Security Directory

D

Département de l'Ardèche

ardeche.fr

0

The Département de l'Ardèche website serves as the official digital presence for the Ardèche regional government in France, providing residents and visitors with comprehensive information on public services, aid guides, news, and contact resources. The site targets a broad audience including local citizens, businesses, and tourists, positioning itself as a trusted source of regional governmental information and services. The business model is centered on public service and information dissemination without commercial intent. Technically, the website employs a traditional web stack with jQuery, Modernizr, and JWPlayer, indicating moderate digital maturity. The site is functional with basic mobile optimization and accessibility features, though there is room for improvement in modernizing the tech stack and enhancing performance. The presence of a cookie consent mechanism and structured navigation reflects attention to user experience and privacy compliance. From a security perspective, the site uses HTTPS and includes cookie consent but lacks visible advanced security headers and explicit security policies. No vulnerabilities or exposed sensitive data were detected, but the absence of incident response contacts and security certifications suggests opportunities to strengthen security posture and transparency. Overall, the website is a credible and professional government portal with good content quality and user experience. The lack of WHOIS data limits domain registration trust analysis, but the official branding and content strongly support legitimacy. Strategic recommendations include enhancing security headers, improving mobile and accessibility features, and publishing clear security and incident response policies to bolster trust and compliance.

S

Solvari B.V.

solvari.nl

0

Solvari B.V. operates a well-established online platform focused on connecting homeowners in the Netherlands and surrounding regions with trusted specialists for home improvement projects. Founded in 2009, the company has built a strong market presence by offering free quote comparisons and independent advice, supported by a network of reliable construction and installation professionals. The website is professionally designed, mobile-optimized, and integrates modern technologies such as Vue.js, Algolia, and Mapbox to enhance user experience and search capabilities. Security practices are robust, with HTTPS enforcement, security headers, and cookie consent mechanisms in place, although a dedicated security policy and incident response information are not publicly available. The company demonstrates good GDPR compliance with clear privacy policies and a designated Data Protection Officer contact. Overall, Solvari presents a credible and trustworthy digital presence with strong business and technical foundations.

S

Sherpaan

sherpaan.com

0

Sherpaan is a Netherlands-based company specializing in warehouse management software (Sherpa WMS) tailored for ambitious e-commerce businesses. The company offers both standard and customizable solutions to optimize logistics, inventory, and order management, integrating with major e-commerce platforms like Magento, Shopify, and WooCommerce. The website reflects a mature digital presence with professional design, clear navigation, and comprehensive content targeting e-commerce operators seeking advanced warehouse solutions. Technically, the site is built on WordPress with modern JavaScript libraries and includes GDPR-compliant cookie consent mechanisms. Security posture is strong with HTTPS, DNSSEC, and no exposed sensitive data, though explicit security policies and incident response information are absent. Overall, Sherpaan demonstrates a credible and trustworthy business with a solid market position in the e-commerce logistics software sector.

P

Piggyback Plus Inc.

piggy.com

0

Piggyback Plus Inc. is a well-established transportation and logistics service provider specializing in rail containers, door-to-door shipping, special handling, transloads, and related freight services. With over 35 years of experience, the company targets businesses requiring efficient and cost-effective transportation solutions across the United States. The website reflects a professional and consistent brand presence, emphasizing customer service and operational efficiency. Technically, the website employs modern web technologies including JavaScript, Flowbite CSS framework, and Google Analytics for user tracking. The site is mobile-optimized and demonstrates good SEO practices, though accessibility features are basic. Hosting and domain registration are consistent with a legitimate business, with the domain being active since 2000. From a security perspective, the site uses HTTPS and has domain transfer protections in place, but lacks DNSSEC and important security headers. There is no visible cookie consent mechanism or detailed privacy and security policies, which may pose compliance risks. No incident response or vulnerability disclosure information is provided, indicating room for improvement in security transparency. Overall, the website is trustworthy and professional with a solid business foundation. Strategic improvements in privacy compliance, security headers, and incident response documentation would enhance the security posture and regulatory adherence.

P

Picqer

picqer.com

0

Picqer is a Netherlands-based software company specializing in warehouse management solutions tailored for online stores and e-commerce businesses. Established in 2011, Picqer offers a SaaS platform that enables users to efficiently manage inventory, purchasing, order processing, and shipping through a single integrated system. The company positions itself as a professional and user-friendly alternative to complex warehouse management systems, targeting small to medium-sized online retailers. Their market presence is supported by customer testimonials, a strong social media footprint, and recognized certifications such as the Thuiswinkel.org Business Partner status. Technically, Picqer employs modern web technologies including JavaScript modules, web fonts, and CSS with a fast, mobile-optimized, and accessible website hosted on AWS infrastructure. The site integrates privacy-focused analytics (Plausible) and demonstrates good SEO practices. However, some security best practices such as DNSSEC and explicit security headers are not enabled, representing areas for improvement. From a security perspective, the website uses HTTPS and has domain registration protections like clientTransferProhibited status. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is evident with a comprehensive privacy policy, though a cookie consent mechanism is absent. Incident response and vulnerability disclosure information are not publicly available, which could be enhanced to improve trust. Overall, Picqer presents a professional, trustworthy, and technically sound online presence with minor gaps in security and privacy transparency. Strategic improvements in security headers, cookie consent, and incident response disclosures would strengthen their security posture and compliance standing.

M

Monta

monta.com

0

Monta is a software company specializing in EV charging management solutions, targeting industry pioneers and EV business operators. The company offers a scalable charge point management system designed to automate and grow EV networks. The website reflects a professional and modern digital presence, leveraging WordPress CMS and various marketing and analytics tools hosted on AWS infrastructure. Security posture is generally good with HTTPS enabled and domain registration protections in place, though some improvements such as enabling DNSSEC and publishing security policies are recommended. Privacy compliance is partial, with a cookie consent mechanism present but no explicit privacy or terms of service pages detected. Overall, the website is trustworthy and well-positioned in the energy and transportation sectors.

