Security Directory

U

University of Reading

reading.ac.uk

0

The University of Reading is a globally recognized higher education institution based in the United Kingdom, offering a wide range of undergraduate and postgraduate courses alongside research and community engagement. The website reflects a professional and comprehensive digital presence targeting prospective and current students, staff, and alumni. It features extensive course listings, campus information, and news updates, supporting its position as a leading educational provider. Technically, the website employs a modern tech stack including HTML5, CSS3, JavaScript, and various analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and TikTok Pixel. The site is mobile-optimized, accessible, and well-structured, providing a good user experience. While no explicit CMS was detected, the site uses common web technologies and frameworks like Modernizr. From a security perspective, the site enforces HTTPS and uses multiple security best practices, though some security headers like Content-Security-Policy and X-Frame-Options are not explicitly observed and could be improved. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong with clear privacy and cookie policies, including consent mechanisms, aligning with GDPR requirements. Overall, the domain WHOIS data is unavailable or privacy protected, which is typical for large institutions. The website content and external references strongly support the legitimacy and trustworthiness of the University of Reading. The site scores well across content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a reliable and professional online presence.

T

The University of Texas at Dallas

utdallas.edu

0

The University of Texas at Dallas operates a comprehensive and professionally designed website serving as a digital gateway for students, faculty, staff, alumni, and visitors. The institution positions itself as a rising public research university with over 140 degree programs and a strong emphasis on innovation and community engagement. The website reflects a mature digital presence with extensive academic, campus life, and research information, targeting prospective and current university stakeholders. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates multiple analytics and marketing tools such as Google Analytics, Microsoft Clarity, and Visual Website Optimizer, indicating a data-driven approach to user experience and marketing. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though explicit security headers and incident response information are not prominently published. Privacy compliance is partial, with a privacy policy present but lacking a visible cookie consent mechanism. Overall, the site is trustworthy and professional, though improvements in privacy transparency and security disclosures are recommended.

Y

Yale University

yale.edu

0

Yale University is a prestigious Ivy League educational institution founded in 1701, offering a wide range of undergraduate, graduate, and professional programs alongside extensive research and cultural services. The website reflects its status with comprehensive content targeting students, faculty, staff, alumni, and visitors. The site is well-branded, professionally designed, and provides clear navigation and relevant information about the university's offerings and community. Technically, the site is built on Drupal 7 with modern analytics and monitoring tools such as Google Analytics, Google Tag Manager, Siteimprove, and New Relic, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though some security headers are not explicitly detected in the provided data. Privacy compliance is partially addressed with a comprehensive privacy policy, but lacks an explicit cookie consent mechanism. Overall, the website is trustworthy and professionally maintained, consistent with the reputation of Yale University.

U

University of Massachusetts Boston

umb.edu

0

The University of Massachusetts Boston website serves as the official digital presence for a large public university known for its diverse student body and strong social mobility rankings. The site offers comprehensive information on academic programs, campus life, research initiatives, and community engagement, targeting prospective and current students, faculty, staff, and alumni. The university positions itself as a leading institution in diversity and inclusion within the New England region. Technically, the website is built on the Terminalfour CMS platform and integrates multiple modern analytics and marketing tools including Google Analytics, TikTok Pixel, Facebook Pixel, and LinkedIn Insight Tag. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Performance is moderate with room for improvement in loading speed and security header implementation. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data in its HTML content. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for enhanced security and privacy compliance. The absence of WHOIS data is noted but is typical for .edu domains and does not detract significantly from the site's legitimacy. Overall, the website reflects a professional, trustworthy, and user-friendly platform that effectively supports the university's mission and services. Strategic improvements in security headers and privacy compliance would further strengthen its posture.

G

Gemeinde Redwitz a.d.Rodach

redwitz.de

0

The website www.redwitz.de serves as the official online presence for the municipality of Redwitz an der Rodach in Germany. It provides comprehensive information about the community, local government services, tourism, social engagement, and citizen resources. The site targets residents, visitors, and local businesses, positioning itself as a key informational and service portal for the municipality. The business model is governmental, focusing on public service and community engagement. Technically, the website is built on TYPO3 CMS, leveraging modern frontend technologies such as Bootstrap, FontAwesome, and OpenLayers for mapping. The hosting appears to be managed by rzone.de, consistent with the domain's nameservers. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, indicating awareness of privacy regulations. However, no explicit security headers or incident response policies are evident, and no vulnerability disclosure information is provided. The WHOIS data aligns well with the website content, showing no suspicious patterns and confirming legitimacy. Overall, the website is professional, trustworthy, and suitable for its governmental purpose. Strategic improvements could include enhancing security headers, publishing security policies, and providing clearer contact information for privacy and incident response.

B

Best Western Hotels and Resorts

bestwestern.co.kr

0

Best Western Hotels and Resorts operates a localized Korean website offering hotel booking services, loyalty rewards, and customer support. The site is professionally designed with consistent branding and targets Korean-speaking travelers and loyalty program members. The technical infrastructure uses modern JavaScript libraries, UI frameworks, and integrates security features such as Google reCAPTCHA and bot protection. Privacy compliance is addressed with OneTrust cookie consent and GDPR indicators. However, the WHOIS data for the domain is missing or indicates the domain is not registered, which is unusual and warrants caution. Overall, the website demonstrates a mature digital presence with good security posture but lacks published security policies and incident response contacts.

