Security Directory

S

Stadtwerke Bonn

stadtwerke-bonn.de

0

Stadtwerke Bonn (SWB) is a large regional utility provider based in Germany, offering a comprehensive range of services including energy supply (electricity and gas), water, public transportation, waste management, and district heating. The company positions itself as a top local supplier with a strong commitment to sustainability and climate protection, targeting a broad audience including residential customers and families. Their business model integrates multiple utility and mobility services under the SWB brand, supported by several related domains and subsidiaries. Technically, the website is built on the TYPO3 CMS platform, employs modern web technologies such as JavaScript and Owl Carousel, and is hosted on reputable German infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a good user experience and professional design. Security-wise, the site enforces HTTPS, implements cookie consent mechanisms, and avoids exposing sensitive data. However, it lacks publicly visible security policies and incident response contacts, which could be improved. Overall, the website demonstrates a mature digital presence with strong privacy compliance and trustworthy business credibility.

G

Göttingen Tourismus

goettingen-marketing.de

0

Göttingen Tourismus operates a comprehensive and professionally designed official tourism website for the city of Göttingen, Germany. The site provides extensive information on local attractions, events, accommodations, and cultural offerings, targeting tourists, families, and business visitors. The business model focuses on destination marketing and visitor engagement through digital content, event promotion, and booking facilitation. The website demonstrates strong branding consistency and trust indicators, including social media integration and structured data usage. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, Oxygen Builder, and Usercentrics for cookie consent management. It employs various third-party services for analytics (etracker), booking (Regiondo), and email marketing (Sendinblue). The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate and could benefit from further optimization. From a security perspective, the website enforces HTTPS and uses cookie consent mechanisms aligned with GDPR. While no critical vulnerabilities or exposed sensitive data were detected, the site lacks explicit security headers and a published security policy or incident response contact. The WHOIS data is consistent with the website's official nature, showing no suspicious patterns or privacy protection that would raise concerns. Overall, Göttingen Tourismus presents a low-risk, trustworthy online presence with good privacy compliance and a solid technical foundation. Strategic improvements in security headers and incident response transparency could further enhance its security posture.

B

Brinkhaus / Ferchow

bf-net.de

0

Brinkhaus / Ferchow is a small creative agency specializing in web design, advertising, and online marketing services primarily targeting clients in Oldenburg, Rastede, and surrounding regions in Germany. The website is built on WordPress using Elementor and jQuery, reflecting a moderate level of technical maturity with good mobile optimization and a professional design. Security posture is adequate with HTTPS enabled, but lacks advanced security headers and formal policies such as privacy or cookie policies. No incident response or vulnerability disclosure mechanisms are evident. Overall, the website presents a professional image but could improve compliance and security transparency.

L

Landeshauptstadt Mainz

mainz.de

0

Landeshauptstadt Mainz operates an official municipal government website providing comprehensive information and services related to city administration, politics, tourism, culture, and public events. The site targets residents, tourists, and businesses, offering multilingual support and various online services. The technical infrastructure is based on the Sitepark Information Enterprise Server CMS, utilizing modern JavaScript libraries such as jQuery and Modernizr, with Matomo analytics integrated for user tracking under GDPR-compliant consent mechanisms. Accessibility and mobile optimization are well implemented, reflecting a mature digital presence. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though explicit security headers and incident response contacts are not evident. The WHOIS data aligns with the official city domain, confirming legitimacy and trustworthiness. Overall, the website demonstrates high professionalism, good security hygiene, and strong compliance with privacy regulations.

C

Campana & Schott

campana-schott.com

0

Campana & Schott is a large international management and technology consulting firm headquartered in Germany, with over 600 employees across Europe and the USA. The company specializes in digital transformation, project and change management, Microsoft technologies, and IT strategy consulting. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive service descriptions targeting business clients undergoing significant organizational and technological changes. Technically, the site is built on TYPO3 CMS, uses modern web technologies, and integrates consent management via Usercentrics, indicating attention to privacy compliance. Security posture is good with HTTPS and consent mechanisms, though explicit security headers could be improved. The absence of WHOIS data is a notable anomaly, reducing trust slightly, but the overall professional presentation and market position support legitimacy. No adult or questionable content is present, and the site is fully accessible without WAF blocking.

S

Stadtverwaltung Eschborn

eschborn.de

0

The website www.eschborn.de serves as the official municipal portal for the city administration of Eschborn, Germany. It provides a comprehensive range of online services and information targeted at citizens, businesses, and visitors. The site is well-branded and includes extensive accessibility features to support diverse user needs. The content is primarily in German with multi-language support available through an integrated accessibility tool. The business model is focused on public service delivery and community engagement, positioning the city government as a trusted local authority. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and employs modern web technologies including Bootstrap and jQuery. Analytics are managed via Matomo and Google Tag Manager, indicating a moderate level of digital maturity. The site is mobile-optimized and demonstrates good SEO and accessibility practices, although some performance optimizations could be considered. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data aligns with the official nature of the site, showing consistent domain registration and hosting. Overall, the website presents a professional and trustworthy digital presence for the Eschborn city administration. Strategic improvements in privacy policy publication, security header implementation, and incident response transparency would enhance compliance and security posture further.

I

IHK Frankfurt am Main

startup-pilot.online

0

IHK Frankfurt am Main operates as a regional chamber of commerce and industry, providing a comprehensive platform called Startup-Pilot FrankfurtRheinMain that aggregates over 300 regional support offerings for startups. These include networking opportunities, financing, talent activation, accelerator programs, incubators, and competitions, targeting startups and innovation-driven enterprises in the FrankfurtRheinMain region. The website serves as a key resource for startups, investors, and academic institutions, positioning IHK Frankfurt am Main as a central facilitator in the regional startup ecosystem. Technically, the website is built on the CoreMedia CMS platform, utilizing modern web technologies including JavaScript, CSS, and HTML5. It integrates third-party services such as eTracker for analytics, Userlike for chat support, and CCM19 for cookie consent management, reflecting a mature digital infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, ensuring a positive user experience across devices. From a security perspective, the site enforces HTTPS, employs cookie consent mechanisms with granular user control, and uses secure forms with CSRF tokens. While explicit security policies and incident response information are not published, no vulnerabilities or exposed sensitive data were detected. The domain and WHOIS data align with the official branding and regional chamber identity, supporting legitimacy and trustworthiness. Overall, the website presents a professional, secure, and privacy-compliant digital presence that effectively supports its business mission. Strategic improvements could include publishing detailed security policies, incident response contacts, and vulnerability disclosure information to enhance transparency and trust further.

