Security Directory

A

Agenția Națională pentru Programe Comunitare în Domeniul Educației și Formării Profesionale (ANPCDEFP)

anpcdefp.ro

0

ANPCDEFP is a Romanian national agency dedicated to managing European Union educational and youth programs such as Erasmus+, the European Solidarity Corps, and SEE Grants. The agency plays a key role in transforming Romania through learning by providing funding, information, and support services to educational institutions, youth organizations, and public entities. The website reflects a professional government entity with consistent branding and comprehensive content focused on its mission and services. Technically, the site uses a mix of legacy and modern JavaScript libraries, with Google Analytics and Tag Manager for tracking. Security posture is strong with HTTPS enforced and multi-factor authentication mentioned for related EU platforms, though explicit security headers and incident response contacts are not visible. Privacy compliance is well addressed with a clear GDPR policy and cookie consent mechanism. Overall, the website is trustworthy, well-structured, and serves its target audience effectively.

The website siegburg.eu currently hosts only a default placeholder page generated by Plesk, indicating that it is not actively used for business or public-facing purposes. There is no meaningful content, contact information, or business description available. The domain is registered through united-domains AG, a reputable registrar, but no further registrant details or business legitimacy indicators are present. Technically, the site uses minimal JavaScript from Plesk assets and lacks any modern CMS or frameworks. Security posture is weak due to absence of HTTPS and security headers, and no privacy or cookie policies are implemented. Overall, the site presents a low-risk profile but also lacks any trust or credibility as a business website.

The website www.ollizilk.de is currently inaccessible due to a Cloudflare Turnstile security challenge page, which prevents access to any substantive content or business information. The domain is active and uses Jimdo name servers, suggesting it is hosted or built on the Jimdo platform. Due to the lack of accessible content, no privacy, cookie, or terms of service policies are detectable, nor are there any contact details or business descriptions available. The technical infrastructure includes Cloudflare's security services, but no further technology stack details can be confirmed. Security posture cannot be fully assessed given the blocked content, but the presence of Cloudflare indicates some level of protection. Overall, the site cannot be properly evaluated for business credibility, compliance, or content quality at this time.

The website represents a small non-profit cultural association named 'kleinkunst und Kulturverein Werne a.d. Lippe e. V.', focused on promoting local arts and cultural events in Werne, Germany. The site offers information about events, concerts, cinema, and community activities, targeting local culture enthusiasts. The business model is community-oriented, relying on event hosting and cultural promotion without commercial sales. Technically, the website is built using older technology (iWeb 3.0.4) with basic HTML, CSS, and JavaScript, lacking modern responsive design and accessibility features. The site does not demonstrate advanced SEO or performance optimization and appears to have moderate loading performance. Security posture is weak, with no evidence of HTTPS enforcement or security headers, and no visible incident response or security policies. Privacy compliance is minimal, with a basic privacy and terms page but no cookie consent mechanism. Overall, the site is functional for its purpose but requires modernization and security improvements.

T

treibsAND Lübeck

treibsand.net

0

treibsAND Lübeck is a well-established cultural and music collective based in Lübeck, Germany, operating since 2000. The organization focuses on hosting non-commercial music events, concerts, and parties with an emphasis on affordability and community engagement. Their website provides detailed event listings and promotes a diverse range of musical genres and cultural activities, targeting local music enthusiasts and alternative culture supporters. The business model is community-oriented and non-commercial, positioning treibsAND as a key local venue in the hospitality and media sectors.

JUZ Eckental is a community youth center based in Germany that serves as a cultural and event hub for local residents, particularly targeting both young and older audiences. The website primarily provides information about upcoming events such as parties, concerts, and cultural activities, fostering community engagement. The organization appears to operate as a small non-profit entity focused on local community services. Technically, the website is built on WordPress using the Twenty Seventeen theme, leveraging common web technologies like jQuery and Google Fonts. The site is hosted on a server associated with nevsware.de and uses HTTPS to secure communications. Security posture is moderate with HTTPS enabled but lacks advanced security headers and incident response disclosures. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism or GDPR compliance indicators. Overall, the website is functional, well-structured, and provides relevant content for its audience but could improve in security and privacy transparency.

P

Pfalz-Didgers

pfalz-didgers.de

0

The Pfalz-Didgers website represents a small community group based in the Pfalz region of Germany, dedicated to the cultural and musical promotion of the Didgeridoo. Their activities include regular meetings, concerts, workshops, and educational efforts to share the significance of the Didgeridoo and Aboriginal Australian culture. The website serves as an informational portal with event announcements and cultural content, targeting enthusiasts and local community members interested in this niche musical instrument. Technically, the website is built with standard HTML, CSS, and JavaScript, hosted on kasserver.com. It uses HTTPS but lacks advanced security headers and cookie consent mechanisms, indicating room for improvement in security and privacy compliance. The site is mobile-optimized with good navigation and content structure but does not employ analytics or tracking technologies, reflecting a privacy-conscious or low-budget approach. From a security perspective, the site has a basic posture with HTTPS enabled but missing important security headers and no visible incident response or security policies. No vulnerabilities or suspicious elements were detected. The WHOIS data aligns well with the website's regional and community focus, supporting legitimacy. However, the absence of contact information and cookie consent reduces trust and compliance scores. Overall, the website is a well-structured, niche cultural site with moderate technical maturity and basic security. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trustworthiness and compliance with GDPR requirements.

