Security Directory

S

Sweat

sweat.com

0

Sweat is a leading fitness app focused on empowering women through a wide range of workout programs and wellness content. The company operates a subscription-based business model and has established a strong market position with millions of users globally. Their digital infrastructure leverages modern web technologies including Svelte, Stripe for payments, and Cloudflare for hosting and security. The website demonstrates excellent design quality, mobile optimization, and SEO practices, providing a seamless user experience. Security posture is strong with HTTPS enforcement, security headers, and client transfer protection on the domain, although there is room for improvement in publishing explicit security policies and vulnerability disclosure mechanisms. Privacy compliance is well addressed with comprehensive privacy and cookie policies and consent management tools. Overall, Sweat presents a professional, trustworthy, and secure online presence suitable for its target audience.

H

House of van Schneider

vanschneider.com

0

The website vanschneider.com represents the personal brand of Tobias van Schneider, a creative director and designer with a background rooted in Germany and Austria, currently based in New York City. The site showcases his creative direction services and design portfolio, targeting creative professionals and potential clients seeking high-quality design and creative leadership. The business model is centered on personal branding and offering creative services, positioning Tobias as an independent creative professional with an international presence. Technically, the website is built on WordPress CMS, utilizing modern web fonts and the Yoast SEO Premium plugin to optimize search engine visibility. The site is hosted with a registrar RegistryGate GmbH and uses DNS servers from kasserver.com. Performance is moderate with good mobile optimization and basic accessibility features. The site employs HTTPS with a valid SSL certificate, but lacks DNSSEC and security headers, which are recommended for enhanced security. From a security perspective, the site demonstrates a reasonable posture with HTTPS enabled and domain transfer protection. However, it lacks explicit privacy, cookie, and terms of service policies, as well as incident response or vulnerability disclosure information. No contact emails or phone numbers were found, which may impact user trust and compliance with privacy regulations. No WAF or blocking mechanisms were detected, and the site content is fully accessible and safe for general audiences. Overall, the site scores moderately well in content quality and business credibility but has room for improvement in privacy compliance and security best practices. Strategic recommendations include adding comprehensive privacy and cookie policies, implementing security headers, enabling DNSSEC, and providing clear contact and incident response information to enhance trust and compliance.

The website mojekino.sk operates as an online platform primarily focused on providing cinema programs, ticket sales, and related information for a wide network of cinemas and cultural venues in Slovakia. It is managed by Ticketware SE, a company established in 2012, which positions itself as a regional service provider in the entertainment and cultural event sector. The platform targets cinema goers and cultural event attendees, offering a cinema finder tool and online ticket purchasing capabilities. The website's market position is regional with a focus on Slovak cultural venues, leveraging partnerships with numerous cinemas across the country. From a technical perspective, the website employs a custom or proprietary CMS with a technology stack that includes jQuery, Facebook SDK, and Google Analytics for user tracking and analytics. Hosting is provided by Forpsi, as indicated by the domain's nameservers. The site demonstrates moderate performance and basic mobile optimization, with room for improvement in accessibility and SEO practices. The design and content quality are basic but functional, with clear navigation and a straightforward user experience. Security-wise, the site uses HTTPS (assumed but not explicitly confirmed in the provided data) and implements a cookie consent mechanism, indicating some level of privacy compliance. However, it lacks explicit privacy policies, terms of service, and security headers such as CSP or HSTS, which are recommended for enhanced security posture. No incident response or vulnerability disclosure information is available, and no contact information is provided on the homepage, which limits transparency and user trust. The WHOIS data is consistent and indicates a legitimate, long-standing domain registration aligned with the business's regional focus. Overall, mojekino.sk is a functional regional ticketing platform with basic technical and security implementations. To improve trust, compliance, and security posture, the company should publish clear privacy and terms policies, enhance security headers, and provide transparent contact information. These steps will strengthen user confidence and align the platform with best practices in digital security and privacy.

D

DOOH s.r.o.

dooh.sk

0

DOOH s.r.o. operates the largest digital out-of-home (DOOH) advertising network in Slovakia, featuring 18 outdoor LED screens across 13 locations. The company targets businesses seeking impactful outdoor advertising solutions with fast deployment and measurable results. Their business model centers on renting LED advertising space and providing real-time campaign statistics, positioning themselves as market leaders in the Slovak digital outdoor advertising sector. The website content is professionally presented in Slovak, with clear calls to action and comprehensive contact information, supporting a strong business credibility profile. Technically, the website employs modern web technologies including Bootstrap, jQuery, Google reCAPTCHA v3, and Google Tag Manager, hosted behind Cloudflare DNS services. The site is mobile-optimized with good SEO practices and moderate performance. Security measures include HTTPS enforcement and invisible reCAPTCHA on forms, though no explicit security headers or published security policies were detected, indicating room for improvement in security posture. From a security perspective, the site shows a moderate maturity level with no critical vulnerabilities detected in the provided data. The absence of a privacy policy and security incident response information suggests compliance gaps, particularly regarding GDPR transparency. Cookie consent is implemented, reflecting basic privacy compliance. The WHOIS data is consistent with the business profile, showing a domain registered in 2021 without privacy protection, reinforcing legitimacy. Overall, the website is professional and trustworthy with a solid business foundation but would benefit from enhanced security headers, published privacy and security policies, and formalized incident response contacts to improve compliance and security posture.