Hofheimer Wohnungsbau GmbH (HWB) is a regional real estate company focused on socially responsible housing and city development in Hofheim am Taunus, Germany. The company offers a broad range of services including residential construction, social management, property management, and community engagement. Their market position is that of a trusted local housing provider with a strong emphasis on social responsibility and sustainability, supported by published annual and sustainability reports. Technically, the website employs a moderate technology stack with jQuery and several UI libraries, delivering a well-structured, mobile-optimized, and accessible user experience. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and updating legacy libraries. Privacy compliance is partially met with a privacy policy and cookie policy present, but lacks an active cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with the business's mission and audience.

S

Spezial Tourenwagen Trophy

spezial-tourenwagen-trophy.de

0

Spezial Tourenwagen Trophy (STT) is a well-established German motorsport racing series founded in 1986, catering to both professional and amateur racing drivers. The website serves as a central hub for news, event schedules, race results, and media galleries related to the racing series. It maintains a professional and consistent brand presence with a focus on delivering relevant content to motorsport enthusiasts. Technically, the site employs modern web technologies including HTTPS, JavaScript, and cookie consent management tools, hosted on resellerinterface.de infrastructure. The site demonstrates good digital maturity with moderate performance and mobile optimization. Security-wise, the website enforces HTTPS and includes a comprehensive cookie consent mechanism, but lacks some advanced security headers and formal security policies. Privacy compliance is strong with GDPR-aligned cookie management and a detailed privacy policy. Overall, the site is trustworthy, professionally maintained, and serves its niche audience effectively.

H

Hochschule der Bildenden Künste Saar

hbksaar.de

0

The Hochschule der Bildenden Künste Saar (HBKsaar) is a public higher education institution specializing in fine arts and design, located in Saarbrücken, Germany. The website serves as a comprehensive portal for prospective and current students, offering detailed information on academic programs, student services, events, and institutional news. The institution holds a solid regional position as an art university with a medium-sized footprint and a history dating back to 1970. Technically, the website is built on the Contao Open Source CMS platform, utilizing a range of front-end libraries including Bootstrap 3 and jQuery 1.11.2. While the site is generally well-structured, mobile-optimized, and accessible, some outdated libraries pose potential security risks. The hosting infrastructure appears to be university-affiliated, with nameservers linked to the German Research Network and Saarland University. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, but lacks explicit security headers and uses an outdated jQuery version, which could expose it to vulnerabilities. No dedicated security or incident response policies are publicly available. Privacy compliance is strong, with a clear privacy policy and cookie management in place. Overall, the website is professional, trustworthy, and serves its educational mission effectively. Strategic improvements in updating third-party libraries and enhancing security headers would further strengthen its security posture and compliance.

C

COREhub, S.R.L.

shop4runners.com

0

Shop4Runners is a German-language e-commerce retailer specializing in running shoes, clothing, and accessories. Established in 2011 and operated by COREhub, S.R.L., the website targets runners and sports enthusiasts primarily in German-speaking countries. The business model focuses on online retail with a curated selection of top brands and customer support services. The website demonstrates a professional design with clear navigation and mobile optimization, supporting a positive user experience. Technically, the site leverages Magento as its e-commerce platform with a modern frontend (Hyvä Themes), integrates marketing and analytics tools such as Google Tag Manager and SalesManago, and uses Cloudflare for DNS and likely CDN services. Security posture is adequate with HTTPS enforced and domain status protections, but lacks DNSSEC and visible security headers. Privacy compliance is limited due to absence of privacy and cookie policies and no cookie consent mechanism. Overall, the site is trustworthy and well-established but would benefit from enhanced privacy and security disclosures.

K

Knipp Medien und Kommunikation GmbH

shop4runners.eu

0

Shop4Runners.eu is a specialized e-commerce retailer focused on running shoes and apparel, offering products from well-known brands such as Asics, Adidas, and New Balance. The website targets runners and sports enthusiasts primarily in Germany and surrounding regions, providing services like free shipping and a 30-day return policy. The business is operated by Knipp Medien und Kommunikation GmbH, which is consistent with the domain registration data, indicating a legitimate and established entity. Technically, the website is built on Magento CMS with a modern frontend stack including JavaScript libraries and marketing tools such as Google Tag Manager and SalesManago. The site is mobile-optimized and provides a good user experience with clear navigation and professional design. Consent management for cookies is implemented, reflecting awareness of privacy regulations. From a security perspective, the site uses HTTPS with good SSL configuration and employs cookie consent mechanisms. However, it lacks visible security headers and does not publicly disclose security policies or incident response contacts, which are areas for improvement. No vulnerabilities or suspicious activities were detected in the provided content. Overall, Shop4Runners.eu presents a trustworthy and professional online retail platform with moderate to good technical maturity and privacy compliance. Strategic enhancements in security transparency and policy disclosures would further strengthen its security posture and customer trust.