S

Spotler

spotleractivate.com

0

Spotler is a technology company specializing in data-driven marketing software, particularly through its Customer Data Platform (CDP) called Spotler Activate. The platform enables personalized customer journeys and impactful campaigns across multiple channels, targeting marketers and businesses seeking advanced marketing automation solutions. The company has an established market presence with multi-language support and international reach. Technically, the website is built on WordPress with a modern tech stack including Google Tag Manager, reCAPTCHA, and Cookiebot for privacy compliance. The site demonstrates good digital maturity with responsive design, SEO optimization, and integration of trusted third-party services. Security posture is solid with HTTPS, Cloudflare DNS, and cookie consent mechanisms, though some security headers could be improved and explicit security policies are not published. Overall, the domain registration is consistent and legitimate, supporting the business credibility. The website is professional, trustworthy, and safe for general audiences.

C

Channable

channable.com

0

Channable is a technology company providing a SaaS multichannel platform designed to empower eCommerce professionals and teams to efficiently list, advertise, and analyze their products across multiple online channels. The company positions itself as a reliable solution to increase ROI for online retailers by streamlining product feed management and advertising workflows. The website reflects a mature digital presence with a modern tech stack including React and Next.js, integrated marketing and analytics tools such as HubSpot and Google Tag Manager, and a comprehensive cookie consent mechanism ensuring GDPR compliance. Security posture is strong with HTTPS enforcement and appropriate security headers, though explicit security policies and incident response contacts are not publicly disclosed. The absence of WHOIS data limits domain registration trust analysis, but the overall website professionalism and external partnerships with reputable services like Stripe and LinkedIn support legitimacy. Strategic recommendations include enhancing transparency around security policies and providing direct contact information to improve trust and compliance.

H

help and hope Stiftung

helpandhope-stiftung.com

0

The help and hope Stiftung is a German non-profit foundation dedicated to improving the lives of disadvantaged children and youth by providing educational projects, holiday care, and community engagement at their core location Gut Königsmühle in Dortmund. The organization emphasizes sustainability, fairness, and personal development through participatory and experiential learning. Their digital presence is built on a modern WordPress platform with SEO and GDPR compliance plugins, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers are missing and WHOIS domain registration data is unavailable, which slightly impacts trust. Overall, the website is professional, content-rich, and well-structured, targeting families, educational institutions, and community members. Strategic recommendations include enhancing security headers, improving contact transparency, and monitoring domain registration status to strengthen trust and compliance.

F

First Cash Solution GmbH

1cs.de

0

First Cash Solution GmbH operates a professional website offering reliable and customized payment solutions for businesses, both online and offline. The company targets business customers seeking innovative payment processing services. The website demonstrates a solid technical infrastructure built on WordPress with modern plugins and frameworks, including accessibility features via the DigiAccess tool, enhancing usability for users with disabilities. SEO practices are well implemented with Yoast SEO and structured data. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and policies are absent. No privacy policy or terms of service were found, indicating room for compliance improvement. Overall, the site is professional and trustworthy but could enhance transparency and security documentation.

eurokarten.de is a German-language website focused on providing information about financial services such as account management, cashless payments, card payments, and electronic payment solutions. The site also features affiliate product listings related to these financial topics and offers the domain for sale with clear contact details. The business appears to be a small-scale informational and affiliate marketing portal operated by KV GmbH, targeting consumers and businesses interested in financial services in Germany. Technically, the site uses modern CSS frameworks like Tailwind and the htmx JavaScript library, with a moderate performance and good mobile optimization. Security posture is basic, with no explicit HTTPS or security headers information provided, and no privacy or cookie policies found, indicating compliance gaps. Contact information is clearly provided via email and phone, but no social media presence or certifications are visible. Overall, the site is functional and professional but would benefit from improved security and privacy compliance measures.

S

ScalaHost

scalahost.com

0

ScalaHost is a web hosting service provider founded in 2020, offering a range of hosting solutions including shared hosting, WordPress hosting, dedicated servers, VPS/cloud hosting, and website builder services. Positioned as an affordable and reliable hosting provider, ScalaHost targets small to large scale website owners seeking secure and high-performance hosting. The website is built on WordPress using the Avada theme and leverages Cloudflare for DNS services. The technical infrastructure is modern and supports good mobile optimization and user experience. Security posture is adequate with HTTPS enabled and secure forms, but lacks DNSSEC and security headers, which are recommended for enhanced protection. Privacy compliance is weak due to absence of privacy and cookie policies. Contact information is clearly presented, enhancing business credibility. Overall, ScalaHost presents a professional and trustworthy hosting service with room for improvement in privacy and security practices.

C

C40 Cities Climate Leadership Group, Inc.

c40.org

0

C40 Cities Climate Leadership Group, Inc. operates a globally recognized network of nearly 100 mayors from leading cities committed to urgent climate action. The organization focuses on facilitating collaboration, sharing knowledge, and driving impactful climate initiatives across sectors such as energy, transport, and urban planning. Their market position is strong as a leading non-profit entity influencing global climate policy and city-level implementation. Technically, the website is built on a modern WordPress platform with advanced SEO, accessibility, and performance optimizations. It leverages trusted technologies including Gravity Forms for data collection, Yoast SEO for search optimization, and Google Tag Manager alongside Plausible Analytics for user tracking and analytics. The site is mobile-optimized and provides multilingual support via GTranslate. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms, and uses secure forms with explicit user consent. However, it lacks visible security headers and a public incident response or vulnerability disclosure policy, which are recommended for enhanced security posture. No vulnerabilities or exposed sensitive data were detected. Overall, the website presents a professional, trustworthy, and well-maintained digital presence consistent with a reputable global non-profit organization. The absence of WHOIS data is likely due to privacy protection and does not detract from the site's legitimacy. Strategic improvements in security transparency and incident response communication would further strengthen trust and compliance.