L

Levická televízna spoločnosť s.r.o.

levickatelevizia.sk

0

Levická televízna spoločnosť s.r.o. operates a local television broadcasting website focused on news, sports, public affairs, and advertising for the Levice region in Slovakia. The company has an established presence since 2007 and provides a range of multimedia content primarily hosted on Vimeo. The website uses Joomla CMS and integrates common web technologies such as jQuery, Bootstrap, and FontAwesome, delivering a good user experience with mobile optimization and clear navigation. Contact and business information are transparently provided, including GDPR-compliant privacy policies and cookie consent mechanisms. Security posture is adequate with HTTPS enforced, though additional security headers and policies could enhance protection. Overall, the site is trustworthy, professionally maintained, and serves its local audience effectively.

A

Asociácia kultúrnych inštitúcií miest a obcí Slovenska

1akis.sk

0

The website represents the Asociácia kultúrnych inštitúcií miest a obcí Slovenska, a Slovak non-governmental organization focused on promoting cultural education and supporting local cultural institutions. The site provides information about the association's mission, activities, and offers downloadable documents relevant to cultural policies and COVID-19 impact mitigation. The organization targets Slovak municipalities, cultural institutions, and the general public interested in cultural development. Technically, the website is built on Joomla CMS using the Gantry5 framework, with modern JavaScript libraries such as jQuery, Swiper, and AOS for animations. It is hosted by Websupport, a Slovak hosting provider, and uses HTTPS with DNSSEC enabled for domain security. The site includes Google Analytics and Tag Manager for user tracking and has a cookie consent banner, indicating basic privacy compliance. However, it lacks a dedicated privacy policy, terms of service, and security incident response information, which are important for full compliance and trust. Security posture is moderate with HTTPS and DNSSEC but missing HTTP security headers and vulnerability disclosure mechanisms. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

The website 'Projekt na obnovu národnej kultúrnej pamiatky Židovská škola Levice' is a cultural and educational initiative focused on preserving and promoting the heritage of the Jewish school in Levice, Slovakia. It offers a variety of workshops, cultural events, and festivals aimed at children, youth, and adults interested in Jewish history and culture. The project appears to be a small-scale non-profit entity with a local community focus. Technically, the website is built on WordPress using the Elementor page builder, supplemented by plugins for photo galleries and analytics. It is hosted on Websupport servers with DNSSEC enabled and uses HTTPS, indicating a secure baseline infrastructure. The site is moderately optimized for performance and mobile devices, with good SEO practices including structured data and Open Graph metadata. From a security perspective, the site employs HTTPS and DNSSEC but lacks explicit security headers and does not provide visible security or incident response policies. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is weak due to the absence of privacy and cookie policies, which is a notable gap given GDPR requirements. Overall, the website is trustworthy and professional in its presentation and content but would benefit from enhanced privacy compliance and security policy transparency to improve user trust and regulatory adherence.

B

Bates Wells

bateswells.co.uk

0

Bates Wells is a well-established UK-based law firm specializing in legal services for charities, social enterprises, and impact investors. The firm positions itself as a City law firm with a difference, emphasizing positive impact and sustainability, evidenced by its status as the highest scoring B Corp globally in the legal activities category. The website reflects a professional and comprehensive digital presence, targeting businesses and organizations seeking expert legal advice in various sectors including charity, corporate, data privacy, and employment law. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Swiper.js for enhanced user experience. It employs HTTPS with good SSL configuration and includes cookie consent mechanisms compliant with GDPR. The site is mobile-optimized, accessible, and SEO-friendly, though it could improve by implementing additional security headers and publishing a formal security policy. From a security standpoint, the site demonstrates good practices such as secure forms and no visible vulnerabilities or exposed sensitive data. However, there is room for improvement in incident response transparency and vulnerability disclosure. The domain registration data is consistent with the firm's business history, enhancing trustworthiness. Overall, Bates Wells presents a low-risk profile with strong business credibility and a mature digital infrastructure. Strategic recommendations include enhancing security headers, publishing security policies, and adding a security.txt file to further improve security posture and compliance.

K

Kreisstadt Unna

stadt-unna.de

0

The website www.unna.de serves as the official digital portal for the Kreisstadt Unna municipal government in Germany. It provides citizens and visitors with comprehensive information about city services, cultural events, administrative contacts, and digital service access. The site is well-structured, professionally designed, and optimized for mobile devices, reflecting a mature digital presence for a medium-sized government entity. Technically, it is built on Drupal 10 with modern libraries such as Font Awesome and integrates Matomo Analytics with privacy-conscious configurations. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though it lacks explicit security policy and incident response disclosures. Overall, the site is trustworthy, compliant with GDPR, and offers a positive user experience for its target audience.

F

Frauenforum im Kreis Unna e.V.

frauenforum-unna.de

0

Frauenforum im Kreis Unna e.V. is a small non-profit organization based in Germany providing critical social support services to women and children affected by domestic and sexual violence. Their key offerings include a women's shelter (Frauenhaus), counseling services, and housing emergency aid. The website is built on WordPress using the Divi theme and integrates modern tools such as Matomo for analytics and Usercentrics for cookie consent management. The site is well-structured, mobile-optimized, and accessible, reflecting a good level of digital maturity for a non-profit entity. Security posture is adequate with HTTPS enforced and cookie consent implemented, but lacks published security policies and security headers, which are recommended for improvement. Overall, the website is trustworthy and professional, though it would benefit from enhanced privacy and compliance documentation.

K

Kinderschutzbund Kreisverband Unna e.V.

kinderschutzbund-kreisunna.de

0

Kinderschutzbund Kreisverband Unna e.V. is a German non-profit organization dedicated to protecting children from violence, combating child poverty, and promoting children's rights. The organization offers systemic counseling, therapy, prevention projects, and advocacy at local, state, and federal levels. Their services are free and include specialized support for children, youth, and families. The website reflects a well-structured, community-focused entity with clear contact channels and donation options. Technically, the site uses a specialized CMS platform with modern JavaScript libraries and is optimized for accessibility and mobile use. Security measures include HTTPS, cookie consent with opt-in/out, and captcha on forms, though additional security headers could enhance protection. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with no signs of adult or questionable content.

