Security Directory

F

FKA Brands

fkabrands.com

0

FKA Brands operates as a multi-brand consumer products company representing well-known brands such as Homedics, Ellia, Obusforme, The House of Marley, JAM, HMDX, and Revamp. The website serves primarily as a portal linking visitors to the individual brand websites, providing brand logos and URLs. The business model focuses on brand management and consumer product distribution across multiple markets. The company appears to be medium-sized with a founding date consistent with the domain registration in 2017. Technically, the website uses a minimal technology stack with jQuery 1.12.4 and is hosted via GoDaddy.com, LLC. The site has basic mobile optimization and SEO practices but lacks advanced frameworks or CMS detection. Performance is moderate, and accessibility features are basic. The website lacks cookie consent mechanisms and uses an outdated JavaScript library, which could pose security risks. From a security perspective, the site does not show evidence of security headers or advanced security policies. The domain registration is transparent and consistent with the business claims, with no privacy protection or suspicious patterns. The absence of contact information and incident response details limits the security posture. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website is professional and trustworthy but could improve in security best practices and privacy compliance. Strategic recommendations include enabling DNSSEC, updating JavaScript libraries, implementing security headers, adding cookie consent, and providing clear contact and incident response information to enhance trust and compliance.

The website www.jbl.at is currently inaccessible due to a DataDome CAPTCHA security challenge that blocks direct access to the site's content. This challenge page prevents extraction of meaningful business, contact, or policy information. The domain WHOIS data is unavailable due to NIC.AT restrictions, limiting insights into domain registration details. The site appears to be an e-commerce platform powered by Salesforce Commerce Cloud, employing advanced bot mitigation technology. However, the security posture cannot be fully evaluated given the content blockage. The lack of accessible privacy, cookie, and contact information further limits compliance and trust assessments. Overall, the site demonstrates a high level of security control through CAPTCHA but at the cost of transparency and accessibility for analysis.

S

Slovak-American Foundation

slovakamericanfoundation.org

0

The Slovak-American Foundation was a US 501(c)(3) non-profit organization dedicated to fostering and strengthening relationships between the United States and Slovakia, with a focus on supporting the Slovak startup ecosystem and innovation. Founded in 2010 as the legacy successor to the Slovak American Enterprise Fund, the Foundation ceased operations in 2023 after fulfilling its mission. The website provides detailed information about the Foundation's history, programs, and impact, including a downloadable closing report. Technically, the website uses modern frontend technologies such as Alpine.js and Google Fonts, with a clean, professional design optimized for mobile devices. Security posture is moderate, with HTTPS implied but lacking explicit security headers and policies. No forms or data collection mechanisms are present, reducing attack surface but also limiting user interaction. The absence of WHOIS data reduces domain trustworthiness, but the professional content and contact information support legitimacy. Overall, the site is safe, professional, and informative, though improvements in privacy compliance and security best practices are recommended.

TSE is a Czech manufacturing company with over 25 years of experience specializing in electrical engineering, medical technology, furniture, and tooling. The company operates multiple divisions with dedicated websites and exports products globally. The website is professionally designed using WordPress and WooCommerce, providing clear navigation and multilingual support. GDPR compliance is well implemented with a cookie consent mechanism and a dedicated GDPR page. Contact information is clearly presented, enhancing business credibility. Technically, the site uses modern web technologies but lacks some advanced security headers. The absence of WHOIS data limits domain registration insights, but the overall trustworthiness remains high based on website content and structure.

A

ALPHA Consult

alphacons.eu

0

ALPHA Consult is a European boutique consultancy specializing in strategic management and technology consulting focused on space applications, GNSS, Earth Observation, Intelligent Transport Systems, and UAVs. The company targets businesses, regulators, and European institutions, positioning itself as a leading independent expert in these sectors. The website reflects a professional and consistent brand image with clear service offerings and contact information. Technically, the site uses modern web technologies including jQuery and Google Analytics, hosted by Aruba S.p.A., with good mobile optimization and SEO practices. Security posture is adequate with HTTPS and cookie consent implemented, but lacks advanced security headers and explicit incident response or security policies. Overall, the site is trustworthy and professionally maintained, with moderate user tracking and basic privacy compliance.

UNIS, a.s. operates the VTP TESTLAB, an accredited testing laboratory in the Czech Republic specializing in electromagnetic compatibility (EMC), mechanical resistance, climatic, and combined vibration/climate testing. The company holds ISO/IEC 17025:2018 accreditation, ensuring high standards in testing services. The website targets manufacturers and businesses requiring certified testing services, positioning itself as a reliable and professional service provider in the technology and manufacturing sectors. The business model focuses on providing specialized laboratory testing services with a medium-sized operational scale and a consistent brand presence. Technically, the website employs modern JavaScript libraries such as jQuery, Google Analytics for traffic analysis, and Google reCAPTCHA v3 for bot mitigation. The site is served over HTTPS, ensuring secure communications, and includes a GDPR-compliant privacy policy. However, some technical improvements are recommended, including the addition of security headers and cookie consent mechanisms to enhance compliance and security posture. Security-wise, the site demonstrates good practices with secure forms and no visible vulnerabilities, but lacks explicit security policies and incident response contacts. Overall, the website is professional, trustworthy, and well-structured, though the absence of WHOIS data limits full domain trust assessment. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing vulnerability disclosure policies to strengthen security and compliance further.