B

Behinderten- und Rehabilitationssportverband Nordrhein-Westfalen e.V.

brsnw.de

0

Behinderten- und Rehabilitationssportverband Nordrhein-Westfalen e.V. (BRSNW) is a non-profit organization dedicated to enabling people with disabilities to participate in sports activities within the North Rhine-Westphalia region of Germany. The website serves as a comprehensive portal offering information about rehabilitation sports, inclusive sports programs, training, and support services for sports clubs and individuals. It holds a strong regional market position as a leading association in its sector. Technically, the website is built on the TYPO3 CMS platform, employs privacy-friendly Matomo analytics, and integrates a cookie consent mechanism compliant with GDPR. The site is well-structured, mobile-optimized, and accessible, reflecting a mature digital infrastructure. Security-wise, the site uses HTTPS and session management cookies but lacks explicit security headers and a published security policy or incident response contacts. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with room for improvement in security transparency and incident response readiness.

D

D.SPORTS

d-sports.de

0

D.SPORTS is a German sports-related website powered by TYPO3 CMS, targeting a general audience interested in sports activities or services. The website employs modern technologies such as Google Tag Manager for analytics and Usercentrics for cookie consent management, indicating a moderate level of digital maturity. However, the absence of explicit privacy policies, terms of service, and clear contact information suggests room for improvement in compliance and user trust. The security posture is adequate with HTTPS enabled and no detected blocking mechanisms, but lacks comprehensive security headers and incident response details. Overall, the site is functional and professional but would benefit from enhanced transparency and security practices to improve trust and compliance.

The website dafuer-sein-ist-alles.de is operated by the Deutscher Olympischer Sportbund e.V. (DOSB), the German Olympic Sports Confederation, serving as a platform to promote and inform about Germany's bid for the Olympic and Paralympic Games. It targets the German public and stakeholders interested in the Olympic movement, providing detailed information on bidding concepts from major German cities and regions, interactive tools, and news updates. The site enjoys strong government backing, evident from the partnership with the German Federal Ministry of the Interior and official logos displayed. Technically, the website employs modern web technologies including ES modules, Alpine.js for interactivity, and Vite for bundling. It integrates consent management via Consentmanager.net, analytics through Matomo, and uses Google reCAPTCHA for form security. The site is well-optimized for mobile devices, fast loading, and accessible, with good SEO practices and structured data enhancing search visibility. From a security perspective, the site enforces HTTPS, uses reCAPTCHA to protect forms, and manages cookie consent properly. While explicit security headers like X-Content-Type-Options and X-Frame-Options are not visible in the HTML, the overall security posture is strong with no exposed sensitive data or vulnerable libraries detected. Privacy compliance is robust, with a comprehensive privacy policy and cookie consent mechanism in place. Overall, the website presents a professional, trustworthy, and secure platform aligned with its governmental and non-profit nature. It effectively balances user engagement, privacy, and security, making it a reliable source for information on Germany's Olympic bid.

L

Lumosa GmbH

sportplatzbeleuchtung.de

0

Lumosa GmbH is a specialized manufacturer and service provider of LED floodlighting solutions for sports facilities, including football, tennis, hockey, and equestrian sports. The company positions itself as a leading player in the European market with a strong focus on energy efficiency and innovative lighting technology. Their website reflects a professional and well-structured digital presence, leveraging WordPress CMS and modern web technologies to deliver a responsive and user-friendly experience. Privacy and cookie policies are well implemented with consent mechanisms, indicating good compliance with GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although some security headers could be improved. Overall, the domain and website content are consistent and trustworthy, supporting Lumosa's market position as a reputable business in the energy-efficient sports lighting sector.

A

Auto Centrum Lass GmbH

autocentrum-lass.de

0

Auto Centrum Lass GmbH is a medium-sized regional automobile dealership specializing in Toyota vehicles, serving customers primarily in Schleswig-Holstein, Germany. The company offers a comprehensive range of services including new and used car sales, financing options, vehicle servicing, test drives, and electric mobility solutions. Their market position is that of a trusted Toyota partner with a strong local presence. The website reflects a professional and consistent brand image with good content quality and clear navigation tailored to car buyers and service customers. Technically, the site is built on WordPress with Elementor and leverages modern web technologies such as Alpine.js and Swiper.js, hosted on INWX infrastructure. The site is mobile-optimized and implements structured data for SEO benefits. Security-wise, the website enforces HTTPS, uses security headers, and provides a cookie consent mechanism compliant with GDPR. However, it lacks explicit security policy and incident response information, which could be improved. Overall, the domain registration data aligns well with the website content, supporting the legitimacy of the business.

Müllverbrennung Kiel GmbH & Co. KG (MVK) operates a highly efficient and environmentally friendly waste-to-energy facility in Kiel, Germany, processing approximately 140,000 tons of household and commercial waste annually. The company serves around 500,000 residents and employs about 70 staff members. Ownership is split between the City of Kiel (51%) and REMONDIS GmbH (49%), positioning MVK as a key regional player in waste management and energy recovery. The website reflects a professional and consistent brand image with clear business information and contact details. Technically, the site is built on the Contao CMS platform, utilizing common JavaScript libraries and a cookie consent mechanism compliant with GDPR requirements. Analytics are handled via Matomo, ensuring privacy-conscious tracking.

M

MULTA MEDIO AG

lotto-sh.de

0

LOTTO Schleswig-Holstein operates as the official regional lottery provider for Schleswig-Holstein, Germany, offering a comprehensive portfolio of lottery games including LOTTO 6aus49, Eurojackpot, GlücksSpirale, BINGO!, KENO, Rubbellose, and TOTO. The website facilitates online ticket purchases, subscription services, and jackpot tracking, targeting adult lottery players within the region. The platform is professionally designed with consistent branding and clear navigation, supporting a positive user experience. Technically, the site employs modern JavaScript frameworks, consent management via Usercentrics, and analytics through Etracker, hosted likely on Telekom infrastructure, ensuring reliable performance and compliance with data protection regulations. Security posture is solid with HTTPS enforcement, CAPTCHA integration, and ISO 27001 certification, though some security headers could be enhanced. Overall, the site demonstrates a mature digital presence aligned with legal and regulatory requirements for gambling services in Germany.