B

BWH Hotels Central Europe GmbH

bestwestern.at

0

Best Western Hotels Central Europe GmbH operates a regional hotel booking platform targeting German-speaking countries including Austria, Germany, Luxembourg, and Switzerland. The website offers detailed hotel information and online booking capabilities for over 200 hotels. The platform supports multiple languages and provides accessibility features to accommodate users with disabilities. Technically, the site employs modern tracking and consent management tools such as Consentmanager.net, Google Tag Manager, and eTracker, ensuring compliance with GDPR and user privacy. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, the site presents a professional and trustworthy online presence consistent with an established hospitality brand.

B

BWH Hotels Central Europe GmbH

bestwestern.ch

0

Best Western Switzerland (www.bestwestern.ch) is a regional website operated by BWH Hotels Central Europe GmbH, providing hotel booking services for over 200 hotels in Germany, Luxembourg, Austria, and Switzerland. The site targets both private leisure travelers and business customers, offering loyalty programs, travel packages, and business meeting services. The website is professionally designed with good content quality, clear navigation, and mobile optimization. It uses modern technologies including JavaScript libraries, consent management tools, and analytics platforms. Security posture is strong with HTTPS enforced, cookie consent mechanisms, and bot protection via Google reCAPTCHA. However, explicit security policies and incident response contacts are not published. Overall, the site is trustworthy, compliant with GDPR, and well-positioned in the hospitality market in Central Europe.

B

Bamberger Rundfunk GmbH & Co. Studiobetriebs KG

radio-bamberg.de

0

Radio Bamberg is a regional media company operating a local radio station focused on hits music for the Bamberg area in Germany. The website provides streaming and podcasting services, targeting local listeners. The technical infrastructure is modern, utilizing HTML5, CSS3, JavaScript libraries such as Video.js and Swiper.js, and Matomo analytics for user tracking. The site is mobile optimized and has good SEO practices, though accessibility features are basic. Security posture is adequate with HTTPS enabled but lacks important security headers and explicit privacy and cookie policies, which impacts compliance and user trust. No WAF or blocking mechanisms were detected, indicating full accessibility. Overall, the site is professional but could improve in privacy compliance and security best practices.

R

reitbuch.com GmbH

reitbuch.com

0

reitbuch.com GmbH operates a specialized online booking system tailored for riding schools and horse-related businesses. Established in 2013, it has grown to serve over 600 clients across 7 countries, offering features such as credit management, course booking, invoicing, and membership modules. The website is professionally designed, mobile-optimized, and provides clear contact information and client testimonials, reflecting a strong market position in its niche. Technically, the site uses modern frameworks like Bootstrap and MDB-Pro, with a moderate performance profile and good SEO practices. Security posture is adequate but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is well addressed with a clear cookie consent mechanism and a GDPR-compliant privacy policy. Overall, the site presents a trustworthy and professional digital presence with room for enhanced security policies.

S

Stadtgemeinde Schwaz

schwaz.at

0

The website www.schwaz.at serves as the official digital presence of the city of Schwaz, Austria. It provides comprehensive information about municipal services, local news, events, and community resources targeted primarily at residents and visitors. The site is positioned as a government portal offering transparency and accessibility to city administration and public services. The business model is that of a public sector entity focused on information dissemination and citizen engagement. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies including Bootstrap, jQuery, and various JavaScript libraries for enhanced user experience. It integrates Google Analytics and Google Tag Manager for analytics and tracking, alongside OneSignal for push notifications. The site demonstrates good mobile optimization, accessibility features, and SEO practices, contributing to a positive digital maturity level. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism compliant with GDPR. However, it lacks explicit security headers and a published security policy or incident response contact, which are areas for improvement. No vulnerabilities or exposed sensitive data were detected in the analysis. The absence of WHOIS data limits the ability to fully verify domain legitimacy, though the official nature of the content and contact details support trustworthiness. Overall, the website presents a professional, secure, and user-friendly platform for municipal communication. Strategic recommendations include enhancing security headers, publishing a security policy, and adding vulnerability disclosure information to strengthen security posture and trust.

H

Hall-Wattens Tourismus

hall-wattens.at

0

Hall-Wattens Tourismus operates as the official tourism organization for the Hall-Wattens region in Tirol, Austria, providing comprehensive information and services to tourists including accommodation booking, event promotion, and activity guidance. The website is professionally designed with excellent content quality, targeting travelers interested in seasonal vacations and cultural experiences in the Austrian Alps. Technically, the site leverages modern web technologies such as Next.js and React, ensuring good performance and mobile optimization. Security measures include HTTPS enforcement and appropriate security headers, alongside a robust cookie consent mechanism aligned with GDPR requirements. However, the absence of WHOIS data limits domain trust assessment, though the website's professional presentation and clear contact details support its legitimacy. Overall, the site presents a low-risk profile with strong business credibility and privacy compliance.

E

Erasmus+ project about Jakob Fugger

erasmusfugger.eu

0

The Erasmus+ project about Jakob Fugger is a European educational initiative focused on exploring the historical and cultural impact of Jakob Fugger through a multinational school partnership. The website serves as a platform to share project activities, educational materials, and multimedia content aimed primarily at students aged 14-16 and educators. The project is supported by Erasmus+ funding and involves partner schools from Germany, Italy, Slovakia, Spain, and Belgium. Technically, the website is built on WordPress 6.8.1 with a modern theme and several plugins for galleries, multilingual support, and interactive content. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Performance is moderate, with room for improvement in security headers and advanced SEO. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms, indicating good privacy compliance. However, explicit security policies and incident response information are not present, which could be enhanced to improve trust and readiness. No vulnerabilities or malicious content were detected. Overall, the website is a credible, well-maintained educational resource with strong alignment between domain registration and business purpose. Strategic recommendations include enhancing security headers, adding incident response and security policy pages, and maintaining regular updates to plugins and themes to ensure ongoing security and compliance.