W

World Resources Institute

worldresources.org

0

World Resources Institute (WRI) is a globally recognized non-profit research organization dedicated to advancing environmental sustainability, climate action, and equitable development. The website reflects a mature and professional digital presence, offering extensive research, data, initiatives, and insights targeted at policymakers, researchers, and global stakeholders. WRI leverages a modern Drupal 10 CMS infrastructure with integrated analytics and consent management tools, ensuring a balance between user experience and privacy compliance. The security posture is solid with HTTPS enforcement and cookie consent, though there is room for improvement in security headers and public vulnerability disclosures. Overall, WRI's website demonstrates high trustworthiness and professionalism, supporting its mission to influence policy and catalyze change worldwide.

TechSoup Global is a well-established nonprofit organization founded in 1987, providing technology donations and discounted products to nonprofits, charities, and libraries primarily in the United States. The website demonstrates a strong market position as a leading provider in this niche, offering access to software, hardware, and technology services from major brands. The company targets nonprofit organizations seeking affordable technology solutions to enhance their operations. The technical infrastructure is built on Microsoft SharePoint with modern web technologies including Bootstrap 5, jQuery, and integrations with Google Tag Manager and HubSpot for analytics and marketing. The site is mobile-optimized and employs performance monitoring tools like New Relic, indicating a mature digital presence. SEO and accessibility are adequately addressed, though accessibility could be improved. Security posture is robust with HTTPS enforced, standard security headers present, and no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong with clear privacy and cookie policies, including consent mechanisms and GDPR compliance indicators. However, explicit security policies and incident response information are not publicly detailed. Overall, TechSoup's website reflects a professional, trustworthy, and secure platform aligned with its nonprofit mission. Strategic recommendations include publishing detailed security policies, adding vulnerability disclosure mechanisms, enhancing accessibility, and maintaining vigilance on third-party scripts to sustain security and compliance.

G

Green Climate Fund

greenclimate.fund

0

The Green Climate Fund (GCF) is an international climate finance organization dedicated to mobilizing and delivering capital to developing countries to support climate change mitigation and adaptation projects. The website reflects a well-established global entity with a strong market position as a leading climate fund. It offers comprehensive information on projects, governance, funding modalities, and partnerships, targeting governments, accredited entities, and climate finance stakeholders. Technically, the website is built on Drupal CMS with modern web technologies including Bootstrap, Modernizr, and advanced analytics tools such as Microsoft Clarity and Google Tag Manager. The site is mobile-optimized, accessible, and demonstrates good SEO practices. Performance is moderate with room for optimization. From a security perspective, the site enforces HTTPS and does not expose sensitive data. However, explicit security headers and vulnerability disclosure mechanisms are not evident. Privacy and cookie policies are present with consent mechanisms, indicating good compliance with GDPR and related regulations. Overall, the website presents a professional, trustworthy, and content-rich platform aligned with the organization's mission. The lack of WHOIS data is mitigated by the organization's global reputation and transparent content. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing clearer incident response contacts to strengthen security posture and trust.

T

The Nature Conservancy

nature.org

0

The Nature Conservancy is a globally recognized non-profit organization dedicated to environmental conservation, focusing on protecting lands, waters, and addressing climate change. Their website reflects a mature digital presence with comprehensive content, clear calls to action for donations and volunteering, and a strong brand identity. Technically, the site leverages Adobe Experience Manager and integrates multiple modern APIs and third-party services to enhance user experience and engagement. Security posture is strong with HTTPS enforcement, reCAPTCHA on forms, and cookie consent mechanisms, though explicit security headers should be verified. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the site is trustworthy, professional, and aligns well with the organization's mission and audience.

East Asia Forum is a well-established media platform founded in 2008, specializing in expert analysis on economics, politics, business, international relations, and public policy in the Asia-Pacific region. The website targets academics, policymakers, and professionals interested in regional affairs, offering high-quality content and thought leadership. Technically, the site is built on WordPress, leveraging modern web technologies such as jQuery, Google Tag Manager, and Google reCAPTCHA for security and analytics. Hosting and DNS services are provided via Cloudflare, ensuring good performance and availability. Security posture is solid with HTTPS enforced and domain transfer protections in place, though improvements such as enabling DNSSEC and publishing security headers are recommended. Privacy compliance is currently minimal, with no explicit privacy or cookie policies detected in the analyzed content. Overall, the website demonstrates a high level of professionalism, content quality, and business credibility, with moderate technical and security maturity.

O

Oura

oura.com

0

Oura is a regional transportation service platform focused on the Auvergne-Rhône-Alpes region in France. It provides trip planning tools and ticket purchasing options, integrating multiple regional transport networks. The website is professionally designed using WordPress and Elementor, with good mobile optimization and accessibility. The technical infrastructure includes modern web technologies and SEO optimization, supporting a positive user experience. Security posture is generally good with HTTPS enforced and secure forms, but lacks some security headers and visible privacy compliance documentation. The WHOIS data is missing or unavailable, which raises some concerns about domain registration transparency, though the website content and partner integrations support legitimacy. Overall, the site is functional and trustworthy for its intended audience but would benefit from improved privacy and security disclosures.

