Security Directory

K

Kneipp-Bund e.V.

kneippvisite.de

0

Kneipp-Visite is the official health guidance platform of the Kneipp-Bund e.V., a well-established German non-profit association representing over 660 Kneipp clubs and 160,000 members. The website serves as a comprehensive health advisor focusing on natural therapies based on the Kneipp principles, including water therapy, nutrition, movement, plants, and lifestyle. It supports affiliated organizations such as Kneipp-Verlag and Sebastian-Kneipp-Akademie, offering educational and publishing services. The target audience includes individuals interested in natural health and wellness, particularly within Germany.

K

Kneipp-Verlag GmbH

kneippverlag.de

0

Kneipp-Verlag GmbH is a specialized publishing company focused on health and natural healing methods, particularly those related to the Kneipp tradition. Established in 1975 as part of the Kneipp-Bund, it publishes the Kneipp-Journal, various Fachbücher, and operates an online shop offering health products. The company targets Kneipp association members and health-conscious individuals, positioning itself as a niche publisher and retailer within Germany. The website is professionally designed, content-rich, and consistent with the company's branding and mission. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies with good mobile optimization and SEO practices. The site is served over HTTPS with a cookie consent mechanism in place, indicating a good level of digital maturity. However, some security headers are missing, and no explicit security or incident response policies are published, which could be improved. From a security perspective, the site shows no signs of vulnerabilities or malicious content. Privacy compliance is strong with clear privacy and cookie policies aligned with GDPR. Contact information is complete and transparent, enhancing trustworthiness. Overall, the site presents a low-risk profile with room for security policy enhancements. Strategically, the company should focus on implementing security headers, publishing a security policy, and possibly a vulnerability disclosure program to further strengthen its security posture and trust with users.

A

abavo GmbH

abavo.de

0

abavo GmbH is a German media service provider specializing in publishing process automation and typesetting services. Their flagship product, vlow®, offers an automated publishing workflow from manuscript to finished publication, targeting publishing houses and media companies. The company emphasizes precision, craftsmanship, and cost efficiency, positioning itself as a reliable partner in the media production sector. The website is professionally designed using TYPO3 CMS, with good mobile optimization and clear navigation. It integrates Google Analytics with IP anonymization and implements GDPR-compliant cookie consent mechanisms. Security posture is solid with HTTPS enabled, but lacks some advanced security headers and published security policies. Contact information is clearly provided, enhancing business credibility. Overall, the website reflects a trustworthy and professional business presence.

B

BVA BikeMedia GmbH

fahrrad-buecher-karten.de

0

BVA BikeMedia GmbH operates www.fahrrad-buecher-karten.de as a specialized e-commerce platform focused on cycling maps, books, and related media products. The company holds a strong market position in Germany as a leading provider of cycling literature and maps, targeting cycling enthusiasts and travelers. The website offers a well-structured catalog of products, including digital downloads and magazines, supported by clear navigation and professional design. Technically, the site uses modern web technologies including JavaScript, CSS3, and integrates Google Analytics with privacy-conscious configurations such as IP anonymization. The hosting is managed via INWX nameservers, and the site enforces HTTPS, ensuring secure data transmission. Privacy compliance is robust with a detailed cookie consent mechanism and accessible privacy policy. However, explicit security headers are not evident in the HTML content, suggesting room for improvement in security hardening. Contact information is comprehensive, including email, phone, physical address, and contact forms, enhancing business credibility. Overall, the site demonstrates a mature digital presence with good privacy and security practices, suitable for its retail and media business model.

T

Talleux & Zöllner GbR

talleux-zoellner.de

0

Talleux & Zöllner GbR is a small German internet agency specializing in the conception and programming of websites and web applications, primarily using TYPO3 CMS. They serve medium-sized companies, organizations, and agencies, offering services from project conception to ongoing maintenance and support. Their market position is that of a niche provider with certified TYPO3 developers and a focus on tailored web solutions. Technically, the website is built on TYPO3 CMS with PHP, Python, and JavaScript technologies, featuring a moderate performance and good mobile optimization. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though security headers and incident response policies are lacking. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and business-focused.

B

BTFB Sport Events GmbH

btfb-services.berlin

0

BTFB Sport Events GmbH operates a niche sports event and service platform primarily serving the Berlin region. The company focuses on marketing and distributing BTFB activities, managing events such as FEUERWERK DER TURNKUNST and NIGHT OF SPORTS, and supporting brand development within DTB brands. Their business model includes ticket sales, rental services, and a specialized shop for sports and club merchandise. The website is built on the SIQUANDO Shop 12 CMS and uses standard web technologies like jQuery and JavaScript. While the site is accessible and provides a good user experience with clear navigation and relevant content, it lacks advanced technical SEO and accessibility features. Security posture is basic with HTTPS enabled but missing DNSSEC and security headers, which should be addressed to improve resilience. Privacy compliance is partially met with cookie consent but lacks detailed GDPR indicators and contact information. Overall, the site is functional and trustworthy but would benefit from enhanced security and compliance measures.

I

ISTAF INDOOR

istaf-indoor.de

0

ISTAF INDOOR is a professional athletics event organization operating primarily in Berlin and Düsseldorf, Germany. The website serves as a digital platform to promote world-class indoor track and field events, targeting sports enthusiasts and attendees. The business model revolves around event promotion, ticket sales, and providing information about athletics competitions. The site positions itself as a reputable event organizer with a consistent brand presence and active social media engagement. Technically, the website is built on WordPress using the Divi theme and several well-known plugins such as LayerSlider, Contact Form 7, and Real Cookie Banner for GDPR compliance. The infrastructure is hosted on rzone.de, with modern web technologies including Google Fonts, Font Awesome, and Google reCAPTCHA integrated for enhanced user experience and security. Performance is moderate with good mobile optimization and SEO practices. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR requirements. While explicit security headers are not fully confirmed, the use of reCAPTCHA and absence of exposed sensitive data indicate a reasonable security posture. However, the site lacks a public security policy or incident response contact, which could be improved to enhance trust and readiness. Overall, ISTAF INDOOR presents a professional and trustworthy online presence with good compliance to privacy regulations and a solid technical foundation. Strategic improvements in security transparency and incident response readiness are recommended to further strengthen its security posture and business credibility.