L

Leinen Los! e.V.

guestritz14.de

0

Güstritz 14 is a small-scale collective living and working community based in Germany, operating under the association 'Leinen Los! e.V.'. The project focuses on sustainable living, cooperative work, cultural events, and solidarity-based agriculture. The website is built on the One.com Web Editor platform and hosted by One.com, featuring a moderate technical infrastructure with basic SEO and mobile optimization. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced security headers and formal privacy policies. Contact information is clearly provided, enhancing business credibility. Overall, the site presents a trustworthy and community-oriented project with room for improvement in privacy and security practices.

U

umlaut recordings

analogue-birds.com

0

Analogue Birds is a small German music band celebrating 20 years of activity, offering their discography through an online shop hosted on umlaut.de. The website is minimalistic, primarily serving as a landing page with links to the shop and legal information hosted externally. The technical infrastructure is basic, using standard HTML, CSS, and JavaScript, hosted on kasserver.com with HTTPS enabled but lacking advanced security headers and cookie consent mechanisms. The security posture is moderate with no critical vulnerabilities detected but could be improved by enabling DNSSEC and adding security headers. Privacy compliance is basic, with a privacy policy linked externally but no cookie policy or consent mechanism on the site. Business credibility is supported by the domain age and consistent content, though contact details are minimal. Overall, the site is functional but could benefit from enhancements in security, privacy, and user engagement.

3

3fera

3fera.com

0

3fera is a Spanish technology company specializing in blockchain solutions for businesses. Established in 2006, it offers consulting, development, and integration services to help enterprises leverage blockchain technology. The website is built on WordPress using Elementor, hosted behind Cloudflare DNS, and presents a professional design targeted at business clients. Security posture is moderate with HTTPS enabled and domain registration protections, but lacks advanced security headers and explicit privacy or cookie policies. Contact options are limited to a contact form without direct emails or phone numbers. Overall, the website reflects a legitimate small business with room for improvement in privacy compliance and security best practices.

D

DGINA Services UG

notfall-campus.de

0

DGINA Services UG operates the DGINA Notfallcampus website, providing specialized training and continuing education in clinical emergency and acute medicine. The company targets healthcare professionals, offering a variety of courses including the DGINA 80h course, expert forums, refresher courses, and advanced life support training. The business model centers on educational services with integrated online booking and e-learning platforms, positioning itself as a niche leader in emergency medicine education within Germany. Technically, the website is built on a modern WordPress CMS with WooCommerce for e-commerce functionality and Elementor for page building. It integrates third-party widgets for seminar management and uses Borlabs Cookie for GDPR-compliant cookie consent. Hosting is provided via rzone.de, with secure HTTPS connections and moderate performance. The site is mobile-optimized and features good SEO and accessibility practices. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers such as Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business, showing no privacy protection or suspicious registration patterns, indicating a trustworthy domain. Overall, the website presents a professional, secure, and GDPR-compliant platform for emergency medicine education. Strategic recommendations include enhancing security headers, conducting regular security audits, and improving accessibility features to further strengthen the security posture and user experience.

M

megamed.de steht zum Verkauf

megamed.de

0

The website megamed.de is currently a parked domain page indicating that the domain is for sale via a fixed price and escrow service provided by ELITEDOMAINS. The site content is minimal, focusing solely on domain sale information and redirecting or linking to seg.onepage.me for further details. The technical infrastructure is basic, using standard HTML, CSS, and JavaScript, hosted likely on DigitalOcean based on the IP address. There is no evidence of a CMS or advanced frameworks. Security posture is weak due to lack of HTTPS verification, absence of security headers, and no visible privacy or cookie policies. The WHOIS data is restricted by DENIC, providing no registrant or registrar information, which limits trust and transparency. Overall, the site serves a simple domain sale purpose with minimal business or security maturity.

U

Umlaut Recordings

umlaut.de

0

Umlaut Recordings is a small, niche music label and artist management entity focused on the Didgeridoo player Tom Fronza and associated musicians. The company offers workshops, live performances, studio music production, and music sales through an online shop. The website is professionally designed with clear navigation and good content quality, targeting music enthusiasts and event organizers. Technically, the site is built on WordPress using modern plugins and themes, with moderate performance and good mobile optimization. Security posture is solid with HTTPS, spam protection, and reCAPTCHA, though lacking some advanced security headers and explicit security policies. Privacy compliance is basic with privacy and terms pages present but no cookie consent mechanism. Overall, the domain registration and website content are consistent and legitimate, reflecting a trustworthy small business in the music sector.

G

Pressidium Customer Portal - Error Panel

gfwm.de

0

The website www.gfwm.de is currently inaccessible and serves a 404 error page indicating that the requested website 'www' could not be found. The page is hosted by Pressidium and includes monitoring scripts from New Relic, but lacks any business content, contact information, or privacy and cookie policies. The absence of HTTPS and security headers further reduces the site's security posture. Overall, the site appears inactive or misconfigured, providing no meaningful content or business information.