Sozialkompass.info is a German-language platform launched in 2023 that provides individuals with personalized information about social benefits they may be entitled to. The service uses a question-based approach to tailor social benefits information and offers a centralized overview of supported social benefits with relevant contact points. The website targets residents in Germany seeking guidance on social welfare programs. Technically, the site is built on a modern React and Next.js stack, hosted and DNS-managed via Cloudflare, ensuring good performance and mobile optimization. Security posture is adequate with HTTPS enforced and clientTransferProhibited domain status, but lacks DNSSEC and some security headers. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Contact is primarily via email, with no phone numbers or detailed business registration info publicly available. Overall, the site is professional and trustworthy but could improve in security and compliance transparency.

K

Kreis Unna

kreis-unna.de

0

Kreis Unna is a governmental district authority in Germany providing a comprehensive range of public services including administration, social services, education, mobility, environment, culture, economy, and housing. The website serves as an official portal for residents and stakeholders, offering news, event information, service portals, and contact options. The site is well-branded and consistent with governmental standards, targeting local citizens and public service users. Technically, the website uses a modern tech stack including jQuery, Mustache.js, Owl Carousel, and accessibility tools, running on the ikiss CMS platform. It is mobile optimized and includes accessibility features, with moderate performance. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though it lacks explicit security policies and incident response contacts. No vulnerabilities or suspicious domains were detected. Overall, the website is trustworthy, professional, and compliant with GDPR requirements. Strategic improvements include publishing security policies, incident response info, and vulnerability disclosure mechanisms to enhance transparency and security maturity.

T

Tremaze GmbH

tremaze.de

0

Tremaze GmbH is a German-based company specializing in digital software solutions tailored for social work organizations. Their flagship platform, Tagea, integrates communication, documentation, and administrative functions to streamline workflows for social institutions. The company targets social service providers and institutions, offering a niche SaaS product that replaces fragmented communication and documentation tools with a unified platform. The website reflects a professional and consistent brand image, supported by client logos and testimonials from recognized social organizations such as Diakonie and Caritas. Technically, the website is built on the Webflow CMS platform, hosted on reputable German servers via Hetzner. It employs modern web technologies including Google Analytics and Tag Manager for analytics, and Cookie-Script for GDPR-compliant cookie consent management. The site is mobile-optimized with good SEO and accessibility basics, though some accessibility enhancements could be made. Performance is moderate, with no critical technical issues detected. From a security perspective, the site uses HTTPS with strong SSL configuration and anonymizes IPs in analytics to enhance privacy. However, it lacks explicit security headers and a published security policy or vulnerability disclosure program. No critical vulnerabilities or exposed sensitive data were found in the content. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent mechanism in place. Contact information is clearly presented, though no direct company emails were found in the content. Overall, Tremaze GmbH presents a trustworthy and professional online presence with a solid technical foundation and good privacy practices. Strategic improvements in security headers, incident response transparency, and accessibility would further strengthen their posture. The business is well-positioned in its niche market with a clear value proposition and growing digital maturity.

vbq.cz is a Czech-language local lifestyle and service ranking website, providing curated lists such as best dentists, confectioneries, and pizza places in various Czech cities. The site targets Czech-speaking users interested in local services and lifestyle content. Technically, the site is built on WordPress with common plugins like Yoast SEO, Contact Form 7, and uses Cloudflare for DNS and CDN services. The site implements cookie consent with denial of ad and analytics storage by default, indicating some privacy awareness. Security posture is moderate with HTTPS enabled and no exposed sensitive data, but lacks explicit security headers and published security policies. Business credibility is moderate due to absence of contact details and privacy policy. Overall, the site is functional and professionally designed but would benefit from enhanced privacy compliance and security transparency.

N

nupian GmbH

nupian.de

0

nupian GmbH is a German software company specializing in cloud-based solutions for holiday programs, kindergartens, and hall management. Established in 2009, the company has positioned itself as a market leader in holiday program software within Germany. Their offerings include comprehensive SaaS products designed to streamline administrative processes for municipalities and childcare providers, emphasizing automation, digitalization, and user-friendly interfaces. The company maintains a strong commitment to data privacy, hosting all data on German servers and adhering strictly to GDPR regulations. Technically, the website is built on WordPress with modern plugins and SEO tools, ensuring good performance and accessibility. Security practices include HTTPS enforcement and cookie consent management, although formal security policies and incident response contacts are not publicly detailed. Overall, the website reflects a professional, trustworthy, and well-maintained digital presence aligned with the company's business goals.

Slovakia.travel is the official national tourism portal managed by the Slovak Tourist Board, a government entity dedicated to promoting Slovakia as a travel destination. The website offers comprehensive information about Slovak culture, nature, events, and travel tips, targeting tourists and travelers interested in exploring Slovakia. It features multilingual support and rich content including blogs, event calendars, and online publications. Technically, the site is built on TYPO3 CMS and integrates modern analytics and marketing tools such as Google Analytics, Microsoft Clarity, Hotjar, and Facebook Pixel, indicating a mature digital infrastructure. The hosting and DNS setup leverage Amazon AWS services, ensuring reliability and scalability. Security-wise, the site enforces HTTPS and has domain transfer protections but lacks advanced security headers and DNSSEC, which are recommended for enhanced protection. Privacy compliance is addressed with cookie consent mechanisms and a privacy policy, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-positioned as a government tourism resource with a good balance of content quality, technical implementation, and business credibility.

