Security Directory

G

Google Merchandise Store

googlemerchandisestore.com

0

The Google Merchandise Store website serves as an official e-commerce platform for Google branded merchandise, including apparel, accessories, and gifts. The site targets consumers globally with regional shipping options and maintains consistent branding aligned with Google's corporate identity. The business model is retail e-commerce, supported by a medium-sized operation likely under Google's corporate umbrella. The domain age and registration details support the legitimacy of the site as an official merchandise outlet. Technically, the website uses a combination of legacy and modern web technologies including jQuery, Google Analytics, and Google Tag Manager for tracking and performance monitoring. Hosting and content delivery appear to be managed in partnership with Robertson Marketing, a known marketing service provider. The site is mobile optimized with a good user experience but lacks advanced accessibility features and comprehensive SEO optimization. From a security perspective, the site enforces HTTPS and has domain status locks to prevent unauthorized changes. However, it lacks DNSSEC and visible security headers, which are recommended best practices. No privacy or cookie policies are present, indicating compliance gaps with GDPR and other privacy regulations. The site does not provide incident response or vulnerability disclosure information, which could be improved to enhance trust. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security hardening. Strategic recommendations include implementing DNSSEC, adding security headers, publishing privacy and cookie policies with consent mechanisms, and providing clear incident response contacts to improve security posture and regulatory compliance.

Stadt Haltern am See operates a municipal government website providing comprehensive information about local administration, politics, public services, and community news. The site targets residents and visitors, offering services such as Bürgerbüro contact, political updates, and event information. The website is well-structured, mobile-optimized, and uses modern web technologies including jQuery and CSS3. It is managed using the PANSITE CMS platform. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and incident response information are absent. Privacy compliance is strong with a comprehensive privacy policy and cookie banner. The domain WHOIS data is minimal but consistent with a legitimate municipal entity. Overall, the website is trustworthy, professional, and serves its public service mission effectively.

S

Stadt Datteln

datteln.de

0

The website www.datteln.de serves as the official online portal for the city of Datteln, Germany, providing residents, visitors, and local businesses with comprehensive information about municipal services, news, events, and tourism. The site is well-structured and professionally designed, targeting a broad audience including citizens and tourists. It operates on a Drupal CMS platform with modern web technologies and emphasizes privacy through the use of Matomo Analytics and a robust cookie consent mechanism. Security posture is strong with HTTPS enforced and privacy-respecting analytics, though explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates a mature digital presence suitable for a government entity, with high trustworthiness and compliance with GDPR.

C

CASKlimahelden

casklimahelden.de

0

The website 'CASKlimahelden' appears to be a German-based platform focused on climate awareness and energy-related services. The business targets a general audience interested in environmental issues and sustainable energy solutions. The site uses WordPress CMS and includes modern iconography with Font Awesome and Google Tag Manager for analytics. However, the site lacks critical privacy and cookie policies, contact information, and advanced security headers, which impacts its overall trustworthiness and compliance posture. The technical infrastructure is moderate with room for improvement in mobile optimization and accessibility. Security posture is basic, with no evident vulnerabilities but missing best practices such as security headers and incident response contacts. Overall, the site is functional but requires enhancements in privacy compliance, security, and business transparency to improve its risk profile and user trust.

A

Arbeitsgemeinschaft Duisburger Wohnungsgenossenschaften

duisburger-wohnungsgenossenschaften.de

0

Die Duisburger Wohnungsgenossenschaften sind ein Verbund von acht regionalen Wohnungsgenossenschaften, die zusammen rund 15.000 genossenschaftliche Wohnungen in Duisburg anbieten. Sie fokussieren sich auf bezahlbaren und sicheren Wohnraum, fördern Karrieren durch Ausbildungsplätze und engagieren sich sozial in der Region. Die Website präsentiert sich als professionell und gut strukturiert mit klaren Informationen zu den Partnergenossenschaften und deren Angeboten. Technisch basiert die Seite auf bewährten Frontend-Technologien wie Bootstrap und jQuery, ist mobil optimiert und bietet eine moderate Performance. Sicherheitsrelevante Maßnahmen wie Security Headers oder Cookie-Consent-Mechanismen sind nicht explizit erkennbar, was Verbesserungspotential darstellt. Die Domainregistrierung ist konsistent und legitim, was die Vertrauenswürdigkeit der Website unterstützt.

W

Wirtschaftsbetriebe Duisburg - AöR

wb-duisburg.de

0

Wirtschaftsbetriebe Duisburg - AöR is a large municipal utility and infrastructure service provider for the city of Duisburg, Germany. The organization manages a broad range of public services including waste disposal, street cleaning, wastewater management, road and bridge construction, municipal real estate, playgrounds, green spaces, and cemeteries. The website serves as a comprehensive portal for residents and businesses to access these services, including online scheduling, information, and customer portals. The site is well structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence. Technically, the website is built on modern frameworks such as Next.js and React, with content managed via Storyblok CMS. It integrates third-party services like Usercentrics for cookie consent management and uses legacy jQuery 1.12.4, which may pose some security risks. Performance is moderate with good SEO and accessibility features. The site uses HTTPS and has basic security best practices but lacks explicit security headers and a published security policy or incident response information. From a security perspective, the site is generally secure with no visible vulnerabilities or exposed sensitive data. However, the use of an outdated jQuery version and absence of a vulnerability disclosure mechanism are areas for improvement. Privacy compliance is strong, with a clear privacy policy and cookie consent mechanism in place, aligning with GDPR requirements. Overall, the website represents a trustworthy and professional municipal service portal with a solid business credibility score. Strategic recommendations include upgrading legacy libraries, publishing security policies, and enhancing security headers to further strengthen the security posture and compliance.