E

Energieküste

energiekueste.de

0

Energieküste is a regional platform and network based in Schleswig-Holstein, Germany, focused on advancing renewable energy initiatives and the energy transition. The website serves as a hub for connecting stakeholders including businesses, research institutions, policymakers, and the public. It offers project information, event announcements, newsletters, and news updates, positioning itself as a leading regional player in the renewable energy sector. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and Matomo for privacy-conscious analytics. The site is well-optimized for mobile devices, accessible, and SEO-friendly. It employs HTTPS and a cookie consent mechanism, demonstrating good digital maturity. From a security perspective, the site enforces HTTPS and uses cookie consent but lacks explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns with the business claims, indicating a trustworthy domain registration. Overall, the website presents a professional, secure, and privacy-compliant digital presence suitable for its business goals. Strategic improvements could include publishing a security policy and enhancing HTTP security headers to further strengthen its security posture.

S

Urlaub in Schleswig-Holstein - Natur, Kultur, Seeluft: SH-Tourismus

sh-tourismus.de

0

The website www.sh-tourismus.de serves as a regional tourism portal promoting the Schleswig-Holstein area in Germany. It provides comprehensive information about vacation destinations, cultural highlights, activities, and accommodations, targeting tourists interested in the North and Baltic Sea regions. The site is professionally designed with clear navigation and multi-language support, enhancing user experience and accessibility. Technically, it is built on TYPO3 CMS, integrates Google Tag Manager for analytics, and employs Usercentrics for GDPR-compliant cookie consent management. Hosting is provided by kundenserver.de, consistent with the domain's nameservers. Security posture is moderate with HTTPS usage and consent management, but lacks explicit security headers and published privacy or terms policies. No contact information or incident response details are found, which could impact user trust and compliance. Overall, the site is safe, well-branded, and serves its business purpose effectively, though improvements in transparency and security practices are recommended.

H

hoversignal

hoversignal.com

0

Hoversignal is a technology-focused SaaS provider specializing in HTML widgets and marketing apps designed to boost website conversion rates without requiring coding expertise. The platform targets website owners, marketers, and e-commerce businesses, offering gamified pop-ups, quizzes, social proof notifications, and chat integrations. With over 10,000 companies using their solutions, Hoversignal positions itself as a practical tool for lead generation and visitor engagement. Technically, the website employs a modern tech stack including Google Analytics, Facebook Pixel, Quora Pixel, and Yandex Metrika for analytics and tracking. It uses Cloudflare for DNS and likely CDN services, ensuring good SSL configuration and domain security. The site is mobile-optimized and features lazy loading for performance, though accessibility and SEO optimizations are basic. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks visible security headers and DNSSEC. There is no published privacy or cookie policy, nor clear contact information for security incidents, which are gaps in compliance and transparency. The extensive use of tracking pixels without a consent mechanism indicates potential privacy compliance issues. Overall, the website is professionally designed and functional with moderate trustworthiness. Key recommendations include publishing privacy and cookie policies, implementing security headers, enabling DNSSEC, and providing clear contact channels for incident response to enhance security posture and compliance.

P

PDAP by JessenLenz

pdap.de

0

PDAP by JessenLenz is a specialized provider of computer-aided quality (CAQ) solutions and digital transformation services targeting manufacturing and production companies in Germany. The company offers key services including quality management, data management, data analysis, and digitalization, leveraging AI technologies for real-time quality assurance. The website reflects a professional and consistent brand presence, supported by active content updates and clear contact channels. Technically, the site is built on WordPress with modern plugins such as Yoast SEO and TranslatePress for multilingual support, and integrates Google Analytics for user insights. Security posture is solid with HTTPS enforced and cookie consent implemented, though formal security policies and incident response details are absent. Overall, the site demonstrates a mature digital presence suitable for its niche market.

C

compustore Group

compustore.de

0

The compustore Group operates a retail website focused on Apple products with a national presence in Germany through 23 physical stores. The website serves as an informational and navigational portal linking to their e-commerce shop and product categories. The business targets German-speaking Apple customers seeking sales and support services. Technically, the site is built on WordPress using the Elementor page builder, incorporating modern web technologies such as jQuery and Leaflet.js for maps. The site is mobile optimized and demonstrates good SEO practices but lacks some accessibility features. Security posture is moderate with HTTPS enabled and cookie consent implemented via Borlabs Cookie, though security headers are absent and no explicit privacy or terms of service pages were found. The WHOIS data is minimal but consistent with the business, showing no immediate red flags. Overall, the site is professional and trustworthy but would benefit from enhanced privacy disclosures and security hardening.

The website zolldatasystems.eu is currently inaccessible due to a Cloudflare Edge IP Restriction error (Error 1034), indicating that the IP address resolved by DNS is not authorized by the website owner. This results in a complete block of content, preventing any meaningful analysis of the website's business, services, or policies. The only visible content is a Cloudflare error page with no business or contact information, privacy policies, or terms of service. The domain is registered through CSC CORPORATE DOMAINS INC., a reputable registrar, but no registrant details are publicly available, limiting trust assessment. From a technical perspective, the site relies on Cloudflare for DNS and security, but the current misconfiguration or restriction severely impacts accessibility and user experience. No SEO, accessibility, or performance data can be derived from the blocked page. Security posture cannot be fully assessed due to lack of content and headers. Privacy compliance is absent as no policies or consent mechanisms are present. Overall, the site is currently non-functional for visitors and lacks publicly available business or security information. This poses a high risk for trust and credibility. Immediate remediation of DNS and IP configuration is recommended to restore access and enable full security and compliance evaluation.