V

Visit Hungary

visithungary.com

0

Visit Hungary is a tourism promotion website dedicated to showcasing Hungary's attractions, including Budapest, Lake Balaton, and famous thermal baths. The site targets tourists and travelers planning trips to Hungary, providing travel planning resources and destination highlights. The domain is well-established, created in 1999, and the website uses modern web technologies such as Angular, Cookiebot for cookie consent, and marketing pixels from Meta and TikTok to support its digital marketing efforts. The technical infrastructure is moderate in performance with good mobile optimization and basic accessibility features. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers. Privacy compliance is limited due to the absence of a privacy policy and terms of service pages, though cookie consent is implemented. Overall, the website is professional and trustworthy for its purpose but would benefit from enhanced privacy and security documentation.

F

Förderverein für regionale Entwicklung e.V.

terminbuchungstool.de

0

The website terminbuchungstool.de is operated by the Förderverein für regionale Entwicklung e.V., offering an online appointment and course booking tool primarily targeting public sector entities, healthcare providers, and businesses in Germany. The platform facilitates efficient scheduling with features like Outlook synchronization, customizable calendars, and automated email confirmations. The site is well-positioned in its niche, supported by positive customer testimonials and a clear focus on GDPR compliance and data security. Technically, the site employs modern JavaScript libraries and CSS frameworks, is mobile-optimized, and uses SSL encryption to secure data transmission. Security best practices are observed, including CAPTCHA on forms and cookie consent management, though additional security headers and a formal security policy could enhance posture. Overall, the site is professional, trustworthy, and compliant with relevant privacy regulations, making it a reliable solution for appointment management in its target sectors.

F

Förderverein für regionale Entwicklung e.V.

mobile-ansichten.de

0

The website www.mobile-ansichten.de represents a service initiative by the Förderverein für regionale Entwicklung e.V., focused on providing mobile-optimized web views tailored for smartphones and tablets. The service targets municipalities and organizations seeking to improve mobile user experience and Google search rankings without additional costs or complex app installations. The business model is non-profit oriented, offering free creation and reduced licensing fees for project partners, supported by personalized telephone assistance and continuous updates. Technically, the website employs a custom CMS platform with common JavaScript libraries such as jQuery, jQuery UI, and parallax effects. It integrates cookie consent management and basic analytics cookies, ensuring GDPR compliance. The site is moderately optimized for mobile devices and SEO, with a clear navigation structure and good content quality. Hosting appears to be managed via domaincontrol.com DNS services, typical for small organizations. From a security perspective, the site lacks explicit HTTP security headers and does not provide a public security policy or incident response contacts. The contact form includes CAPTCHA and GDPR consent, but no vulnerability disclosure or security.txt is present. SSL configuration details are not directly visible in the provided data, and no WAF or blocking mechanisms were detected. Overall, the website demonstrates a solid business credibility and privacy compliance posture, with room for improvement in security best practices and transparency. The domain registration data is minimal but consistent with the business claims. No suspicious or malicious indicators were found, and the content is safe for general audiences.

F

Förderverein für regionale Entwicklung e.V.

intranetdienst.de

0

The website www.intranetdienst.de represents a small German-based organization, Förderverein für regionale Entwicklung e.V., offering a secure, web-based intranet system tailored for various sectors including companies, municipalities, educational institutions, and non-profits. The platform provides a comprehensive suite of modules such as document management, event planning, user rights management, and mobile app integration, positioning itself as a niche provider focused on efficient workplace communication and organization. The site is professionally designed with good content quality, clear navigation, and responsive design, supporting a positive user experience.

R

Ratsinformationsdienst

ratsinformationsdienst.de

0

The Ratsinformationsdienst website offers a specialized software solution, PortUNA.ris, designed to facilitate efficient council and committee work for municipalities in Germany. The business targets administrative staff, council members, and citizens by providing a cost-effective, easy-to-use, and mobile-optimized platform for managing meeting documents and schedules. The company positions itself as a niche provider with a clear focus on simplicity, affordability, and ongoing support through 2035. Technically, the website employs standard web technologies including jQuery, Nivo Slider, and a proprietary CMS hosted on infrastructure linked to domaincontrol.com. The site is moderately optimized for performance and accessibility, with good mobile responsiveness and SEO practices. Cookie consent is implemented with detailed categorization, and analytics usage is moderate, likely using Matomo. From a security perspective, the site shows basic best practices such as session management and use of ReCaptcha, but lacks visible security headers and published security policies or incident response contacts. No WAF or blocking mechanisms are detected, and the site is fully accessible. The WHOIS data is minimal but consistent with a small business using common DNS providers, with no suspicious patterns. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though it could improve its security posture by adding security headers, publishing a security policy, and enhancing incident response transparency. The risk level is moderate with no critical vulnerabilities detected.

F

Förderverein für regionale Entwicklung e.V.

foerderverein-regionale-entwicklung.de

0

Förderverein für regionale Entwicklung e.V. is a small non-profit organization based in Brandenburg, Germany, focused on supporting regional development through digitalization and information networking. The organization offers cost-free or reduced-cost funding programs aimed at public and private institutions, social organizations, and trainees. Their services include assistance with internet presence, digital tools, and regional information integration. The website reflects a well-structured, professional presence with clear navigation and accessibility features. Technically, the website leverages a modern tech stack including jQuery, Bootstrap, Material Design Lite, and various UI libraries hosted on the verwaltungsportal.de platform. It is mobile optimized and includes accessibility options such as font resizing and contrast adjustments. The hosting is managed via DomainControl nameservers, and HTTPS is enforced, ensuring secure communication. From a security perspective, the site implements cookie consent with granular user control, uses CAPTCHA on forms, and manages sessions securely. However, explicit security headers are not detected, and no published security or incident response policies are found. Privacy compliance is strong with a comprehensive privacy policy and GDPR indicators. No vulnerabilities or suspicious content were detected. Overall, the website is trustworthy, professional, and compliant with privacy regulations. It serves its target audience effectively with relevant content and partner integrations. Strategic improvements could focus on enhancing security headers and publishing incident response information.

