring secure communications and domain integrity. However, the absence of explicit security policies and incident response information indicates room for improvement in security governance. Overall, the website is safe, compliant with GDPR through cookie consent mechanisms, and presents a trustworthy business front with transparent WHOIS data and consistent domain registration history.

C

Créer un site gratuit - Découvrez nos offres gratuites de création de sites

creerunsitegratuit.fr

0

The website creerunsitegratuit.fr offers free website creation services, including a free domain for 12 months, targeting a general French-speaking audience. It operates on a WordPress CMS platform and integrates common web technologies such as Google Analytics and Google Tag Manager for tracking. The site appears to be a small-scale service provider focused on enabling users to create personalized websites easily and at no cost for the initial period. Technically, the site is moderately optimized with good mobile responsiveness and SEO practices, but lacks advanced accessibility features and security headers. Security posture is basic with HTTPS enabled but missing important security headers and no visible incident response or vulnerability disclosure information. The absence of WHOIS data and registrant information reduces domain trustworthiness, although the site content and structured data suggest legitimate business activity. Privacy and cookie policies are not found, indicating a gap in compliance with data protection regulations. Overall, the site is functional and professional but would benefit from enhanced security, privacy compliance, and transparency to improve trust and credibility.

H

HebergementWP.fr

hebergementwordpress.fr

0

HebergementWP.fr is a French-based web hosting provider specializing in WordPress hosting services. The company offers managed WordPress hosting with premium features such as free domain registration, SSD storage, professional email accounts, and inclusion of Elegant Themes premium themes. Their market position is focused on providing a high-performance, easy-to-use hosting solution tailored for WordPress users in France, supported by a professional website with strong branding and customer testimonials. Technically, the website is built on WordPress CMS with modern technologies including PHP 8, Nginx caching, Memcached, and OPcache. It uses popular frameworks like Bootstrap and UIkit for responsive design and integrates analytics and marketing tools such as Google Analytics, Google Tag Manager, and Facebook Pixel. The site is well optimized for SEO and mobile devices, providing a fast and accessible user experience. From a security perspective, the site enforces HTTPS with good SSL configuration and mentions active security measures like DDoS protection and automatic WordPress updates. However, explicit security headers and a published security policy or incident response contacts are missing, which could be improved to enhance trust and compliance. Overall, the website presents a professional and trustworthy front for its business, though the absence of WHOIS data for the domain raises some concerns about domain registration transparency. Strategic recommendations include improving security header implementation, publishing a security policy, and verifying domain registration details to strengthen legitimacy and trust.

The website represents the 39th International A+A Congress 2025 organized by the Bundesarbeitsgemeinschaft für Sicherheit und Gesundheit bei der Arbeit e. V. (Basi), a German non-profit focused on occupational safety and health. The site serves as a portal for conference participants to manage their accounts and access event information. The technical infrastructure is based on the Converia conference management system hosted on Schlundtech servers, with a modern but basic tech stack including JavaScript and CSS. Accessibility and mobile optimization are good, though SEO is basic. Security posture is moderate with CSRF protection on login forms but lacks visible security headers and cookie consent mechanisms. The site is fully accessible with no WAF or blocking detected. Contact information is clearly provided, enhancing business credibility.

The BGHM Magazin website serves as an informational platform for the Berufsgenossenschaft Holz und Metall, a German statutory accident insurance institution focused on occupational safety and health in the wood and metal sectors. The site provides news, research, and educational content aimed at employees, employers, and safety professionals. The organization is well-established with a history dating back to 1925, positioning itself as a trusted authority in workplace safety within Germany. Technically, the website is built on TYPO3 CMS, leveraging modern frontend technologies such as Bootstrap and jQuery. It integrates Matomo for analytics and includes accessibility features like ReadSpeaker. The site is mobile-optimized and demonstrates good SEO practices. Hosting appears stable with domain control via GoDaddy DNS services. From a security perspective, the site enforces HTTPS and implements a GDPR-compliant cookie consent mechanism. While no advanced security headers were detected in the provided data, no vulnerabilities or exposed sensitive data were found. The absence of a published security policy or incident response contact is noted as an area for improvement. Overall, the website is professional, trustworthy, and compliant with privacy regulations. It effectively serves its target audience with relevant content and maintains a solid security posture. Strategic enhancements in security transparency and legal documentation could further strengthen its position.