U

Uber Boat by Thames Clippers

thamesclippers.com

0

Uber Boat by Thames Clippers operates a prominent river boat service on the River Thames, catering to both commuters and tourists in London. The website presents a professional and well-structured platform offering ticket sales, event services, and leisure cruises. The company leverages modern web technologies including Umbraco CMS, Google Tag Manager, Microsoft Application Insights, and Facebook Pixel to manage content, marketing, and analytics. Despite the rich content and user-friendly design, the absence of publicly available WHOIS data for the domain raises concerns about domain registration transparency. Security posture is generally strong with HTTPS and asynchronous loading of analytics scripts, but the site lacks explicit security policies and vulnerability disclosure information. Privacy compliance is partial, with a cookie consent mechanism present but no clear privacy policy or terms of service detected. Overall, the site is trustworthy and professionally maintained but would benefit from improved transparency and compliance documentation.

F

FLEXVIT - Bands Reloaded

flexvit.it

0

FLEXVIT - Bands Reloaded operates a professional e-commerce platform specializing in functional training bands and related fitness equipment. The company positions itself as a trusted brand favored by world and Olympic champions, emphasizing product quality and certifications such as Ökotex. Their digital presence is built on Shopify, leveraging a modern tech stack with integrated marketing and analytics tools to optimize customer engagement and sales. The website demonstrates strong GDPR and cookie compliance, with a comprehensive consent mechanism and privacy policy. Security posture is robust with HTTPS, DNSSEC, and no evident vulnerabilities, although explicit security policies and incident response information are not publicly available. Overall, the business shows a mature digital infrastructure and credible market presence with room for enhanced transparency in security disclosures.

S

ShipBob

shipbob.com

0

ShipBob is a leading technology-enabled third-party logistics provider specializing in ecommerce fulfillment services. The company offers warehousing, inventory management, and shipping solutions tailored for online retailers, positioning itself as a key player in the ecommerce logistics sector. Their website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding that aligns with their market position. Technically, ShipBob employs a modern technology stack including StimulusJS, HubSpot CMS, and multiple analytics and marketing tools such as Google Tag Manager, Facebook Pixel, and Microsoft Clarity. The site is optimized for performance and mobile responsiveness, ensuring a positive user experience across devices. From a security perspective, the website enforces HTTPS, implements robust security headers, and maintains certifications like SOC 2 Type II and ISO 27001, indicating a strong commitment to data protection and operational security. No critical vulnerabilities or exposed sensitive data were detected, and privacy compliance is well addressed with clear policies and consent mechanisms. Overall, ShipBob's website demonstrates a high level of professionalism, security maturity, and business credibility. The absence of WHOIS data is likely due to privacy protection, which is justified for their business type. The site is safe for general audiences and maintains good transparency in marketing and analytics practices.

U

University of California

universityofcalifornia.edu

0

The University of California website represents a large, well-established public university system with a strong focus on education, research, healthcare, and public service. The site provides comprehensive information about its campuses, health centers, national labs, and outreach programs, targeting students, faculty, researchers, and the general public. Technically, the site is built on Drupal 10, uses modern web technologies, and integrates Google Analytics and social sharing tools. The website is mobile-optimized, accessible, and professionally designed, offering a high-quality user experience. From a security perspective, the site enforces HTTPS and follows several best practices, though explicit security headers and incident response information are not prominently displayed. Privacy and terms of service policies are present and comprehensive, indicating good compliance posture, though a cookie consent mechanism is missing, which could be improved for GDPR compliance. The WHOIS data for the exact queried domain is missing, which is unusual but likely due to querying the 'www' subdomain rather than the root domain. Overall, the site appears legitimate and trustworthy. The risk assessment is moderate with no critical vulnerabilities detected. Strategic recommendations include enhancing security headers, implementing cookie consent, and publishing security policies and incident response contacts to improve transparency and compliance.

K

KommWis Gesellschaft für Kommunikation und Wissenstransfer mbH

kommwis.de

0

KommWis Gesellschaft für Kommunikation und Wissenstransfer mbH is a municipal IT service provider based in Rheinland-Pfalz, Germany, founded in 2000. It operates as a subsidiary of the regional municipal associations and serves over 200 municipal clients with a broad portfolio of services including Meldewesen, Wahlen, Personenstandswesen, and more. The company has a medium size with over 90 employees and multiple subsidiaries, positioning itself as a key player in the regional government IT sector. Technically, the website is built on the ionas4 CMS with AngularJS components, uses modern web standards, and is hosted likely by Deutsche Telekom, ensuring reliable infrastructure. The site is well-optimized for mobile and accessibility, with good SEO practices. Security-wise, the site enforces HTTPS, uses cookie consent mechanisms compliant with GDPR, and applies script integrity checks. However, it lacks publicly available security policies and incident response contacts, which are recommended for enhanced trust and compliance. Overall, the website is professional, trustworthy, and aligns well with its business purpose and audience.

S

Starterzentren Rheinland Pfalz

starterzentrum-rlp.de

0

Starterzentren Rheinland Pfalz is a regional network supporting business founders, successors, and entrepreneurs in the German state of Rheinland-Pfalz. The network is backed by eight economic chambers (IHKs and HWKs) and offers free, practical consulting, workshops, and support services to facilitate successful business startups and transfers. The website reflects a professional and consistent brand presence with clear regional focus and target audience. Technically, the site is built on WordPress with modern SEO and accessibility features, ensuring good user experience and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security policies and incident response details are absent. Overall, the site demonstrates a trustworthy and privacy-conscious approach with minimal tracking and clear contact information.