Städtische Friedhöfe Gelsenkirchen operates as a municipal service providing cemetery management and related services in Gelsenkirchen, Germany. The website offers comprehensive information about the city's twelve cemeteries, various burial options, and support for bereaved families. It serves a local audience seeking guidance on funerary arrangements and cemetery facilities. The site is professionally designed, well-structured, and optimized for mobile devices, reflecting a mature digital presence for a government entity. Technically, the website is built on WordPress, leveraging popular plugins such as Yoast SEO for search optimization and Borlabs Cookie for privacy compliance. Hosting is provided by Hetzner, a reputable German hosting provider. The site employs HTTPS and cookie consent mechanisms, indicating a commitment to user privacy and security. However, some security headers are not explicitly detected, suggesting room for improvement in hardening the security posture. From a security perspective, the site demonstrates good practices including encrypted connections and no visible vulnerabilities or exposed sensitive data. Analytics are conducted via Matomo, a privacy-friendly tool, with clear cookie policies and user consent. The absence of incident response contacts or vulnerability disclosure mechanisms is noted, which could be enhanced to improve transparency and readiness. Overall, the website is a trustworthy and professional platform for municipal cemetery services, with solid privacy compliance and a good user experience. Strategic recommendations include enhancing security headers, publishing incident response information, and maintaining up-to-date software to mitigate risks.

V

Verschenkmarkt Gelsenkirchen

verschenkmarkt-gelsenkirchen.de

0

Verschenkmarkt Gelsenkirchen operates a regional non-profit online marketplace focused on facilitating the free exchange of goods to reduce waste and promote sustainability within the Gelsenkirchen area and surrounding regions. The platform offers users the ability to publish, edit, and delete listings without requiring registration or displaying advertisements, emphasizing community engagement and environmental responsibility. The website is built on the Osclass CMS platform with a technology stack including jQuery, Bootstrap, and FineUploader, providing a functional and moderately performant user experience with good mobile optimization. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data or vulnerable libraries. However, it lacks important security headers and a cookie consent mechanism, which are recommended for enhanced protection and regulatory compliance. The absence of explicit contact emails or phone numbers limits direct communication channels, relying solely on a contact form. No vulnerability disclosure or security policy pages are present, indicating room for improvement in transparency and incident response readiness. Overall, the website presents a trustworthy and professional image consistent with its non-profit mission, supported by clear navigation, relevant content, and GDPR-compliant privacy and terms pages. The lack of advertising and tracking scripts further strengthens its privacy posture. Strategic enhancements in security headers, cookie consent, and contact information would elevate its compliance and security maturity.

Kufer Software GmbH is a well-established German company specializing in intelligent software solutions for seminar and course management in adult education. With over 30 years of experience and a customer base exceeding 1,900 clients, the company offers products such as KuferSQL, KuferWEB, and KuferTools. Their business model focuses on software development, sales, and comprehensive customer support including training and updates. The website reflects a professional and consistent brand image targeting educational institutions and seminar organizers. Technically, the website is built on TYPO3 CMS with modern frontend frameworks like Bootstrap and jQuery. It integrates Matomo for analytics and Cookiebot for GDPR-compliant cookie consent management. Hosting is provided by kasserver.com, and the site demonstrates good mobile optimization and SEO practices. Performance is moderate, with room for improvement in accessibility features. From a security perspective, the site uses HTTPS and employs cookie consent mechanisms. Remote support is facilitated via trusted third-party tools TeamViewer and pcvisit. However, explicit HTTP security headers are not detected, and no published security or incident response policies are found. No vulnerabilities or exposed sensitive data were identified in the content. Overall, the website is trustworthy, professional, and compliant with privacy regulations. The domain WHOIS data aligns with the business claims, supporting legitimacy. The site poses low risk, but could enhance security posture by adding security headers and publishing security policies.

Demokratie leben is a local government-backed initiative based in Herten, Germany, focused on promoting democracy, diversity, and preventing extremism through community projects and funding. The website serves as an information hub and application portal for project funding under the federal program 'Demokratie leben!'. The target audience includes local citizens, civil society actors, and project applicants. The business model is non-profit and government-supported, emphasizing community engagement and democratic participation. Technically, the website uses standard web technologies including JavaScript, jQuery, and Font Awesome, hosted on INWX nameservers. The site is moderately optimized for performance and mobile use, with basic accessibility and SEO features. The CMS is not explicitly identified but appears custom or proprietary. The website is secured with HTTPS and includes a cookie consent mechanism, though lacks advanced security headers and published security policies. From a security perspective, the site demonstrates good baseline practices such as HTTPS enforcement and cookie consent. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. The site does not use analytics or advertising scripts, minimizing privacy risks. Overall, the website is trustworthy, professional, and compliant with GDPR requirements. It effectively supports its mission to promote democracy locally. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving mobile optimization and SEO for broader reach.

V

VHS – Deutscher Volkshochschul-Verband Herten

abschlussmachen.de

0

The website 'abschlussmachen.de' is an educational platform operated by the VHS – Deutscher Volkshochschul-Verband Herten, targeting individuals seeking to complete their school leaving certificates in several German cities. It offers information, consultation, and contact options including phone and WhatsApp, positioning itself as a regional adult education provider. The site is well-branded, consistent, and provides relevant content tailored to its audience. Technically, the site is built using RapidWeaver with UIkit framework, leveraging modern JavaScript libraries and Google Analytics for tracking. Hosting is likely provided by 1&1 IONOS. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. From a security perspective, the site uses HTTPS and a GDPR-compliant cookie consent mechanism (Usercentrics). However, it lacks explicit security headers, a published security policy, and incident response contacts. No vulnerabilities or suspicious content were detected. Overall, the site presents a low-risk profile with good business credibility and privacy compliance. Strategic improvements could include adding security headers, a terms of service page, and a vulnerability disclosure policy to enhance trust and security posture.