L

Landessportbund Berlin

lsb-berlin.net

0

Landessportbund Berlin is a well-established non-profit organization dedicated to promoting and supporting sports activities and clubs in Berlin. The website serves as a comprehensive portal offering information on funding, training, programs, and child protection initiatives, targeting sports clubs, athletes, and the general public interested in sports. The organization holds a strong market position as a key regional sports umbrella body with extensive partnerships and community engagement. Technically, the website is built on TYPO3 CMS with modern frameworks like Bootstrap and Font Awesome, hosted by Claranet. It incorporates accessibility tools such as eyeAble and uses Matomo for privacy-conscious analytics. The site is mobile-optimized, well-structured, and performs moderately well, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms aligned with GDPR. While some security headers are not explicitly visible in the provided content, no critical vulnerabilities or exposed sensitive data were detected. The absence of a published vulnerability disclosure or incident response contacts suggests areas for improvement. Overall, the website is trustworthy, professional, and compliant with privacy regulations, presenting minimal risk. Strategic recommendations include enhancing security headers, publishing a security.txt file, and providing explicit incident response contacts to further strengthen security posture and trust.

L

Landessportbund Berlin e.V.

familiensportfest-berlin.de

0

The website familiensportfest-berlin.de represents the Landessportbund Berlin e.V., promoting the Familiensportfest Berlin, a family-oriented sports festival held across various districts in Berlin. The event aims to engage families and local communities in diverse sports activities, fostering health, inclusion, and community spirit. The organization holds a strong regional presence with partnerships across Berlin's sports federations and clubs. Technically, the site is built on TYPO3 CMS with modern frontend frameworks like Bootstrap and Font Awesome, integrating accessibility tools and Matomo analytics for privacy-conscious user tracking. Security posture is solid with HTTPS and some privacy measures, though explicit security headers and policies are absent. Contact information is comprehensive, supporting business credibility. Overall, the site is professional, accessible, and trustworthy, serving its community-focused mission effectively.

Sportbunt.de is a professionally maintained non-profit website operated by Landessportbund Berlin e.V., focused on promoting integration through sports activities in Berlin, especially targeting refugees and local sports clubs. The site offers information on sports programs, training, events, and community engagement. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates mapping and analytics services, reflecting a mature digital infrastructure. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers and explicit incident response policies are not publicly visible. Overall, the website is trustworthy, compliant with GDPR, and serves its community-oriented mission effectively.

L

Landessportbund Berlin

berlin-hat-talent.de

0

Berlin hat Talent is a well-established non-profit initiative supported by the Landessportbund Berlin and the Berlin Senate Department for Education, Youth and Science. The initiative focuses on promoting sports and physical activity among children in Berlin through programs such as Bewegungsfördergruppen and Talentiaden. The website reflects a professional and consistent brand presence with strong government and sports federation partnerships. Technically, the site is built on WordPress with a modern plugin ecosystem, providing good SEO and mobile optimization. Security posture is adequate with HTTPS enforced, but lacks some security headers and a cookie consent mechanism, which are areas for improvement. Overall, the site is trustworthy, safe, and serves its target audience effectively.

S

Sportstiftung Berlin

sportstiftung-berlin.org

0

Sportstiftung Berlin is a well-established non-profit foundation focused on promoting youth sports and supporting athletes in their career and vocational development post-sports. The organization operates primarily within Berlin, Germany, and has been active since 2005. Their website provides clear information about their mission, donation options, and contact details, reflecting a transparent and community-oriented approach. Technically, the site is built on the cm4all CMS platform, hosted likely via Strato, and uses older JavaScript libraries which may pose security risks. The site is mobile-optimized and includes basic accessibility features. Security posture is moderate with cookie consent implemented and no visible sensitive data exposure, but lacks modern security headers and DNSSEC. Privacy compliance is good with a dedicated privacy policy and cookie consent mechanism. Overall, the website is professional and trustworthy but would benefit from technical and security updates.

S

Sportjugend Berlin

sportjugend-berlin.de

0

Sportjugend Berlin is a well-established youth sports organization affiliated with the Landessportbund Berlin, focusing on youth social work, educational programs, youth travel, volunteer services, and youth engagement within Berlin. The organization targets youth, sports clubs, volunteers, educators, and families, providing a broad range of community and sports-related services. The website reflects a professional and consistent brand image, with clear contact information and a strong social media presence. Technically, the website is built on TYPO3 CMS with modern frontend technologies including Bootstrap 5 and Font Awesome 6. It is hosted on Microsoft Online infrastructure and incorporates accessibility tools such as eyeAble, demonstrating a commitment to inclusive design. The site performs moderately well with good mobile optimization and SEO practices. From a security perspective, the site uses HTTPS with a good SSL configuration and disables cookies in Matomo analytics to enhance privacy. However, it lacks some security headers and does not publish a security policy or incident response contacts, which are areas for improvement. Privacy compliance is generally good with a comprehensive privacy policy, but the absence of a cookie consent mechanism is a minor gap. Overall, the website is trustworthy, professional, and serves its community effectively. Strategic improvements in security policies and privacy consent mechanisms would further strengthen its posture.