Barcelona Activa's mobile website (barcelonactiva.mobi) is currently non-operational, serving only as a redirect notice to the main Barcelona Activa website. The business behind the domain is CIBERPYME BARCELONA, S.L., a local government or non-profit entity focused on supporting entrepreneurship and business development in Barcelona. The domain is aged since 2014 but has been expired for over 8 months, which poses a risk to trust and continuity. The website itself is minimalistic, with no interactive elements, forms, or contact information, indicating a low level of digital maturity and technical sophistication. Hosting is provided by SiteGround, a reputable provider, but no advanced security or privacy features are implemented.

A

Anthroposophische Gesellschaft in Deutschland e.V.

anthroposophische-gesellschaft.de

0

The Anthroposophische Gesellschaft in Deutschland e.V. is a well-established non-profit organization dedicated to promoting the spiritual and cultural movement of Anthroposophy founded by Rudolf Steiner. The organization operates primarily in Germany and serves a broad audience interested in spiritual science, cultural reform, and social initiatives. Their business model revolves around memberships, events, publications, and fostering community engagement. The website reflects a mature digital presence with a comprehensive content offering, including news, events, and educational resources. Technically, the site is built on TYPO3 CMS, hosted by Infomaniak, and employs modern web technologies to ensure a good user experience across devices.

R

Radio LOTTE Weimar

radiolotte.de

0

Radio LOTTE Weimar is a community radio station serving the city of Weimar, Germany, providing local news, event information, and broadcasting services. The website is primarily in German and targets local residents interested in community radio content. The business operates in the media sector with a small organizational size, focusing on community engagement and information dissemination. Technically, the website uses common web technologies such as jQuery, Bootstrap, and Font Awesome, and is likely powered by TYPO3 CMS hosted by Cloudpit. The site includes a cookie consent mechanism via Usercentrics, indicating some level of privacy compliance, though no explicit privacy policy or terms of service pages were found. Security posture is moderate with HTTPS enabled but lacking visible security headers and detailed security policies. Overall, the website is functional and professional but could improve in privacy transparency and security documentation.

I

idee[x] digitale dienste

idee-x.de

0

idee[x] digitale dienste is a small regional digital service provider specializing in custom web development and digital consulting, primarily serving clients in Baden-Baden and Karlsruhe, Germany. Their offerings include modern web technologies such as Typo3, WordPress, React, and React Native, focusing on responsive, user-friendly, and SEO-optimized websites. The company positions itself as a reliable project partner delivering up-to-date technical solutions. The website is built on WordPress with a custom theme and uses standard web technologies including jQuery and SVG graphics. Hosting is managed via UI-DNS nameservers, indicating a professional hosting environment. The site is mobile optimized and provides a good user experience with clear navigation and relevant content.

H

Hamburgische Schiffbau-Versuchsanstalt GmbH

hsva.de

0

Hamburgische Schiffbau-Versuchsanstalt GmbH (HSVA) is a well-established private and independent maritime service and consulting company based in Hamburg, Germany. Founded in 1913, HSVA specializes in maritime hydrodynamics, aerodynamics, and arctic technology, providing innovative solutions and world-class experimental testing facilities to clients worldwide. The company is recognized for its contributions to greener shipping and sustainable marine environments, holding a strong market position supported by national and international research collaborations. Technically, the HSVA website employs modern frontend technologies including Bootstrap and AOS for animations, alongside a robust cookie consent management system (ConsentFriend/Klaro!). The site is mobile-optimized with good SEO practices and moderate performance. While HTTPS is enforced, security headers are not explicitly detected, suggesting room for improvement in security hardening. From a security perspective, HSVA demonstrates a solid baseline with HTTPS and cookie consent mechanisms. However, the absence of explicit security policies, incident response contacts, and security.txt files indicates potential gaps in transparency and vulnerability management. No critical vulnerabilities or blocking mechanisms were detected, and the domain WHOIS data aligns well with the company’s identity and location, supporting legitimacy. Overall, HSVA presents a professional, trustworthy online presence with strong business credibility and compliance with privacy regulations. Strategic enhancements in security headers, incident response disclosures, and accessibility could further strengthen their security posture and user trust.

SDC Ship Design & Consult GmbH is a specialized consultancy firm focused on the maritime shipping industry, offering ship design, engineering, and consultancy services. Their expertise spans various ship types including tankers, container ships, yachts, and research vessels, with services covering feasibility studies, steel design, mechanical engineering, and consultancy on alternative fuels and efficiency optimization. The company targets shipping industry professionals and ship owners, positioning itself as a niche player in maritime consultancy. Technically, the website is built with basic HTML, CSS, and JavaScript without modern frameworks or CMS. The hosting is provided by kasserver.com, a professional hosting provider. The site lacks mobile optimization and accessibility features, and no analytics or tracking technologies are detected. Performance is moderate with a fixed-width layout and minimal dynamic content. From a security perspective, the site does not show evidence of HTTPS enforcement or security headers, which are critical for protecting user data and ensuring trust. There is no visible privacy or cookie consent mechanism, and no incident response or security policy information is provided. The WHOIS data is consistent and indicates a legitimate domain registration with no privacy protection, appropriate for the business type. Overall, the website is functional but basic, with room for improvement in security posture, privacy compliance, and technical modernization. Strategic enhancements in HTTPS implementation, security headers, mobile responsiveness, and privacy mechanisms would significantly improve trust and compliance.