B

Bad Hindelang

badhindelang.de

0

Bad Hindelang is a regional tourism website promoting vacation activities such as hiking, skiing, and family holidays in the Allgäu Alps region of Germany. The site targets tourists and families seeking outdoor recreational opportunities. Technically, the website is built on TYPO3 CMS, hosted behind Cloudflare, and uses modern web technologies with good mobile optimization and SEO practices. Security-wise, HTTPS is enabled and a consent management platform is implemented, but the site lacks visible security headers and explicit privacy and terms of service policies. Overall, the site is legitimate and professionally presented but would benefit from enhanced privacy disclosures and security hardening.

F

Fugger und Welser Erlebnismuseum

fugger-und-welser-museum.de

0

The Fugger und Welser Erlebnismuseum is a specialized cultural institution located in Augsburg, Germany, focusing on the history and impact of the Fugger and Welser merchant families during the Renaissance. The museum offers a rich array of services including exhibitions, guided tours, events, and a virtual museum experience, targeting history enthusiasts, tourists, and educational groups. It holds a strong market position as a recognized and award-winning museum with a focus on interactive and multimedia content. Technically, the website is built on WordPress with modern frameworks like Bootstrap and uses privacy-conscious analytics (Matomo) and cookie consent management (Borlabs Cookie). The site is well-optimized for mobile and SEO, with good performance and accessibility features. Security posture is solid with HTTPS and cookie consent, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website is professional, trustworthy, and safe for general audiences.

F

Fugger

fugger.de

0

The Fugger website represents a well-established non-profit cultural foundation dedicated to preserving and promoting the history and heritage of the Fugger family, particularly through the Fuggerei and related museums and archives. The site offers rich content in German with English support, targeting tourists, historians, and cultural enthusiasts. It provides key services such as ticket sales, guided tours, museum information, and foundation administration. The website is professionally designed with clear navigation and mobile optimization, reflecting a mature digital presence. Technically, the site uses modern web standards including HTML5, CSS3, and JavaScript, with Matomo Analytics implemented in a privacy-conscious manner. The site is served over HTTPS, ensuring secure communications. While no explicit CMS or hosting provider is identified, the site performance is moderate with good SEO and accessibility features. The cookie consent mechanism is comprehensive, offering granular control over analytics, video, maps, newsletter, and donation scripts. From a security perspective, the site enforces HTTPS and respects user privacy with DoNotTrack enabled and cookies disabled by default in analytics. However, it lacks visible security headers and formal security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data is consistent with a legitimate domain registration, supporting the site's credibility. Overall, the Fugger website demonstrates a strong cultural and business credibility with good technical and privacy compliance. Strategic improvements could focus on enhancing security headers, publishing security policies, and adding vulnerability disclosure information to further strengthen trust and security posture.

The website www.visitbanskabystrica.sk serves as a regional tourism portal promoting Banská Bystrica city and its surroundings. It provides visitors with comprehensive information about local events, cultural activities, gastronomy, accommodation, and leisure options. The site targets tourists and visitors interested in exploring the region, offering multilingual support in Slovak, English, and German. The business model is informational and promotional, focusing on enhancing the visibility of the destination and supporting local tourism initiatives. Technically, the website is built on WordPress, leveraging popular plugins such as The Events Calendar, WPML for multilingual content, and Slider Revolution for dynamic visuals. It integrates Google Fonts, jQuery, and third-party services like Google Analytics and Tawk.to for analytics and live chat support. The site demonstrates moderate performance and good mobile optimization, with a consistent and professional design. From a security perspective, the site uses HTTPS with excellent SSL configuration, but lacks visible security headers and explicit privacy or cookie policies, which are important for GDPR compliance. No contact information or incident response channels are clearly provided, and there is no vulnerability disclosure or security.txt file. These gaps represent areas for improvement to enhance user trust and regulatory compliance. Overall, the website is a well-structured and content-rich tourism platform with moderate technical maturity and security posture. Strategic enhancements in privacy compliance, security headers, and contact transparency would significantly improve its trustworthiness and compliance standing.

T

Tourismusverband Silberregion Karwendel

silberregion-karwendel.com

0

Silberregion Karwendel is a regional tourism organization promoting a diverse vacation destination in Tyrol, Austria. The website provides comprehensive information on mountain summer and winter activities, cultural events, accommodations, and regional offers. It targets tourists seeking nature, culture, and leisure experiences in the region. The organization appears well-established with a domain age since 2004 and consistent WHOIS data. Technically, the site uses Contao CMS with modern web technologies and offers a good user experience with mobile optimization and SEO best practices. Security posture is solid with HTTPS and cookie consent mechanisms, though DNSSEC is not enabled and some security headers could be improved. Privacy compliance is strong with clear policies and GDPR adherence. Overall, the site is professional, trustworthy, and serves its business purpose effectively.

STRATO GmbH is a well-established German technology company specializing in cloud storage solutions under the HiDrive brand. The company emphasizes data security, compliance with GDPR, and hosting within Germany, supported by certifications such as ISO 27001 and Trusted Cloud. Their offerings target both consumers and businesses, providing flexible cloud storage plans with optional features like device backups and end-to-end encryption. The website reflects a mature digital presence with modern technologies, comprehensive product information, and strong trust signals. Security posture is robust, leveraging encrypted data storage, two-factor authentication, and certified data centers. Privacy compliance is well implemented with clear cookie consent mechanisms and GDPR-aligned policies. Overall, STRATO presents a credible and professional cloud storage service with a strong focus on security and compliance.