The Bildungsportal des Hamburger Sportbundes is a specialized educational platform focused on providing sports-related training and seminars primarily for the Hamburg region. It serves as a centralized portal for various sports federations and organizations to offer their educational programs, targeting volunteers, professionals, and sports enthusiasts. The platform is positioned as a trusted non-profit educational resource with a clear focus on accessibility and user-friendly navigation. Technically, the website employs standard modern web technologies including Bootstrap and jQuery, with a responsive design and good accessibility features. Hosting is provided by Host Europe Group, consistent with the domain registration data. Security posture is adequate with HTTPS enforced and cookie consent implemented, though improvements such as enabling DNSSEC and adding security headers are recommended. No critical vulnerabilities or suspicious elements were detected. Overall, the site demonstrates a solid balance of content quality, technical implementation, and privacy compliance, making it a reliable resource for its target audience.

S

Sächsischer Tennis Verband e.V.

stv-tennis.de

0

The Sächsischer Tennis Verband e.V. website serves as the official online presence of the largest tennis association in the new federal states of Germany. It primarily targets players, trainers, referees, and teams involved in tennis competitions across various age groups and leagues. The site provides news, event calendars, and organizational information, supporting the association's mission to coordinate tennis activities regionally. Technically, the site is built on WordPress with a modern plugin ecosystem including GDPR compliance tools, calendar management, and newsletter capabilities. The infrastructure is hosted on servers associated with kasserver.com, and the site employs HTTPS with Google reCAPTCHA to secure forms. Security posture is solid but could be improved by adding explicit security headers and publishing formal security policies. Privacy compliance is well addressed through the Complianz GDPR plugin and cookie consent mechanisms. Overall, the website is professional, accessible, and trustworthy, with no signs of malicious or adult content.

T

Tennisverband Rheinland-Pfalz e. V.

rlp-tennis.de

0

The Tennisverband Rheinland-Pfalz e. V. operates as a regional tennis association in Germany, providing comprehensive tennis-related news, event management, training, and support services to clubs and players in Rheinland-Pfalz. The website serves as an information hub for tennis enthusiasts, clubs, and officials, reflecting a well-established organization with a strong regional presence and a history dating back to 1948. The association is positioned among the top ten tennis federations in Germany, emphasizing youth development, inclusion, and adult tennis activities. Technically, the website is built on the TYPO3 CMS platform with Bootstrap for responsive design, integrating accessibility tools such as eyeAble and analytics via Google Tag Manager. The site demonstrates good mobile optimization, clear navigation, and structured content, supporting a positive user experience. Hosting appears stable with dedicated nameservers, and the site uses HTTPS, although explicit security headers are not detected. From a security perspective, the site shows a moderate security posture with secure login forms and no visible sensitive data exposure. However, it lacks explicit security policies, incident response contacts, and cookie consent mechanisms, which are important for GDPR compliance and user trust. The WHOIS data aligns well with the organization's identity, showing consistent registration details and no privacy protection, indicating transparency and legitimacy. Overall, the website is professional, trustworthy, and serves its target audience effectively. Strategic improvements in security headers, privacy compliance, and published security policies would enhance its security posture and regulatory adherence.

Hamburger Tennis-Verband e.V. is a regional non-profit sports association dedicated to promoting tennis activities in Hamburg, Germany. The website serves as an information hub for players, clubs, trainers, and tennis enthusiasts, offering event calendars, tournament details, training programs, youth development initiatives, and inclusion projects. The association maintains partnerships with recognized tennis organizations and sponsors, reinforcing its position as a key regional tennis authority. Technically, the website employs a mix of established JavaScript libraries such as jQuery, Bootstrap 3.3.5, Owl Carousel, and jQuery.mmenu for responsive and interactive UI elements. Google Tag Manager and Google Analytics are used for visitor tracking and analytics. The site is mobile-optimized with a clear navigation structure, though it lacks a known CMS and some modern security headers. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism, indicating awareness of privacy regulations. However, no explicit security policies or incident response contacts are published, and security headers like CSP or HSTS are not detected. The WHOIS data shows a consistent and legitimate domain registration without privacy protection, aligning with the organization's transparency. Overall, the website is professional, trustworthy, and well-suited for its audience, with room for improvement in security best practices and formal policy disclosures.

C

CUPRA

cupraofficial.de

0

CUPRAofficial.de is the official German website for CUPRA, a premium automotive brand specializing in sporty and electric vehicles. The site offers comprehensive information on vehicle models, leasing and financing options, electric mobility solutions, and after-sales services. The brand targets automotive consumers in Germany who seek performance-oriented and modern electric vehicles. The website is built on Adobe Experience Manager and integrates modern web technologies, providing a good user experience with multimedia content and clear navigation.

The website moku.de currently serves as a placeholder page indicating that a new homepage is under construction. It lacks any substantive business description, contact information, or user engagement features. The site is hosted on t-online.de name servers and uses basic JavaScript tracking scripts from Xiti Analytics and RefinedAds, but does not implement HTTPS or security headers, which significantly weakens its security posture. There are no privacy or cookie policies, nor any GDPR compliance indicators, which raises concerns about privacy and regulatory adherence. Overall, the site appears to be in an early or dormant state with minimal digital maturity and poor content quality.

H

Hochschul-IT-Zentrum des Saarlandes

hiz-saarland.de

0

The Hochschul-IT-Zentrum des Saarlandes operates as a regional IT service center supporting higher education institutions in Saarland, Germany. It provides a range of IT services including user account management, network access (WLAN, VPN), email and groupware solutions, hardware procurement, and cloud services. The website is professionally designed using TYPO3 CMS and targets students, employees, guests, and academic facilities. It maintains partnerships with multiple universities in the region, reinforcing its role as a central IT hub for academic institutions. Technically, the website leverages modern web technologies such as TYPO3 CMS, Bootstrap, and jQuery, hosted likely within university or DFN infrastructure. The site is mobile optimized and offers good navigation and content relevance. However, some improvements in accessibility and SEO could be considered. Security posture is moderate with HTTPS usage and secure form handling, but lacks explicit security headers and published security policies. Privacy compliance is basic with a privacy policy present but no cookie consent mechanism. Overall, the security posture is sound for an academic IT service provider, with no visible vulnerabilities or exposed sensitive data. The WHOIS data aligns well with the website's academic context, indicating legitimacy and trustworthiness. The site does not engage in advertising or extensive user tracking, supporting a privacy-conscious approach. Strategic recommendations include implementing security headers, adding cookie consent mechanisms, publishing security and incident response policies, and considering a vulnerability disclosure program to enhance trust and compliance.