A

Anti-Phishing Working Group, Inc

apwg.org

0

The Anti-Phishing Working Group (APWG) is a well-established non-profit organization focused on unifying the global response to cybercrime, particularly phishing and smishing attacks. Founded in 2004, APWG provides a collaborative platform for industry, law enforcement, government, and academic researchers to exchange curated cybercrime data, conduct research, and promote public awareness. Their key services include phishing email and smishing text reporting, a global cybercrime data clearinghouse (eCrime Exchange), and research programs. The organization targets cybercrime professionals and stakeholders worldwide, positioning itself as a trusted leader in the anti-phishing domain. Technically, the website is built on a modern React and Next.js framework with Craft CMS as the content management system. The site demonstrates good mobile optimization, clear navigation, and professional design quality. Performance is moderate, and SEO practices are adequately implemented. However, accessibility features are basic, and some security best practices such as DNSSEC and security headers are missing. From a security perspective, the site uses HTTPS with a domain status that prevents unauthorized transfers, indicating stable ownership. However, the absence of DNSSEC and security headers suggests room for improvement. No explicit incident response or vulnerability disclosure policies are published, and cookie consent mechanisms are not evident, which may impact compliance with privacy regulations. No contact emails or phone numbers are publicly listed, with contact primarily via a web form. Overall, APWG's website is professional, trustworthy, and content-rich, serving its niche audience effectively. Security posture is solid but could be enhanced with additional measures. Privacy compliance is basic but present. The domain registration data aligns well with the organization's identity, supporting legitimacy. Strategic improvements in security policies, privacy mechanisms, and transparency would further strengthen the site's credibility and compliance.

The Schiffbautechnische Gesellschaft e.V. (STG) is a professional maritime society based in Germany, focused on advancing shipbuilding technology and efficiency. The website serves as a portal for information on their flagship event, the International Conference on Ship Efficiency, along with other maritime industry events, membership services, and technical committees. The organization targets maritime professionals, engineers, and researchers, providing a platform for knowledge exchange and networking. Technically, the site is built on the onTEAM CMS platform with standard web technologies and includes a secure login area for members. Security posture is moderate with HTTPS usage and session management, but lacks visible advanced security headers and anti-CSRF protections. Privacy compliance is basic with a privacy policy present but no explicit cookie consent mechanism detected. The WHOIS data is incomplete and malformed, limiting domain trust verification, but the professional content and consistent branding support legitimacy. Overall, the site is functional, professional, and trustworthy for its audience, though improvements in security and privacy transparency are recommended.

Rema Trade is a small hospitality equipment company based in Bosnia and Herzegovina, established in 2005. The company specializes in professional equipment for the hospitality industry, offering a wide range of products including kitchen equipment, small inventory, butcher equipment, and laundry equipment. They provide comprehensive services such as consulting, project design, transport, installation, servicing, and staff training. The website reflects a regional leader position with a professional and consistent brand presence. Technically, the site is built on WordPress with modern plugins and frameworks, offering good mobile optimization and SEO. Security posture is moderate with HTTPS enabled but lacks DNSSEC and security headers. Privacy and cookie policies are missing, indicating compliance gaps. Contact information is clearly provided, enhancing business credibility.

The website hgacbuy.org is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, which prevents access to any substantive content. As a result, no business information, contact details, or policy documents are available for analysis. The domain is registered since 2005 with Network Solutions, LLC, indicating a long-standing presence, but the lack of DNSSEC and visible security headers suggests room for improvement in security posture. The site relies on Cloudflare for DNS and security services. Due to the block, the technical infrastructure cannot be fully assessed, and no analytics or marketing technologies are detected. Overall, the site’s security posture is unclear beyond the presence of Cloudflare protection, and the absence of privacy and cookie policies indicates non-compliance with common privacy standards.

N

NorSIS

slettmeg.no

0

Slettmeg.no is a Norwegian website operated by NorSIS, providing free advice and guidance on deleting personal information from internet services and offering privacy and digital rights support. The site targets Norwegian users seeking assistance with online data removal and privacy issues. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, Matomo analytics for privacy-respecting tracking, and Google invisible reCAPTCHA for form security. The website is mobile-optimized and accessible, with good SEO practices. Security posture is moderate with HTTPS enforced and no exposed sensitive data, but lacks explicit security headers and has some technical issues with a Facebook deceased profile deletion form. Privacy compliance is good with clear privacy and cookie policies, though no terms of service or vulnerability disclosure policies are found. Overall, the site is trustworthy, professional, and serves a niche government/non-profit role in Norway.

L

Landesarbeitsgemeinschaft Puppenspiel e.V. Thüringen

puppe-thueringen.de

0

Landesarbeitsgemeinschaft Puppenspiel e.V. Thüringen is a small non-profit cultural association dedicated to puppetry arts in the Thüringen region of Germany. The organization provides puppetry events, educational projects, and supports a community of puppetry artists and enthusiasts. Their website serves as an informational portal with event details, member information, and contact resources. Technically, the site is built on Joomla CMS using Yootheme templates and UIkit framework, delivering a moderately performant and mobile-optimized experience. Security posture is adequate with HTTPS and cookie consent mechanisms, though lacking advanced security headers and incident response information. Overall, the site is trustworthy and professionally presented, targeting cultural audiences and puppetry communities.