I

IHC Karlheinz Eckhart e.U.

ihc.at

0

IHC Karlheinz Eckhart e.U. is a specialized web hosting and digital consulting company based in Landeck, Tirol, Austria. With over 20 years of experience, the company focuses on providing personalized hosting services, particularly for Typo3 CMS, alongside email hosting, domain registration, and Office 365 support. Their business model emphasizes direct customer support without impersonal hotlines or ticket systems, positioning them as a trusted regional provider. They also collaborate closely with Werbeagentur Falkner for web design services and offer digital tools under the Daskuma brand. Technically, the website employs modern web technologies including PHP 7.4, MySQL, Linux hosting, Bootstrap, and jQuery. The site is responsive and optimized for mobile devices, with good SEO practices and minimal user tracking via Matomo analytics. However, some security best practices such as security headers and cookie consent mechanisms are missing or not detected. The SSL configuration status is unknown from the provided data. From a security perspective, the company uses encrypted remote support tools (Teamviewer) and supports secure file transfers via FTPS. Incident response contact channels are clearly provided for emergencies outside business hours. However, the absence of WHOIS data for the domain raises concerns about domain registration transparency and trustworthiness. No formal security policy or vulnerability disclosure is published. Overall, the website and business present a professional and trustworthy image with strong regional presence and personalized service. The main risk is the lack of publicly available domain registration data and some missing security best practices. Strategic improvements in security headers, cookie consent, and domain registration transparency would enhance trust and compliance.

R

Romantische Straße Touristik-Arbeitsgemeinschaft GbR

romantic-road-shop.com

0

The website www.romantic-road-shop.com represents a small German e-commerce business specializing in tourism-related products such as travel vouchers, guides, souvenirs, and gifts centered around the Romantic Road region. The company, Romantische Straße Touristik-Arbeitsgemeinschaft GbR, appears to target tourists and visitors interested in this cultural and historical route. The site is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard polyfills for compatibility. The technical infrastructure is modern but basic, with moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled but lacks advanced security headers and visible privacy or cookie policies. The absence of WHOIS data raises concerns about domain registration legitimacy, which impacts overall trust. The site does not exhibit any adult or questionable content and maintains a professional and consistent brand presence.

R

Romantic Road Coach

romanticroadcoach.com

0

Romantic Road Coach is a small transportation business specializing in day trips and minibus tours along the Romantic Road in Germany, targeting tourists and travelers seeking scenic and cultural experiences. The company offers online booking and optional services such as wine tasting and hotel pick-up, positioning itself as a niche regional tourism provider. The website is built on WordPress with modern plugins and demonstrates good SEO and mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

K

Kreativkombinat - Digitalagentur

kreativkombinat.de

0

Kreativkombinat is a small, full-service digital agency based in Germany, specializing in marketing consulting, web, and print solutions. The company positions itself as competent, friendly, efficient, and flexible, targeting businesses seeking comprehensive digital marketing and creative services. The website is built on WordPress using the Divi theme and enhanced with Yoast SEO for search optimization. Hosting is provided by Hetzner, a reputable German hosting provider. The site includes a cookie consent mechanism via CookieYes, indicating awareness of privacy compliance requirements, although explicit privacy and terms of service pages are not found. Security posture is moderate with HTTPS enabled but lacking advanced security headers and explicit security policies. No contact emails or phone numbers are explicitly found in the analyzed content, which may impact user trust and compliance. Social media presence on Facebook and Twitter supports brand visibility. Overall, the website is professional, well-branded, and technically sound for a small agency, but could improve in privacy transparency and security best practices.

W

Wittelsbacher Land e. V.

wittelsbacherland-verein.de

0

Wittelsbacher Land e. V. is a regional non-profit organization focused on promoting sustainable development, regional products, and community projects within the Wittelsbacher Land region in Germany. The website serves as an information hub for local initiatives, events, and quality regional products, targeting residents and visitors interested in regional culture and sustainability. The organization positions itself as a key regional player supporting local economic and environmental goals. Technically, the website is built on the Contao Open Source CMS platform, leveraging modern frontend technologies such as Bootstrap, jQuery, and Google Charts. It is hosted on a professional DNS provider with HTTPS enforced, ensuring secure communications. The site is mobile-optimized and provides a good user experience with clear navigation and regularly updated content. From a security perspective, the website uses HTTPS and implements a cookie consent mechanism, indicating awareness of privacy compliance. However, no explicit security headers or incident response policies are found, which could be improved. The use of self-hosted Matomo analytics suggests a moderate level of user tracking with good privacy considerations. No vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. It effectively supports the organization's mission and provides a positive user experience. Strategic improvements in security headers and incident response transparency would further enhance its security posture.

E

Eva

eva-augsburg.de

0

Eva is a non-profit regional association dedicated to managing and promoting over 50 recreational areas, including lakes, cycling and hiking paths, and family-friendly leisure facilities in the Augsburg region and surrounding districts in Germany. The organization collaborates with 37 member municipalities and benefits from government subsidies to enhance regional tourism and quality of life. The website is professionally designed using WordPress with Elementor and Yoast SEO, providing clear navigation and relevant content primarily in German. It targets local residents and visitors interested in outdoor activities and nature experiences. The site includes comprehensive privacy and cookie policies compliant with GDPR and implements Google Analytics and Tag Manager for user tracking with consent mechanisms. Security posture is strong with HTTPS and security headers, though no explicit security or incident response policies are published. WHOIS data is minimal but consistent with the business profile. Overall, the website is trustworthy, safe, and well-maintained, serving as an effective digital presence for the association.