H

Hochschule für Technik und Wirtschaft des Saarlandes

wissenwasverbindet.de

0

The Hochschule für Technik und Wirtschaft des Saarlandes (htw saar) is a well-established higher education institution in Germany, specializing in dual study programs that combine academic learning with practical work experience. The website effectively communicates its educational offerings, cooperation with industry partners, and benefits for students. It targets prospective students and companies interested in dual education partnerships. The institution holds multiple certifications and maintains an active social media presence, reinforcing its credibility and market position. Technically, the website is built on TYPO3 CMS and employs Matomo for analytics, reflecting a modern and privacy-conscious infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, providing a good user experience. However, there is room for improvement in security headers and cookie consent mechanisms to enhance privacy compliance. From a security perspective, the site uses HTTPS with a strong SSL configuration and shows no signs of exposed sensitive data or vulnerable libraries. The absence of explicit security policies and incident response information suggests an opportunity to strengthen transparency and preparedness. Overall, the website demonstrates a solid security posture but could benefit from additional security best practices and compliance features. The overall risk assessment is low, with no critical vulnerabilities detected. Strategic recommendations include implementing security headers, adding cookie consent for GDPR compliance, publishing security policies, and establishing a vulnerability disclosure process to further enhance trust and security culture.

G

GSUB - Gesellschaft für soziale Unternehmensberatung MbH

teilhabeberatung.de

0

The website www.teilhabeberatung.de represents the Ergänzende unabhängige Teilhabeberatung (EUTB®), a German non-profit advisory service supporting people with disabilities and their relatives regarding rehabilitation and participation. Operated by GSUB - Gesellschaft für soziale Unternehmensberatung MbH, the site offers comprehensive advisory services, publications, and a dedicated app for appointment scheduling. The organization holds recognized accessibility certification (BIK - BITV-konform) and maintains a professional online presence with clear navigation and content relevance. Technically, the site is built on Drupal 10, leveraging modern web technologies including Matomo for privacy-conscious analytics and ReadSpeaker for accessibility. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security posture is solid with HTTPS enforced and secure form handling, though explicit security headers and incident response policies are not published. No blocking mechanisms or WAF challenges were detected, allowing full content access. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. However, no direct contact emails or phone numbers are publicly listed, relying on contact forms for communication. Overall, the website is trustworthy, professionally managed, and aligned with its non-profit mission. Recommendations include enhancing security headers, publishing security and incident response policies, and considering a vulnerability disclosure program to further strengthen trust and security posture.

I

Intersnack Deutschland SE

intersnack.de

0

Intersnack Deutschland SE is a large German-based manufacturer and retailer of popular salty snacks, emphasizing sustainability and responsible production. The company operates a professional, well-structured website powered by TYPO3 CMS, targeting general consumers and potential employees. The site offers comprehensive information about their brands, sustainability initiatives, and career opportunities, with a clear corporate identity and consistent branding. Technically, the website uses modern web technologies and includes analytics via eTracker, with good mobile optimization and SEO practices. Security posture is solid with HTTPS enforced and secure form handling, though some advanced security headers and policies are not explicitly published. Privacy compliance is well addressed with clear privacy and cookie policies. WHOIS data aligns with the corporate identity, showing a legitimate and consistent domain registration. Overall, the website reflects a mature digital presence suitable for a large enterprise in the retail food sector.

VDMA is a prominent German and European industry association representing approximately 3,600 companies in the machinery and plant engineering sector. The organization focuses on innovation, export orientation, and supporting medium-sized enterprises. Their website reflects a mature digital presence with comprehensive content, professional design, and clear navigation tailored to industry professionals and stakeholders. The technical infrastructure is based on the Liferay CMS platform, leveraging modern JavaScript frameworks and analytics tools, ensuring a responsive and accessible user experience. Security posture is strong with HTTPS enforcement, consent management, and use of security best practices, although explicit security headers could be enhanced. Overall, the site demonstrates compliance with GDPR and provides clear contact and privacy information, supporting trust and credibility.

K

kv.digital GmbH

kv.digital

0

kv.digital GmbH is a medium-sized digital healthcare company based in Germany, fully owned by the Kassenärztliche Bundesvereinigung (KBV). It specializes in providing secure medical communication solutions, including KIM services and the 116117 appointment service software, serving healthcare providers and software manufacturers. The company acts as a central innovation platform and competence center for digitalization in ambulatory healthcare. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and includes a GDPR-compliant cookie consent mechanism. The presence of ISO 27001 certification demonstrates a strong commitment to information security. Security posture is robust with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Overall, the website is professional, trustworthy, and well-structured, supporting the company's credibility in the healthcare technology sector.