P

Pijte s mírou

pijtesmirou.cz

0

The website 'Pijte s mírou' appears to be a small-scale initiative focused on promoting responsible alcohol consumption, as suggested by its branding and content. The site is built on the Wix platform, leveraging standard Wix technologies and hosting. While the site is accessible and uses HTTPS, it lacks critical business and security information such as WHOIS registration details, privacy policies, cookie consent mechanisms, and contact information. This absence limits the ability to fully verify the legitimacy and compliance posture of the business. Technically, the site is moderately optimized for mobile and performance but could benefit from enhanced SEO and accessibility features. Security-wise, the site uses HTTPS but does not implement advanced security headers or publish incident response policies, which are important for trust and compliance. Overall, the site presents a basic online presence with room for improvement in transparency, security, and compliance.

H

Heineken

heineken.cz

0

Heineken is a globally recognized brewing company specializing in the production and marketing of beer products. The website analyzed serves primarily as an age verification gateway to ensure compliance with legal drinking age regulations before granting access to alcohol-related content. The site demonstrates a mature digital presence with integrated privacy and cookie consent mechanisms, reflecting adherence to GDPR and other privacy standards. The technical infrastructure includes modern JavaScript usage, Google Tag Manager for analytics, and OneTrust for consent management, indicating a well-maintained and compliant digital environment. Security posture is adequate with HTTPS implied and consent mechanisms in place, though explicit security headers were not detected in the provided data. The absence of WHOIS data is unusual but likely due to privacy or registry policies rather than malicious intent. Overall, the website is professional, trustworthy, and targets an adult audience with appropriate content safety measures.

G

GREENZERO GmbH

greenzero.eu

0

GREENZERO GmbH is a German sustainability consulting company specializing in environmental impact analysis, reduction strategies, and renaturation projects. Their services include scientifically grounded ecological assessments such as product and corporate life cycle analyses, supported by AI-driven tools for rapid product portfolio analysis. The company targets businesses aiming to meet sustainability goals with a comprehensive, interdisciplinary approach. Technically, the website is built on WordPress using Elementor and Yoast SEO, with cookie consent managed by Borlabs Cookie. The infrastructure is modern and moderately performant with good mobile optimization. Security posture is adequate with HTTPS and cookie consent but lacks explicit security headers and published security policies. No critical vulnerabilities or suspicious content were detected. Overall, the website presents a professional and trustworthy digital presence aligned with its business objectives.

N

NextCom s.r.o.

nextcom.sk

0

NextCom s.r.o. is a Slovak-based technology company specializing in e-commerce solutions integrated with the economic software Pohoda. The company offers a range of services including e-shop creation, synchronization with Pohoda, server solutions, certified installations, and cloud services. With over 300 e-shops integrated, NextCom holds a solid regional market position targeting businesses seeking seamless online commerce management. The website reflects a professional and consistent brand image with clear service descriptions and multiple contact channels. Technically, the site uses modern JavaScript libraries, Google Analytics, and a cookie consent mechanism, indicating a mature digital infrastructure. Security posture is good with HTTPS enabled and no obvious vulnerabilities, though some security headers could be improved. Privacy compliance is well addressed with detailed cookie management and GDPR-aligned policies. Overall, the website is trustworthy, well-structured, and serves its business purpose effectively.

C

CK FISCHER

fischer.sk

0

CK FISCHER is a Slovak travel agency specializing in holiday packages to Mediterranean and exotic destinations for 2025. The website offers last minute and first minute deals, family and wellness holidays, and special travel services. It targets general consumers seeking quality travel experiences with a broad range of destinations and services. The site is professionally designed with consistent branding and good content quality. Technically, it uses modern JavaScript frameworks including Vue.js, integrates Google Tag Manager, reCAPTCHA, and Usercentrics for cookie consent, indicating a mature digital infrastructure. Security posture is good with HTTPS enforced and bot protection, but lacks explicit security policies and vulnerability disclosure. Privacy compliance is basic with cookie consent but no visible privacy policy or terms of service pages. Overall, the website is trustworthy and professional, suitable for its business domain.

K

KARTAGO Tours

kartagotours.hu

0

KARTAGO Tours is a Hungarian travel agency specializing in holiday packages, last minute and first minute travel deals, and family-friendly club hotels. The website targets Hungarian-speaking travelers and offers a broad range of travel destinations primarily in Europe, North Africa, and the Middle East. The business operates under the DER Touristik Group umbrella, indicating a strong market presence in Central Europe. Technically, the website employs modern web technologies including Vue.js, Google Tag Manager, and Usercentrics for consent management, reflecting a mature digital infrastructure. Security posture is solid with HTTPS, security headers, and bot protection via reCAPTCHA, though explicit security and incident response policies are not published. Overall, the site is professional, trustworthy, and compliant with GDPR, making it a reliable platform for travel bookings.

K

Kartago SK

kartago.sk

0

Kartago SK operates as a Slovak online travel agency specializing in vacation packages, last minute deals, and first minute offers targeting Slovak-speaking travelers. The website presents a professional and modern interface with a focus on multiple international destinations, leveraging a Vue.js-based frontend and integrating key marketing and analytics tools such as Google Tag Manager, Google Analytics, and Usercentrics for cookie consent management. The business model centers on providing comprehensive travel services including flight bookings and holiday packages, positioning itself as a regional player in the hospitality and transportation sectors. Security measures include HTTPS enforcement and reCAPTCHA integration, though the absence of security headers and formal privacy and terms of service pages indicates room for improvement in compliance and security posture. Overall, the domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness.