R

REMONDIS Entsorgung

remondis-entsorgung.de

0

REMONDIS Entsorgung operates as a leading enterprise in the waste management and environmental services sector in Germany. The company offers a broad range of services including waste disposal, management, sorting, transport, and recycling solutions tailored for businesses. Their market position is strong, supported by a professional website that clearly communicates their services and target audience. The website is built on TYPO3 CMS and integrates modern consent management tools such as Cookiebot, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforcement and standard security headers, although explicit security policies and incident response information are not publicly available. Overall, the website demonstrates good compliance with privacy regulations, including GDPR, through comprehensive cookie consent mechanisms. The risk profile is low, with no critical vulnerabilities or suspicious indicators detected. Strategic recommendations include publishing detailed security and incident response policies, implementing a vulnerability disclosure program, and enhancing accessibility features to further improve compliance and user trust.

Schleswig-Holstein Netz GmbH operates as a regional energy network operator serving Schleswig-Holstein and parts of Nordniedersachsen in Germany. The company provides essential services including electricity and gas network connections, energy feed-in, and customer support portals. The website is professionally designed, well-structured, and targets both residential and commercial customers in the energy sector. The presence of multiple customer portals and detailed service information indicates a mature digital presence. Technically, the site leverages modern JavaScript frameworks like React, integrates consent management via Usercentrics, and uses analytics tools such as Matomo and Google Tag Manager, reflecting a good level of digital maturity. Security posture is strong with HTTPS enforced, consent mechanisms in place, and no obvious vulnerabilities detected. However, the absence of publicly available WHOIS registration data for the domain www.sh-netz.com raises concerns about domain legitimacy and ownership transparency. This discrepancy should be addressed to improve trust. Overall, the site is a reliable and professional resource for energy network customers but would benefit from clearer domain registration information and enhanced security policy disclosures.

P

Provinzial Versicherung Aktiengesellschaft

provinzial.de

0

Provinzial Versicherung Aktiengesellschaft operates as a regional insurance provider in Germany, offering services focused on property protection, securing existence, and future planning. The website targets a general audience seeking insurance consultation and services within their region. The company positions itself as a trusted, established player in the finance and insurance sector with a clear regional focus. The website content is professionally presented with good branding consistency and accessibility features, including multiple accessibility profiles to support users with disabilities.

S

Sparkassen- und Giroverband für Schleswig-Holstein

sgvsh.de

0

The Sparkassen- und Giroverband für Schleswig-Holstein is a regional umbrella association serving the savings banks in Schleswig-Holstein, Germany. It acts as a partner, service provider, and representative body offering career services, sustainability initiatives, legal and personnel support, and financial information. The website reflects a professional and consistent brand presence targeting regional financial institutions and the general public interested in savings banks. Technically, the site is built on TYPO3 CMS with a modern responsive design, good accessibility, and moderate performance. Security posture is adequate with HTTPS enforced and secure forms, but lacks visible security headers and published security policies. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and well-maintained but could improve in security transparency and privacy compliance.

H

Hamburger Sportjugend

hamburger-sportjugend.de

0

Hamburger Sportjugend is a well-established non-profit organization dedicated to youth sports in Hamburg, representing over 220,000 athletes. The website provides comprehensive information about their services including education, voluntary services, funding, and prevention of sexualized violence. Their market position is strong within the Hamburg sports community, supported by partnerships and a clear digital presence. Technically, the website is built on WordPress with Elementor, offering good mobile optimization, accessibility, and SEO practices. Security posture is solid with HTTPS, security headers, and cookie consent mechanisms in place, though there is room to improve by publishing explicit security policies and incident response information. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

K

KERN CHERKEH Rechtsanwälte Partnerschaft mbB

kern-cherkeh.de

0

KERN CHERKEH Rechtsanwälte Partnerschaft mbB is a specialized law firm based in Hannover, Germany, offering expert legal services primarily in labor law, sports law, banking and capital markets law, and compliance. The firm positions itself as a top legal service provider with nationwide reach, emphasizing high-quality, practice-oriented legal advice and representation. Their recognition as a top law firm in sports law by WirtschaftsWoche underscores their market credibility and expertise. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript with the Swiper.js library for interactive elements. The site is mobile-optimized and presents content clearly, though some advanced accessibility features are basic. Security-wise, the site uses HTTPS but lacks visible security headers and explicit security policies, which suggests room for improvement in hardening the security posture. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism was detected. Overall, the website is professional and trustworthy, with clear contact information and relevant content for its target audience.

S

Staatskanzlei des Landes Nordrhein-Westfalen

sportland.nrw

0

Sportland.NRW is an official government platform operated by the Staatskanzlei des Landes Nordrhein-Westfalen, dedicated to promoting sports activities, events, and funding opportunities within the North Rhine-Westphalia region. The website serves a broad audience including sports fans, athletes, clubs, and event organizers, providing comprehensive information about sports in the region, upcoming events, and government initiatives. The platform maintains a strong market position as the authoritative source for sports-related information in NRW, supported by consistent branding and official government endorsements. Technically, the website is built on Drupal 10 CMS, leveraging modern frontend technologies such as Font Awesome 6 and Bootstrap components. It integrates Matomo for privacy-conscious analytics and implements a robust cookie consent mechanism compliant with GDPR. The site is mobile-optimized and accessible, with good SEO practices and clear navigation, contributing to an excellent user experience. From a security perspective, the site enforces HTTPS and employs cookie consent controls to manage tracking. While DNSSEC is not enabled, the domain registration is consistent and transparent, with no suspicious patterns detected. No critical vulnerabilities or exposed sensitive data were found in the content. However, additional security headers and a vulnerability disclosure policy could enhance the security posture. Overall, Sportland.NRW presents a trustworthy, professional, and well-maintained digital presence for government sports promotion. The risk profile is low, with strong compliance to privacy regulations and good technical implementation. Strategic recommendations include enabling DNSSEC, adding security headers, and publishing a security.txt file to further improve security and transparency.