R

Ruhr Tourismus GmbH

mein-ruhrgebiet.blog

0

Mein Ruhrgebiet is a German-language travel blog operated by Ruhr Tourismus GmbH, focusing on providing travel inspiration, local tips, and cultural insights about the Ruhrgebiet region. The website targets tourists and travelers interested in exploring this area, offering curated content such as travel guides, event information, and regional highlights. The business model centers on digital content creation and regional tourism promotion, positioning itself as a trusted source for Ruhrgebiet travel information. Technically, the website is built on WordPress 6.8.1 with modern plugins like Yoast SEO and WP Rocket for SEO and performance optimization. It uses Bootstrap for responsive design and integrates third-party services such as Cookiebot for cookie consent management, Google Tag Manager for analytics, and Facebook Pixel for marketing. The site demonstrates good mobile optimization and SEO practices, though accessibility features could be enhanced. From a security perspective, the site enforces HTTPS with anonymized IP tracking in Google Analytics and provides a comprehensive cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security headers and a public vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The absence of WHOIS data due to privacy protection slightly impacts trust but is common for such sites. Overall, the website presents a professional and trustworthy digital presence for regional tourism, with moderate technical maturity and a solid security posture. Strategic improvements in security headers, incident response transparency, and accessibility would further enhance its risk profile and compliance standing.

R

ruhrkultur.jetzt

ruhrkultur.jetzt

0

ruhrkultur.jetzt is a digital cultural guide focused on the Ruhr metropolitan area in Germany, providing users with event calendars, ticket information, and location tips related to the RuhrKunstMuseen and RuhrBühnen networks. The website targets culture enthusiasts, tourists, and local residents interested in arts and cultural events. It operates as a regional informational portal with a small business profile founded in 2017. Technically, the website employs modern web technologies including the Ionic Framework and StencilJS, ensuring good mobile optimization and accessibility. The site is served over HTTPS, enhancing security, but lacks some advanced security headers and DNSSEC is not enabled. No CMS or third-party analytics/tracking scripts were detected, indicating a lightweight and privacy-conscious implementation. From a security perspective, the site has a cookie consent mechanism compliant with GDPR but lacks a published privacy policy, terms of service, and explicit security policies or incident response contacts. The domain registration is consistent and transparent, supporting the legitimacy of the business. No WAF or blocking mechanisms were detected, and no adult or questionable content is present. Overall, ruhrkultur.jetzt presents a trustworthy and professionally designed cultural guide with room for improvement in privacy documentation and security hardening. Strategic recommendations include publishing privacy and terms documents, enabling DNSSEC, adding security headers, and providing clear contact information for security incidents.

radrevier.ruhr is a professionally managed regional tourism website focused on promoting cycling and bike holidays in the Ruhrgebiet area of Germany. It offers comprehensive route information, planning tools, and thematic cycling routes, positioning itself as a leading urban cycling travel region certified by the ADFC. The platform targets cycling tourists and outdoor enthusiasts, providing rich content and digital resources to enhance visitor experience. Technically, the site is built on WordPress with modern frameworks like Bootstrap and integrates SEO and cookie consent tools effectively. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though formal security policies and incident response contacts are not published. Privacy compliance is robust, with clear GDPR-aligned privacy and cookie policies and consent mechanisms. Overall, the website demonstrates high professionalism, trustworthiness, and digital maturity suitable for its tourism promotion role.

R

Route Industriekultur

industriekultur.ruhr

0

Route Industriekultur is a well-established cultural tourism platform dedicated to showcasing the industrial heritage of the Ruhr region in Germany. The website offers comprehensive information on 27 key industrial heritage sites, panoramic viewpoints, historic settlements, cycling tours, and events, targeting tourists, families, and culture enthusiasts. The platform is professionally designed with excellent content quality, clear navigation, and multilingual support, positioning it as a leading regional resource for industrial heritage tourism. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Borlabs Cookie for privacy compliance. It uses Bootstrap for responsive design and integrates analytics tools like Google Analytics and Matomo. The site demonstrates good performance, mobile optimization, and SEO practices, contributing to a positive user experience. From a security perspective, the site enforces HTTPS, implements cookie consent mechanisms, and avoids exposing sensitive data. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced security posture. No critical vulnerabilities or WAF protections were detected, indicating open and accessible content. Overall, the website scores well on content quality, technical implementation, security, privacy compliance, and business credibility, reflecting a mature and trustworthy digital presence. Strategic improvements in security transparency and incident response readiness would further strengthen its posture.

R

Ruhrbühnen

ruhrbuehnen.de

0

Ruhrbühnen is a regional cultural institution dedicated to theatre and performing arts in the Ruhr region of Germany. The website serves as an informational platform for their performances and cultural events, targeting a general audience interested in arts and culture. The business model is focused on cultural provision rather than commercial sales. The site content is basic but functional, with moderate branding consistency and a regional market position. Technically, the website uses modern web technologies including web components (hylo-button) and appears to be built with StencilJS. Hosting is managed via DomainControl name servers, indicating registration through GoDaddy. The site shows moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. From a security perspective, the website lacks visible security headers, privacy policies, cookie consent mechanisms, and incident response information. SSL configuration and HTTPS enforcement could not be confirmed from the provided data. No vulnerabilities or malicious indicators were detected, but the security posture is weak due to missing best practices and compliance documentation. Overall, the website is accessible and safe for general audiences but requires improvements in privacy compliance, security policies, and contact transparency to enhance trust and regulatory adherence.

R

RuhrKunstMuseen

ruhrkunstmuseen.com

0

The domain www.ruhrkunstmuseen.com appears to be unregistered or inactive as per the WHOIS raw data, which shows no match for the domain. The website content is inaccessible or minimal, with the provided HTML content truncated and lacking meaningful data. Consequently, no business information, contact details, or security policies are available for analysis. The absence of registration and website content raises significant concerns about the legitimacy and operational status of the domain. Technically, no technologies, frameworks, or hosting details could be identified. Security posture cannot be assessed due to lack of data. Overall, the domain and website do not present any verifiable business presence or security maturity.