L

LAG Spiel und Theater in Thüringen e.V.

lag-thueringen.de

0

LAG Spiel und Theater in Thüringen e.V. is a regional non-profit organization founded in 1992, dedicated to youth culture and theater education in Thüringen, Germany. It coordinates member theater groups, supports educational initiatives, organizes theater events for students, and provides resources such as a specialized library. The website reflects a focused mission with clear content targeting theater professionals, educators, and youth cultural initiatives in the region. Technically, the site is built on the Contao CMS platform, uses jQuery and SVG graphics, and demonstrates moderate performance with good mobile optimization. Security posture is adequate with HTTPS and cookie consent implemented, though additional security headers and policies could enhance protection. Privacy compliance is evident with a GDPR-aligned privacy policy and cookie banner. No contact emails or phone numbers are explicitly provided on the homepage, which may limit direct communication. Overall, the website is professional, trustworthy, and well-aligned with its mission, though it could benefit from enhanced security practices and more visible contact information.

brand ENGINEERING SOLUTIONS GmbH (bES) is a specialized consultancy focused on naval architecture, marine and offshore engineering, and salvage engineering services. The company leverages up-to-date tools and industry experience to deliver reliable reports and simulations, serving clients primarily in the shipping industry. As part of the bMC GROUP, bES benefits from a broader ecosystem of complementary maritime services, positioning itself as a niche expert within the transportation and energy sectors. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to industry professionals. Technically, the website is built on the Contao Open Source CMS platform, utilizing modern web technologies such as Bootstrap 5, jQuery, and FontAwesome. The site is mobile-optimized with good SEO practices and includes a cookie consent mechanism compliant with GDPR. Hosting and domain registration are stable and consistent with the company's German origin, though DNSSEC is not enabled. Analytics are handled via Matomo, indicating a preference for privacy-conscious tracking. From a security perspective, the site enforces HTTPS and uses CSRF tokens to protect forms. However, it lacks advanced security headers and does not publish a formal security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the security posture is solid but could be enhanced with additional headers and transparency. The overall risk assessment is low, with no critical issues identified. Strategic recommendations include enabling DNSSEC, publishing security and incident response policies, and enhancing security headers. These improvements would further strengthen trust and compliance, supporting the company's professional image and operational resilience.

B

Behinderten- und Rehabilitations-Sportverband Berlin e.V.

sportbildung.berlin

0

The website sportbildung.berlin serves as the official training and licensing portal for the Behinderten- und Rehabilitations-Sportverband Berlin e.V., a regional sports association focused on disabled and rehabilitation sports in Berlin, Germany. It provides educational resources, licensing guides, and online application services for training and continuing education in the rehabilitation sports sector. The portal targets individuals and clubs involved in this niche sports community, offering structured information and digital services to support their certification and training needs. Technically, the site is built on TYPO3 CMS with Bootstrap 5 and jQuery, ensuring a modern and responsive user experience. It integrates Matomo analytics with privacy-conscious settings and uses HTTPS with a valid SSL certificate. However, DNSSEC is not enabled, and some security headers appear to be missing, indicating room for improvement in security hardening. The site is well-structured with clear navigation and good accessibility features, supporting a positive user experience. From a security and compliance perspective, the site demonstrates basic GDPR compliance with a privacy policy and cookie consent banner. However, it lacks visible terms of service, security policies, incident response contacts, and explicit business contact information, which are important for trust and legal completeness. The WHOIS data is consistent and legitimate, with a domain age appropriate for the business. No suspicious or malicious indicators were found. Overall, the website is a credible and professional portal for its niche audience but would benefit from enhanced security practices, clearer contact and legal information, and improved transparency to strengthen trust and compliance.

I

Institut für Auslandsbeziehungen (ifa)

kulturaustausch.de

0

Kulturaustausch is a cultural magazine operated under the Institut für Auslandsbeziehungen (ifa), focusing on international relations, culture, and society with contributions from global authors. The website serves as a platform for in-depth dossiers, articles, and print issues, targeting readers interested in diverse international perspectives. Technically, the site is built on TYPO3 CMS, employs Matomo for analytics, and uses modern web technologies ensuring good performance, accessibility, and SEO. Security posture is solid with HTTPS and some security best practices, though additional headers could enhance protection. Privacy policies and cookie consent mechanisms are comprehensive and GDPR compliant, reflecting a mature privacy stance. Contact is primarily via a web form, with no direct emails or phone numbers publicly listed. Overall, the site is professional, trustworthy, and well-positioned in the media and non-profit cultural sector.

The website hasznosholmik.hu currently hosts only a default placeholder page indicating a 'Coming Soon' status. There is no business information, contact details, or content describing the nature of the business or services. The only external link points to vestacp.com, suggesting the site is hosted or managed via the VESTA control panel. The domain was registered in 2016, but the lack of content suggests the site is inactive or under development. From a technical perspective, the site is minimal with no detected CMS, scripts, or analytics. There is no evidence of HTTPS or security headers, which indicates a poor security posture. No privacy or cookie policies are present, and no contact or incident response information is available. Security evaluation reveals critical gaps including absence of HTTPS, lack of security headers, and no visible security or privacy compliance measures. The site does not collect user data or have forms, reducing immediate risk but also indicating no active business operations. Overall, the site presents a low trust profile with minimal content and poor security and privacy practices. It is recommended to implement HTTPS, add privacy and cookie policies, provide contact information, and develop actual business content to improve credibility and security posture.

Bubulakovo is a regional e-commerce retailer specializing in fabrics and meter goods, primarily serving the Hungarian market with multiple sister sites targeting other European countries. The website presents a professional and consistent brand image with a good quality user experience and moderate technical maturity, leveraging modern frameworks like Bootstrap 4 and marketing tools such as Google Tag Manager and SalesManago. Security posture is solid with HTTPS enforced and standard security headers, though the absence of explicit privacy and terms of service pages limits compliance maturity. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the site is trustworthy and well-positioned in its niche but would benefit from enhanced privacy and security disclosures.