E

Elektrotechnische Werke Fritz Driescher & Söhne GmbH

driescher.de

0

Elektrotechnische Werke Fritz Driescher & Söhne GmbH is a well-established German company specializing in the development, production, and distribution of low and medium voltage switchgear and railway technology solutions. With over 100 years of history and ownership of 300 patents, the company holds a strong market position as a global leader in its sector. Their product portfolio is broad and modular, catering to diverse industrial and energy sector clients worldwide. The company operates primarily from Germany with additional facilities in the Czech Republic, emphasizing 'Made in Germany' quality standards. Technically, the website employs a modern but straightforward technology stack including jQuery, Owl Carousel, and PhotoSwipe for multimedia and UI enhancements. The site is mobile-optimized with good SEO practices and a cookie consent mechanism that aligns with GDPR requirements. However, no advanced CMS or hosting provider details are evident, and performance is moderate. From a security perspective, the site uses HTTPS and implements cookie consent with granular options, but lacks published security policies, incident response contacts, or vulnerability disclosure mechanisms. Security headers and advanced protections are not evident, suggesting room for improvement in security posture. The WHOIS data is consistent and supports the legitimacy of the domain and company identity. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving as a credible digital presence for a medium-sized industrial manufacturer. Strategic improvements in security transparency and technical enhancements could further strengthen their digital maturity and risk management.

The website sdk-set1.com is a newly registered domain with minimal content consisting solely of a JavaScript snippet that dynamically injects a script based on the referrer URL. There is no visible business information, contact details, or policies on the site, indicating it is either under development or serving a very narrow technical purpose. The domain is hosted using Google Cloud DNS services and registered through a reputable registrar, but the lack of content and business presence limits its credibility and trustworthiness. Technically, the site uses basic JavaScript without any modern frameworks or CMS detected. Security posture is weak due to absence of HTTPS enforcement and security headers, and the script injection based on referrer could pose security risks if not properly sanitized. No privacy or cookie policies are present, indicating non-compliance with GDPR and other privacy regulations. Overall, the site scores low on content quality, security, and privacy compliance, suggesting it is not yet a mature or trustworthy business website.

Evropský Deník is a Czech media and publishing project focused on travel diaries and photographic books, offering their products through an online e-shop and organizing exhibitions. The website presents award-winning content with testimonials from notable cultural figures and media coverage, positioning itself as a niche travel media brand. Technically, the site uses modern web technologies including Bootstrap 5, jQuery, FontAwesome, and Google Analytics, providing a responsive and visually appealing user experience. However, there is no detected CMS or hosting provider information, and performance is moderate. Security posture is adequate with HTTPS usage implied, but lacks visible security headers and cookie consent mechanisms, indicating partial GDPR compliance. The absence of WHOIS data reduces transparency but is likely due to privacy protection, which is reasonable for this business type. Overall, the site is professional and trustworthy but could improve privacy and security practices.

O

Oskar von Miller Forum

ovmf.de

0

The Oskar von Miller Forum is a Bavarian educational institution focused on the construction industry, particularly architecture, civil engineering, and ecology. It organizes events and supports scholarship recipients to foster expertise and responsibility for a sustainable future. The website reflects a professional and consistent brand image with detailed event information and multimedia content, targeting professionals and students in related fields. Technically, the site is built on WordPress with modern plugins and integrations, hosted by Schlundtech, and optimized for mobile use. Security posture is good with HTTPS and anti-spam measures but lacks some security headers and explicit privacy compliance documentation. Overall, the site is trustworthy and well-maintained but would benefit from enhanced privacy and security disclosures.

M

Meisterclub

meister-club.de

0

Meisterclub is a professional networking platform affiliated with the Handwerkskammer Schwerin, targeting master craftsmen and students across various trades. The website serves as a hub for networking, events, and professional development opportunities, positioning itself as a regional leader in fostering connections within the crafts sector. The business model revolves around community building and providing exclusive access to events and educational resources. Technically, the site is built on WordPress using Elementor and the OceanWP theme, supported by modern web technologies and Google analytics tools, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements could be made by adding security headers and formal security policies. Privacy compliance is partial, with a privacy policy present but lacking cookie consent mechanisms. Overall, the site is professional, trustworthy, and well-aligned with its business goals.

M

Magazin NordHandwerk

nord-handwerk.de

0

Magazin NordHandwerk is a regional media publication serving the craft chambers in northern Germany, providing editorial content, e-paper publications, and media services. The website is professionally designed using WordPress with Elementor, featuring a clean layout and good mobile optimization. Social media integration is present with active Facebook, Twitter, and Instagram accounts. The site enforces HTTPS and uses GDPR-compliant cookie and privacy policies, reflecting a commitment to privacy and legal compliance. However, explicit contact information and detailed security policies are not present on the main page, which could be improved for better user trust and transparency. Overall, the website presents a solid digital presence for a small regional media outlet.