B

Bezirksregierung Münster

bezreg-muenster.de

0

Bezirksregierung Münster operates as a regional government authority in North Rhine-Westphalia, Germany, providing a broad range of public administrative services including education, environment, health, regional planning, and social affairs. The website serves as an official portal offering information and resources to citizens, businesses, and public institutions within the Münster district. It maintains a professional and consistent brand presence aligned with government standards. Technically, the website is built on Drupal CMS, leveraging modern web technologies such as Bootstrap for responsive design, Matomo for privacy-conscious analytics, and FontAwesome for iconography. The site demonstrates good performance, accessibility, and SEO practices, ensuring a positive user experience across devices. From a security perspective, the site enforces HTTPS, implements standard security headers, and provides a GDPR-compliant cookie consent mechanism. No critical vulnerabilities or exposed sensitive data were detected. However, explicit security policies and incident response information are not publicly available, suggesting room for improvement in transparency and preparedness. Overall, the website reflects a mature digital presence for a government entity, with high trustworthiness and compliance. Strategic recommendations include publishing detailed security and incident response policies, adding vulnerability disclosure mechanisms, and maintaining regular security audits to uphold and enhance the security posture.

L

Landesverband der Volkshochschulen von NRW e.V.

vhs-nrw.de

0

The Landesverband der Volkshochschulen von NRW e.V. is a large, well-established non-profit educational association representing 131 Volkshochschulen (adult education centers) across North Rhine-Westphalia, Germany. The organization focuses on providing accessible continuing education, promoting democracy, integration, sustainability, and digital literacy. Their website reflects a professional and comprehensive digital presence, leveraging WordPress with Elementor and Yoast SEO for content management and optimization. The site is well-structured, mobile-optimized, and includes clear navigation and rich content tailored to their target audience of local residents and educational stakeholders. Security posture is strong with HTTPS, cookie consent mechanisms, and no detected vulnerabilities, although some security headers could be improved. The presence of ISO 9001 certification and transparent contact information enhances trust and credibility. Overall, the website demonstrates a mature digital infrastructure supporting the organization's mission effectively.

D

Deutscher Volkshochschul-Verband e. V.

volkshochschule.de

0

The Deutscher Volkshochschul-Verband e. V. operates the website volkshochschule.de, serving as the central platform for adult education centers (Volkshochschulen) in Germany. The site provides course finding tools, educational policy information, and news updates, targeting adult learners and educational institutions. It holds a strong position as a leading non-profit educational association in Germany. Technically, the website is built on the Sitepark CMS platform, hosted on bringe.net, and employs modern web technologies including responsive images and SVG icons. The site is mobile optimized and accessible, with good SEO practices. Security-wise, the site enforces HTTPS, uses anonymized Matomo analytics, and provides a GDPR-compliant cookie consent mechanism. However, explicit security policies and incident response contacts are not found, which could be improved. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for its audience.

B

BEST Tausch- und Verschenkmarkt

bottroper-verschenkmarkt.de

0

The website www.bottroper-verschenkmarkt.de operates as a local classified ads platform primarily serving the Bottrop region in Germany. It facilitates community-driven exchange, gifting, and barter of goods, targeting local residents interested in sustainable and cost-free transactions. The platform leverages the Osclass CMS with a frontend built on Bootstrap 5 and jQuery, supplemented by a chatbot for user assistance. The site structure is clear, with categorized listings and user-friendly navigation, supporting a positive user experience for its target audience. From a technical perspective, the website employs modern web technologies and is mobile-optimized, though performance is moderate. The absence of advanced security headers and cookie consent mechanisms indicates room for improvement in security and privacy compliance. The site uses HTTPS, ensuring encrypted communications, but lacks explicit incident response or vulnerability disclosure information. Contact options are limited to a web form, with no direct emails or phone numbers provided. Security posture is adequate but not robust; the site would benefit from implementing security best practices such as security headers and cookie consent to enhance GDPR compliance. No adult or explicit content is present, making the site safe for general audiences. WHOIS data is minimal but does not raise immediate concerns, though the lack of detailed registrant information limits full trust evaluation. Overall, the site is a functional, community-focused marketplace with good content quality and usability but requires enhancements in security and privacy practices to strengthen trust and compliance.

M

Ministerium für Kinder, Jugend, Familie, Gleichstellung, Flucht und Integration des Landes Nordrhein-Westfalen

familienportal.nrw

0

The Familienportal.NRW website is an official government portal managed by the Ministry for Children, Youth, Family, Equality, Refuge and Integration of the State of North Rhine-Westphalia, Germany. It provides centralized, accessible, and multi-language information and services for families, parents, and children in the region. The portal offers comprehensive content covering pregnancy, child age groups, family topics, and legal information, supported by contact forms and newsletter subscriptions. The site is well-positioned as a trusted government resource with strong branding and accessibility features. Technically, the site is built on Drupal 10 CMS with modern frontend libraries such as Font Awesome and accessible slick carousels. It employs Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. The website is mobile-optimized, accessible, and SEO-friendly, with a moderate performance profile. Security best practices are observed, including HTTPS enforcement and security headers, though no explicit incident response or vulnerability disclosure policies are publicly available. The security posture is strong with no detected vulnerabilities or exposed sensitive data. Privacy compliance is robust, with clear privacy and cookie policies and GDPR adherence. The lack of WHOIS data is due to privacy protection, which is justified for a government domain. Social media presence on major platforms enhances trust and outreach. Overall, the site demonstrates a high level of professionalism, trustworthiness, and user-centric design. Strategic recommendations include establishing a public vulnerability disclosure policy, publishing incident response contacts, and continuous monitoring of third-party libraries to maintain security integrity. These steps will further enhance the portal's security maturity and user trust.