S

Stadt Aichach

aichach.de

0

The website www.aichach.de is the official digital presence of the city of Aichach, Germany. It serves as a comprehensive portal for residents, visitors, and businesses, offering detailed information about city administration, local services, cultural events, tourism, and community news. The site is well-structured with clear navigation and multiple service categories, reflecting a mature municipal digital infrastructure. The presence of accessibility tools like ReadSpeaker and EyeAble indicates a commitment to inclusivity. Technically, the site uses a variety of JavaScript libraries and the iKISS CMS platform, hosted on GoDaddy name servers, with HTTPS enabled and cookie consent mechanisms in place. Security posture is solid with no critical vulnerabilities detected, though there is room for improvement in publishing explicit security policies and incident response contacts. Overall, the site is trustworthy, professional, and compliant with GDPR requirements.

S

Stadt Friedberg

friedberg.de

0

The website www.friedberg.de serves as the official digital presence of the city of Friedberg in Germany, providing extensive information and services related to city administration, culture, tourism, public utilities, and economic development. It targets residents, local businesses, tourists, and government stakeholders, positioning itself as a comprehensive municipal portal. The site is built on the ionas4 CMS platform, hosted likely by Deutsche Telekom, and employs modern web technologies including SystemJS and Matomo analytics for privacy-conscious user tracking. Security measures include HTTPS enforcement, security headers, and invisible Google reCAPTCHA for form protection. Privacy and cookie policies are present and GDPR compliant, reflecting a strong commitment to data protection. However, the site lacks explicit security policy and incident response pages, and no vulnerability disclosure or security.txt files were found. Overall, the website demonstrates a good balance of content quality, technical implementation, and security posture, suitable for a government entity.

K

Kreativkombinat

ade25.de

0

The website ade25.de is currently a minimal 'coming soon' placeholder page for the entity Kreativkombinat, indicating that the site is under construction. The business overview is limited due to lack of content, but the presence of a logo linking to kreativkombinat.de suggests a relationship or parent company. The technical infrastructure is based on WordPress with the Divi theme, hosted on Hetzner servers with HTTPS enabled, indicating a standard modern setup. However, the site lacks critical security headers and any privacy or cookie policies, which are essential for compliance and security. No contact information or forms are present, limiting user engagement and trust. Overall, the security posture is basic with room for improvement, and the site currently provides minimal business information or services.

E

European BizApps Summit

bizappssummit.eu

0

The European BizApps Summit website represents a well-established technology conference focused on Microsoft Power Platform and related business applications. It serves a large audience of technology professionals and citizen developers, offering extensive sessions, networking, and expo opportunities. The site is part of a trio of summits, enhancing its market position and appeal. Technically, the website uses modern frameworks such as Astro and Angular, integrates multiple analytics and tracking tools, and is optimized for mobile and accessibility. Security posture is strong with HTTPS and security headers, though lacks explicit security policies and incident response information. Privacy compliance is evident through a cookie consent mechanism and a privacy policy. Overall, the site is professional, trustworthy, and well-positioned in its niche.

C

European AI and CloudSummit

cloudsummit.eu

0

The European AI and Cloud Summit website represents a well-established technology conference focused on AI, Microsoft Azure, Open AI, and cloud security. It targets technology professionals and Microsoft ecosystem participants, offering extensive sessions and networking opportunities. The site is part of a larger combined event with the European Collaboration Summit and European BizApps Summit, enhancing its market position as a leading European tech conference. Technically, the site uses modern frameworks like Astro and integrates multiple analytics and marketing tools, including Google Tag Manager and Microsoft Clarity. The security posture is moderate with HTTPS implied and cookie consent implemented, but lacks visible security headers and explicit security policies. Privacy compliance is basic, with no clear privacy policy or terms of service found in the analyzed content. Overall, the site is professional, well-branded, and trustworthy, with room for improvement in privacy and security transparency.

N

Nikita Hovratov

nikita-hovratov.de

0

Nikita Hovratov operates as a specialized TYPO3 CMS freelancer based in Hamburg, Germany, offering services including new TYPO3 website development, relaunches, updates, and custom extensions. The website positions the business as a niche expert with a strong focus on personalized client communication and technical excellence in TYPO3 implementations. The digital infrastructure is built on TYPO3 CMS with hosting provided by StratoServer, featuring a modern responsive design and good SEO practices. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements in security headers and incident response documentation are recommended. Privacy compliance is partially addressed with a GDPR privacy policy but lacks a cookie consent mechanism. Overall, the website reflects a trustworthy, professional small business with a clear market focus and good technical maturity.

The website lechenbauer.de currently presents an extremely minimalistic and placeholder-like presence with only a centered image and no textual or interactive content. There are no privacy, cookie, or terms of service policies, nor any contact information or business details disclosed. The domain is hosted on ns-hosting provider name servers, but no registrant details are available to verify legitimacy or business claims. Technically, the site lacks modern SEO, accessibility, and security features, and no analytics or tracking technologies are detected. Security posture is weak due to lack of HTTPS confirmation and absence of security headers. Overall, the site appears inactive or under construction, limiting its business and security credibility.

М

Министерски съвет

strategy.bg

0

The website strategy.bg is an official Bulgarian government portal managed by the Министерски съвет (Council of Ministers). It serves as a platform for public consultations, providing access to draft normative acts, strategic documents, publications, news, and forums aimed at enhancing transparency and public participation in government policy-making. The portal targets Bulgarian citizens, government institutions, and stakeholders interested in legislative and strategic developments. Technically, the site is built on ASP.NET Web Forms and uses older JavaScript libraries such as jQuery 1.7.2 and jCarousel. While functional, the technology stack is outdated, which may pose security and performance challenges. The site includes CAPTCHA protections on forms and integrates Google Analytics for user tracking. However, it lacks modern security headers and cookie consent mechanisms, which are important for GDPR compliance and security hardening. From a security perspective, the site shows moderate maturity. The WHOIS data is privacy protected in compliance with GDPR, with nameservers indicating government ownership, supporting legitimacy. The absence of security headers and use of outdated libraries are notable vulnerabilities. No signs of WAF or blocking mechanisms were detected, and the site content is accessible and complete. There is no evidence of exposed sensitive data or adult content, making the site safe for general audiences. Overall, the portal is a credible and important government resource with good business credibility but requires technical and security improvements to enhance its posture and compliance. Strategic recommendations include updating libraries, implementing security headers, enabling cookie consent, and improving accessibility and mobile optimization.