K

Samlet guide til kultur, musik, teater og udstillinger - Find det hele på KultuNaut

kultunaut.dk

0

KultuNaut.dk is a Danish cultural event platform providing a comprehensive calendar for music, theater, exhibitions, and other cultural activities primarily in Denmark. The website offers multilingual support and allows users to search events by geography, genre, and date. It also supports event submissions and user ratings, positioning itself as a regional cultural aggregator. Technically, the site uses modern JavaScript libraries such as Leaflet for mapping and Pickaday for date selection, with a moderate performance and good mobile optimization. Security-wise, the site enforces HTTPS and includes a cookie consent mechanism but lacks visible security headers and explicit privacy or terms of service pages. The absence of WHOIS data limits domain trust assessment, though the site content and structure suggest legitimacy. Overall, KultuNaut.dk serves its target audience effectively but would benefit from enhanced transparency and security practices.

G

Gemeinde Ismaning

ismaning.de

0

Gemeinde Ismaning is the official municipal website serving the local community in the northern district of Munich, Germany. It provides information and services relevant to residents and visitors, including event calendars and waste disposal plans. The site positions itself as a local government portal with a focus on community engagement and public service. Technically, the website is built on WordPress CMS, utilizing plugins such as Yoast SEO for optimization and various JavaScript libraries for enhanced user experience. The hosting is managed through professional nameservers indicating a stable infrastructure. Security-wise, the site enforces HTTPS and uses some security-related plugins, but lacks explicit security headers and detailed privacy or incident response policies, which are areas for improvement. Overall, the website is functional, professional, and trustworthy, but could enhance its compliance and security posture by adding privacy policies, cookie consent mechanisms, and incident response information.

S

Sitevision

custompublish.com

0

Sitevision is a Nordic-focused CMS platform provider specializing in intranet and website solutions that deliver engaging digital experiences. The company offers a comprehensive platform with over 150 modules, AI-powered assistants, and a marketplace for integrations, targeting public sector, industry, banking, retail, and membership organizations. The website demonstrates a mature digital presence with modern technologies including React and Sitevision CMS, supported by a cloud-based infrastructure. Security posture is strong, evidenced by ISO 27001 certification and use of HTTPS with cookie consent mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear policies and consent management. Overall, Sitevision presents as a credible and professional business with a solid market position in the Nordic region.

W

Webkomplet, s.r.o.

mail-komplet.cz

0

Mail Komplet, operated by Webkomplet, s.r.o., is a Czech Republic-based company specializing in professional email marketing services, including bulk email sending and marketing automation. The website indicates a rebranding to Boldem, highlighting a strategic shift towards automated marketing solutions. The company targets businesses and marketers seeking efficient email campaign tools and boasts a portfolio of notable clients and partnerships. The business model is SaaS-based, focusing on technology-driven marketing solutions within the regional market. The website content is professionally presented with consistent branding and clear calls to action.

LAURYN v.o.s. is a Czech company specializing in the development and implementation of information systems tailored for spa, rehabilitation, and healthcare facilities. Their key offerings include the IS L-BIS and IS R-PLAN software suites, designed to support operational and clinical workflows in these specialized sectors. The company positions itself as a niche provider with a focus on the Czech healthcare market, emphasizing quality and service support. The website content is primarily in Czech and targets healthcare institutions such as spas, sanatoria, and rehabilitation centers. From a technical perspective, the website employs basic web technologies including HTML, CSS, and JavaScript, with Google Analytics integrated for visitor tracking. The hosting appears to be managed through Czech providers, consistent with the company's location. However, the site shows limited mobile optimization and accessibility features, and lacks modern frameworks or CMS platforms. Performance is moderate, with no critical errors detected. Security posture is currently weak due to the absence of HTTPS enforcement and missing security headers. While email obfuscation is implemented via JavaScript, there is no visible privacy or cookie policy, which raises compliance concerns especially under GDPR. No incident response or vulnerability disclosure information is provided. The domain registration data aligns well with the business profile, showing a consistent and legitimate presence since 2011. Overall, the website is functional and provides clear business information but requires significant improvements in security, privacy compliance, and technical modernization to enhance trust and protect user data effectively.

E

EuropeSpa

europespa.eu

0

EuropeSpa is an organization focused on setting international quality standards and certifying providers in the medical spa and wellness industry. Their website serves as a platform to promote their certification programs, provide information about medical spa and wellness services, and offer training and seminars. The site targets both providers seeking certification and customers looking for certified resorts. Technically, the website is built on TYPO3 CMS with modern frontend libraries such as jQuery and Owl Carousel, and it includes standard SEO and accessibility features. The site is mobile optimized and includes a cookie consent mechanism compliant with GDPR. Security-wise, the site uses HTTPS and implements cookie consent but lacks explicit security headers and published security policies. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and well-positioned in its niche, though it could improve by publishing more explicit security and incident response information.