A

Anketa Žebřík – Hlasování, vyhlášení, redakční tipy!

anketazebrik.cz

0

Anketa Žebřík is a Czech music awards website with over thirty years of tradition, providing information about voting, nominations, results, and event announcements related to the Žebřík music awards. The site targets Czech-speaking music fans and operates as an informational and promotional platform for the awards. Technically, the website is built on WordPress with Elementor and Astra theme, integrating modern web technologies and third-party services such as Google Analytics and Seznam advertising. The site is mobile-optimized and offers a good user experience with clear navigation and professional design. Security-wise, the site uses HTTPS and avoids exposing sensitive data, but lacks some security headers and explicit privacy and cookie policies, which are recommended for compliance and trust. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the website content and social media presence suggest an established entity. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and clearer contact information.

V

Accueil

vivreva.fr

0

Vivreva.fr is a French travel and leisure website focused on providing vacation and travel services tailored for retirees. The business appears to be well-established, with a domain age dating back to 2006, and offers services such as trips, circuits, cruises, hiking, and Nordic walking. The website is built on Joomla! CMS using the Helix Ultimate framework and hosted by OVH, indicating a moderate level of technical maturity. The site is mobile optimized and presents a professional design with relevant content for its target audience. However, there are gaps in privacy compliance and security posture, including the absence of explicit privacy and terms of service pages, lack of security headers, and no visible contact information or incident response details. Cookie consent mechanisms are present, showing some GDPR awareness. Overall, the site is functional and credible but would benefit from enhanced security and compliance measures.

O

Office de Tourisme de Roubaix

roubaixtourisme.com

0

The website www.roubaixtourisme.com serves as the official tourism office for Roubaix, France, offering a comprehensive range of visitor services including cultural experiences, event bookings, group visits, and local information. It positions itself as a unique tourism hub emphasizing art, heritage, and local experiences. The site is well-structured, professionally designed, and targets tourists and visitors interested in exploring Roubaix's cultural and industrial heritage. Technically, the site is built on WordPress with a modern tech stack including Bootstrap, jQuery, and several popular plugins such as Slider Revolution and Yoast SEO. It employs HTTPS with Google reCAPTCHA for form security and integrates Google Analytics and Tag Manager for tracking. Security posture is generally good with encrypted connections and no visible vulnerabilities, though explicit HTTP security headers are not detected. Privacy and cookie policies are present and GDPR compliant, enhancing user trust. However, the WHOIS data for the domain is missing or unavailable, which raises concerns about domain registration legitimacy despite the professional appearance and active social media presence. Overall, the site is a credible and functional tourism portal but would benefit from clarifying domain registration status and enhancing security headers.

Publicart.ie is a government-supported non-profit platform managed under the Arts Council of Ireland and the Department of Arts, Heritage and the Gaeltacht. It serves as a comprehensive resource for public art in Ireland, providing directories, news, and critical discourse for artists, commissioners, and audiences. The website is positioned as an authoritative source in the Irish public art sector, with a focus on cultural enrichment and community engagement. Technically, the site runs on an older TYPO3 CMS version with integrations such as Cookiebot for consent management and Google Analytics for tracking. While the site is functional and content-rich, it shows signs of aging infrastructure and basic mobile and accessibility support. Security posture is moderate with HTTPS enabled and cookie consent implemented, but lacks advanced security headers and DNSSEC. No explicit security or incident response policies are published, and contact information is minimal. Overall, the site is trustworthy and legitimate but would benefit from technical modernization and enhanced security practices.