P

Pfarrei Hl. Edith Stein

heiligeedithstein.de

0

The website represents the Catholic parish 'Hl. Edith Stein' located in Berlin, Germany, serving the local community with religious services, events, and pastoral care. It operates under the Erzbistum Berlin and targets parishioners and interested individuals in the region. The site provides comprehensive information about services, events, and community life, reflecting a small but active religious organization. Technically, the site is built on TYPO3 CMS, utilizing legacy jQuery libraries and Shadowbox.js for media display. The site is moderately optimized for performance and mobile devices, with good accessibility and SEO practices. Cookie consent is implemented with granular user choices, reflecting good privacy compliance. Security posture is moderate; while HTTPS is implied, no explicit security headers were detected, and no published security or incident response policies are available. The site does not expose sensitive data and uses consent-based activation for tracking and media embeds. No WAF or blocking mechanisms were detected, allowing full content access. Overall, the website is trustworthy and professional, with good content quality and privacy compliance. Recommendations include enhancing security headers, publishing security policies, and considering vulnerability disclosure mechanisms to improve security maturity and trust further.

T

Tech-Access Canada

tech-access.ca

0

Tech-Access Canada operates as a national network of 70 Technology Access Centres (TACs) across Canada, providing critical support to entrepreneurs and businesses by facilitating access to emerging technologies and applied research. The organization plays a pivotal role in driving innovation and business growth nationwide, positioning itself as a key enabler in the Canadian technology ecosystem. Their services include technology access, industry collaboration, and innovation facilitation, targeting primarily Canadian businesses and industry stakeholders. The website reflects a medium-sized, well-established non-profit entity founded in 2016, with a clear focus on supporting technology-driven economic development. From a technical perspective, the website is built on WordPress CMS with a modern but somewhat dated technology stack including jQuery 1.11.3 and several popular plugins such as RevSlider and Modern Events Calendar Lite. The site is mobile optimized, accessible, and incorporates SEO best practices. Analytics and tracking are implemented via Google Analytics, Google Tag Manager, and Clicky Analytics, with basic privacy compliance mechanisms including cookie consent and privacy policies. Security posture is generally good with HTTPS enforced and domain transfer protections in place. However, there are areas for improvement such as enabling DNSSEC, upgrading outdated JavaScript libraries, and implementing additional security headers like Content Security Policy. No explicit security policy or incident response information is published, which could be enhanced to improve trust and compliance. Overall, the website presents a professional and trustworthy digital presence aligned with its mission. The risk profile is low with no signs of malicious activity or content safety concerns. Strategic recommendations include technical security enhancements, improved transparency on security policies, and continued adherence to privacy regulations to maintain and strengthen stakeholder trust.

Y

YouCan.cz

youcan.cz

0

YouCan.cz is a Czech-based professional web development team specializing in creating websites, e-commerce platforms, and custom web applications tailored to client needs. Their portfolio includes diverse clients such as municipalities, internet providers, schools, and e-commerce businesses, positioning them as a regional technology service provider. The website content is well-structured and professional, targeting businesses seeking reliable web solutions. Technically, the site uses legacy JavaScript libraries like jQuery 1.4.2 and Coin Slider, alongside Google Analytics and Mouseflow for user behavior tracking. While the site is accessible and well-organized, it lacks modern security headers and visible HTTPS confirmation, and the outdated libraries pose potential security risks. Mobile optimization is basic, and no CMS or hosting provider details are evident. From a security perspective, the absence of privacy, cookie, and terms policies, combined with missing WHOIS registration data, reduces trustworthiness. The site does not exhibit signs of WAF or blocking mechanisms, but the lack of updated security practices and policies indicates room for improvement. Tracking scripts are present without visible consent mechanisms, raising privacy compliance concerns. Overall, the website is functional and professional but requires updates in security, privacy compliance, and technical modernization to enhance trust and resilience. The missing WHOIS data is a notable risk factor, and implementing HTTPS and security headers is strongly recommended.

A

ABCedu, a.s.

abcguru.sk

0

ABCguru is an educational platform operated by ABCedu, a.s., focused on providing autokorektívne kartičky (self-correcting cards) for mathematics learning targeted at primary school children in Slovakia. The business model combines physical product sales with an online application, catering to students, parents, and schools. The website is professionally designed with clear navigation and relevant content, including instructional videos and contact information. Technically, the site uses modern web technologies such as Bootstrap and Google Analytics, with responsive design suitable for mobile devices. However, there is a lack of publicly available privacy and cookie policies, and no visible security headers, which are areas for improvement. The security posture is moderate with HTTPS implied but no explicit security policy or incident response information. Overall, the website is safe, trustworthy, and focused on educational content without any adult or questionable material.

C

Campus

campus-cowork.com

0

Campus is a small business focused on providing tailored corporate innovation services such as hackathons, ideathons, and B2B partnerships primarily targeting businesses seeking innovation solutions. The website is built on WordPress using Elementor and integrates common analytics and marketing tools like Google Analytics, Facebook Pixel, Hotjar, and Google Tag Manager. The technical infrastructure is modern and mobile-optimized, offering a good user experience and professional design. However, the security posture is moderate due to the absence of visible security headers and lack of explicit privacy and cookie policies. The domain WHOIS data is missing or unavailable, which raises concerns about domain legitimacy and trustworthiness. Overall, the site is safe for general audiences and presents a professional business front but requires improvements in security and compliance documentation.