S

Stadtmarketing Herne

wannermondnaechte.de

0

Stadtmarketing Herne operates as a local government-affiliated entity focused on organizing and promoting community events such as the Wanner Mondnächte festival in Wanne-Eickel, Germany. The website provides detailed event information, schedules, multimedia content, and social media integration to engage local residents and visitors. The business model centers on event management and city marketing to foster community spirit and cultural engagement. Technically, the website is built on WordPress using modern plugins and libraries, with good mobile optimization and SEO practices. Security posture is solid with HTTPS and basic security headers, though additional headers and policies could enhance protection. Privacy compliance is well addressed with clear cookie consent and a comprehensive privacy policy. Overall, the site is professional, trustworthy, and serves its local audience effectively.

F

Flottmann-Hallen Herne

flottmann-hallen.de

0

Flottmann-Hallen Herne is a cultural event venue located in Herne, Germany, offering a variety of events and exhibitions. The website provides comprehensive information about upcoming programs, ticketing, and visitor services, targeting a general audience interested in cultural activities. The business operates as a small local venue with a focus on hospitality and cultural events. Technically, the website is built using RapidWeaver CMS with Stacks plugins and leverages jQuery and Google Tag Manager for analytics and tracking. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Security posture is moderate with HTTPS usage and cookie consent mechanisms in place, but lacks advanced security headers and explicit security policies. Privacy compliance is good with a visible privacy policy and cookie consent banner. Overall, the website is professional, trustworthy, and serves its intended audience effectively.

S

Samuel Niums Aminou

niums.com

0

The website niums.com represents a personal freelance portfolio and blog operated by Samuel Niums Aminou, a French web designer and blogger. The site focuses on showcasing web design work, sharing blog content related to web development and music, and linking to a YouTube channel for video content. The business model is that of an individual freelancer targeting French-speaking audiences interested in web design and music genres. The market position is small and personal, with no indication of larger corporate structure or subsidiaries. Technically, the website is built using basic HTML, CSS, and JavaScript, with Google Analytics integrated for visitor tracking. The hosting provider is OVH sas, a reputable French hosting company. The site lacks modern CMS or frameworks and shows minimal mobile optimization and accessibility features. SEO practices are basic, with meta tags present but no advanced structured data or Open Graph tags. From a security perspective, the site has a basic posture. The domain is registered since 2003 with no privacy protection, indicating transparency and legitimacy. However, no DNSSEC is enabled, no security headers are detected, and there is no visible HTTPS enforcement or secure forms. Privacy and cookie policies are absent, and no contact information is provided, which reduces compliance with GDPR and best practices. Google Analytics is used without a consent mechanism, indicating privacy compliance gaps. Overall, the website is functional for its purpose as a personal portfolio and blog but lacks professional security, privacy, and compliance features. The risk level is moderate due to missing security controls and privacy policies. Strategic improvements in security headers, HTTPS enforcement, privacy compliance, and contact transparency are recommended to enhance trust and compliance.

The website respectdudroitdauteur.fr serves as an advocacy and informational platform focused on the respect of copyright and intellectual property rights within the context of emerging AI regulations in Europe. It represents a coalition of European cultural and creative organizations, publishing declarations and charters to influence policy and promote responsible AI use respecting creators' rights. The site is relatively new, founded in 2023, and hosted on OVH using WordPress technology. It demonstrates good content quality and professional presentation, targeting stakeholders in the cultural and AI regulatory sectors. Technically, the site is well-structured, mobile-optimized, and accessible, though it lacks advanced security headers and cookie consent mechanisms. Security posture is adequate with HTTPS enforced but could be improved with additional policies and disclosures. Overall, the site is trustworthy and credible but would benefit from enhanced privacy compliance and security transparency.

C

Career Sidekick

careersidekick.com

0

Career Sidekick is a specialized career advice and interview preparation website founded in 2013. It offers a wide range of expert-authored content including interview questions and answers, career guides, and expert interviews, targeting job seekers and professionals aiming to advance their careers. The website positions itself as a trusted resource in the education sector for career development. Technically, the site is built on WordPress with a modern tech stack including popular plugins and Cloudflare DNS services, delivering moderate performance and good mobile optimization. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks advanced security headers and explicit security policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but would benefit from enhanced privacy and security disclosures.

I

ITFactory.ca

itfactory.ca

0

ITFactory.ca is a Canadian e-commerce retailer specializing in software and electronics, operating since 2009. The company targets Canadian consumers and businesses seeking quality software products and electronic devices such as cameras, headphones, SSDs, and laptops. The website is built on the Shopify platform, leveraging a modern tech stack including jQuery, Google Tag Manager, Hotjar, Klaviyo, and Freshchat, indicating a mature digital infrastructure with active marketing and customer engagement tools. Security posture is adequate with HTTPS enforced and domain registration consistent with business claims; however, there is room for improvement in DNS security and security headers. Privacy and cookie policies are not explicitly found, which is a compliance gap. Overall, the site is professional, well-branded, and trustworthy, serving a niche Canadian market effectively.

K

KathleenJasper

kathleenjasper.com

0

KathleenJasper.com is a specialized e-commerce website focused on providing educational resources, primarily study guides and online courses for teacher certification exams such as Praxis and SLLA. The business operates on the Shopify platform and targets educators and teacher candidates in the United States. The website presents a professional and consistent brand image with a clear focus on education and test preparation. The domain age and registration details align well with the business's claimed history, supporting its legitimacy. Technically, the site leverages a modern e-commerce infrastructure with Shopify Dawn theme, multiple marketing and analytics integrations including Google Tag Manager, Facebook Pixel, TikTok Pixel, Microsoft Clarity, Klaviyo, and Judge.me for customer reviews. The site is mobile optimized and performs moderately well, though some accessibility features are basic. SSL is properly configured, ensuring secure HTTPS connections. From a security perspective, the site enforces HTTPS and has domain status protections to prevent unauthorized changes. However, it lacks DNSSEC and security headers, which are recommended to enhance security posture. Privacy compliance is weak due to the absence of visible privacy, cookie, and terms of service policies, and no explicit cookie consent mechanism is present. Contact information is not explicitly found in the provided content, which may impact user trust and compliance. Overall, the website is a legitimate, small education-focused e-commerce business with a good technical foundation but requires improvements in privacy compliance, security headers, and transparency to enhance trust and regulatory adherence.