C

Creative Europe Desk Ireland

creativeeuropeireland.eu

0

Creative Europe Desk Ireland is a specialized entity supporting Ireland’s culture and audiovisual sectors in accessing EU Creative Europe funding. The website serves as an official information hub providing funding opportunities, application guidance, news, events, and resources. It is positioned as a national desk affiliated with the European Union and the Arts Council, targeting cultural professionals and organizations in Ireland. The business model is non-profit and service-oriented, focusing on facilitating access to EU funds. Technically, the website employs modern web standards including HTML5, CSS3, JavaScript, and Bootstrap framework for responsive design. It uses Google Fonts and Fathom Analytics for lightweight, privacy-conscious tracking. The site is well-structured with good SEO and accessibility features, providing a positive user experience across devices. The newsletter subscription form collects personal data with explicit consent mechanisms. From a security perspective, the site uses HTTPS and avoids exposing sensitive data. However, no explicit security headers or policies are detected, and there is no visible incident response or vulnerability disclosure information. Privacy compliance is supported by a comprehensive privacy policy and GDPR adherence. The WHOIS data is unavailable due to privacy protections or query failure, limiting domain trust analysis, but the site’s content and branding strongly indicate legitimacy. Overall, the website is professional, trustworthy, and well-maintained, serving its target audience effectively. Strategic recommendations include enhancing security headers, publishing security policies, implementing cookie consent mechanisms, and providing vulnerability disclosure information to improve security posture and compliance.

S

SISTEC

sistec.fr

0

SISTEC is a French software company specializing in providing seven distinct online management solutions tailored for local government entities and public sector organizations. Their offerings cover critical administrative areas such as childhood services, tax collection, cemetery management, cadastre data, urban planning, and technical services. The company has positioned itself as a niche provider with a focus on web-based platforms and maintains a network of partners across France to ensure local presence and support. Recently, SISTEC joined the JVS group, indicating strategic growth and collaboration. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Contact Form 7, leveraging Bootstrap for responsive design and Google Fonts for typography. The site is well-structured, mobile-optimized, and includes a cookie consent mechanism compliant with GDPR principles. Analytics are implemented via Google Analytics, providing moderate user tracking. From a security perspective, the site enforces HTTPS and uses CAPTCHA on contact forms, but lacks explicit security headers and published security policies. The absence of WHOIS data limits domain trust assessment, though the website content and business information appear professional and credible. Overall, SISTEC presents a solid digital presence with room for improvement in privacy transparency and security hardening. The risk level is moderate, with recommendations to enhance compliance documentation and security headers to strengthen trust and resilience.

Escape Master is a small hospitality business based in Prague offering escape room entertainment experiences. The company provides a variety of escape games designed to challenge teamwork, creativity, and logical thinking, targeting a broad audience including families and groups. The website is built on WordPress using the Astra theme and includes common plugins for forms and multilingual support. It features an online reservation system and integrates social proof via Tripadvisor and Facebook. The technical infrastructure is modern and mobile-optimized, though hosting details are not disclosed. Security posture is generally good with HTTPS enabled, but lacks some security headers and formal privacy and cookie policies. WHOIS data is unavailable, which slightly reduces trust but external trust signals support legitimacy. Overall, the site is professional and functional with room for improvement in privacy compliance and security best practices.

Tremagi S.r.l. is a family-owned Italian holding company operating in the energy sector, aiming to be a major player in the Italian electricity and gas market. The company operates through multiple subsidiaries including Illumia, Wekiwi, E-wide, and EnergyUp, serving over one million customers. The website presents a professional corporate image with detailed company history, team members, and subsidiary information, targeting private and business energy consumers in Italy. Technically, the site is built on WordPress using common JavaScript libraries and is moderately optimized for mobile and performance. Security posture is adequate with HTTPS usage but lacks advanced security headers and explicit privacy and cookie policies, indicating room for compliance improvement. No forms or direct contact emails are visible, limiting direct user engagement. Overall, the site is trustworthy and professional but should enhance privacy compliance and security practices.