The website kubina.sk is a minimal landing page representing Gransy, a domain registration and DNS service provider. The business focuses on offering domain reseller opportunities, Anycast DNS protection, and a white label registrar platform. The domain is newly registered in 2024, consistent with the business launch. The website content is basic, serving primarily as an informational placeholder with limited navigation and no contact or policy pages. Technically, the site uses modern HTML and CSS with Google Fonts, is hosted presumably by Gransy, and employs HTTPS with DNSSEC enabled, indicating good domain security practices. However, the site lacks security headers, privacy and cookie policies, and contact information, which limits its compliance and trustworthiness. Overall, the security posture is moderate with room for improvement in policy transparency and technical hardening.

ISO-Plus is a Romanian-based company specializing in pre-insulated pipes and energy infrastructure solutions, serving sectors such as district heating, cooling networks, bioenergy, and industrial applications. The website reflects a medium-sized business with a regional presence and multiple international language versions, indicating a broader market reach within Europe. The company positions itself as a reliable supplier focused on energy efficiency and sustainable solutions. Technically, the website is built on TYPO3 CMS with legacy JavaScript libraries and integrates Google Analytics and Tag Manager with IP anonymization, showing moderate digital maturity. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit security policies. Privacy compliance is demonstrated through a cookie consent banner and a privacy policy page in Romanian, aligned with GDPR requirements. Overall, the site is professional and trustworthy but could improve in technical modernization and security transparency.

ISO-Plus is a medium-sized Hungarian company specializing in insulated piping systems for energy transport, including district heating, cooling, industrial pipelines, and bioenergy sectors. The company operates within the energy and transportation sectors and maintains a consistent brand presence with multilingual support, indicating a regional European footprint. The website is built on TYPO3 CMS with legacy JavaScript libraries and includes standard business content and navigation. Technical infrastructure is moderate with basic mobile optimization and SEO. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic with a privacy policy and cookie banner present. No contact emails or phone numbers are directly visible on the homepage, which may impact user engagement. Overall, the website is professional and trustworthy but could benefit from technical and security enhancements.

ISO-Plus is a medium-sized company operating in the energy sector, specializing in heat and cooling supply, industrial insulated piping, bioenergy, and network control solutions. The website is professionally designed using TYPO3 CMS and supports multiple languages, indicating a regional presence in the Czech Republic and neighboring countries. The technical infrastructure includes legacy JavaScript libraries and standard marketing and analytics tools such as Google Analytics and Sklik retargeting. Security posture is adequate with HTTPS and cookie consent mechanisms but lacks advanced security headers and updated libraries. Privacy compliance is addressed with a clear privacy policy and cookie banner, though terms of service and explicit security policies are absent. Overall, the website is trustworthy and business-focused with no signs of malicious or adult content.

I

ISOPLUS d.o.o.

isoplus.rs

0

ISOPLUS d.o.o. is a Serbian company specializing in the sale and service of pre-insulated pipes and related products for district heating systems. The company operates within the ISOPLUS holding group and serves industrial clients primarily in the energy sector. With over 130 projects in the last five years and annual delivery of approximately 2500 km of pipes, ISOPLUS holds a solid market position regionally. Their offerings include a wide range of pipe products, fittings, accessories, and services such as network control, design, and installation support. The website reflects a professional business with clear contact information and certifications, although it lacks some compliance documentation such as privacy and cookie policies.

isoplus (Schweiz) AG is a Swiss-based company specializing in district heating systems, including high-quality heating pipes, heat transfer stations, control technology, and ceiling radiant panels. The company targets businesses and organizations in the energy and construction sectors, offering tailored heating solutions. The website reflects a professional and consistent brand presence with clear navigation and relevant business content. Technically, the site is built on WordPress with Bootstrap and jQuery, providing a moderate performance and good mobile optimization. However, some technical improvements are recommended, such as implementing security headers and properly configuring analytics tools. Security posture is adequate with HTTPS enabled but lacks advanced security headers and policies. Privacy compliance is weak due to missing privacy and cookie policies. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

The website is currently inaccessible beyond a security challenge page that performs browser integrity checks and automatic redirection, indicating the presence of a Web Application Firewall or similar security mechanism. The domain is registered since 2014 with a .it TLD, consistent with an Italian presence, but no business or contact information is visible on the page. The site appears to be built on outdated CMS platforms (Joomla 1.5 and WordPress 2.5), which are known to have security vulnerabilities. No privacy, cookie, or terms of service policies are present, and no contact details or social media links are provided. The external link to bitninja.io suggests the use of BitNinja security services for protection. Overall, the site lacks visible content and trust indicators, limiting the ability to assess its business operations or credibility.

Groupe Solice operates as a business group associated with companies in the energy sector, linking to partners such as Inpal Energies, Wannitube, and Effical. The website is minimalistic, serving primarily as a portal linking to partner sites rather than providing detailed business information or services directly. The domain is well-established since 2005 and registered with a reputable French registrar, OVH, indicating legitimacy and consistency with the French market focus. Technically, the website is very basic, consisting mainly of a single HTML page with an image map linking to partner domains. There is no evidence of modern web technologies, CMS usage, or analytics tools. The site lacks mobile optimization, accessibility features, and SEO best practices, which limits its digital maturity and user experience. From a security perspective, the site does not present any advanced security measures such as security headers or privacy policies. There is no visible HTTPS enforcement data, but given the hosting provider, it is likely available though not confirmed. The absence of privacy and cookie policies indicates non-compliance with GDPR requirements. No contact or incident response information is provided, which reduces transparency and trust. Overall, the website poses a low risk in terms of content safety as it contains no adult or questionable content. However, the minimal content and lack of compliance documentation reduce its credibility and professional appearance. Strategic improvements in security posture, privacy compliance, and content quality are recommended to enhance trust and user engagement.