I

Imphenzia Pty Ltd

imphenzia.com

0

Imphenzia Pty Ltd operates a niche website focused on game development content, including YouTube tutorials, game assets, music, and community engagement via Patreon and Discord. The business targets indie and professional game developers seeking creative resources and educational content. The website is well-branded and consistent with a small technology-focused content creator business model. Technically, the site uses modern frontend frameworks like Bootstrap and relies on Cloudflare DNS and SendOwl for e-commerce functionality. While the site is mobile-optimized and well-structured, some scripts and tracking tools are commented out, indicating potential underutilization of analytics. Security posture is moderate with HTTPS enabled and domain registrar locks in place, but lacks DNSSEC and security headers. Privacy compliance is partial, with privacy and terms pages present but no cookie consent mechanism. No direct contact information or security policies are published, which could impact trust. Overall, the site is safe, professional, and credible but could improve security and privacy practices.

I

Introversion Software Ltd

introversion.co.uk

0

Introversion Software Ltd is a well-established independent game developer and publisher based in the United Kingdom, founded in 2001. The company has a strong reputation in the indie gaming community, known for critically acclaimed titles such as Prison Architect, Uplink, DEFCON, Darwinia, Multiwinia, and Scanner Sombre. Their business model focuses on direct sales through major digital distribution platforms like Steam, GOG, and Humble Store, targeting gamers on PC, Mac, and Linux platforms. The website reflects a professional and consistent brand image with clear navigation and relevant content about their games and company history. Technically, the website employs a modern tech stack including HTML5, CSS3, JavaScript, jQuery, and integrates third-party services such as Google Analytics, Google Tag Manager, YouTube iframe API, and Twitter widgets. The site is hosted with a reputable registrar (Gandi) and uses CDN resources for performance. Mobile optimization is good, though accessibility features are basic. SEO optimization is present but could be improved. From a security perspective, the site uses HTTPS and asynchronous loading of analytics scripts, but lacks explicit security headers and a published privacy or cookie policy, which are important for compliance and user trust. No vulnerabilities or exposed sensitive data were detected. Contact information is limited to email addresses, with no phone numbers or physical addresses provided. The WHOIS data confirms domain legitimacy and consistency with the company’s history. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance measures, improved security headers, and more comprehensive contact information to strengthen user trust and regulatory adherence.

M

Mastering The Mix

masteringthemix.com

0

Mastering The Mix operates a professional e-commerce website specializing in mixing and mastering audio plugins targeted at music producers and audio engineers. The company offers a range of plugins and bundles designed to solve complex studio problems and improve music quality. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations such as Judge.me for customer reviews, Klaviyo for marketing, and Google Tag Manager for analytics. The site demonstrates good digital maturity with fast performance, mobile optimization, and accessibility features. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response contacts are not publicly available. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. The absence of WHOIS data introduces some uncertainty about domain registration legitimacy, but the professional presentation and integrations support trustworthiness. Overall, the website is a well-maintained, secure, and user-friendly platform for its niche market.

S

Solid Starts Inc

solidstarts.com

0

Solid Starts Inc operates a comprehensive digital platform focused on pediatric feeding and baby nutrition, offering a subscription-based app, a free First Foods® database, educational guides, and a published book. The company targets parents and caregivers seeking expert guidance on introducing solid foods to babies and toddlers. The website demonstrates a mature digital infrastructure leveraging modern web technologies such as React and Next.js, supported by Cloudflare DNS and CDN services. The platform integrates multiple analytics and marketing tools including Microsoft Clarity, TikTok Pixel, Facebook Pixel, and Google Tag Manager, enabling moderate user tracking with privacy compliance measures in place. Security posture is strong with HTTPS enforcement and security headers, though enabling DNSSEC would further enhance DNS security. The domain is well-established since 2014, registered through a reputable registrar with protective domain statuses, supporting the legitimacy of the business. Overall, the website is professionally designed, mobile-optimized, and provides clear navigation and rich content, fostering high trustworthiness and user engagement.

T

True Grit Texture Supply

truegrittexturesupply.com

0

True Grit Texture Supply is a specialized e-commerce business offering high-quality digital brushes, textures, and effects for popular creative applications such as Procreate, Photoshop, Illustrator, Clip Studio Paint, and Affinity. The company targets digital artists and designers seeking professional-grade tools to enhance their digital artwork. The website is hosted on the Shopify platform, leveraging a mature e-commerce infrastructure with integrations for marketing, analytics, and customer reviews. The business model focuses on digital product sales with value bundles and tutorials to support customers. The company appears to be a small-sized Australian entity with a consistent brand presence and positive customer feedback.

S

SQSP THEMES | Squarespace Resource Library

sqspthemes.com

0

SQSP Themes operates as a niche e-commerce platform specializing in Squarespace plugins, templates, and integrations tailored for creatives, freelancers, and entrepreneurs. The website positions itself as a curated resource library to help businesses grow on the Squarespace platform. The business model focuses on digital product sales and providing tools to optimize and customize Squarespace websites. The company maintains a small but professional online presence with active marketing and social media engagement. Technically, the website is built on the Squarespace CMS platform, leveraging various modern web technologies including Google Analytics, Facebook Pixel, Pinterest Tag, and third-party integrations such as Wiremo for reviews and Apollo for tracking. The site is hosted by Squarespace and employs HTTPS with HSTS, ensuring a secure browsing experience. Performance and mobile optimization are good, with a clean and consistent design. From a security perspective, the site demonstrates good SSL configuration and uses security headers like HSTS. However, it lacks visible privacy and cookie policies, which are critical for GDPR compliance and user trust. No incident response or vulnerability disclosure information is present, which could be improved. The absence of WHOIS registration data raises some concerns about domain legitimacy, though the website content and business information appear professional and consistent. Overall, SQSP Themes presents a credible and professional business with a solid technical foundation but should enhance its privacy compliance and transparency to improve trust and security posture. Strategic recommendations include publishing comprehensive privacy and cookie policies, adding security contact information, and ensuring WHOIS data is accurate and publicly available.