A

ASS-Einrichtungssysteme GmbH

ass.de

0

ASS-Einrichtungssysteme GmbH is a German family-owned manufacturer specializing in ergonomic and modern school furniture and learning environments. The company has a strong market position in the education sector, offering a wide range of products including chairs, tables, storage solutions, and digital learning accessories such as the FLEXCHARGE® system. The website reflects a medium-sized enterprise with a focus on quality and ergonomic design, targeting educational institutions and schools primarily in Germany. Technically, the website is built on a modern stack with Pimcore CMS, uses Cloudflare DNS, and is hosted by Hetzner Online GmbH. It features responsive design and good SEO practices, although some accessibility features could be improved. Security posture is solid with HTTPS and cookie consent mechanisms in place, but lacks explicit security headers and public security policies. Overall, the site is professional, trustworthy, and safe for general audiences.

R

Rheinischer Sparkassen- und Giroverband

rsgv.de

0

The Rheinischer Sparkassen- und Giroverband (RSGV) is a regional financial association based in Düsseldorf, Germany, representing 27 Sparkassen in the Rheinland region. It provides advisory services and represents the interests of its member savings banks, aligning with the Deutscher Sparkassen- und Giroverband. The website reflects a professional and consistent brand image, targeting financial institutions and the public. The business model focuses on regional financial collaboration and policy coordination. Technically, the site is built on TYPO3 CMS, uses Matomo for analytics, and implements a cookie consent mechanism compliant with GDPR. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is solid with HTTPS enforced and no exposed sensitive data, though explicit security policies and incident response contacts are absent. WHOIS data confirms domain legitimacy and consistency with the organization's claims. Overall, the site is trustworthy and well-maintained, supporting the organization's credibility and digital presence.

P

Pfeifer & Langen GmbH & Co. KG

pfeifer-langen.de

0

Pfeifer & Langen GmbH & Co. KG is a well-established German sugar manufacturing company founded in 1870, specializing in regional and sustainable sugar production. Their website reflects a mature digital presence with a focus on B2B customers across food, chemical, pharmaceutical, and feed industries, as well as agricultural partners. The company emphasizes sustainability and regional sourcing as key differentiators. Technically, the website is built on the Sitefinity CMS platform, integrates Google Tag Manager for analytics, and uses modern UI components like Swiper.js for interactive content. The site is mobile-optimized and provides a professional user experience with clear navigation and rich content. Security posture is generally good with HTTPS enforced and no visible sensitive data exposure; however, the absence of security headers and explicit security policies indicates room for improvement. The lack of WHOIS domain registration data is a notable concern, though the website's branding and external social media presence support its legitimacy. Overall, the site scores well on content quality and privacy compliance but should address domain registration transparency and enhance security disclosures.

W

WestLotto

westlotto.de

0

WestLotto.de is the official state lottery operator for North Rhine-Westphalia (NRW), Germany, providing a range of lottery and gaming services including LOTTO, Eurojackpot, KENO, TOTO, and GlücksSpirale. The website targets adult residents of NRW and positions itself as a secure and reliable state-run gaming platform. The business model is focused on regulated lottery services under government oversight, with a strong regional market presence.

The website 'Vereinssuche Landessportbund Nordrhein-Westfalen e.V.' serves as an informational platform for searching sports clubs affiliated with the Landessportbund Nordrhein-Westfalen, a regional non-profit sports federation in Germany. The site targets residents and sports enthusiasts in North Rhine-Westphalia, providing a centralized resource for club information. The business model is non-profit and focused on public service rather than commercial revenue. Technically, the site employs modern web technologies including Blazor WebAssembly and Bootstrap CSS, indicating a contemporary frontend infrastructure. Hosting appears to be managed via Deutsche Telekom infrastructure, inferred from the nameservers. The site shows moderate performance and basic mobile optimization, with dynamic content loading via Blazor. However, the content on the main HTML is minimal, relying on client-side rendering. From a security perspective, the site uses HTTPS, but no explicit security headers were detected in the provided data. There are no visible privacy or cookie policies, nor contact information for security incidents, which limits compliance and user trust. No forms or data collection mechanisms were found on the landing page, reducing immediate attack surface but also limiting user engagement features. Overall, the website is legitimate and consistent with its stated purpose and regional focus. However, improvements in privacy compliance, security headers, and contact transparency are recommended to enhance trust and regulatory adherence.

S

Sportjugend Nordrhein-Westfalen

sportjugend.nrw

0

Sportjugend Nordrhein-Westfalen is a regional youth sports organization affiliated with the Landessportbund Nordrhein-Westfalen, focusing on youth engagement, sports education, volunteer services, and community programs in the German state of North Rhine-Westphalia. The website serves as a comprehensive portal for information on various youth sports initiatives, qualification programs, and events, targeting young people, sports clubs, and volunteers. Technically, the site is built on the TYPO3 CMS platform, integrating modern web technologies such as Google Tag Manager, Google Analytics, and accessibility tools like ReadSpeaker. The website is well-structured, mobile-optimized, and includes a cookie consent mechanism aligned with GDPR requirements. Security-wise, the site enforces HTTPS and uses cookie consent but lacks explicit security headers and a published security policy or incident response contacts. The WHOIS data is privacy protected, which is typical and justified for a non-profit organization. Overall, the website demonstrates a mature digital presence with good content quality and compliance, supporting its role as a trusted regional youth sports entity.

L

Landessportbund Nordrhein-Westfalen e.V.

lsb-nrw.de

0

The Landessportbund Nordrhein-Westfalen e.V. is a large, non-profit regional sports umbrella organization serving the state of North Rhine-Westphalia, Germany. It provides a broad range of sports programs, information, and funding opportunities for sports clubs and individuals. The website is professionally designed, well-structured, and targets sports organizations and enthusiasts within NRW. The technical infrastructure is based on TYPO3 CMS with integration of modern analytics and marketing tools such as Google Tag Manager, Google Analytics, and Facebook Pixel. Accessibility features and cookie consent mechanisms are implemented, reflecting a mature digital presence. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though security headers could be improved. WHOIS data is privacy protected, which is typical for such organizations, and does not raise legitimacy concerns given the website's professional nature and content. Overall, the site demonstrates a strong commitment to privacy compliance and user experience.