B

Bundesverband Soziokultur e.V.

neustartkultur.de

0

The website soziokultur.neustartkultur.de serves as an informational and administrative portal for the Bundesverband Soziokultur e.V., a German non-profit organization responsible for managing the NEUSTART KULTUR funding program. This program was established as a cultural rescue and future initiative by the German government to support cultural and media sectors during and after the Covid-19 pandemic. The site provides comprehensive information about the program, including funding rounds, downloadable documents, blog articles, and social media integration. The target audience includes cultural institutions, funding applicants, and the general public interested in cultural funding. Technically, the website is built on WordPress 6.8.1 with a modern tech stack including jQuery, Matomo analytics for privacy-conscious tracking, Leaflet.js for mapping, and integration with CiviCRM for case and funding management. The site is hosted on servers indicated by the nameservers agenturserver.co, .de, and .it. The site is mobile optimized and has good SEO and accessibility basics. From a security perspective, the site enforces HTTPS and uses some security best practices such as a cookie consent banner and honeypot anti-spam measures. However, the Content-Security-Policy header is commented out and some other security headers are missing, indicating room for improvement. No incident response or vulnerability disclosure information is published. The WHOIS data is consistent with the organization and domain usage, indicating legitimacy. Overall, the website is professional, trustworthy, and serves its purpose well. Security posture is adequate but could be enhanced by activating CSP and publishing security policies. Privacy compliance is good with GDPR-aligned cookie consent and privacy policy. No critical issues or blocking mechanisms were detected.

T

Team KULTUR.GEMEINSCHAFTEN bei der Kulturstiftung der Länder

kulturgemeinschaften.de

0

KULTUR.GEMEINSCHAFTEN is a German government-backed funding program aimed at supporting small and non-profit cultural institutions in developing digital content offerings. The program is administered by the Kulturstiftung der Länder and focuses on enabling cultural organizations to acquire production technology, receive expert project support, and build competencies in digital content production. The website presents a professional and consistent brand image, targeting cultural institutions across Germany. Technically, the site is built on WordPress, hosted on AWS infrastructure, and uses common JavaScript libraries and plugins such as jQuery and Slick Slider. While HTTPS is enforced and cookie consent is managed via Borlabs Cookie, the site lacks explicit privacy policy and terms of service pages, and security headers are not detected in the provided data. Analytics are implemented using Google Tag Manager, indicating moderate user tracking. Overall, the website is well-designed, content-rich, and trustworthy, but could improve its privacy and security posture by publishing comprehensive policies and implementing additional security headers.

N

nextbike GmbH

nextbike.de

0

nextbike GmbH operates a leading bike-sharing platform active in over 300 cities worldwide, primarily targeting urban commuters and residents. The company offers app-based bike rentals with flexible tariffs including base rates and subscription models. The website reflects a mature digital presence with strong branding, comprehensive content, and clear user guidance. Technically, the site is built on WordPress with modern frontend components and includes robust SEO and mobile optimization. Security posture is solid with HTTPS, cookie consent, and no visible vulnerabilities, though explicit security policies and incident response contacts are absent. Overall, nextbike presents a trustworthy and professional online presence aligned with its transportation sector business model.

B

Budapest Főváros Önkormányzata

budapest.hu

0

Budapest.hu is the official city government portal for Budapest, Hungary, providing residents, businesses, and visitors with comprehensive information about municipal services, city developments, green initiatives, cultural events, transportation, utilities, and business-related matters. The website is well-branded and consistent with the official identity of Budapest's local government, supported by a domain registered since 1997, indicating a long-standing and legitimate presence. Technically, the site leverages modern web technologies including the Next.js React framework, Google Fonts, and SVG icons, delivering a responsive and user-friendly experience optimized for mobile devices. SEO practices are well implemented with appropriate meta tags and Open Graph data. Performance is moderate, with preloading of key assets and deferred JavaScript loading. From a security perspective, the site enforces HTTPS and includes some security headers, though additional headers like X-Frame-Options and Content-Security-Policy could enhance protection. No vulnerabilities or exposed sensitive data were detected in the analyzed content. However, the site lacks explicit privacy and cookie policies, as well as a vulnerability disclosure or incident response contact, which are important for compliance and security transparency. Overall, Budapest.hu presents a trustworthy and professional government portal with good technical implementation and business credibility. The main areas for improvement include publishing comprehensive privacy and cookie policies with consent mechanisms, enhancing security headers, and providing clear contact information for security incidents and general inquiries.

N

nextbike business

nextbike.net

0

Nextbike business operates as a European market leader in bike-sharing, providing tailored mobility solutions including both station-based and stationless systems. The company is positioned under the parent company TIER Mobility and targets urban mobility customers and business clients across Europe. The website content is professionally presented in German, with strong SEO and structured data implementation, reflecting a mature digital presence. Technically, the site is built on WordPress with common plugins and libraries, offering good mobile optimization and user experience. However, the absence of visible privacy and cookie policies, security headers, and WHOIS registration data introduces concerns regarding compliance and domain legitimacy. Security posture is moderate but could be improved with enhanced headers and explicit policies. Overall, the site is functional and professional but requires improvements in privacy compliance and security transparency to strengthen trust and regulatory adherence.