S

Semplice

semplice.com

0

Semplice operates as a customizable portfolio builder platform aimed primarily at designers and creatives, enabling them to build responsive case studies and custom branded project pages. The website is built on WordPress and leverages popular SEO and analytics tools such as Yoast SEO, Google Analytics, and Facebook Pixel, indicating a moderate level of digital maturity. The technical infrastructure is modern and supports mobile optimization and SEO best practices. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and explicit privacy or cookie policies, which could be improved to enhance compliance and user trust. The absence of WHOIS data raises some concerns about domain legitimacy, though the website content and design quality suggest a professional operation. Overall, the site presents a moderate risk profile with recommendations to improve privacy compliance and security hardening.

N

Nicole S. Young

nicolesy.com

0

Nicolesy.com is the professional website of Nicole S. Young, a full-time photographer and author specializing in photography education and e-commerce. The site offers a variety of photography tutorials, books, presets, and overlays, targeting photography enthusiasts and learners. The business model combines content creation with digital and physical product sales, supported by a well-structured online store and community engagement. The website is well-established with a domain age of nearly 19 years, reflecting a mature and consistent online presence. Technically, the site is built on WordPress with WooCommerce and uses modern plugins and technologies such as Yoast SEO, Google Analytics, hCaptcha, and affiliate marketing tools. The site demonstrates good mobile optimization, SEO practices, and moderate performance. Hosting is inferred to be with GoDaddy.com, LLC, consistent with the domain registration data. From a security perspective, the site uses HTTPS and employs hCaptcha for form protection, but lacks DNSSEC and some advanced security headers. There is no visible security policy or incident response information, and privacy and cookie policies are absent, indicating compliance gaps. The WHOIS data is consistent and supports the legitimacy of the domain and business. Overall, nicolesy.com is a credible, professional photography education and e-commerce site with good technical and business maturity. Improvements in privacy compliance and security policy transparency are recommended to enhance trust and regulatory adherence.

M

MedSchoolBro

medschoolbro.com

0

MedSchoolBro is a small Canadian-based e-commerce business specializing in educational products for medical students preparing for exams such as the MCAT and USMLE. The website is built on the Shopify platform using the Dawn theme, integrating multiple marketing and analytics tools including Google Tag Manager, Facebook Pixel, Klaviyo, and Mailchimp. The technical infrastructure is modern and supports mobile optimization and good user experience. Security posture is adequate with HTTPS enabled and domain registrar locks in place, but lacks DNSSEC and security headers which could enhance protection. Privacy compliance is weak due to absence of privacy and cookie policies, and no visible contact information or incident response details are provided. Overall, the website is professional and trustworthy for its niche but would benefit from improved compliance and security transparency.

A

AtmosFX Digital Decorations

atmosfx.com

0

AtmosFX Digital Decorations operates a well-established e-commerce website specializing in animated digital decorations for holidays such as Halloween and Christmas. The company leverages the Shopify platform with extensive integrations for marketing, analytics, and customer engagement. The website is professionally designed, mobile-optimized, and provides a seamless user experience targeting consumers interested in digital holiday decorations. Privacy and cookie consent mechanisms are implemented, reflecting good compliance with GDPR standards. However, explicit security policies and incident response information are not publicly available, representing an area for improvement. The domain registration is consistent with the business history, supporting legitimacy. Overall, the website demonstrates a mature digital presence with a solid security posture but could enhance transparency around security and incident response.

S

Sweat

sweat.com

0

Sweat is a leading fitness app focused on empowering women through a wide range of workout programs and wellness content. The company operates a subscription-based business model and has established a strong market position with millions of users globally. Their digital infrastructure leverages modern web technologies including Svelte, Stripe for payments, and Cloudflare for hosting and security. The website demonstrates excellent design quality, mobile optimization, and SEO practices, providing a seamless user experience. Security posture is strong with HTTPS enforcement, security headers, and client transfer protection on the domain, although there is room for improvement in publishing explicit security policies and vulnerability disclosure mechanisms. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent management tools. Overall, Sweat presents a professional, trustworthy, and secure online presence suitable for its target audience.

H

House of van Schneider

vanschneider.com

0

The website vanschneider.com represents the personal brand of Tobias van Schneider, a creative director and designer with a background rooted in Germany and Austria, currently based in New York City. The site showcases his creative direction services and design portfolio, targeting creative professionals and potential clients seeking high-quality design and creative leadership. The business model is centered on personal branding and offering creative services, positioning Tobias as an independent creative professional with an international presence. Technically, the website is built on WordPress CMS, utilizing modern web fonts and the Yoast SEO Premium plugin to optimize search engine visibility. The site is hosted with a registrar RegistryGate GmbH and uses DNS servers from kasserver.com. Performance is moderate with good mobile optimization and basic accessibility features. The site employs HTTPS with a valid SSL certificate, but lacks DNSSEC and security headers, which are recommended for enhanced security. From a security perspective, the site demonstrates a reasonable posture with HTTPS enabled and domain transfer protection. However, it lacks explicit privacy, cookie, and terms of service policies, as well as incident response or vulnerability disclosure information. No contact emails or phone numbers were found, which may impact user trust and compliance with privacy regulations. No WAF or blocking mechanisms were detected, and the site content is fully accessible and safe for general audiences. Overall, the site scores moderately well in content quality and business credibility but has room for improvement in privacy compliance and security best practices. Strategic recommendations include adding comprehensive privacy and cookie policies, implementing security headers, enabling DNSSEC, and providing clear contact and incident response information to enhance trust and compliance.