E

e-pixler GmbH

patientenberatung-der-zahnaerzte.de

0

The website 'Zahnärztliche Patientenberatung' provides a comprehensive, nationwide, and free dental patient advisory service in Germany. It is operated by the (Landes-)Zahnärztekammern and Kassenzahnärztlichen Vereinigungen, offering expert, independent advice on dental health, treatments, and costs to both statutory and private insured patients. The site is professionally designed and well-structured, targeting patients and their families with clear navigation and relevant content. It also links to authoritative health organizations and provides video resources to enhance user understanding. Technically, the website is built on TYPO3 CMS, hosted on sldomains.de nameservers, and uses modern web technologies including JavaScript and CSS. The site is mobile-optimized and performs moderately well, with good SEO practices and accessibility features. No blocking or WAF mechanisms interfere with content access, ensuring full availability. From a security perspective, the site uses HTTPS with excellent SSL configuration but lacks explicit security headers and incident response contact information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is adequate with a clear privacy policy, though no cookie consent mechanism was found. Contact information is present but limited, and no social media or tracking scripts are used, indicating minimal user tracking. Overall, the website is trustworthy, professional, and serves an important public health function. Strategic improvements include implementing cookie consent, adding security headers, and publishing incident response details to enhance security posture and compliance.

CIRS dent operates as a specialized error reporting and learning platform targeted at dental practices in Germany. The website provides anonymous and sanction-free reporting of undesired events in dental practice workflows, aiming to improve patient safety and professional learning. The project is supported by reputable German dental organizations BZÄK and KZBV and collaborates with medical experts, enhancing its credibility and niche market position. The platform offers services such as report creation, database search, publications, and user feedback mechanisms, positioning itself as a valuable resource in healthcare quality management for dentists. Technically, the website employs a traditional web stack with jQuery and Matomo analytics, hosted on German infrastructure (netcologne.de). The site is mobile-optimized with clear navigation and a cookie consent mechanism, reflecting moderate digital maturity. Security posture is adequate but could be improved by implementing security headers and explicit incident response policies. Privacy compliance is basic but present, with a GDPR-compliant privacy policy and cookie banner. Overall, the website is professional, trustworthy, and aligned with its healthcare mission.

I

Institut der Deutschen Zahnärzte

idz.institute

0

The Institut der Deutschen Zahnärzte (IDZ) is a reputable German dental research institute affiliated with the Bundeszahnärztekammer (BZÄK) and the Kassenzahnärztliche Bundesvereinigung (KZBV). It focuses on oral epidemiology, health economics, dental profession research, and related fields, providing valuable studies such as the German Oral Health Studies (DMS). The website is professionally designed, content-rich, and well-structured, targeting a broad audience interested in dental health research and policy. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes a consent management platform for GDPR compliance. Security posture is good with HTTPS and secure form handling, though some security headers are missing and no explicit security policies are published. WHOIS data is unavailable due to malformed queries or registry restrictions, but the website's content and affiliations strongly support its legitimacy. Overall, the site represents a trustworthy and authoritative source in the dental research sector in Germany.

Z

Zahnärztliche Mitteilungen

zm-online.de

0

zm-online.de is a German-language news portal specializing in dental medicine and healthcare news. It serves dental professionals and stakeholders with up-to-date articles, continuing education, job listings, and market information. The site is powered by TYPO3 CMS and integrates modern web technologies including Google Analytics and Traffective advertising. The website demonstrates a good level of technical maturity with mobile optimization, SEO best practices, and privacy consent mechanisms in place. Security posture is solid with HTTPS enforced and use of reCAPTCHA, though explicit security headers and policies could be improved. Overall, the site is professional, trustworthy, and well-positioned in its niche market.

K

Kassenzahnärztliche Bundesvereinigung (KZBV)

zaehnezeigen.info

0

The website www.zaehnezeigen.info is a professional campaign platform operated by the Kassenzahnärztliche Bundesvereinigung (KZBV) and associated regional dental associations in Germany. It focuses on advocating for improved dental healthcare policies, emphasizing prevention, reduced bureaucracy, better digital infrastructure, and reliable financing for dental practices. The site targets patients, dental professionals, and policymakers, aiming to raise awareness and support for sustainable dental care. Technically, the site is built on TYPO3 CMS with modern web technologies and includes cookie consent management and Google Tag Manager for analytics. Security posture is moderate with HTTPS usage and cookie consent but lacks visible advanced security headers or explicit incident response contacts. WHOIS data is unavailable due to privacy protections, but the site’s branding and external references strongly support its legitimacy. Overall, the site is well-designed, content-rich, and trustworthy, serving as an important advocacy tool in the German dental healthcare sector.

D

Deutscher Verkehrssicherheitsrat

dvr.de

0

The Deutscher Verkehrssicherheitsrat (DVR) is a leading independent German organization dedicated to road traffic safety. The website serves as an authoritative platform providing information on traffic safety topics, prevention campaigns, policy advocacy, and training programs. It targets the general public, policymakers, and traffic safety professionals, positioning itself as a key competence center in the transportation safety sector. The business model is non-profit, focusing on education, advocacy, and safety improvements.

D

Datawrapper GmbH

datawrapper.de

0

Datawrapper GmbH operates a professional SaaS platform focused on enabling users to create interactive and responsive data visualizations such as charts, maps, and tables without coding. The company serves a broad audience including media organizations, enterprises, and public service entities, with a strong market position evidenced by notable clients like the UN and New York Times. The website is well-designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site is built on WordPress with modern performance optimizations and privacy-conscious analytics (Matomo). Security posture is strong with HTTPS enforced and privacy policies clearly presented, though some security headers could be improved. Overall, the domain registration and hosting setup are consistent and trustworthy. The site demonstrates good compliance with GDPR and cookie consent requirements, supporting a high level of business credibility.

K

Knipp Medien und Kommunikation GmbH

irondns.net

0

ironDNS® is a specialized DNS service provider operated by Knipp Medien und Kommunikation GmbH, established in 2009 in Germany. The company focuses on delivering secure and compliant DNS infrastructure services to corporates, registrars, and registries. Their offerings include DNS provisioning APIs (SOAP and REST), control panel access, DNSSEC support, and advanced DNS features such as Zone Lock and ANAME records. The website reflects a professional and consistent brand presence with clear navigation and relevant business content.