Zillian S.A. operates the website promoting JACKET™, an innovative advertising technology platform focused on delivering high-impact digital advertising formats with programmatic readiness. The company positions itself as a global adtech innovator, offering fully integrated services from creative development to campaign activation, targeting brands and marketing professionals. The website is multilingual, professionally designed, and provides clear contact channels including a consent-enabled contact form. Technically, the site uses modern web technologies including jQuery and Google Analytics, with good mobile optimization and accessibility features. However, the absence of WHOIS domain registration data raises concerns about domain legitimacy and transparency. Security posture is moderate with HTTPS implied but lacking explicit security headers and cookie consent mechanisms. Privacy compliance is supported by a comprehensive privacy policy and legitimate interest assessment documents, though cookie consent is missing. Overall, the site is professional and trustworthy but would benefit from enhanced security and compliance transparency.

The website www.kaiserwagenticket.de is operated by Wuppertal Marketing GmbH and serves as a ticketing and information platform for cultural and historical tours in Wuppertal, Germany. It offers services such as historic Kaiserwagen rides, city tours, and guided walks, targeting tourists and local visitors interested in cultural experiences. The site is well-branded, with consistent design and good content quality focused on its niche market. Technically, the site uses a CMS called itrium .datentechnik, with client-side technologies including jQuery 1.11.0 and a comprehensive accessibility tool from digiAccess, enhancing usability for users with disabilities. Hosting is provided via rzone.de nameservers, indicating a stable infrastructure. Security posture is moderate with HTTPS enabled and secure login forms, but the use of an outdated jQuery version and lack of security headers present potential vulnerabilities. Privacy compliance is basic, with a privacy policy and terms of service present but no visible cookie consent mechanism. Overall, the site is functional, accessible, and trustworthy but could improve security and privacy features.

S

Stadt Köln

offenedaten-koeln.de

0

Offene Daten Köln is the official open data portal of the City of Cologne, Germany, providing public access to a wide range of municipal datasets to promote transparency and digital engagement. The portal is built on the Drupal 7 CMS with the DKAN open data platform, offering datasets in formats such as CSV, ZIP, WFS, and WMS. The site targets citizens, developers, researchers, and businesses interested in municipal data. It features search functionality, a blog, and user login capabilities. Technically, the website uses a mature but outdated technology stack including Drupal 7 and jQuery 3.1, hosted likely by NetCologne, with Matomo analytics hosted on a city domain to ensure privacy-conscious tracking. The site is mobile optimized with good navigation and consistent branding. However, the use of Drupal 7, which is end-of-life, presents security risks that should be addressed. From a security perspective, the site enforces HTTPS and uses secure forms, but lacks modern security headers and published security or incident response policies. Privacy compliance is basic, with a privacy policy and cookie policy present but no explicit cookie consent mechanism. No vulnerability disclosure or security.txt files were found. Overall, the website is trustworthy and professional, serving as a valuable government resource. Strategic improvements include upgrading the CMS, enhancing security headers, implementing cookie consent, and publishing security policies to strengthen compliance and security posture.

A

A2A S.p.A.

gruppoa2a.it

0

A2A S.p.A. is a leading Italian multi-utility company specializing in energy, water, environmental services, and sustainable mobility. The company positions itself as a Life Company focused on sustainability and ecological transition, offering a wide range of services including electricity and gas supply, district heating and cooling, water management, waste collection, and electric vehicle charging solutions. The website reflects a mature enterprise with a strong market presence and diversified service portfolio targeting consumers, businesses, investors, and public entities. Technically, the website employs modern web technologies such as Next.js and React, integrates Google Tag Manager for analytics, and uses Dynatrace for performance and security monitoring. The site is mobile-optimized, accessible, and SEO-friendly, with comprehensive metadata and structured data enhancing search visibility. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS, implements multiple security headers, and avoids exposing sensitive data. However, explicit security policies and incident response information are not publicly detailed, and no vulnerability disclosure policy or security.txt file is found. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Overall, the website demonstrates high professionalism, trustworthiness, and business credibility. The domain WHOIS data aligns with the corporate identity, confirming legitimacy. Strategic recommendations include publishing detailed security policies, establishing a vulnerability disclosure program, and enhancing performance optimizations to further strengthen the security posture and user experience.