H

Hessischer Turnverband e.V.

htv-online.de

0

Hessischer Turnverband e.V. (HTV) is a regional non-profit sports federation dedicated to gymnastics and related sports in Hessen, Germany. The organization provides a broad range of services including competitions, training and certification for trainers and volunteers, club consulting, and events. The website serves as an information hub for members, clubs, and sports enthusiasts, emphasizing education, child welfare, and community engagement. HTV holds a strong market position as the authoritative body for turn sports in Hessen, supported by partnerships with related organizations and events. Technically, the website is built on TYPO3 CMS with a modern frontend leveraging Bootstrap and jQuery. It employs Cookiebot for GDPR-compliant cookie consent management and Matomo for privacy-respecting analytics. The site is hosted on reliable infrastructure with good mobile optimization and accessibility features. SEO and metadata are well implemented, supporting discoverability and user experience. From a security perspective, the site enforces HTTPS and uses privacy-conscious analytics settings. While some standard security headers are not explicitly confirmed, no critical vulnerabilities or exposed sensitive data were detected. The privacy policy and cookie consent mechanisms are comprehensive and transparent, with clear contact details including a data protection officer. However, no explicit security policy or incident response information is published. Overall, HTV's website demonstrates a mature digital presence with strong compliance to privacy regulations and a solid security posture. The site effectively supports its business goals and community engagement while maintaining user trust. Strategic improvements in security headers and updating legacy libraries could further enhance its security and compliance standing.

H

Hessische Behinderten- und Rehabilitationssportverband

hbrs.de

0

The Hessische Behinderten- und Rehabilitationssportverband is a regional non-profit organization based in Fulda, Germany, dedicated to providing sports and rehabilitation services for people with disabilities. The website serves as an informational portal for the association, targeting disabled individuals and stakeholders in the Hesse region. The business model focuses on community support and advocacy through sports activities and rehabilitation programs. Technically, the website is built on the Wix platform using Wix Thunderbolt technology, with standard Wix scripts and Google Fonts. The site shows moderate performance and good mobile optimization, but accessibility features are basic. The site lacks explicit privacy and cookie policies, which is a gap in compliance and user transparency. From a security perspective, the site uses HTTPS and includes scripts to harden fetch and XMLHttpRequest calls, indicating some attention to security best practices. However, no explicit security headers were detected, and there is no public security or incident response policy. No vulnerabilities or suspicious domains were found. Overall, the security posture is moderate but could be improved with additional headers and policies. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include adding privacy and cookie policies, implementing security headers, and publishing incident response information to enhance trust and compliance.

L

Landessportbund Hessen e.V.

landessportbund-hessen.de

0

Landessportbund Hessen e.V. is a large non-profit organization serving as the umbrella sports federation for over 7,300 member clubs in the German state of Hessen. The organization provides a broad range of services including sports development, education and licensing, club management, infrastructure support, and communication. Their website is built on TYPO3 CMS and integrates accessibility tools and privacy-respecting analytics, reflecting a mature digital infrastructure. The site is well-structured, mobile-optimized, and GDPR compliant with clear contact information and social media presence, supporting strong stakeholder engagement. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the domain registration and hosting are consistent with the organization's identity, indicating a trustworthy online presence.

P

peakzone

peakzone.de

0

Peakzone is a German-based e-commerce retailer specializing in sportswear, equipment, and accessories across a broad range of sports including basketball, football, rugby, volleyball, handball, running, and fitness. The website is built on the Shopware platform and integrates modern payment solutions such as PayPal and Klarna, indicating a mature digital infrastructure. The site offers a well-structured navigation system catering to sports enthusiasts, teams, referees, and lifestyle customers, positioning itself as a niche regional sports retail provider. Technically, the website demonstrates good mobile optimization and moderate performance, though there is room for improvement in SEO and accessibility features. Security posture is solid with HTTPS enabled and secure payment integrations; however, the absence of security headers and explicit privacy and terms of service pages suggests gaps in compliance and best practices. No blocking mechanisms or WAF challenges were detected, allowing full content accessibility. Overall, the site is safe for general audiences with no adult or questionable content. Strategic improvements in privacy compliance, security headers, and contact transparency would enhance trust and security maturity.

K

Korbball in Bayern

korbball-bayern.de

0

The website 'Korbball in Bayern' serves as an informational platform dedicated to the sport of Korbball in the Bavaria region of Germany. It provides news, event updates, and community information targeted at Korbball players and enthusiasts. The site is built on Joomla CMS and incorporates modern web technologies such as jQuery and Bootstrap, with Usercentrics managing cookie consent and Facebook SDK integrated for social media features. Hosting is provided by a German hosting provider, agenturserver, as indicated by the nameservers. The website is accessible without any WAF or security challenges, indicating no blocking or content restrictions. From a security perspective, the site uses HTTPS with a good SSL configuration but lacks explicit security headers and does not provide visible security or incident response policies. Privacy compliance is partially addressed through the Usercentrics cookie consent mechanism; however, no dedicated privacy policy or terms of service pages were found. Contact information such as emails or phone numbers is absent, which limits direct communication channels for users or security incident reporting. Overall, the website presents a basic but functional digital presence for a niche regional sports community. The security posture is moderate but could be improved by implementing security headers, publishing privacy and security policies, and providing clear contact information. The content is safe for general audiences with no adult or explicit material detected.