B

Bank für Kirche und Diakonie eG

kd-onlinespende.de

0

KD-onlineSpende is a donation portal operated by the Bank für Kirche und Diakonie eG, targeting nonprofit organizations and donors primarily in Germany. The platform facilitates online donations for charitable projects, providing an intuitive and cost-effective service for its users. The website is professionally designed, with clear navigation and relevant content focused on donation projects and institutional registration. Technically, the site is built on the Contao CMS and uses modern JavaScript libraries such as jQuery and Modernizr, ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS enforced and cookie consent implemented, though there is room for improvement in security headers and incident response transparency. Overall, the domain registration data is consistent and trustworthy, supporting the legitimacy of the business. The site does not employ advertising or extensive tracking, aligning with its nonprofit focus.

M

Milka

milka.com

0

Milka.com is the official website for the Milka brand, a well-known confectionery company specializing in chocolate products. The site targets German-speaking consumers, offering product information, promotions, and community engagement. The website is built using modern web technologies such as React and Gatsby, with a responsive design optimized for mobile devices. Security posture is strong with HTTPS enforced and standard security headers present, though no explicit incident response or vulnerability disclosure policies are found. The absence of WHOIS data is unusual but the website's professional presentation and brand consistency support its legitimacy. Overall, the site is well-constructed, secure, and user-friendly, though improvements in transparency and contact information could enhance trust.

F

fit4future foundation Germany

fit4future-foundation.de

0

fit4future foundation Germany is a Munich-based non-profit organization dedicated to promoting health and environmental sustainability among children and youth. Their focus lies in educating about the intersection of climate change and health, supporting school projects, and running tree planting donation campaigns. The foundation targets schools, educators, and environmentally conscious individuals in Germany, positioning itself as a niche player in the non-profit sector focused on future generations' well-being. Technically, the website employs modern web technologies including Vue.js for frontend rendering, Google Tag Manager for analytics, and Usercentrics for GDPR-compliant cookie consent management. The site is mobile-optimized with good navigation and content quality, though no explicit CMS or hosting provider details are evident. Performance is moderate with room for improvement in accessibility features. From a security perspective, the site uses HTTPS and implements cookie consent but lacks visible security headers and published security policies or incident response information. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is supported by a privacy policy and cookie banner, but terms of service and vulnerability disclosure mechanisms are absent. Overall, the website is trustworthy and professional with a strong focus on its mission. Recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and improving accessibility compliance to strengthen the security posture and user trust.

S

Stiftung Deutsche Sporthilfe

sporthilfe.de

0

Stiftung Deutsche Sporthilfe is a well-established non-profit organization dedicated to supporting young and elite athletes in Germany. With a history dating back to 1967, it plays a pivotal role in private sports funding, contributing significantly to Germany's international sports successes. The website reflects a professional and comprehensive presentation of their services, partnerships, and events, targeting donors, sponsors, and sports enthusiasts. Technically, the site is built on TYPO3 CMS with modern integrations such as Google Tag Manager, reCAPTCHA, and consent management, ensuring a good digital maturity level. Security posture is strong with HTTPS, secure forms, and privacy compliance, though explicit security policies and vulnerability disclosures are absent. Overall, the site is trustworthy, well-branded, and provides a positive user experience with clear navigation and rich content.

O

Online Now! GmbH

online-now.de

0

Online Now! GmbH is a specialized digital agency based in Berlin, Germany, focusing on TYPO3 CMS development, responsive web design, and social media integration. The company positions itself as a certified TYPO3 integrator with a strong portfolio of reference projects, offering end-to-end services including consulting, design, programming, hosting, and support. Their target audience primarily consists of businesses and organizations seeking professional web solutions with a focus on usability and mobile optimization. Technically, the website is built on TYPO3 CMS with PHP and JavaScript technologies, incorporating modern libraries such as jQuery and bxSlider for UI components. The site demonstrates good mobile responsiveness, accessibility, and SEO practices. Analytics are implemented via Google Analytics and Matomo, with privacy-conscious configurations such as IP anonymization and cookie consent mechanisms. From a security perspective, the site uses HTTPS with a strong SSL configuration and employs cookie consent banners to comply with GDPR. However, explicit HTTP security headers and a published security policy or incident response contacts are absent, representing areas for improvement. No vulnerabilities or exposed sensitive data were detected in the analyzed content. Overall, the website and domain exhibit a high level of professionalism, trustworthiness, and compliance with privacy regulations. The domain registration is consistent with the business, though registrant details are protected per DENIC policy. Strategic recommendations include enhancing security headers, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and security posture.

Gesellschaft zur Förderung des Deutschen Baugewerbes mbH operates as a promoter of the German construction industry, based in Berlin. The company targets stakeholders within the construction sector in Germany, offering industry promotion services. The website is currently under construction and provides basic contact and company information. Technically, the website is minimalistic with no advanced frameworks or CMS detected, hosted on servers associated with online-now.de. The site lacks HTTPS enforcement and security headers, which are critical for protecting user data and establishing trust. Privacy compliance is limited to a basic privacy policy PDF without cookie consent mechanisms. Overall, the security posture is weak, with no incident response or vulnerability disclosure information available. The business credibility is moderate due to clear company information but limited online presence and content quality. Strategic improvements in security, privacy compliance, and website content are recommended to enhance trust and operational maturity.