G

Green Network S.p.A.

greennetwork.it

0

Green Network S.p.A. is an established Italian company founded in 2003, originally active in the electricity and gas supply market. As of early 2023, it divested its energy supply business and now focuses on energy efficiency and investments in renewable energy companies. The company holds participations in several subsidiaries operating in the renewable energy sector, positioning itself as a holding and investment entity within the energy industry. The website reflects this transition, providing corporate information and legal details but no direct consumer services or energy supply offerings. Technically, the website uses modern frameworks such as Blazor and Bootstrap, indicating a moderate level of digital maturity. The site is mobile optimized and structured with basic accessibility and SEO features. However, it lacks advanced performance optimizations and visible analytics or tracking tools, suggesting a focus on corporate presence rather than marketing or user engagement. From a security perspective, the website is accessible without WAF or blocking mechanisms, but it lacks important security headers and cookie consent mechanisms, which are critical for GDPR compliance and user data protection. No contact emails or phone numbers are provided, limiting direct communication channels. The WHOIS data is consistent and supports the legitimacy of the business, with a domain age appropriate to the company's history. Overall, the website presents a basic but professional corporate presence with room for improvement in security posture, privacy compliance, and user engagement features. Strategic enhancements in these areas would strengthen trust and regulatory compliance while supporting the company’s business objectives.

IREN.IT is a website offering personalized email address services under the iren.it domain and a collection of related personal domains. The site targets individuals seeking memorable and personalized email addresses, providing webmail access and configuration tutorials. The business appears to be related to the energy sector in Italy, with a domain age dating back to 2010, indicating a mature presence. However, the domain is currently expired, which poses risks to service continuity and trust. Technically, the website uses basic HTML, CSS, and JavaScript without modern frameworks or CMS detected. The site lacks HTTPS enforcement and security headers, which weakens its security posture. No privacy or cookie policies are present, and no analytics or tracking scripts are detected, indicating minimal user tracking but also a lack of compliance transparency. Security evaluation reveals critical issues such as the expired domain status and absence of DNSSEC, which could expose the domain to hijacking or DNS attacks. The site does not provide direct contact emails or phone numbers, relying solely on a contact form. Overall, the security posture is weak, and privacy compliance is poor. The overall risk assessment is moderate to high due to the expired domain and missing security best practices. Strategic recommendations include immediate domain renewal, enabling HTTPS with valid certificates, implementing DNSSEC, publishing privacy and cookie policies, and adding security headers to improve trust and compliance.

U

Unique One sp. z o.o.

uniqueone.pl

0

Unique One sp. z o.o. is a well-established Polish marketing agency specializing in comprehensive promotional services including lotteries, influencer campaigns, loyalty programs, digital marketing, and event organization. With over 25 years of experience, the company serves both Polish and international clients, positioning itself as a professional and innovative market player. The website reflects a mature digital presence with clear branding, detailed service offerings, and strong client trust signals. Technically, the site is built on WordPress with modern SEO and analytics integrations, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, DNSSEC, and reCAPTCHA protections, though minor issues like PHP warnings and lack of explicit security policies are noted. Overall, the site is compliant with GDPR and provides transparent privacy and cookie policies. Strategic recommendations include fixing minor technical warnings, enhancing security transparency, and improving accessibility features to further strengthen trust and compliance.

F

Fairtrade Deutschland e.V.

fairtrade-kampagnen.de

0

Fairtrade Deutschland e.V. operates as a non-profit organization dedicated to promoting fair trade campaigns across Germany. The website serves as a hub for information and coordination of local initiatives such as Fairtrade-Towns, Fairtrade-Schools, and Fairtrade-Universities, supporting producers in developing countries. The organization maintains a strong market position within the fair trade advocacy sector in Germany, leveraging a network of over 1,800 local groups and providing resources, news, and event information to its audience. Technically, the website is built on TYPO3 CMS with a modern and well-maintained technology stack including jQuery, Bootstrap, and various UI libraries. The site demonstrates good mobile optimization, clear navigation, and a professional design. Hosting is provided by Timme Hosting, inferred from the nameservers. Performance is moderate with no critical technical issues detected. From a security perspective, the site enforces HTTPS and implements a comprehensive cookie consent mechanism with granular user controls. However, it lacks explicit security headers and does not publish a security policy or incident response contact information. No vulnerabilities or exposed sensitive data were found in the analysis. Privacy compliance is strong, with a clear privacy policy and cookie banner aligned with GDPR requirements. Overall, the website is trustworthy, professionally managed, and compliant with privacy standards. Strategic improvements could include adding security headers, publishing a security policy, and providing a vulnerability disclosure channel to enhance security posture and user trust.