A

Allgemeine Anthroposophische Gesellschaft

sektion-landwirtschaft.org

0

The Sektion für Landwirtschaft is a non-profit organization affiliated with the Allgemeine Anthroposophische Gesellschaft and based at the Goetheanum in Switzerland. It focuses on promoting biodynamic agriculture through education, research, publications, and events. The website is professionally designed using TYPO3 CMS and integrates modern technologies such as Matomo for analytics and Tiny Slider for UI components. Contact information and social media presence are clearly provided, enhancing trust and accessibility. Privacy and cookie policies are implemented with GDPR compliance, although explicit terms of service and security policies are absent. The WHOIS data is unavailable due to query failure, but the website content and affiliations strongly indicate legitimacy and a mature organizational presence.

G

Goetheanum, Dornach

steiner100.ch

0

The website steiner100.ch is a dedicated platform commemorating the 100th anniversary of Rudolf Steiner's death in 2025. It serves as a regional cultural hub focusing on events, exhibitions, and initiatives related to Rudolf Steiner in Northwest Switzerland and the tri-border area. The site targets a general audience interested in cultural, spiritual, and educational activities linked to Steiner's legacy. The business model is non-profit and event-driven, with partnerships involving notable cultural institutions such as the Goetheanum. Technically, the site is built on WordPress using modern themes and plugins, ensuring a good user experience with mobile optimization and clear navigation. Security posture is adequate with HTTPS enforced, but lacks advanced security headers and explicit incident response policies. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, though improvements in security and privacy transparency are recommended.

J

Jazzklub Altenburg

jazzklub-altenburg.de

0

Jazzklub Altenburg is a small, non-profit cultural organization based in Germany dedicated to promoting jazz music through concerts and community events. The website serves as an information hub for event schedules, membership, and gallery content, targeting jazz enthusiasts and local community members. The organization operates primarily as a cultural club with a focus on live music and membership engagement. Technically, the website is built on WordPress using the Avada theme and Fusion Builder, with common plugins such as Contact Form 7. Hosting is provided by RZone, as indicated by the nameservers. The site demonstrates moderate performance and good mobile optimization but lacks advanced SEO and accessibility features. The technical infrastructure is standard for small cultural organizations but could benefit from modernization and enhanced security measures. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks important security headers and explicit privacy or security policies. No cookie consent mechanism is present, indicating partial GDPR compliance. The absence of contact emails and phone numbers reduces direct communication options, relying instead on a contact form. Social media integration is present via Facebook and Instagram links. Overall, the security posture is moderate but could be improved with better headers, policies, and compliance mechanisms. The overall risk is low given the non-commercial nature and limited sensitive data handling. Strategic recommendations include implementing security headers, adding cookie consent and privacy compliance features, and enhancing contact information transparency to improve trust and compliance.

Jazzclub Ilmenau e.V. is a small non-profit cultural organization based in Ilmenau, Germany, dedicated to promoting jazz music through event organization and community engagement. The website serves as an information hub for upcoming jazz events, membership opportunities, and sponsorship acknowledgments. The organization targets jazz musicians and enthusiasts within the local community, positioning itself as a key cultural institution in the region. Technically, the website is built using the Jekyll static site generator, hosted by manitu.net, and employs modern web standards with responsive design and good SEO practices. However, the site lacks advanced security headers and cookie consent mechanisms, which are important for GDPR compliance and overall security posture. The security posture is moderate with HTTPS enabled but missing several best practices such as security policies and incident response contacts. Overall, the website is trustworthy and professional but could benefit from enhanced privacy and security features to improve compliance and user trust.

Sonneberger Jazzfreunde e.V. is a non-profit cultural organization dedicated to promoting jazz music and small arts in the Thüringisch-Fränkischer region of Germany. The website serves as the official portal for the International Sonneberger Jazztage, a well-established jazz festival entering its 39th year. The organization relies on ticket sales, sponsorships, and partnerships with local businesses and cultural institutions to operate. The website provides detailed event information, partner acknowledgments, and ticket purchasing links, targeting jazz enthusiasts and regional visitors. Technically, the website is built on the Contao CMS platform and employs modern web technologies such as jQuery, Tiny Slider, and Usercentrics for consent management. The site is mobile-optimized and presents a professional design with clear navigation. Hosting is provided by a German hosting provider, consistent with the regional focus of the organization. Performance is moderate with room for improvement in accessibility and SEO. From a security perspective, the site uses HTTPS and implements GDPR-compliant consent management. However, no explicit security headers or incident response policies are published, and no vulnerability disclosures or security certifications are evident. The absence of a terms of service page and limited security documentation suggests areas for enhancement. No critical vulnerabilities or suspicious activities were detected. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. Strategic improvements in security headers, incident response transparency, and SEO could further strengthen its posture and user trust.

J

Jazzclub Nordhausen e.V.

jazzclub-nordhausen.de

0

Jazzclub Nordhausen e.V. is a small non-profit cultural association based in Germany focused on organizing jazz music events and concerts. The website provides event listings, membership information, and historical background about the club. It targets jazz enthusiasts and the local community. The site is built on the Contao CMS platform and hosted by Cloudpit, using common JavaScript libraries for UI enhancements. The technical infrastructure is moderately mature with basic mobile optimization and SEO. Security posture is average with cookie consent implemented but lacking advanced security headers and explicit incident response policies. No blocking or WAF mechanisms interfere with content access. Overall, the website is trustworthy and professionally maintained but could improve in security and compliance transparency.