R

run.events GmbH

runevents.net

0

run.events GmbH is a German-based technology company founded in 2021 that offers an AI-powered event management platform designed to streamline the entire event lifecycle from planning to post-event analysis. The platform targets event organizers, agencies, venues, and associations, providing services such as agenda management, marketing automation, ticketing, on-site check-in, attendee tracking, and event analytics. The company positions itself as a cost-effective and secure alternative to traditional event management tools, emphasizing AI-driven insights and European data privacy compliance. Technically, the website is built using modern JavaScript frameworks (Astro), hosted likely on Microsoft Azure, and integrates multiple analytics and marketing tools including Google Analytics, Microsoft Clarity, HubSpot, and LinkedIn Insight Tag. The site is well-optimized for mobile devices, fast loading, and features a professional design with clear navigation. From a security perspective, the site enforces HTTPS, uses clientTransferProhibited domain status, and implements cookie consent mechanisms aligned with GDPR. However, DNSSEC is not enabled, and some recommended security headers are not explicitly detected. No critical vulnerabilities or exposed sensitive data were found. Overall, run.events demonstrates a mature digital presence with strong business credibility and a good security posture. Strategic improvements include enabling DNSSEC, publishing a security.txt file, and enhancing security headers to further strengthen trust and compliance.

G

Classic Car Auctions | Gooding Christie’s

goodingco.com

0

The domain www.goodingco.com appears to be unregistered or inactive as indicated by the WHOIS raw output stating 'No match for "WWW.GOODINGCO.COM"'. The website content is inaccessible or non-existent, with the provided HTML content truncated and lacking meaningful data. Consequently, no business information, contact details, or security policies are available for analysis. The technical infrastructure and digital maturity cannot be assessed due to the absence of accessible content. Security posture evaluation is not possible, and no vulnerabilities or compliance gaps can be identified. Overall, the domain does not present any trust indicators or business credibility, and the risk assessment is high due to the lack of active presence.

M

mmtro.com (1×1)

mmtro.com

0

The website mmtro.com presents an extremely minimal digital presence, consisting solely of a blank page with a single 1x1 pixel image and no textual or interactive content. The domain is registered since 2012 with a reputable registrar and hosted on Amazon AWS infrastructure, indicating a legitimate registration but the website itself lacks any meaningful business information or user engagement features. There are no privacy, cookie, or terms of service policies, nor any contact or social media information, which significantly limits trust and compliance posture. Technically, the site lacks modern SEO, accessibility, and security best practices such as DNSSEC and security headers. The security posture is basic with no visible vulnerabilities but also no advanced protections. Overall, the site appears inactive or a placeholder, resulting in a low AI score and limited business credibility.

A

Acquire

acquire.io

0

Acquire is a technology company founded in 2012, offering a unified customer support platform that integrates live messaging, video calling, workflows, call deflection, and email management. The company targets businesses seeking to enhance their customer service capabilities through a SaaS model. The website is professionally designed with consistent branding and clear navigation, reflecting a mature digital presence. Technically, the site leverages modern tools such as Webflow CMS, Cloudflare DNS, Google Analytics, Google Tag Manager, and Marketo for marketing automation, indicating a well-integrated digital infrastructure. Security-wise, the site uses HTTPS and has domain status protections but lacks DNSSEC and explicit security headers. Privacy compliance is partial, with a cookie consent mechanism present but no visible privacy policy or terms of service in the analyzed content. Overall, the site presents a high level of professionalism and trustworthiness, though improvements in security and privacy disclosures are recommended.

P

portfolio institutional

portfolio-institutional.co.uk

0

Portfolio Institutional is a UK-based branch of Portfolio Verlag, delivering specialized financial media content aimed at institutional and semi-institutional investors across the UK and Europe. The website offers a broad range of services including news, in-depth analysis, expert opinions, interviews, roundtables, and event coverage, supported by a professional magazine subscription service. The site is well-positioned in the niche financial media market, leveraging its parent company's reputation and focusing on ESG, private markets, and pension-related content. Technically, the website is built on WordPress with modern frameworks like Bootstrap and integrates Google services for analytics and advertising. It demonstrates good mobile optimization, accessibility, and SEO practices. Security-wise, the site enforces HTTPS, uses reCAPTCHA for forms, and provides cookie consent mechanisms, though explicit security headers and incident response policies are not clearly documented. The WHOIS data is unavailable due to domain registration anomalies, but the website's professional presentation and active content suggest legitimacy. Overall, the site maintains a strong digital presence with room for enhanced security transparency and incident response readiness.

Berghof Wartenfels is a small, family-run hospitality business located in the Franconian Forest region of Germany. The company operates a restaurant, guesthouse, holiday home rentals, and cooking courses, emphasizing regional cuisine and cultural heritage. The website reflects a well-structured, content-rich presentation targeting local and visiting customers interested in authentic Franconian hospitality experiences. The business maintains an active social media presence and provides clear contact information, supporting customer engagement and trust. Technically, the website uses a custom PHP backend with a Bootstrap frontend enhanced by common JavaScript libraries such as jQuery, Masonry, and Jarallax. The site is mobile-optimized and offers a moderate performance level. However, there is room for improvement in SEO and accessibility features. No CMS or advanced analytics tools are detected, indicating a relatively simple but functional technical infrastructure. From a security perspective, the site uses HTTPS (inferred from URL scheme though not explicitly confirmed), but lacks visible security headers and published security policies. No forms or data collection mechanisms are present, reducing attack surface but also limiting user interaction. Privacy compliance is partial, with a privacy policy available but no cookie consent mechanism. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. Overall, the website presents a trustworthy and professional image consistent with a small regional hospitality business. Security posture and privacy compliance are adequate but could be strengthened. The site is safe for general audiences with no adult or questionable content detected.