L

LANCIER Monitoring GmbH

lancier-monitoring.de

0

LANCIER Monitoring GmbH is a specialized provider of monitoring solutions for technical networks, focusing on sectors such as energy and telecommunications. Their offerings include advanced systems for fiber optic, copper cable, district heating pipe, and energy cable network monitoring, aimed at early fault detection and network reliability enhancement. The company maintains a medium-sized presence in Germany with international partnerships, notably with Skylark Energy Solutions in North America, and holds recognized certifications such as ISO 9001. The website reflects a professional and consistent brand image with good content quality and clear navigation.

S

Salling Plast Energy

sallingplast.com

0

Salling Plast Energy is a well-established Danish manufacturer specializing in flexible transport, filtration, and storage solutions for various substances including liquids, gases, and air. Founded in 1999, the company positions itself as one of the leading producers in Denmark within the energy and industrial sectors. Their website reflects a professional business model focused on serving industrial clients with quality products, supported by ISO certifications (9001, 14001, 45001) that underscore their commitment to quality and environmental standards. The presence of a dedicated webshop indicates a hybrid business model combining direct sales and service offerings. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. Integration with Google Tag Manager, Google Analytics, and Cookiebot demonstrates a mature digital marketing and compliance approach. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Hosting is provided by One.com, consistent with the domain registration data. From a security perspective, the site uses HTTPS and implements cookie consent mechanisms with detailed cookie categorization. The use of reCAPTCHA adds protection against automated abuse. However, some security headers are not explicitly detected, and DNSSEC is not enabled, representing areas for improvement. No vulnerability disclosure or incident response information is provided, which could be enhanced to improve transparency and security readiness. Overall, the website is trustworthy, professional, and compliant with GDPR cookie consent requirements. The domain registration is consistent and long-standing, supporting the legitimacy of the business. Strategic recommendations include enabling DNSSEC, adding security headers, publishing a security policy, and establishing a vulnerability disclosure process to further strengthen security posture and trust.

K

KMR Service GmbH

kmr-fernwaerme.de

0

KMR Service GmbH is a specialized German company providing industrial services and products in the energy sector, focusing on district heating (Nah- und Fernwärme) and related services such as pipe systems, insulation, error detection, and container construction. With over two decades of experience, the company positions itself as a reliable B2B partner serving clients nationwide in Germany, including biogas and agricultural sectors. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site is built on WordPress with WooCommerce and Elementor, indicating a modern and flexible digital infrastructure. The site is mobile-optimized and includes GDPR-compliant cookie and privacy policies, demonstrating good privacy practices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security headers and incident response policies are not publicly disclosed. Overall, the website is trustworthy, well-maintained, and suitable for its target industrial audience.

3

3S Antriebe GmbH

3s-antriebe.de

0

3S Antriebe GmbH is a specialized German company focused on developing and selling electric drive systems for underground valves used in water, gas, and district heating networks. Their innovative actuator solutions improve operational efficiency and reduce costs for network operators. The company maintains a professional online presence with clear contact information, ISO 9001 certification, and active social media channels. The website is built on a modern WordPress platform with WooCommerce and Elementor, indicating a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response details are absent. Overall, the company presents a trustworthy and professional image suitable for its B2B industrial market.

P

PSI Products GmbH

psi-products.de

0

PSI Products GmbH is a specialized German company providing high-quality accessories for pipeline construction, civil engineering, and the supply industry. The company positions itself as a leading specialist provider in its niche, offering a broad range of products including sealing technology, pipe pulling accessories, corrosion protection, flange gaskets, and pipe cleaning solutions. Their business model is primarily B2B, targeting industrial clients in energy and infrastructure sectors. The website is professionally designed, multilingual (German and English), and includes an online shop for convenient ordering. Technically, the website is built on the TYPO3 CMS platform, utilizing modern JavaScript libraries such as jQuery and Slick Carousel for enhanced user experience. It integrates a consent management platform (Usercentrics) to comply with GDPR requirements and uses Google Analytics for traffic analysis with user consent. The site demonstrates good mobile optimization and SEO practices, although accessibility features are basic. From a security perspective, the site enforces HTTPS and employs a consent mechanism for cookies and tracking. However, it lacks explicit security headers and a public vulnerability disclosure policy. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is structured and consistent with the business, though the use of third-party name servers suggests external DNS management. Overall, the security posture is solid but could be improved with additional headers and incident response information. The overall risk assessment is low, with the website showing strong business credibility, compliance with privacy regulations, and a professional online presence. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing explicit incident response contacts to further strengthen trust and security culture.