Wolters Kluwer Deutschland is a regional branch of Wolters Kluwer N.V, a global leader in professional information, software solutions, and services targeting healthcare, finance, legal, and compliance professionals. The website offers comprehensive information about their AI-powered tools, integrated cloud solutions, and expert insights tailored for professionals in these sectors. The site is well-structured, professionally designed, and localized for the German market, reflecting a mature digital presence. Technically, the website employs modern JavaScript frameworks, Google Tag Manager, OneTrust for cookie consent, and analytics tools such as Mouseflow and DebugBear. The site uses HTTPS with strong security headers, indicating a solid security posture. Accessibility and SEO optimizations are well implemented, supporting a good user experience across devices. Security-wise, the site follows best practices with HTTPS, cookie consent, and security headers, but lacks publicly available security policies or incident response contacts. The WHOIS data is unavailable, which is a minor concern but likely due to privacy or registry issues rather than malicious intent. Overall, the website represents a trustworthy, enterprise-grade digital asset for Wolters Kluwer Deutschland, with strong business credibility and technical maturity. Strategic improvements could include publishing explicit security and incident response policies and providing direct contact information for security concerns.

Stadt Münster operates an official municipal website providing comprehensive information and services to residents, visitors, and businesses. The site offers online administrative services, event calendars, tourism information, and career opportunities, positioning itself as a central digital hub for the city. The website is built on TYPO3 CMS, indicating a mature and scalable content management infrastructure. It integrates modern technologies such as Matomo for analytics and Consentmanager.net for GDPR-compliant cookie consent, reflecting a commitment to privacy and data protection. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some security headers could be improved. The domain registration is consistent with the official city identity, enhancing trustworthiness. Overall, the website is professional, user-friendly, and compliant with relevant privacy regulations.

Stadt Münster operates an official municipal government website providing comprehensive information and services to residents, visitors, and businesses. The site offers online administrative services, event calendars, tourism information, and public announcements, positioning itself as a key digital portal for the city of Münster in Germany. The website is well-branded, professionally designed, and targets a broad audience including citizens and tourists. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs modern web technologies including JavaScript and Matomo for analytics. The site is mobile-optimized, accessible, and SEO-friendly, with a clear navigation structure and multi-language support. Cookie consent management is implemented via Consentmanager, ensuring GDPR compliance. From a security perspective, the site enforces HTTPS and uses cookie consent mechanisms to protect user privacy. However, it lacks explicit security headers and a published security policy or incident response contact, which are recommended for enhanced security posture. No vulnerabilities or suspicious activities were detected in the analyzed content. Overall, Stadt Münster's website demonstrates a strong digital presence with high content quality, good technical implementation, and solid privacy compliance. Strategic improvements in security headers and incident response transparency could further enhance trust and resilience.

S

SHS Viveon AG

shs-viveon.com

0

SHS Viveon AG operates a modular software platform focused on risk, credit, and compliance management for businesses, primarily in the finance and technology sectors. The company targets organizations seeking to automate and streamline their financial and regulatory risk processes. The website demonstrates a professional market presence with notable clients and a comprehensive suite of services. Technically, the site is built on WordPress with modern SEO and performance optimizations, including cookie consent and analytics integrations. Security posture is solid with HTTPS and cookie consent but lacks explicit security headers and incident response disclosures. The absence of WHOIS data for the domain raises some concerns about domain registration transparency, though the website content and business information appear legitimate. Overall, the site is well-designed, user-friendly, and compliant with privacy regulations, making it a credible business platform.

MD-IT GmbH is a medium-sized German company specializing in providing innovative IT solutions tailored for the healthcare sector, particularly focusing on digital networking and electronic data exchange among medical service providers, hospitals, and statutory health insurance companies. Their business model centers on delivering specialized IT concepts and platforms that facilitate efficient and secure digital communication within the healthcare ecosystem. The company positions itself as a key enabler of digital transformation in medical services, targeting healthcare institutions and professionals seeking advanced IT infrastructure. Technically, the website is built on the TYPO3 CMS platform, utilizing standard web technologies such as CSS and JavaScript. The site demonstrates good mobile optimization and a professional design, though some areas such as accessibility and SEO could be improved. No advanced analytics or tracking technologies were detected, and the cookie consent mechanism is properly implemented, reflecting a moderate level of digital maturity. From a security perspective, the site uses HTTPS (implied by domain and standard practice though not explicitly confirmed in provided data) but lacks visible security headers and explicit security policies or incident response information. There are no detected vulnerabilities or exposed sensitive data in the HTML content. The WHOIS data indicates a consistent and legitimate domain registration without privacy protection, supporting the trustworthiness of the domain. Overall, the website presents a professional and trustworthy digital presence for MD-IT GmbH, with room for improvement in security policy transparency, accessibility, and SEO. The risk profile is low, with no critical security issues detected, but enhancing security headers and publishing incident response details would strengthen their security posture.

E

easy-soft GmbH Dresden

easy-soft.de

0

easy-soft GmbH Dresden is a medium-sized software company specializing in solutions for the public health service sector in Germany. With over 35 years of experience, it holds a strong market position as a leading provider of specialized software such as OctoWare®TN, mobile applications, and telematics infrastructure integration. The company targets public health authorities and government agencies, offering comprehensive digitalization tools tailored to their needs. The website reflects a professional and consistent brand image with clear contact information and relevant certifications, including an ePA certificate from Gematik. Technically, the website is built on a modern WordPress platform with common libraries like jQuery and Swiper.js, ensuring good mobile optimization and moderate performance. Security practices include HTTPS enforcement and use of sanitization libraries, though there is room for improvement in security headers and explicit incident response documentation. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. The security posture is solid with no visible vulnerabilities or exposed sensitive data, but the absence of security policies and vulnerability disclosure mechanisms suggests opportunities for strengthening. Overall, the website is trustworthy, professional, and well-aligned with the company's business focus, presenting low risk from a security and compliance perspective.