S

Stadtwerke Heiligenhaus GmbH

stadtwerke-heiligenhaus.de

0

Stadtwerke Heiligenhaus GmbH is a regional municipal utility company providing electricity, gas, water, and energy-related services to the Heiligenhaus community in Germany. The company emphasizes regional presence and customer proximity, offering services such as photovoltaics, electric mobility, and an online customer portal. The website is built on TYPO3 CMS and uses modern web technologies including jQuery and Bootstrap, with good mobile optimization and responsive design. Security posture is adequate with HTTPS enforced and secure form handling, though improvements are recommended in security headers and cookie consent mechanisms. Contact information is clearly presented, enhancing business credibility. Overall, the website is professional, trustworthy, and serves its target audience effectively.

T

TiAM Advisor Services GmbH

advisor-services.de

0

TiAM Advisor Services GmbH operates as a specialized media and service provider in the finance sector, focusing on Private-Wealth-Managers, asset managers, financial advisors, and institutional investors. Their offerings include integrated media content across print, online, and social media, industry events, marketing services, and investment software solutions. The company holds a niche market position with recognized products such as €uro FundResearch and €uro FondsNote, supported by partnerships with established financial publishers and service providers. The website content is professionally presented, targeting finance professionals primarily in Germany.

B

BoltBee

boltbee.de

0

BoltBee is a small-sized German company specializing in e-commerce ERP integration services, providing solutions that enable seamless data exchange between online shops and merchandise management systems. The website is built on WordPress using Elementor and incorporates modern SEO and cookie consent technologies, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and cookie consent implemented, but lacks published privacy policies, terms of service, and explicit contact information, which are important for compliance and trust. Overall, the website is professional and functional but could improve in privacy compliance and transparency to enhance user trust and regulatory adherence.

A

AutoFrame-FM

kia.md

0

AutoFrame-FM operates as the official distributor of KIA automobiles in Moldova, providing a comprehensive online platform for vehicle sales, service bookings, and customer engagement. The website targets consumers in Moldova interested in KIA vehicles, offering detailed model information, pricing, and promotional offers. The business is positioned as a key player in the Moldovan automotive retail sector with a medium-sized operation founded in 2021. Technically, the website is built on WordPress with a modern tech stack including Bootstrap and various JavaScript libraries. It employs SEO best practices and is optimized for mobile devices, delivering a good user experience. Hosting is provided by a Moldovan hosting provider, consistent with the business location. Analytics tools such as Google Analytics and Ahrefs are used for performance and marketing insights. From a security perspective, the site uses HTTPS with a valid SSL certificate, but lacks visible security headers and formal security policies. There is no evidence of privacy or cookie policies, which impacts compliance with GDPR and related regulations. Contact information is primarily via web forms, with no explicit emails or phone numbers displayed. No incident response or vulnerability disclosure mechanisms are present. Overall, the website is professional and functional with moderate security posture and compliance gaps. Strategic improvements in privacy policy publication, security headers, and incident response transparency would enhance trust and regulatory adherence.

K

Kia Canarias

kiacanarias.es

0

Kia Canarias is a regional automotive website dedicated to providing information and services related to Kia vehicles in the Canary Islands. The site offers detailed vehicle specifications, financing options, and dealership locations, targeting consumers interested in Kia automobiles within this region. The website demonstrates consistent branding aligned with the Kia corporate identity and uses modern web technologies including Nuxt.js and third-party marketing tools such as SmartSupp Chat and Evergage. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is moderate with HTTPS usage and cookie consent mechanisms in place, but lacks visible security headers and explicit privacy policies in the provided content. WHOIS data could not be retrieved due to query restrictions, but the website appears legitimate and professionally maintained. Overall, Kia Canarias presents a trustworthy and functional online presence for Kia's regional operations in Spain.