L

Leichtathletik Shop

leichtathletik-shop.info

0

Leichtathletik Shop is the official online merchandise store of the Deutscher Leichtathletik Verband (German Athletics Association), offering athletics apparel and related products primarily targeting athletes and fans in Germany. The website is built on the Shopify platform, leveraging modern e-commerce technologies and integrations such as Judge.me for customer reviews and Facebook Pixel for marketing analytics. The site demonstrates a good level of digital maturity with fast performance, mobile optimization, and clear navigation. Security posture is strong with HTTPS enforced, use of security headers, and form protection via hCaptcha, although explicit security and incident response policies are not publicly available. Privacy compliance is well addressed with comprehensive privacy and cookie policies aligned with GDPR requirements. Overall, the site presents a professional and trustworthy e-commerce presence with room for improvement in transparency of security and contact information.

The website bitvtest.de represents tollwerk GmbH, a specialized service provider focused on accessibility testing and consulting for websites, web applications, and native apps. Their flagship service, the BIK BITV-Test, evaluates compliance with German BITV 2.0 and European EN 301 549 standards, complemented by WCAG 2.2 testing and usability assessments. The company positions itself as a trusted expert in accessibility with a clear quality promise and a professional, well-structured online presence targeting organizations seeking to improve digital accessibility. The site is primarily German-language with English support, reflecting a regional focus with potential international reach. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries like jQuery and Font Awesome for UI elements. The site demonstrates good mobile optimization, accessibility, and SEO practices, including comprehensive metadata and social media integration. Performance is moderate, with no critical technical debt or vulnerabilities detected in the visible content. However, some security best practices such as explicit security headers and cookie consent mechanisms could be improved. From a security perspective, the site enforces HTTPS and avoids exposing sensitive data. No WAF or blocking mechanisms interfere with content access. The absence of a published security policy, incident response contacts, or vulnerability disclosure page suggests room for maturity in security governance. The domain WHOIS data is consistent with the website's business claims, supporting legitimacy and trustworthiness. Overall, bitvtest.de is a professional, trustworthy, and well-maintained website serving a niche but important market segment in digital accessibility. Strategic improvements in privacy compliance and security transparency would further enhance its credibility and user trust.

D

DLRG

dlrg.net

0

DLRG.net serves as the Internet Service Center (ISC) for the Deutsche Lebens-Rettungs-Gesellschaft (DLRG), a German non-profit organization focused on water rescue and safety. The website functions as an intranet portal providing active members with access to documents, news, examination tools, and seminar management applications. The platform targets active DLRG members and supports their operational and administrative needs through a secure login system and member-specific applications. The domain is well-established since 1999, reflecting a mature digital presence aligned with the organization's history. Technically, the website employs standard web technologies including jQuery, FontAwesome, and Bootstrap, hosted on AWS infrastructure. The site is mobile-optimized with responsive design and basic accessibility features. However, there is room for improvement in SEO and accessibility enhancements. Security posture is solid with HTTPS enforced and domain transfer protection, but lacks DNSSEC and explicit security headers, which are recommended to strengthen defenses. From a security and compliance perspective, the site provides secure login forms with input validation but lacks visible cookie consent mechanisms and detailed privacy or security policies on the main site. No incident response or vulnerability disclosure information is published, which could be improved to enhance transparency and trust. The absence of advertising and tracking scripts indicates a privacy-conscious approach, though cookie policy implementation is advised for GDPR compliance. Overall, dlrg.net is a trustworthy and professional portal serving a defined non-profit community with a good balance of functionality and security. Strategic improvements in security headers, cookie consent, and policy transparency would further elevate its compliance and security posture.

J

Jenko Sternberg Design

jenkosternberg.de

0

Jenko Sternberg Design is a small, regionally focused design agency based in Germany, specializing in communication design, web design and development, photography, film, and social media services. The company targets businesses in Apelnstedt, Braunschweig, Wolfenbüttel, and surrounding areas, positioning itself as a creative agency with a strong local presence since 1995. The website is professionally designed using WordPress and Elementor, with good SEO practices implemented via Yoast SEO. Hosting is reliable, leveraging AWS DNS infrastructure. Security posture is solid with HTTPS enabled and no exposed sensitive data, though security headers and policies are not visibly implemented. Privacy compliance is lacking due to absence of privacy and cookie policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is accessible, safe, and trustworthy, but could improve compliance and security transparency.

D

DLRG DLRG-Jugend Bundesebene

dlrg-jugend.de

0

DLRG-Jugend Bundesebene is a German non-profit youth organization affiliated with the German Life Saving Association (DLRG). It focuses on youth engagement, education, and community activities related to water safety and youth development. The website serves as an information hub for events, campaigns, and volunteer opportunities targeted primarily at German-speaking youth and volunteers. The organization maintains a consistent brand presence and provides comprehensive contact and privacy information, reflecting a mature digital presence. Technically, the website is built on TYPO3 CMS, leveraging modern responsive design frameworks such as Bootstrap and FontAwesome. Hosting is provided via Amazon AWS infrastructure, ensuring reliable performance and scalability. The site incorporates GDPR-compliant cookie consent mechanisms and uses both Google Analytics and Plausible Analytics for visitor tracking, with user opt-in consent. From a security perspective, the site enforces HTTPS and employs cookie consent for analytics tracking, but lacks explicit security headers and publicly available security or incident response policies. No vulnerabilities or suspicious content were detected. Overall, the site demonstrates a good security posture appropriate for a non-profit organization. The overall risk is low, with recommendations focusing on enhancing security headers, publishing incident response information, and considering a vulnerability disclosure policy to further strengthen trust and compliance.

D

Deutscher Turner-Bund e.V.

beactive-deutschland.de

0

The website www.beactive-deutschland.de serves as the official German portal for the European Week of Sports campaign, coordinated by the Deutscher Turner-Bund e.V. It provides comprehensive information about the campaign, events, partner engagement, and resources to promote physical activity across Germany and Europe. The site targets a broad audience including sports clubs, organizations, schools, and the general public. Technically, the site is built on TYPO3 CMS, leveraging modern JavaScript libraries and third-party services such as Google Tag Manager and SiteSearch360 for analytics and search functionality. The site is mobile-optimized and presents content in a clear, professional manner.