B

Baer Energie- & Messtechnik GmbH

baeris.de

0

BAERIS Energiemesstechnik is a German company specializing in energy measurement technology and solutions for electricity, gas, water, and heat. They provide reliable and integrable products, including modems, communication modules, relays, and M-Bus systems, alongside comprehensive services such as installation, commissioning, and maintenance. Their business model includes B2B sales and an online shop for registered customers, targeting energy managers, building owners, and industrial clients. The company positions itself as a trusted provider with a focus on quality and environmental efficiency. Technically, the website is built on WordPress with WooCommerce and WPML, indicating a mature digital infrastructure with multilingual support and e-commerce capabilities. The site is mobile-optimized and performs moderately well, though some accessibility and SEO improvements are possible. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks visible security headers and explicit privacy policies, which are recommended for compliance and trust. Overall, the website is professional and trustworthy with room for enhanced privacy and security transparency.

W

www.sicoss.de

sicoss.de

0

SICOSS is a German-based company specializing in holistic and sustainable optimization of buildings, networks, plants, and infrastructure to reduce operational costs and CO2 emissions. Their solutions target public clients, energy providers, medium-sized companies, and administrations, offering integrated software and hardware services including SaaS and on-premise deployments. The website demonstrates a professional digital presence built on WordPress with Elementor and Yoast SEO, featuring GDPR-compliant cookie consent and ISO 27001 certification, indicating a mature security posture. While no direct contact emails or phone numbers are visible, contact is facilitated via forms. The site is fully accessible with no WAF or blocking mechanisms detected.

O

Organ and Tissue Donor Program and the Donate Life Missouri Registry

donatelifemissouri.org

0

Donate Life Missouri is a state government-affiliated non-profit program dedicated to organ, eye, and tissue donation awareness and registry management. The website serves as an educational platform and registration portal for Missouri residents, providing comprehensive information about donation types, consent, and donor stories. It holds a strong market position as the official organ donor registry for Missouri, backed by the Missouri Department of Health and Senior Services. The site targets potential donors, families, and healthcare professionals, facilitating donor registration online, at DMV locations, or by mail. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Google Tag Manager, ensuring good SEO and analytics integration. It uses HTTPS with a valid SSL certificate and employs Google reCAPTCHA for form security. The site is mobile-optimized and accessible, with a moderate performance profile. However, DNSSEC is not enabled, and security headers are not explicitly detected, indicating room for improvement in security hardening. From a security perspective, the site demonstrates good baseline practices including HTTPS enforcement and domain status protections. There is no evidence of exposed sensitive data or vulnerabilities in the HTML content. However, the absence of a published security policy, incident response contacts, and cookie consent mechanisms suggests gaps in compliance and transparency. The WHOIS data is consistent with the website's official nature, showing a domain age appropriate for the business history and no privacy protection, which aligns with the public nature of the service. Overall, the website is professional, trustworthy, and serves its public health mission effectively. Strategic improvements in security headers, DNSSEC, privacy compliance, and incident response transparency would enhance its security posture and regulatory compliance, further strengthening user trust and operational resilience.

Missouri Grown USA is a government-backed program operated by the Missouri Department of Agriculture to promote locally grown agricultural products within Missouri. The website serves as a portal for consumers to discover Missouri-grown products, farmers' markets, and membership opportunities. It also offers gift boxes and supports local farmers and businesses. The site targets Missouri residents and consumers interested in supporting local agriculture. Technically, the website uses a modern but straightforward tech stack including jQuery, Bootstrap, Font Awesome, and analytics tools such as Matomo and Google Analytics 4. The site is hosted with reputable providers and uses HTTPS with domain locks to ensure domain integrity. Security posture is moderate with some gaps such as lack of DNSSEC and missing security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Business credibility is high given the official government affiliation and consistent branding. Overall, the website is professional, functional, and trustworthy but could improve in privacy compliance and security hardening.

Missouri Grown USA is a government-backed program operated by the Missouri Department of Agriculture to promote locally grown agricultural products within Missouri. The website serves as a platform to connect consumers with Missouri farmers and businesses offering products such as produce, meat, dairy, baked goods, and gift boxes. It also provides information on farmers' markets and membership benefits. The site targets consumers interested in supporting local agriculture and businesses in Missouri. Technically, the website uses a combination of jQuery, Bootstrap, and analytics tools including Matomo and Google Analytics. The site is hosted with a reputable registrar and uses HTTPS, but lacks some security headers and privacy policies, which are areas for improvement. The domain registration is consistent with the business purpose and shows no suspicious patterns.

The Missouri Division of Tourism operates the official Visit Missouri website, providing comprehensive travel resources, event listings, and guides to promote tourism in the state. The site targets a broad audience including families, outdoor enthusiasts, and cultural tourists, positioning itself as the authoritative source for Missouri travel information. Technically, the website is built on WordPress with a modern tech stack including Yoast SEO, Google Tag Manager, and HubSpot analytics, ensuring good SEO, accessibility, and user experience. Security posture is strong with HTTPS, reCAPTCHA, and cookie consent mechanisms, though explicit security headers and a vulnerability disclosure policy are absent. The WHOIS data is unavailable, which is unusual but not uncommon for government-related domains, and does not detract significantly from the site's legitimacy given its official branding and partner endorsements. Overall, the site is professional, trustworthy, and well-optimized for its purpose.

M

Missouri Department of Natural Resources

mostateparks.com

0

The Missouri State Parks website is an official government platform managed by the Missouri Department of Natural Resources, providing comprehensive information about state parks, historic sites, activities, reservations, and visitor resources. The site targets a broad audience including residents, tourists, and outdoor enthusiasts, positioning itself as the primary authoritative source for Missouri State Parks. The business model is a government-operated public service with a large scope and long-established presence since 1999. Technically, the website is built on Drupal CMS with a modern tech stack including jQuery, Google Maps API, and various JavaScript libraries for enhanced user experience. Performance is moderate with good mobile optimization and basic accessibility features. The site uses third-party analytics and monitoring tools such as Google Analytics and New Relic, indicating a mature digital infrastructure. From a security perspective, the site enforces HTTPS and has domain transfer protections but lacks DNSSEC and visible security headers like CSP or HSTS. There is no visible privacy or cookie policy, which is a compliance gap. No incident response or security contact information is provided. No WAF or blocking mechanisms are detected, and no suspicious content or vulnerabilities are apparent. Overall, the website is professional, trustworthy, and content-rich but would benefit from enhanced privacy compliance and security hardening. The risk level is low, but improvements in security headers, DNSSEC, and privacy disclosures are recommended.