The website mojekino.sk operates as an online platform primarily focused on providing cinema programs, ticket sales, and related information for a wide network of cinemas and cultural venues in Slovakia. It is managed by Ticketware SE, a company established in 2012, which positions itself as a regional service provider in the entertainment and cultural event sector. The platform targets cinema goers and cultural event attendees, offering a cinema finder tool and online ticket purchasing capabilities. The website's market position is regional with a focus on Slovak cultural venues, leveraging partnerships with numerous cinemas across the country. From a technical perspective, the website employs a custom or proprietary CMS with a technology stack that includes jQuery, Facebook SDK, and Google Analytics for user tracking and analytics. Hosting is provided by Forpsi, as indicated by the domain's nameservers. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO practices. The design and content quality are basic but functional, with clear navigation and a straightforward user experience. Security-wise, the site uses HTTPS (assumed but not explicitly confirmed in the provided data) and implements a cookie consent mechanism, indicating some level of privacy compliance. However, it lacks explicit privacy policies, terms of service, and security headers such as CSP or HSTS, which are recommended for enhanced security posture. No incident response or vulnerability disclosure information is available, and no contact information is provided on the homepage, which limits transparency and user trust. The WHOIS data is consistent and indicates a legitimate, long-standing domain registration aligned with the business's regional focus. Overall, mojekino.sk is a functional regional ticketing platform with basic technical and security implementations. To improve trust, compliance, and security posture, the company should publish clear privacy and terms policies, enhance security headers, and provide transparent contact information. These steps will strengthen user confidence and align the platform with best practices in digital security and privacy.

D

DOOH s.r.o.

dooh.sk

0

DOOH s.r.o. operates the largest digital out-of-home (DOOH) advertising network in Slovakia, featuring 18 outdoor LED screens across 13 locations. The company targets businesses seeking impactful outdoor advertising solutions with fast deployment and measurable results. Their business model centers on renting LED advertising space and providing real-time campaign statistics, positioning themselves as market leaders in the Slovak digital outdoor advertising sector. The website content is professionally presented in Slovak, with clear calls to action and comprehensive contact information, supporting a strong business credibility profile. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google reCAPTCHA v3, and Google Tag Manager, hosted behind Cloudflare DNS services. The site is mobile-optimized with good SEO practices and moderate performance. Security measures include HTTPS enforcement and invisible reCAPTCHA on forms, though no explicit security headers or published security policies were detected, indicating room for improvement in security posture. From a security perspective, the site shows a moderate maturity level with no critical vulnerabilities detected in the provided data. The absence of a privacy policy and security incident response information suggests compliance gaps, particularly regarding GDPR transparency. Cookie consent is implemented, reflecting basic privacy compliance. The WHOIS data is consistent with the business profile, showing a domain registered in 2021 without privacy protection, reinforcing legitimacy. Overall, the website is professional and trustworthy with a solid business foundation but would benefit from enhanced security headers, published privacy and security policies, and formalized incident response contacts to improve compliance and security posture.

L

Levická televízna spoločnosť s.r.o.

levickatelevizia.sk

0

Levická televízna spoločnosť s.r.o. operates a local television broadcasting website focused on news, sports, public affairs, and advertising for the Levice region in Slovakia. The company has an established presence since 2007 and provides a range of multimedia content primarily hosted on Vimeo. The website uses Joomla CMS and integrates common web technologies such as jQuery, Bootstrap, and FontAwesome, delivering a good user experience with mobile optimization and clear navigation. Contact and business information are transparently provided, including GDPR-compliant privacy policies and cookie consent mechanisms. Security posture is adequate with HTTPS enforced, though additional security headers and policies could enhance protection. Overall, the site is trustworthy, professionally maintained, and serves its local audience effectively.

A

Asociácia kultúrnych inštitúcií miest a obcí Slovenska

1akis.sk

0

The website represents the Asociácia kultúrnych inštitúcií miest a obcí Slovenska, a Slovak non-governmental organization focused on promoting cultural education and supporting local cultural institutions. The site provides information about the association's mission, activities, and offers downloadable documents relevant to cultural policies and COVID-19 impact mitigation. The organization targets Slovak municipalities, cultural institutions, and the general public interested in cultural development. Technically, the website is built on Joomla CMS using the Gantry5 framework, with modern JavaScript libraries such as jQuery, Swiper, and AOS for animations. It is hosted by Websupport, a Slovak hosting provider, and uses HTTPS with DNSSEC enabled for domain security. The site includes Google Analytics and Tag Manager for user tracking and has a cookie consent banner, indicating basic privacy compliance. However, it lacks a dedicated privacy policy, terms of service, and security incident response information, which are important for full compliance and trust. Security posture is moderate with HTTPS and DNSSEC but missing HTTP security headers and vulnerability disclosure mechanisms. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

The website 'Projekt na obnovu národnej kultúrnej pamiatky Židovská škola Levice' is a cultural and educational initiative focused on preserving and promoting the heritage of the Jewish school in Levice, Slovakia. It offers a variety of workshops, cultural events, and festivals aimed at children, youth, and adults interested in Jewish history and culture. The project appears to be a small-scale non-profit entity with a local community focus. Technically, the website is built on WordPress using the Elementor page builder, supplemented by plugins for photo galleries and analytics. It is hosted on Websupport servers with DNSSEC enabled and uses HTTPS, indicating a secure baseline infrastructure. The site is moderately optimized for performance and mobile devices, with good SEO practices including structured data and Open Graph metadata. From a security perspective, the site employs HTTPS and DNSSEC but lacks explicit security headers and does not provide visible security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a notable gap given GDPR requirements. Overall, the website is trustworthy and professional in its presentation and content but would benefit from enhanced privacy compliance and security policy transparency to improve user trust and regulatory adherence.