E

EXIM S.A.

exim.pl

0

EXIM S.A. operates the website exim.pl, a prominent Polish travel agency and tour operator specializing in holiday packages, last minute deals, and flight tickets. Positioned as the fifth largest tour operator in Poland, EXIM targets Polish travelers seeking diverse vacation options including exotic destinations, group travel, and customizable plans. The website is professionally designed with a clear focus on user experience, offering rich content and easy navigation. Technically, the site leverages modern JavaScript frameworks such as Vue.js, integrates Google Tag Manager, Usercentrics for consent management, and employs reCAPTCHA for bot protection. Security posture is strong with HTTPS enforcement and multiple security headers, although explicit security policies and incident response contacts are not publicly disclosed. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. Overall, the site demonstrates a mature digital presence with good business credibility and technical implementation.

D

Dertouristik RO

dertour.ro

0

DERTOUR Romania operates as an online travel agency specializing in vacation packages, last minute deals, and exclusive hotel offers primarily targeting Romanian customers. The website is professionally designed with a clear focus on travel services, offering a wide range of destinations and booking options. The technical infrastructure leverages modern JavaScript frameworks, Google Tag Manager, and Usercentrics for consent management, indicating a mature digital presence. Security posture is solid with HTTPS enforcement, cookie consent, and no visible vulnerabilities, although explicit security policies and incident response information are not publicly available. Overall, the website presents a trustworthy and professional front for DERTOUR's travel services in Romania.

Q

Qobuz

qobuz.com

0

Qobuz is a well-established digital music service specializing in high-quality streaming and Hi-Res downloads, targeting audiophiles and music enthusiasts primarily in Finland and other international markets. The website demonstrates a mature digital presence with extensive content, clear subscription offerings, and a strong brand identity. Technically, the site employs modern web technologies, including SPA architecture, advanced analytics, and performance monitoring tools, ensuring a fast and responsive user experience across devices. Security posture is solid with HTTPS enforcement, content security policies, and cookie consent mechanisms, although explicit security policies and incident response contacts are not publicly disclosed. Overall, the site is trustworthy and professionally maintained, though the lack of WHOIS transparency slightly reduces domain trustworthiness.

N

Napster

napster.com

0

Napster is a well-established global music streaming service offering over 110 million songs and official music videos with ad-free and offline listening options. The company also provides B2B branded music platform solutions, serving businesses seeking to launch their own music services. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site uses WordPress CMS with modern analytics and marketing tools such as Google Analytics, Amplitude, Braze, and Hotjar, alongside a consent management platform for GDPR compliance. Security posture is strong with HTTPS, security headers, and reCAPTCHA protections, though explicit security policies and incident response information are absent. The lack of WHOIS data limits domain trust assessment, but the overall digital footprint and branding indicate legitimacy. Strategic recommendations include publishing security policies, adding vulnerability disclosure mechanisms, and enhancing transparency on data retention.

S

SendOwl

sendowl.com

0

SendOwl is a mature and well-established digital commerce platform specializing in enabling businesses and individuals to sell digital products, subscriptions, memberships, and more. The platform offers a comprehensive suite of tools including payment links, storefronts, and checkout solutions, targeting a broad audience of digital sellers from solopreneurs to scale-ups. The website demonstrates strong market positioning with over $2 billion in transactions processed and a decade-long community focus. Technically, the website is built on modern frameworks such as Next.js and React, leveraging popular analytics and marketing tools like Google Analytics, Segment, and Facebook Pixel. The site is performant, mobile-optimized, and accessible, reflecting a high level of digital maturity. Hosting and CDN services appear to be provided by Cloudflare, ensuring reliability and security. From a security perspective, the site enforces HTTPS, employs multiple security headers, and integrates secure payment gateways. However, there is room for improvement in cookie consent mechanisms and publishing explicit security policies or incident response contacts. The absence of WHOIS data introduces some uncertainty regarding domain registration transparency, but the overall trustworthiness is supported by the professional website and business signals. Overall, SendOwl presents a low-risk profile with strong business credibility and technical robustness. Strategic recommendations include enhancing privacy compliance with explicit cookie consent, publishing vulnerability disclosure information, and improving transparency around incident response and data retention policies.

G

Google

womentechmakers.com

0

The Women Techmakers program is an initiative by Google aimed at advancing women in technology by providing visibility, community support, and resources. The website serves as a hub for program information, ambassador and member engagement, and various initiatives such as Black Women in Tech and She Builds AI. It is positioned as part of Google's broader developer outreach and diversity efforts, targeting women in tech globally. The program has a significant reach with thousands of ambassadors and tens of thousands of members worldwide. Technically, the website is hosted on Google's infrastructure, leveraging modern web technologies including Google Fonts, Google Analytics, and YouTube embeds. It is optimized for mobile devices, accessible, and designed with a professional and consistent branding approach. The use of structured data and comprehensive metadata enhances SEO and content discoverability. From a security perspective, the site enforces HTTPS and likely employs standard security headers, although explicit header data is not visible in the HTML. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear links to Google's centralized privacy and cookie policies, including consent mechanisms. However, no direct contact information or dedicated security incident response details are provided on the site. Overall, the website demonstrates a mature digital presence with high trustworthiness and professionalism. It effectively supports Google's mission to empower women in technology while maintaining strong technical and security standards.