M

Missouri Department of Transportation

modot.org

0

The Missouri Department of Transportation (MoDOT) operates as the primary state government agency responsible for transportation infrastructure and services within Missouri. The website serves as a comprehensive portal for residents, travelers, contractors, and businesses, providing critical information on road conditions, projects, permits, and traveler resources. MoDOT maintains a strong market position as the authoritative transportation entity in the state, offering a wide range of services including road maintenance, traveler information, and regulatory compliance support. Technically, the website is built on Drupal 10, leveraging modern web technologies such as Font Awesome 6 and integrating analytics tools like Google Analytics and Facebook Pixel. The site demonstrates good digital maturity with mobile optimization, accessibility features, and SEO best practices. Performance is moderate, with a well-structured navigation system and professional design. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses secure forms consistent with Drupal's framework. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public vulnerability disclosure policy and incident response contact information suggests room for improvement in transparency and security readiness. Overall, MoDOT's website reflects a high level of professionalism and trustworthiness appropriate for a government entity. The lack of WHOIS data limits domain registration trust verification, but the official .org domain and consistent branding support legitimacy. Strategic recommendations include publishing security policies, enhancing incident response visibility, and maintaining ongoing security assessments to uphold trust and compliance.

M

Missouri Coalition for Roadway Safety

savemolives.com

0

The Missouri Coalition for Roadway Safety website serves as an authoritative platform for promoting traffic safety initiatives across Missouri. It is a government-affiliated coalition focused on reducing traffic fatalities and serious injuries through public awareness campaigns, training programs, and data-driven strategies. The site is well-branded and targets Missouri residents, safety advocates, and government stakeholders. Technically, the site is built on Drupal 10 with modern libraries and is hosted on AWS Cloudfront CDN, ensuring good performance and mobile responsiveness. Security posture is solid with HTTPS and trusted analytics integrations, though it lacks explicit security headers and published privacy or cookie policies. The absence of WHOIS data for the domain is a notable anomaly that slightly reduces trust but does not overshadow the site's professional presentation and government affiliation. Overall, the site is a high-quality resource for roadway safety information in Missouri, with room for improvement in privacy compliance and security transparency.

Avangate is a well-established global eCommerce and subscription billing platform founded in 2006, specializing in enabling software companies, SaaS providers, and digital goods sellers to grow their online sales worldwide. The company positions itself as a leading platform with over 4,000 clients and offers a comprehensive suite of services including eCommerce management, subscription billing, global payments, affiliate networks, and marketing tools. The website reflects a professional and consistent brand image with good content quality and user experience. Technically, the website employs a modern technology stack including jQuery, Google Tag Manager, Facebook Pixel, and other analytics and marketing tools. It is protected by the Incapsula WAF, ensuring a baseline security posture. The site is mobile optimized and uses HTTPS with good SSL configuration, although some recommended security headers are missing. Analytics and tracking are extensive, with clear cookie consent mechanisms and privacy policies indicating GDPR compliance. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and WAF protection but could improve by implementing additional security headers and enhancing accessibility compliance. The absence of WHOIS data transparency is a concern, reducing trustworthiness from a domain registration perspective. No explicit incident response or vulnerability disclosure information is found, which could be improved to enhance security posture. Overall, Avangate's website is professional, functional, and secure with minor areas for improvement. The business credibility is high, supported by customer testimonials, industry awards, and a strong market position. The main risk lies in the lack of WHOIS transparency, which should be addressed to improve trust and compliance.

P

Privacy service provided by Withheld for Privacy ehf

8b.io

0

8b.io is a technology company providing a SaaS platform that enables social media users to create a single landing page containing multiple links, commonly known as a 'link in bio' page. The service targets a broad audience including artists, content creators, businesses, bloggers, and activists, helping them consolidate their social media presence and promote content effectively. The company appears to be established since 2014 and operates with a small business profile. The website is professionally designed with good user experience and mobile optimization, leveraging modern frontend technologies such as Bootstrap and Mobirise, and integrates popular analytics and marketing tools like Google Analytics and Facebook Pixel. From a technical perspective, the website uses Cloudflare DNS and serves content over HTTPS, though no advanced security headers were detected in the provided data. The site lacks visible privacy, cookie, or terms of service policies, which impacts its privacy compliance score. No contact emails or phone numbers are provided, limiting direct communication channels. The WHOIS data shows privacy protection for the registrant, which is common and justified for this business type, with a domain age consistent with an established service. Security posture is moderate with no critical vulnerabilities detected, but improvements are recommended in publishing privacy and cookie policies, implementing security headers, and providing incident response contacts. The website content is safe for general audiences with no adult or questionable content. Overall, the site demonstrates a solid business and technical foundation but requires enhancements in privacy compliance and security transparency to improve trust and regulatory adherence.

J

JobRouter GmbH

jobrouter.com

0

JobRouter GmbH operates a sophisticated low-code digital process automation platform designed to help enterprises automate and optimize their business workflows. With over 20 years of experience and a broad international partner network, JobRouter serves more than 2,000 customers and 1.2 million users globally. Their platform integrates process automation, agile document management, and data intelligence, targeting businesses seeking scalable and customizable digital transformation solutions. The website reflects a mature digital presence with comprehensive content, clear navigation, and multi-language support. Technically, the site is built on TYPO3 CMS and employs Matomo for privacy-conscious analytics, demonstrating a commitment to user privacy and data protection. Security-wise, the platform enforces HTTPS and provides a vulnerability disclosure policy, though it lacks some advanced security headers and direct security contact information. The absence of WHOIS registration data is a notable anomaly, potentially due to privacy protection or data source limitations, which slightly impacts trustworthiness. Overall, JobRouter presents a professional, trustworthy, and technically sound digital footprint aligned with its business objectives.