I

International Fit Kid Division

fitkid.eu

0

The International Fit Kid Division website serves as an informational platform for a niche sports organization focused on Fit Kid activities and events. The site provides details about championships and community engagement for participants and enthusiasts. Technically, the website is built on WordPress using the Divi theme, incorporating modern web technologies such as Google Fonts, Google Maps API, and Google reCAPTCHA for form security. The site is accessible, mobile-optimized, and demonstrates moderate performance and SEO practices. Security posture is adequate with HTTPS enabled and reCAPTCHA implemented, but lacks visible security headers and comprehensive privacy or cookie policies, which are critical for compliance and trust. The absence of WHOIS data due to EURid privacy restrictions limits domain legitimacy assessment. Overall, the site is functional and professional but would benefit from enhanced privacy disclosures and security best practices.

F

FÉDÉRATION INTERNATIONALE CINÉMA TÉLÉVISION SPORTIFS

sportmoviestv.com

0

FICTS (Fédération Internationale Cinéma Télévision Sportifs) is an internationally recognized federation based in Milan, Italy, dedicated to promoting the values of sport through cinema and television. It is the only federation in its sector recognized by the International Olympic Committee (CIO), with a membership spanning 130 nations. The organization hosts major events such as the SPORT MOVIES & TV festival and the World FICTS Challenge, focusing on cultural and educational initiatives related to sports media. The website reflects a professional digital presence with comprehensive content, multimedia integration, and active social media engagement.

I

International Council of Sport Science and Physical Education (ICSSPE)

icsspe.org

0

The International Council of Sport Science and Physical Education (ICSSPE) is a globally recognized non-profit organization dedicated to advancing research, education, and policy in physical activity and sport. The website serves as a comprehensive platform for disseminating scientific resources, promoting events, and supporting its membership community. It targets professionals, researchers, and policymakers in the sport science and physical education sectors worldwide. Technically, the website is built on Drupal 7, utilizing common web technologies such as jQuery and Google services for analytics and maps. While the site is functional and moderately optimized for performance and mobile devices, there is room for modernization and enhanced accessibility. The presence of privacy and cookie policies with consent mechanisms reflects a good level of digital maturity and compliance with GDPR. From a security perspective, the site enforces HTTPS and anonymizes IPs in analytics, but lacks visible security headers and explicit incident response or security policy documentation. The WHOIS data is unavailable, likely due to privacy protection, which is justified for this type of organization. Overall, the site demonstrates a solid security posture but could benefit from additional hardening and transparency. The overall risk assessment is low, with no critical vulnerabilities or suspicious indicators detected. Strategic recommendations include updating the CMS, implementing security headers, and publishing security policies to enhance trust and compliance.

I

ICSBF - International Catch’n Serve Ball Sports Federation

catchandserve-ball.com

0

The International Catch’n Serve Ball Sports Federation (ICSBF) operates as a niche non-profit organization dedicated to promoting the sport of Catch'n Serve Ball globally. The website provides comprehensive information about the federation's activities, including event calendars, membership details, and news updates, positioning ICSBF as a specialized sports federation with a clear focus on community engagement and international sports development. The target audience includes sports enthusiasts, athletes, and sports clubs interested in this emerging sport. Technically, the website employs modern web standards with HTML5, CSS, and JavaScript, and integrates Matomo analytics for user tracking, reflecting a moderate level of digital maturity. The site is mobile-optimized and offers good navigation and content relevance. However, some technical improvements are recommended, such as implementing security headers and enhancing accessibility features. From a security perspective, the site benefits from HTTPS encryption and does not expose sensitive data. Nonetheless, the absence of security headers and lack of published security or incident response policies indicate room for improvement. The missing WHOIS data raises concerns about domain legitimacy, although the professional presentation and valid contact information mitigate some trust issues. Overall, the website is functional, professional, and safe for general audiences, but strategic enhancements in security posture, privacy compliance, and domain registration transparency are advised to strengthen trust and compliance.

The website panathlon.com is currently inaccessible, returning a 403 Forbidden error page that blocks access to any meaningful content. This prevents extraction of business, contact, or policy information. The domain is registered with IONOS SE since 2003, indicating a long-standing registration, but no registrant details or privacy protection are provided. The technical infrastructure appears minimal with no DNSSEC enabled and no visible security headers or scripts. The lack of accessible content and absence of privacy or cookie policies indicate poor digital maturity and compliance. Security posture is weak due to missing headers and unknown SSL configuration. Overall, the site is not usable for visitors and lacks transparency and trust signals.

B

Bund der Freien Waldorfschulen e.V.

erziehungskunst.de

0

Erziehungskunst waldorf.leben is a German magazine dedicated to Waldorf pedagogy, published by the Bund der Freien Waldorfschulen e.V. The website serves educators, parents, and the Waldorf community by providing news, articles, and educational resources related to Waldorf education. It maintains a consistent brand presence with social media integration and structured content navigation. Technically, the site is built on TYPO3 CMS, using modern frontend libraries such as Slick Slider and FontAwesome, hosted on DomainControl nameservers. The site is mobile-optimized and SEO-friendly but lacks explicit privacy and cookie policies, which are critical for GDPR compliance. Security headers are not evident, and no incident response or vulnerability disclosure information is provided, indicating room for improvement in security posture. Overall, the website is professional, content-rich, and trustworthy, with a moderate technical and security maturity level.