T

Timber Construction Europe

timber-construction.eu

0

Timber Construction Europe is a well-established European umbrella association representing the carpentry and timber construction trades across multiple countries including Germany, Italy, Luxembourg, Switzerland, and Austria. The organization focuses on networking, education, advocacy, and promoting sustainable timber construction practices. The website is professionally designed using TYPO3 CMS, providing multilingual content primarily in German with English and French options. It offers clear navigation, relevant industry information, and educational resources, targeting professionals and organizations in the timber construction sector. Technically, the website employs a modern CMS platform with JavaScript and CSS for interactivity and styling. It uses HTTPS with a valid SSL configuration ensuring secure communications. The presence of a cookie consent banner and privacy policy indicates GDPR compliance. Analytics are implemented via Piwik, reflecting moderate user tracking with privacy considerations. However, no explicit security headers were detected, and no published security or incident response policies were found. From a security perspective, the site shows good baseline practices such as HTTPS enforcement and cookie consent but could improve by implementing additional security headers and publishing incident response information. The WHOIS data is unavailable due to EURid privacy restrictions, but the website content and contact details support legitimacy. Overall, the site presents a trustworthy and professional digital presence for a non-profit industry association. Strategically, the organization should enhance its security posture by adding security headers, publishing security policies, and maintaining transparency about data protection officers and incident response. These steps will strengthen trust and compliance in the evolving regulatory landscape.

D

DFL Stiftung

dfl-stiftung.de

0

DFL Stiftung is a well-established German non-profit foundation founded in 2008, focused on supporting children, youth, and young sports talents through social and sports-related projects. The foundation leverages a strong network and expertise from professional football to promote social participation, healthy development, and elite sports success. The website reflects a professional and consistent brand presence with comprehensive content in German and English, targeting a broad audience interested in youth development and sports. Technically, the site is built on WordPress with modern plugins and frameworks, hosted on AWS infrastructure, and employs SEO and analytics tools such as Yoast SEO, Google Tag Manager, and Matomo. Security posture is good with HTTPS enforced, though some security headers and explicit policies are missing. Privacy compliance is adequate with a comprehensive privacy and cookie policy but lacks a cookie consent mechanism. Overall, the site is trustworthy, well-maintained, and aligned with its mission.

S

Sportec Solutions

sportec-solutions.com

0

Sportec Solutions is a joint venture between Deltatre and the DFL Gruppe, specializing in sports data analysis and sports technology. The company positions itself as an innovation leader in its sector, targeting sports organizations and media companies. The website is built on WordPress and hosted on AWS infrastructure, utilizing modern plugins and fonts to deliver a professional user experience. Cookie consent is implemented, reflecting some privacy compliance efforts. However, the absence of a visible privacy policy and terms of service indicates room for improvement in compliance transparency. Security posture is moderate with HTTPS enabled but lacking DNSSEC and security headers. The domain registration is consistent with the business age and shows no suspicious patterns, supporting legitimacy. Overall, the website is professional and trustworthy but could enhance privacy and security disclosures.

M

Milka

milka.de

0

Milka is a well-established confectionery brand specializing in chocolate products, with a strong market presence primarily in Germany and Europe. The website serves as a brand engagement platform offering product information, promotions, and community interaction. The technical infrastructure is modern, leveraging React and Gatsby frameworks with Tailwind CSS for styling, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforced, appropriate security headers, and GDPR-compliant privacy and cookie policies. However, WHOIS data is unavailable, which is common for large brands using privacy protection services. Overall, the website is professional, trustworthy, and secure, supporting Milka's brand reputation effectively.

G

GKV-Spitzenverband

qs-reha.de

0

QS-Reha® is a government-backed quality assurance platform operated by the GKV-Spitzenverband, focusing on medical rehabilitation quality in Germany. The website provides comprehensive information about the quality assurance procedures, methodologies, and results for various medical indications, targeting healthcare providers and rehabilitation facilities. The platform serves as an official resource for quality data and facility comparisons, supporting transparency and improvement in rehabilitation services. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with Matomo analytics hosted on their own domain to ensure privacy compliance. The site is mobile-optimized, accessible, and uses HTTPS with a cookie consent mechanism that respects GDPR requirements. Hosting appears to be managed by ITSG or GKV-Spitzenverband infrastructure, ensuring stable and secure delivery. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent management. However, it lacks explicit security policies, incident response contacts, and advanced security headers, which could enhance its security posture. No vulnerabilities or suspicious elements were detected in the content or scripts. Overall, the website is trustworthy, professional, and compliant with privacy regulations, serving its government-mandated role effectively. Strategic improvements in security transparency and incident response readiness are recommended to further strengthen trust and resilience.

G

GKV-Spitzenverband

gkv-gamsi.de

0

The website www.gkv-gamsi.de serves as the official portal for the GKV-Spitzenverband's pharmaceutical quick information service, providing detailed reports and data visualizations on pharmaceutical expenditures within the German statutory health insurance system. It targets healthcare professionals, policymakers, and stakeholders involved in the German healthcare sector. The site offers quarterly reports, procedural information, and regional target agreements, positioning itself as a trusted governmental information source in the healthcare domain. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and integrates Tableau Public for interactive data visualizations. It uses Matomo analytics hosted on its own servers, enhancing privacy compliance. The site is moderately optimized for mobile devices and accessibility, with a clear navigation structure and cookie consent mechanisms aligned with GDPR requirements. From a security perspective, the site enforces HTTPS, uses cookie consent with opt-in for statistics, and applies SameSite cookie attributes. However, it lacks explicit security headers and does not publish a security policy or incident response contacts. No vulnerabilities or exposed sensitive data were detected. The WHOIS data aligns well with the website's governmental nature, indicating high legitimacy and trustworthiness. Overall, the website demonstrates a strong business credibility and technical foundation with good privacy compliance. Strategic improvements could include publishing a security policy, incident response information, and implementing additional security headers to enhance the security posture further.