C

Campus Comforts

campuscomforts.com

0

Campus Comforts is an e-commerce retailer specializing in providing move-in ready products and comforts tailored for university students. The website leverages WordPress with WooCommerce and Elementor, integrating third-party tools such as Zoho SalesIQ for live chat and CookieYes for cookie consent management. The business appears to be niche-focused with a clear target audience of university students and their families, offering services like free shipping and easy returns. The domain is mature, registered since 1998, and protected with registrar locks, indicating a stable business presence. Technically, the website uses a modern CMS and e-commerce platform with good mobile optimization and moderate performance. The site implements HTTPS and has a cookie consent mechanism, but lacks DNSSEC and explicit privacy and security policies. Analytics and advertising tools such as Google Analytics and DoubleClick are used, with moderate user tracking levels. Accessibility and SEO are basic to good, but there is room for improvement in privacy compliance and security transparency. Security posture is generally good with HTTPS and domain locking, but the absence of DNSSEC, security.txt, and incident response contacts are gaps. No critical vulnerabilities or malware indicators were found. Privacy compliance is partial due to missing privacy policy and terms of service pages. Overall, the site is safe for general audiences with no adult or questionable content. Recommendations include enabling DNSSEC, publishing comprehensive privacy and security policies, adding vulnerability disclosure information, and enhancing accessibility features to improve compliance and trust.

V

VISION Consulting

vc-g.de

0

VISION Consulting is a German consulting firm focused on providing advisory services with a human-centric approach. The website presents a professional image using the WordPress platform with the Divi theme, optimized with lazy loading scripts and font preloading for performance. However, the site lacks explicit privacy, cookie, and terms of service policies, which are critical for GDPR compliance and user trust. Security posture is basic with no detected security headers or incident response contacts, indicating room for improvement in protecting user data and enhancing trust. Overall, the website is functional and professional but would benefit from enhanced security and compliance measures to reduce risk and improve credibility.

top itservices AG is a well-established German IT personnel service provider with over 40 years of experience. The company specializes in personnel placement, employee leasing, and freelancer mediation, targeting businesses seeking IT staffing solutions. The website reflects a professional and consistent brand presence with good content quality and clear navigation. The technical infrastructure is based on Liferay CMS with modern technologies such as React and YUI, supported by Google Tag Manager and Cookiebot for analytics and consent management. The site is mobile optimized and SEO friendly. Security posture is good with HTTPS enforced and domain transfer protection, though DNSSEC is not enabled and no explicit security or incident response policies are published. Privacy compliance is strong with a comprehensive GDPR-compliant privacy policy and an active cookie consent mechanism. Overall, the domain registration is consistent with the business claims, indicating legitimacy and trustworthiness.

G

GovMind GmbH

govmind.tech

0

GovMind GmbH operates a specialized SaaS platform designed to support public sector procurement processes in Germany. Their platform offers a comprehensive suite of tools including an Anforderungsassistent (requirements assistant), a large database of innovative products and companies, and sustainability checks, targeting public authorities and municipalities. The company positions itself as a key enabler for digital and innovative procurement solutions in the government sector. Technically, the website is built on a modern WordPress infrastructure with popular plugins for SEO, forms, and security features like Google reCAPTCHA. The site is well-structured, mobile-optimized, and professionally designed, reflecting a mature digital presence. Security posture is solid with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the business credibility is high, supported by visible references and transparent contact information.

B

Bundesanzeiger Verlag

bundesanzeiger.de

0

The Bundesanzeiger website serves as the official publication platform for the Federal Republic of Germany, operated by the Bundesanzeiger Verlag under the auspices of the Federal Ministry of Justice and Consumer Protection. It provides legally mandated announcements, corporate disclosures, and various specialized services such as the Fondsdata platform, shareholder forums, and restructuring forums. The platform targets companies, government entities, investors, and the general public seeking official legal and financial information. The business model is centered on providing authoritative, government-backed publication and information services, positioning it as a critical infrastructure in the German legal and corporate transparency ecosystem. Technically, the website is built on the Apache Wicket framework with modern JavaScript libraries such as jQuery and Select2, hosted on PlusServer infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, with a professional and consistent design. The presence of secure login forms, cookie consent mechanisms, and strict referrer policies indicate a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs secure form handling, and provides security policy information, though explicit security headers are not visible in the provided data. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and GDPR adherence. Contact information is readily available, enhancing trust and transparency. Overall, the Bundesanzeiger website exhibits a high level of professionalism, security, and compliance suitable for its role as a government publication platform. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and providing explicit incident response contacts to further strengthen its security posture and trustworthiness.

A

Aulinger Rechtsanwälte und Notare

aulinger.eu

0

Aulinger Rechtsanwälte und Notare is a large full-service economic law firm based in North Rhine-Westphalia, Germany, offering comprehensive legal and notarial services to corporations, public sector entities, and private individuals. The firm emphasizes expertise across a broad range of legal fields, supported by over 50 legal professionals. Their website is professionally designed using TYPO3 CMS, with media assets hosted on Amazon S3, and includes a robust cookie consent mechanism via Cookiebot, reflecting a commitment to privacy compliance. However, no explicit privacy policy or terms of service pages were detected in the provided content. The absence of publicly available WHOIS data is consistent with EURid's privacy policies for .eu domains, and the firm's privacy protection is typical for legal service providers.