The website waldorfearlychildhood.org currently serves a 403 Forbidden error page, indicating that access to the content is restricted or blocked. There is no accessible business content, contact information, or policy documentation available on the page. The domain is registered with GoDaddy.com, LLC since 2002, suggesting a long-standing registration, but no registrant details or business identity are visible. Technically, the site lacks DNSSEC and security headers, and no analytics or tracking scripts are present. The absence of privacy and cookie policies indicates non-compliance with common privacy regulations. Overall, the site is inaccessible for meaningful analysis and lacks visible trust or security indicators.

M

Metroland Media

metroland.com

0

Metroland Media is a well-established Canadian media company specializing in local print and digital advertising solutions. With a domain registered since 1995 and a strong market presence reaching over 4.2 million readers weekly, the company offers tailored marketing plans to local businesses, national retailers, and startups. Their business model focuses on leveraging multiple media platforms including daily newspapers and digital sites to connect advertisers with engaged local audiences. The website reflects a professional and consistent brand image with clear navigation and relevant content.

The domain cardmethod.com currently serves a 404 Not Found error page with no accessible business content. The page content indicates that the domain is used by Admiral (getadmiral.com) to provide copyright access control and privacy consent services for digital publishers. There is no direct business information, contact details, or policies available on the site. The technical infrastructure is hosted on Google Cloud Platform in Europe, with basic use of JavaScript, HTML, and CSS. Security practices are mentioned in the error page content, including encryption and certificate rotation, but no explicit security headers or policies are published. Overall, the site lacks content, business credibility, and privacy compliance indicators, resulting in a low trust and quality score.

R

Russell Hobbs

russellhobbs.co.uk

0

Russell Hobbs UK operates a comprehensive e-commerce platform specializing in home and kitchen appliances, including kettles, toasters, irons, and cookware. The brand has a long-standing market presence, serving general consumers primarily in the UK and Europe. The website demonstrates a professional design with clear navigation and a consistent brand identity. Technically, the site is built on Magento CMS with modern JavaScript libraries and monitoring tools such as New Relic and Google Tag Manager, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and explicit security policies. The absence of WHOIS data for the subdomain limits full domain trust verification, but the overall site content and structure support legitimacy. Privacy compliance is well addressed with GDPR-aligned policies and user consent features. Overall, the site is a reliable and professional retail platform with moderate to high trustworthiness.

REVLON Hair Tools operates a commercial website focused on retailing hair styling tools, leveraging the established REVLON brand. The website presents a professional design using WordPress with the Divi theme and integrates multiple marketing and analytics technologies such as Google Analytics, Facebook Pixel, and Iterable Analytics. Despite the professional front-end, the absence of WHOIS registration data raises concerns about domain legitimacy or privacy protection usage. The website lacks explicit privacy and cookie policies, which impacts compliance posture. Security headers are not detected, and SSL configuration details are unknown, suggesting room for improvement in security hardening. Overall, the site is functional and targets general consumers interested in hair styling products, but it requires enhancements in privacy, security, and transparency to improve trust and compliance.

H

HoMedics

homedics.co.uk

0

HoMedics UK operates as a specialized e-commerce retailer focusing on wellness, massage, and relaxation products. The website presents a professional and consistent brand image targeting consumers interested in home wellness solutions. The business leverages BigCommerce as its e-commerce platform, integrating multiple third-party services for marketing, analytics, and customer engagement, indicating a mature digital infrastructure. Security measures such as HTTPS, security headers, and cookie consent mechanisms are well implemented, reflecting a strong security posture. However, the absence of visible direct contact information and WHOIS data limitations slightly reduce transparency. Overall, the site is legitimate, secure, and compliant with privacy regulations, serving its market effectively.

A

Ariete

ariete.net

0

Ariete is an Italian brand specializing in small household and kitchen appliances, targeting general consumers seeking Italian-designed products for home use. The website presents a professional retail and e-commerce platform with a clear focus on product offerings and customer service. The technical infrastructure leverages modern web technologies including Bootstrap, Google Tag Manager, Cookiebot for consent management, and third-party services for chat and search optimization, indicating a mature digital presence. Security posture is adequate with HTTPS enforced and a comprehensive cookie consent mechanism, though the absence of explicit security policies and vulnerability disclosures suggests room for improvement. The lack of WHOIS registration data reduces domain trustworthiness, but the website content and technology usage support legitimacy. Overall, the site is well-structured, user-friendly, and compliant with cookie regulations, but would benefit from enhanced transparency in privacy and security documentation.

The website at experianmatch.info is currently inaccessible, returning only a minimal JSON error message indicating a missing authentication token. This suggests the site is either protected behind an API gateway or is improperly configured, preventing access to any meaningful content. Due to the lack of accessible content, no business information, metadata, or contact details can be extracted or analyzed. The domain WHOIS data is unavailable due to unsupported TLD and privacy restrictions, further limiting trust and legitimacy assessments. From a technical perspective, the site lacks visible security headers, metadata, or modern web technologies. The absence of HTTPS information and security best practices indicates a low security posture. No privacy or cookie policies are present, and no contact or compliance information is available, which raises concerns about regulatory adherence and user trust. Overall, the website presents a high risk due to its inaccessibility and lack of transparency. The domain registration details are obscured, and the site does not provide any verifiable business or security information. This situation warrants caution for users and stakeholders, and further investigation or direct contact with the domain owner (if possible) is recommended to clarify the site's purpose and legitimacy.