ISOBRUGG - Stahlmantelrohr GmbH is a German manufacturing company specializing in steel jacket pipes. The website content is minimal and primarily structured using outdated framesets created with Microsoft FrontPage 12.0, indicating a lack of recent modernization. The business appears to target industrial clients requiring steel piping solutions, but the website provides very limited information and no direct contact details or policies. Technically, the site lacks modern web standards, mobile optimization, and accessibility features, resulting in a poor user experience and low SEO effectiveness. Security posture is weak due to absence of visible HTTPS enforcement, security headers, and privacy compliance documentation. WHOIS data is consistent with a legitimate German business domain, but the overall digital maturity is low. Strategic improvements are needed to enhance security, compliance, and user engagement.

R

RAV Armaturen GmbH

rav-valve.com

0

RAV Armaturen GmbH is a German manufacturer specializing in industrial valves, particularly safety-relevant ball valves used in sectors such as petrochemicals, gas industry, and pipeline construction. The company has a long-standing market presence since 1997 and targets industrial clients requiring high-precision valve solutions. Their website reflects a professional and consistent brand image with clear contact information and multilingual support (German and English). Technically, the website is built on standard HTML5, CSS, and JavaScript with jQuery 1.11.3. While the site is functional and moderately optimized for mobile, it lacks modern security features such as DNSSEC and security headers. No CMS or advanced frameworks are detected, indicating a relatively simple but stable infrastructure. Performance is moderate with basic SEO and accessibility features. From a security perspective, the site uses HTTPS (assumed from domain but not explicitly confirmed in data), but lacks DNSSEC and security headers, which are recommended for enhanced protection. No cookie consent mechanism is present, which may impact GDPR compliance. The WHOIS data shows a consistent and legitimate domain registration with no privacy protection, appropriate for the business type. No incident response or vulnerability disclosure information is found. Overall, the website is trustworthy and professional but could improve its security posture and privacy compliance. Strategic recommendations include enabling DNSSEC, adding security headers, implementing cookie consent, and updating JavaScript libraries to mitigate vulnerabilities.

B

BEM GmbH

bem-gmbh.de

0

BEM GmbH is a small German company specializing in pipe network services, primarily serving clients in Dinslaken and surrounding areas. The website is built on Joomla CMS using the Yootheme template and UIkit framework, indicating a moderate level of technical maturity. The site includes a cookie consent mechanism via Usercentrics, demonstrating some compliance with GDPR requirements. However, the absence of a privacy policy, terms of service, and explicit contact information limits the site's overall compliance and trustworthiness. Security posture is moderate with HTTPS enabled but lacking security headers and detailed incident response information. Overall, the website is functional but would benefit from enhanced privacy, security, and business transparency measures.

K

KÄHLER Industrie-Armaturen GmbH

kaehler-armaturen.de

0

KÄHLER Industrie-Armaturen GmbH is a specialized supplier and service provider of high-quality industrial valves and fittings, primarily serving the energy, petrochemical, and industrial sectors in Germany. The company partners with reputable manufacturers such as Vexve to offer a broad portfolio of products including fully welded ball valves and hot tapping systems. Their business model focuses on B2B sales and comprehensive service offerings including installation training and maintenance support. The website reflects a professional and consistent brand image targeting industrial clients with clear contact channels and product information. Technically, the website is built on a modern stack likely using Shopware CMS, with integration of Google Tag Manager and cookie consent management via Cloud CCM19. The site is mobile optimized and provides a good user experience with clear navigation and relevant content. Performance is moderate with standard web technologies and lazy loading of images. From a security perspective, the site enforces HTTPS and uses consent management for analytics, but lacks explicit security headers and detailed security or incident response policies. No vulnerability disclosure or security.txt file is present, which could be improved to enhance trust and compliance. Privacy and cookie policies are not explicitly found, indicating a gap in GDPR compliance documentation. Overall, the website is trustworthy and professional with a solid business presence, but could benefit from enhanced privacy and security disclosures to improve compliance and user trust. Strategic improvements in security headers and policy transparency are recommended to strengthen the security posture.

I

INTEC GMK

gmk.info

0

INTEC GMK is a specialized manufacturer and turnkey supplier of Organic Rankine Cycle (ORC) power plants designed to generate electricity from waste heat, geothermal energy, and biomass. The company positions itself as an innovative leader with the broadest range of ORC products, targeting industrial and energy sector clients. Their business model focuses on custom-made, highly individual solutions that integrate seamlessly into client processes, supporting the ongoing energy transition with sustainable power generation technologies. The website reflects a professional and consistent brand image with clear contact information and participation in industry exhibitions, reinforcing market credibility. Technically, the website is built using modern JavaScript frameworks such as Nuxt.js and Vue.js, likely managed via the Wagtail CMS. The site demonstrates good mobile optimization, clear navigation, and moderate performance. SEO practices are adequately implemented with proper meta tags and canonical URLs. However, some technical improvements could enhance security and privacy compliance, such as implementing cookie consent mechanisms and security headers. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, no explicit security policies, incident response contacts, or vulnerability disclosure mechanisms are publicly available. The absence of security headers and cookie consent banners indicates room for improvement in security posture and GDPR compliance. The WHOIS data is unavailable due to a malformed response, suggesting privacy protection, which is reasonable for this business type. Overall, the domain appears legitimate and consistent with the website's claims. The overall risk assessment is moderate with no critical vulnerabilities detected. Strategic recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and implementing cookie consent to improve privacy compliance and user trust. These steps will strengthen the company's digital maturity and security culture, supporting its professional market presence.