D

Deutscher Turner-Bund e.V.

frankfurt26.de

0

The website frankfurt26.de serves as the official digital platform for the 2026 Rhythmic Gymnastics World Championships hosted in Frankfurt, Germany. It is operated by Deutscher Turner-Bund e.V., the German Gymnastics Federation, and provides comprehensive event information, ticket sales links, volunteer recruitment, and social media engagement. The site targets sports fans, athletes, volunteers, and ticket buyers, positioning itself as a central hub for this major international sporting event. The business model revolves around event promotion and community engagement rather than direct sales or e-commerce.

D

DTB-Shop

dtb-shop.de

0

DTB-Shop is a professional e-commerce platform serving as the official online store for the Deutscher Turner-Bund, offering gymnastics apparel, accessories, and exercise materials primarily targeting gymnastics enthusiasts in Germany. The website leverages the Shopify platform with a modern Dawn theme, ensuring a fast, mobile-optimized, and accessible user experience. The presence of privacy and cookie policies with consent mechanisms demonstrates compliance with GDPR requirements. Security posture is strong with HTTPS enforced and appropriate security headers, although explicit security policies and incident response contacts are absent. Overall, the site presents a trustworthy and professional digital storefront with strong branding and social media integration.

D

Deutscher Turner-Bund e.V.

dtb-akademie.de

0

The DTB-Akademie is a well-established German educational institution specializing in training and continuing education for trainers, coaches, and professionals in sports, fitness, health, and related fields. Founded in 1995 and operated by the Deutscher Turner-Bund e.V., it offers a broad range of courses including fitness training, group fitness, health sports, dance, Pilates, yoga, and programs for children and the elderly. The website reflects a professional and consistent brand presence targeting sports professionals and educators across Germany. Technically, the website is built on Concrete CMS and employs standard web technologies such as jQuery, Google Tag Manager for analytics, and Usercentrics for consent management, indicating a moderate to good level of digital maturity. The site is mobile-optimized with good navigation and SEO practices, although some accessibility features could be improved. From a security perspective, the site uses HTTPS with a good SSL configuration and implements cookie consent mechanisms. However, explicit security headers and incident response information are not present, which could be enhanced to improve security posture. No vulnerabilities or suspicious content were detected. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. The domain appears legitimate with consistent business information, and the site links to multiple official partner domains related to the Deutscher Turner-Bund network.

D

Deutsche UNESCO-Kommission

unesco.de

0

The Deutsche UNESCO-Kommission website serves as the central contact point for all UNESCO-related matters in Germany, acting as a mediator for foreign cultural and educational policy. The site is well-structured, content-rich, and professionally designed, targeting a general audience interested in cultural diversity, education, science, and heritage. It operates on TYPO3 CMS, indicating a mature technical infrastructure with good accessibility and SEO practices. However, the absence of explicit privacy and cookie policies, as well as security headers, represents compliance and security gaps that should be addressed to enhance trust and regulatory adherence. The domain registration data is consistent and trustworthy, supporting the legitimacy of the entity. Overall, the website reflects a stable, credible governmental non-profit organization with room for improvement in privacy and security transparency.

S

Sebastian-Kneipp-Akademie

kneippakademie.de

0

Sebastian-Kneipp-Akademie is a specialized educational institution focused on health promotion and prevention through the Kneipp methodology. It offers a variety of in-person and online training programs, seminars, and workshops targeting health-conscious individuals, course instructors, and self-employed professionals in the health sector. The organization maintains a niche market position within Germany, emphasizing quality and tradition in health education. Technically, the website is built on TYPO3 CMS with common JavaScript libraries for enhanced user experience. The site is mobile-optimized, well-structured, and includes modern web practices such as HTTPS and cookie consent mechanisms. However, some security headers are missing, and no explicit security or incident response policies are published. From a security perspective, the site demonstrates a good baseline with HTTPS and privacy compliance but lacks advanced security policies and vulnerability disclosure mechanisms. No critical vulnerabilities or suspicious activities were detected. Overall, the site is trustworthy and professionally maintained. Strategically, the organization should consider enhancing its security posture by implementing security headers, publishing incident response contacts, and possibly adding a vulnerability disclosure policy. These steps will improve trust and compliance, especially as digital threats evolve.

S

Sebastian-Kneipp-Schule

kneippschule.de

0

Sebastian-Kneipp-Schule is a vocational school based in Bad Wörishofen, Germany, specializing in physiotherapy and massage education. Affiliated with the Kneipp-Bund e.V., it offers a range of training programs including 36-month and 18-month physiotherapy courses, massage plus, Kneipp bath attendant courses, and continuing education. The institution targets students and professionals seeking formal education and certification in these health and wellness fields. The school has a longstanding history of over 60 years, positioning it as a reputable educational provider in its niche. Technically, the website is built on TYPO3 CMS, utilizing common web technologies such as jQuery UI and Flexslider for interactive elements. The site is mobile-optimized with good SEO practices and includes a cookie consent mechanism compliant with GDPR. Google Analytics is used for visitor tracking, indicating moderate user tracking levels. The website performance is moderate, with a generally good user experience and clear navigation. From a security perspective, the site enforces HTTPS and implements cookie consent. However, it lacks explicit security headers and does not provide a public security policy or incident response contacts. A notable security concern is the presence of a hidden spam link to a replica watches site, which poses SEO and reputational risks. No vulnerability disclosure or security.txt files were found, indicating room for improvement in transparency and security maturity. Overall, the website is functional, professional, and compliant with privacy regulations but would benefit from enhanced security practices and removal of suspicious hidden content. The domain WHOIS data is minimal but consistent with the business purpose, supporting the legitimacy of the site. Strategic recommendations include removing spam links, adding security headers, publishing security policies, and enhancing incident response readiness.