B

Bates Wells

bateswells.co.uk

0

Bates Wells is a well-established UK-based law firm specializing in legal services for charities, social enterprises, and impact investors. The firm positions itself as a City law firm with a difference, emphasizing positive impact and sustainability, evidenced by its status as the highest scoring B Corp globally in the legal activities category. The website reflects a professional and comprehensive digital presence, targeting businesses and organizations seeking expert legal advice in various sectors including charity, corporate, data privacy, and employment law. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Swiper.js for enhanced user experience. It employs HTTPS with good SSL configuration and includes cookie consent mechanisms compliant with GDPR. The site is mobile-optimized, accessible, and SEO-friendly, though it could improve by implementing additional security headers and publishing a formal security policy. From a security standpoint, the site demonstrates good practices such as secure forms and no visible vulnerabilities or exposed sensitive data. However, there is room for improvement in incident response transparency and vulnerability disclosure. The domain registration data is consistent with the firm's business history, enhancing trustworthiness. Overall, Bates Wells presents a low-risk profile with strong business credibility and a mature digital infrastructure. Strategic recommendations include enhancing security headers, publishing security policies, and adding a security.txt file to further improve security posture and compliance.

K

Kreisstadt Unna

stadt-unna.de

0

The website www.unna.de serves as the official digital portal for the Kreisstadt Unna municipal government in Germany. It provides citizens and visitors with comprehensive information about city services, cultural events, administrative contacts, and digital service access. The site is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence for a medium-sized government entity. Technically, it is built on Drupal 10 with modern libraries such as Font Awesome and integrates Matomo Analytics with privacy-conscious configurations. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though it lacks explicit security policy and incident response disclosures. Overall, the site is trustworthy, compliant with GDPR, and offers a positive user experience for its target audience.

F

Frauenforum im Kreis Unna e.V.

frauenforum-unna.de

0

Frauenforum im Kreis Unna e.V. is a small non-profit organization based in Germany providing critical social support services to women and children affected by domestic and sexual violence. Their key offerings include a women's shelter (Frauenhaus), counseling services, and housing emergency aid. The website is built on WordPress using the Divi theme and integrates modern tools such as Matomo for analytics and Usercentrics for cookie consent management. The site is well-structured, mobile-optimized, and accessible, reflecting a good level of digital maturity for a non-profit entity. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks published security policies and security headers, which are recommended for improvement. Overall, the website is trustworthy and professional, though it would benefit from enhanced privacy and compliance documentation.

K

Kinderschutzbund Kreisverband Unna e.V.

kinderschutzbund-kreisunna.de

0

Kinderschutzbund Kreisverband Unna e.V. is a German non-profit organization dedicated to protecting children from violence, combating child poverty, and promoting children's rights. The organization offers systemic counseling, therapy, prevention projects, and advocacy at local, state, and federal levels. Their services are free and include specialized support for children, youth, and families. The website reflects a well-structured, community-focused entity with clear contact channels and donation options. Technically, the site uses a specialized CMS platform with modern JavaScript libraries and is optimized for accessibility and mobile use. Security measures include HTTPS, cookie consent with opt-in/out, and captcha on forms, though additional security headers could enhance protection. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with no signs of adult or questionable content.

Sozialkompass.info is a German-language platform launched in 2023 that provides individuals with personalized information about social benefits they may be entitled to. The service uses a question-based approach to tailor social benefits information and offers a centralized overview of supported social benefits with relevant contact points. The website targets residents in Germany seeking guidance on social welfare programs. Technically, the site is built on a modern React and Next.js stack, hosted and DNS-managed via Cloudflare, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS enforced and clientTransferProhibited domain status, but lacks DNSSEC and some security headers. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Contact is primarily via email, with no phone numbers or detailed business registration info publicly available. Overall, the site is professional and trustworthy but could improve in security and compliance transparency.

K

Kreis Unna

kreis-unna.de

0

Kreis Unna is a governmental district authority in Germany providing a comprehensive range of public services including administration, social services, education, mobility, environment, culture, economy, and housing. The website serves as an official portal for residents and stakeholders, offering news, event information, service portals, and contact options. The site is well-branded and consistent with governmental standards, targeting local citizens and public service users. Technically, the website uses a modern tech stack including jQuery, Mustache.js, Owl Carousel, and accessibility tools, running on the ikiss CMS platform. It is mobile optimized and includes accessibility features, with moderate performance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though it lacks explicit security policies and incident response contacts. No vulnerabilities or suspicious domains were detected. Overall, the website is trustworthy, professional, and compliant with GDPR requirements. Strategic improvements include publishing security policies, incident response info, and vulnerability disclosure mechanisms to enhance transparency and security maturity.

T

Tremaze GmbH

tremaze.de

0

Tremaze GmbH is a German-based company specializing in digital software solutions tailored for social work organizations. Their flagship platform, Tagea, integrates communication, documentation, and administrative functions to streamline workflows for social institutions. The company targets social service providers and institutions, offering a niche SaaS product that replaces fragmented communication and documentation tools with a unified platform. The website reflects a professional and consistent brand image, supported by client logos and testimonials from recognized social organizations such as Diakonie and Caritas. Technically, the website is built on the Webflow CMS platform, hosted on reputable German servers via Hetzner. It employs modern web technologies including Google Analytics and Tag Manager for analytics, and Cookie-Script for GDPR-compliant cookie consent management. The site is mobile-optimized with good SEO and accessibility basics, though some accessibility enhancements could be made. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with strong SSL configuration and anonymizes IPs in analytics to enhance privacy. However, it lacks explicit security headers and a published security policy or vulnerability disclosure program. No critical vulnerabilities or exposed sensitive data were found in the content. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanism in place. Contact information is clearly presented, though no direct company emails were found in the content. Overall, Tremaze GmbH presents a trustworthy and professional online presence with a solid technical foundation and good privacy practices. Strategic improvements in security headers, incident response transparency, and accessibility would further strengthen their posture. The business is well-positioned in its niche market with a clear value proposition and growing digital maturity.