G

Google

techequitycollective.com

0

Google's developers.google.com community page serves as a hub for developer networking, learning, and engagement with a focus on accelerating tech career pathways. The site is part of Google's extensive developer ecosystem, offering resources related to web and mobile app development, cloud computing, AI, and other cutting-edge technologies. As a subdomain of google.com, it benefits from Google's strong market position and brand recognition. Technically, the site employs modern web standards, Google Cloud hosting, and integrates Google Analytics and Tag Manager for performance and user insights. Security posture is robust, leveraging HTTPS and Google’s security infrastructure, with no visible vulnerabilities or exposed sensitive data. Privacy and cookie policies are linked to Google's comprehensive and GDPR-compliant central policies, enhancing user trust. Overall, the site is professional, well-branded, and trustworthy, targeting developers and tech professionals globally.

A

Adami

adami.fr

0

Adami is a French collective management organization dedicated to supporting artists-interpreters through rights management, financial aid, and career support. The website is professionally designed, multilingual (French and English), and targets artists and project holders in the cultural and media sectors. The business model revolves around collective rights management and funding artistic projects, positioning Adami as a key player in the French artistic ecosystem. Technically, the site is built on WordPress with modern JavaScript libraries and includes analytics and cookie consent tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent implemented, though the absence of a published security policy and incident response details suggests room for improvement. The lack of WHOIS data limits domain trust verification, but the professional presentation and official social media presence support legitimacy. Overall, the site is safe, compliant with GDPR, and well-structured, serving its audience effectively.

A

ADAGP

adagp.fr

0

ADAGP is a well-established French collective rights management organization founded in 1953, specializing in the collection and distribution of authors' rights in the visual arts sector. The website presents a professional and comprehensive digital presence, targeting artists, rights holders, and users of artworks with a broad range of services including membership, authorization requests, and artistic support. The technical infrastructure is built on Drupal CMS with modern frontend technologies and integrates Google Tag Manager for analytics. Security posture is solid with HTTPS enforced, though improvements are recommended in security headers and explicit privacy compliance documentation. The absence of WHOIS data limits domain ownership verification but the website's content quality, contact transparency, and social media presence support its legitimacy. Overall, ADAGP's website is a trustworthy and authoritative resource in its domain.

L

La SCELF

scelf.fr

0

La SCELF is a French civil society organization representing French language editors, focusing on publishing and editorial services. The website is built on WordPress using the Divi theme and Yoast SEO plugin, indicating a moderate level of digital maturity. The site is accessible, uses HTTPS, and includes a cookie consent mechanism, but lacks visible privacy policies, terms of service, and explicit contact information. The absence of WHOIS data for the domain raises concerns about domain registration legitimacy, which impacts overall trust. Security posture is moderate with HTTPS enabled but missing security headers and incident response information. Strategic recommendations include publishing privacy and security policies, improving security headers, and clarifying domain registration details to enhance trust and compliance.

P

PROCIREP

procirep.fr

0

PROCIREP is a French collective management organization representing cinema and television producers, focusing on rights management related to private copying and retransmission rights. Established since 1999, it operates alongside related entities such as ANGOA and the French ISAN agency, providing support and funding for audiovisual production. The website reflects a professional and consistent brand presence targeting French audiovisual producers and stakeholders. Technically, the site uses the SPIP CMS with standard web technologies and integrates Google Analytics with a compliant cookie consent mechanism. Security posture is adequate with HTTPS and consent management but lacks explicit security headers and published security policies. Overall, the site is trustworthy, well-maintained, and compliant with GDPR requirements, though improvements in accessibility and security transparency are recommended.

T

Ticketware SE

ticketware.sk

0

Ticketware SE operates a specialized ticket sales software platform targeting cinemas, cultural centers, theatres, museums, and castles primarily in Slovakia and the Czech Republic. The company offers a comprehensive SaaS solution including online ticket sales, seat reservation, ticket printing, and entry control, serving over 450 clients with monthly sales exceeding one million tickets. The website reflects a mature business with a clear market position and a focus on cultural institutions. Technically, the site is built on WordPress with modern JavaScript libraries and integrates Google Analytics, Google Tag Manager, Facebook SDK, and reCAPTCHA for security and marketing. The site is mobile optimized and provides a good user experience with clear navigation and professional design. Security posture is adequate with HTTPS and reCAPTCHA but lacks security headers and published security policies. Privacy compliance is weak due to missing privacy and cookie policies and no consent mechanism. Overall, the website is trustworthy and professional but could improve transparency and security practices.

G

Galéria Dobrá hračka

dobrahracka.sk

0

Galéria Dobrá hračka is a Slovak interactive children's gallery offering a variety of educational and entertaining attractions where children can role-play professions such as police officer, firefighter, archaeologist, and more. The business targets families and children, providing both on-site experiences and an online booking system, complemented by an e-shop for related products. The website is built on WordPress with modern plugins like Elementor and Slider Revolution, ensuring a good user experience and mobile optimization. Security posture is solid with HTTPS and standard security headers, though explicit security policies and incident response contacts are absent. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is professional, trustworthy, and safe for general audiences.

S

Spoločnosť TAKATA s.r.o.

poliankovo.sk

0

Poliankovo is a small hospitality and digital art business located in the High Tatras, Slovakia, operated by Spoločnosť TAKATA s.r.o. The company offers a unique combination of a digital gallery featuring modern technologies such as virtual reality and augmented reality, alongside a cafe serving Italian coffee and a gallery shop with souvenirs. The website is built on WordPress with Elementor and integrates modern web technologies, providing a good user experience and mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, but lacks explicit privacy and security policies. No contact emails or phone numbers are provided, only a physical address in the footer. Overall, the website is professional and trustworthy, with room for improvement in privacy compliance and security headers.