G

Gasthof Pressecker Hof Familie Reuther

pressecker-hof.de

0

Gasthof Pressecker Hof is a family-operated hospitality business located in the scenic Frankenwald region of Germany, offering restaurant services, guesthouse accommodations, and event hosting. The website reflects a small but professionally managed business with a clear focus on local tourism and traditional Franconian cuisine. The digital infrastructure includes modern tracking and consent management tools such as Cookiebot and Google Tag Manager, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the website is accessible, well-structured, and compliant with GDPR requirements, supporting a trustworthy online presence for the business.

C

Colourbox

colourbox.es

0

Colourbox is a large-scale e-commerce platform specializing in royalty-free stock media including photos, videos, and vectors. The website targets a general audience primarily in Spanish-speaking regions, offering over 26 million media assets with all rights included for various uses such as print, web, and social media. The company maintains a professional market position with a comprehensive digital presence and social media engagement. Technically, the website leverages modern web technologies such as React, Font Awesome Pro icons, Google Fonts, and Amazon Cloudfront CDN for content delivery, ensuring moderate performance and good mobile optimization. Security posture is strong with HTTPS enforced and secure payment integration via Stripe, although explicit security headers like Content-Security-Policy are not clearly declared. Privacy compliance is robust with clear privacy and cookie policies and GDPR adherence. Overall, the website is professional, trustworthy, and safe for general audiences.

C

Colourbox

colourbox.dk

0

Colourbox is a Danish-based stock media platform offering millions of stock images, videos, and vectors with simple licensing and pricing models. The website targets businesses and individuals seeking creative digital assets for online and offline communication. The company maintains a professional market position with exclusive and editorial content, supported by active social media channels on Facebook, LinkedIn, and Pinterest. Technically, the website leverages modern web technologies including React, Font Awesome Pro icons, Google Tag Manager, and Amazon Cloudfront CDN to deliver a performant and responsive user experience. However, the absence of explicit privacy and cookie policies and missing WHOIS data represent gaps in compliance and transparency. Security posture is generally good with HTTPS enforced but could be improved by adding security headers and incident response contact information. Overall, the site is safe for general audiences and demonstrates a solid business and technical foundation.

S

Skyfish

skyfish.com

0

Skyfish is a technology company specializing in Digital Asset Management (DAM) systems tailored for visual content. Their platform simplifies and secures communications processes for over 2,000 organizations, offering features such as GDPR-compliant photo consent, AI-powered auto-tagging, Active Directory integration, and public media galleries. The company targets businesses and organizations that require efficient and secure management of digital images and media assets. Their business model is SaaS-based, providing subscription plans with free trials and demos to attract customers. Technically, Skyfish operates a modern WordPress-based website enhanced with Elementor and Yoast SEO plugins, hosted likely on ISO27001 certified Amazon AWS infrastructure. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital presence. They employ Cookiebot for cookie consent and Google Tag Manager for analytics, indicating attention to privacy and marketing needs. From a security standpoint, Skyfish demonstrates strong compliance with GDPR and ISO27001 standards, storing data securely within the EU and using bank-level encryption. However, the absence of explicit security headers and incident response contact details suggests room for improvement in security transparency and readiness. The missing WHOIS domain registration data raises concerns about domain legitimacy, though the professional website and trust indicators mitigate immediate suspicion. Overall, Skyfish presents a credible and professional business with a solid technical foundation and good privacy compliance. Strategic enhancements in security disclosures and domain registration transparency would further strengthen their trustworthiness and security posture.

F

flessio - Thomas Soo & Dominik Strauß GbR

flessio.de

0

flessio - Thomas Soo & Dominik Strauß GbR is a small German IT service provider founded in 2013, specializing in tailored and creative IT solutions for businesses. Their offerings include WLAN solutions, system integration, video surveillance, hosting, web development, and maintenance contracts. The company positions itself as a competent regional IT partner based in Ravensburg, Germany, targeting business clients and event organizers. The website is professionally designed using WordPress with the Enfold theme and Yoast SEO plugin, providing good content quality and clear navigation. Social media presence on Twitter, Facebook, and Instagram supports brand visibility. Technically, the site uses modern web technologies but includes external scripts from suspicious domains, which could pose security risks. Security posture is moderate with HTTPS enabled but lacks advanced security headers and explicit incident response policies. Privacy compliance is partial, with a comprehensive privacy policy but no cookie consent mechanism. Overall, the website is trustworthy and functional but could improve security and privacy practices.

E

Ecosia GmbH

ecosia.co

0

Ecosia GmbH operates Ecosia.org, a green search engine dedicated to environmental sustainability by using 100% of its profits to plant trees worldwide. The company positions itself as the largest tree-planting movement via search engine technology, targeting environmentally conscious users globally. Their business model focuses on generating revenue through search advertising and dedicating all profits to climate action projects, with transparent monthly financial reporting to build trust. Technically, the website employs modern JavaScript frameworks (likely Vue.js), integrates Google Tag Manager for analytics, and uses a robust consent management platform (Didomi) to ensure privacy compliance. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. From a security perspective, Ecosia enforces HTTPS, implements standard security headers, and manages cookie consent effectively. However, explicit security policies, incident response contacts, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. The absence of WHOIS data due to privacy protection is consistent with privacy-conscious business practices and does not detract from the site's legitimacy. Overall, Ecosia.org demonstrates a strong security posture, excellent content quality, and high business credibility, making it a trustworthy platform for users seeking an eco-friendly search engine alternative.