G

GKV-Spitzenverband

gkv-datenaustausch.de

0

The GKV-Datenaustausch website is an official information portal operated by the GKV-Spitzenverband, the central association for statutory health insurance in Germany. It provides comprehensive and up-to-date information on electronic data exchange procedures and technical standards for healthcare providers, employers, and other stakeholders involved in the statutory health insurance system. The portal serves as a trusted resource for technical documentation, procedural guidance, and updates via RSS feeds, positioning itself as a key authoritative source in the healthcare data exchange domain. Technically, the website employs standard web technologies including JavaScript, jQuery, and Matomo analytics hosted on its own domain, reflecting a privacy-conscious approach to user tracking. The site is hosted on servers associated with ITSG, a recognized service provider for statutory health insurance IT services. The site demonstrates moderate performance and basic mobile optimization, with good accessibility and SEO practices. The presence of a cookie consent banner with granular options aligns with GDPR compliance requirements. From a security perspective, the site enforces HTTPS and uses secure cookie attributes, but lacks explicit security headers such as Content-Security-Policy or X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. However, the absence of published security policies or incident response contacts suggests room for improvement in transparency and readiness. Overall, the security posture is solid but could be enhanced with additional best practices. The website is fully accessible without any WAF or blocking mechanisms, and the WHOIS data confirms the domain's legitimacy and consistency with the GKV-Spitzenverband organization. No suspicious patterns or privacy protections obscure the domain registration. The site does not contain any adult or questionable content and is suitable for a general audience. Strategic recommendations include publishing security and incident response policies, improving mobile optimization, and adding advanced security headers to strengthen the security posture further.

G

GKV-Spitzenverband

gkv-90prozent.de

0

The website www.gkv-90prozent.de serves as the official e-magazine platform for the GKV-Spitzenverband, a key organization in the German statutory health insurance system. It provides comprehensive information on healthcare topics, policy updates, research, and care-related issues targeted at insured persons, healthcare professionals, and policymakers. The site is professionally designed with clear navigation and regularly updated content, reflecting a strong market position as an authoritative source in the healthcare sector. Technically, the website employs standard modern web technologies including HTML5, CSS3, and JavaScript, with Matomo analytics hosted on their own domain to ensure privacy compliance. The site is mobile-optimized and accessible, with proper meta tags supporting SEO. While no CMS or hosting provider details are explicitly identified, the infrastructure appears stable and performant. From a security perspective, the site uses HTTPS and implements a cookie consent mechanism aligned with GDPR requirements. However, it lacks explicit security headers and published security policies or incident response contacts, which could be improved to enhance trust and resilience. No vulnerabilities or suspicious content were detected. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include enhancing security headers, publishing security policies, and providing clearer contact information to further strengthen user trust and compliance posture.

G

GKV-Spitzenverband, DVKA

dvka.de

0

The DVKA website represents the Deutsche Verbindungsstelle Krankenversicherung – Ausland, a key department within the GKV-Spitzenverband, Germany's central association for statutory health and nursing care insurance. The site serves as an authoritative portal for international social security coordination, providing comprehensive information and services to insured persons, employers, healthcare providers, and international partners. The content is well-structured, professionally designed, and available primarily in German with English options, targeting a broad audience involved in cross-border social security matters. Technically, the website employs modern web standards with responsive design, accessibility considerations, and uses Matomo analytics hosted on its own domain to ensure privacy compliance. The site enforces HTTPS and implements a clear cookie consent mechanism distinguishing necessary and statistical cookies. However, no explicit security policy or incident response information is published, and security headers beyond HTTPS are not evident. From a security perspective, the site demonstrates good practices such as secure cookie handling and consent management, but could improve by publishing formal security policies and adding security headers. The WHOIS data aligns well with the official German social security infrastructure, reinforcing the site's legitimacy. No suspicious or privacy-protected WHOIS data is present, appropriate for a government entity. Overall, the DVKA website is a trustworthy, professional government resource with strong content quality and privacy compliance. Strategic improvements in security transparency and incident response readiness would further enhance its security posture and user trust.

S

SOZIALHELDEN e.V.

accessibility.cloud

0

accessibility.cloud is a non-profit initiative operated by SOZIALHELDEN e.V., focused on aggregating and sharing standardized accessibility data globally to foster an inclusive world. The platform offers free API access to location-based accessibility data and encourages organizations to contribute their data. Supported by reputable partners such as Google.org and Wheelmap.org, it holds a niche position in the accessibility data ecosystem. Technically, the website is built on the Meteor framework with integration of Mapbox mapping libraries, hosted with Cloudflare DNS and AWS S3 for uploads. The site demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. No CMS is detected, and the technical stack is modern but could benefit from enhanced security headers and DNSSEC. From a security perspective, the site uses HTTPS and has domain transfer protections but lacks DNSSEC and security headers. There is no visible privacy or cookie policy, nor a published security or incident response policy, indicating compliance gaps. No vulnerabilities or exposed sensitive data were detected. The domain WHOIS data is consistent with the organization's profile, showing a stable and legitimate registration. Overall, the website is trustworthy and professional with good content quality and business credibility. However, it should improve privacy compliance and security posture by adding policies, security headers, and DNSSEC. These enhancements will strengthen user trust and regulatory compliance.

S

Sozialhelden e.V.

sozialhelden.de

0

Sozialhelden e.V. is a German non-profit organization dedicated to promoting inclusion and accessibility for people with disabilities. Founded in 2004 by Raúl Krauthausen and others, the organization engages in political campaigns, app development, consulting, and empowerment initiatives. Their website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content focused on their mission. The target audience includes people with disabilities, companies, media professionals, and the general public interested in disability mainstreaming. Technically, the site is built on Webflow CMS, hosted via Cloudflare, and uses modern web technologies including Matomo for analytics and Klaro for cookie consent, ensuring GDPR compliance. Security posture is strong with HTTPS and cookie consent mechanisms, though some security headers could be improved. No critical vulnerabilities or suspicious content were detected. Overall, the website is trustworthy, well-maintained, and aligned with the organization's mission.