Security Directory

G

GKV-Spitzenverband - Abteilung DVKA

eu-patienten.de

0

EU-PATIENTEN.DE is a German government-affiliated platform operated by the GKV-Spitzenverband - Abteilung DVKA, serving as the national contact point for cross-border healthcare information between Germany and other EU countries. The website provides comprehensive information for patients, healthcare providers, and health insurers about planned and unplanned treatments both in Germany and abroad. It holds a strong market position as an official source for EU cross-border healthcare guidance. Technically, the site uses standard web technologies with a focus on accessibility, mobile optimization, and privacy-compliant analytics via Matomo. Security posture is solid with HTTPS enforcement and cookie consent mechanisms, though it lacks explicit security policy and incident response contact details. Overall, the site is trustworthy, professional, and well-aligned with its governmental healthcare mission.

T

TelefonSeelsorge® Deutschland

telefonseelsorge.de

0

TelefonSeelsorge® Deutschland is a well-established non-profit organization providing free, anonymous, and competent counseling services across Germany. It operates under the responsibility of the Evangelical and Catholic churches and relies on a large volunteer base to offer telephone, chat, email, and on-site counseling, as well as a mobile app for crisis support. The organization is positioned as a trusted national service with strong church affiliations and a comprehensive digital presence including a YouTube channel and multiple contact options. Technically, the website is built on WordPress with modern plugins and scripts, offering good performance, mobile optimization, and accessibility. Security posture is solid with HTTPS and cookie consent mechanisms, though formal security policies and incident response contacts are not publicly disclosed. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

A

Avoxa - Mediengruppe Deutscher Apotheker GmbH

aponet.de

0

aponet.de is a comprehensive German health portal operated by Avoxa - Mediengruppe Deutscher Apotheker GmbH, serving as the official information platform for pharmacists and health consumers in Germany. The site offers a wide range of health news, pharmacy services, podcasts, and digital health tools, positioning itself as a trusted and authoritative source in the healthcare media sector. The business model centers on content provision supported by advertising and informational services tailored to the healthcare community and general public. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies including JavaScript, CSS, and integrated consent management platforms such as Sourcepoint and ContentPass. Hosting is inferred to be with Deutsche Telekom, ensuring reliable infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. From a security perspective, the website enforces HTTPS, employs GDPR-compliant consent mechanisms, and integrates reputable advertising and tracking services. While explicit security headers are not fully confirmed, the overall posture is strong with no evident vulnerabilities or exposed sensitive data. However, the site could improve by publishing explicit security policies and incident response contacts. Overall, aponet.de presents a low-risk profile with high business credibility, excellent content quality, and solid technical implementation. Strategic recommendations include enhancing security header implementation, publishing vulnerability disclosure information, and expanding transparency around incident response to further strengthen trust and compliance.

D

Deutsche Gesetzliche Unfallversicherung e.V.

dguv.de

0

The Deutsche Gesetzliche Unfallversicherung e.V. (DGUV) is the leading statutory accident insurance umbrella organization in Germany, representing commercial professional associations and public accident insurance carriers. The website provides comprehensive information on prevention, insurance coverage, rehabilitation, research, and qualification services targeted at companies, employees, educational institutions, and healthcare providers. DGUV maintains a strong market position as a government/non-profit entity with extensive subsidiary institutes and clinics. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, jQuery, and slick sliders, hosted likely by Deutsche Telekom infrastructure. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in cookie consent and security headers. Privacy compliance is good with a comprehensive GDPR-aligned privacy policy, but lacks an explicit cookie consent mechanism. Overall, the domain registration data aligns well with the organization's identity, enhancing trustworthiness.

K

KZBV - Kassenzahnärztliche Bundesvereinigung

kzbv.de

0

The KZBV (Kassenzahnärztliche Bundesvereinigung) is a large, government-related healthcare organization in Germany representing approximately 63,000 dentists involved in statutory dental care. It acts as the umbrella organization for the 17 regional dental associations, negotiating contracts with health insurers and shaping dental healthcare policy and services for about 70 million insured individuals. The website is professionally designed, content-rich, and targets dentists, patients, policymakers, and the press. It provides comprehensive information on legal frameworks, digitalization, quality promotion, and patient consultation services. Technically, the website is built on WordPress with modern plugins such as WooCommerce, Yoast SEO Premium, and Borlabs Cookie for privacy compliance. It uses jQuery and Swiper.js for interactive elements and is hosted likely by NetCologne based on DNS data. The site is mobile-optimized, accessible, and SEO-friendly, with structured data enhancing search engine understanding. From a security perspective, the site enforces HTTPS, uses cookie consent mechanisms, and employs honeypot techniques to protect forms. However, explicit security headers are not detected in the provided data, and no dedicated security or incident response policies are published. No vulnerabilities or suspicious patterns were found, and the WHOIS data aligns well with the organization's identity, indicating a legitimate and consistent domain registration. Overall, the website presents a low-risk profile with strong business credibility and privacy compliance. Strategic recommendations include enhancing security headers, publishing explicit security policies, and maintaining regular plugin audits to sustain security posture.

K

Kassenärztliche Bundesvereinigung

kbv.de

0

The website www.kbv.de represents the Kassenärztliche Bundesvereinigung (KBV), the umbrella organization for 17 statutory health insurance physician associations in Germany. It serves as a central platform organizing ambulatory healthcare and representing the interests of contracted physicians and psychotherapists at the federal level. The site targets healthcare professionals and stakeholders within the German healthcare system. The business model is non-profit and focused on healthcare governance and support services. The organization holds a strong national market position as a key healthcare body in Germany. Technically, the website is hosted on Akamai CDN infrastructure, uses modern web technologies including HTML5, CSS3, JavaScript, and Bootstrap for responsive design. The site demonstrates good mobile optimization, accessibility, and SEO practices. Cookie consent is managed via a custom script from a subdomain. However, no explicit CMS or analytics services were detected. From a security perspective, the site uses HTTPS and shows no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security headers and does not provide a public security policy or incident response contacts. Privacy compliance is weak due to the absence of visible privacy and cookie policies. Contact information is not directly available on the homepage, which may impact user trust and compliance. Overall, the site is professional, trustworthy, and well-structured but would benefit from enhanced privacy disclosures, security headers, and clearer contact information to improve compliance and user confidence.

K

Kassenärztliche Bundesvereinigung (KBV)

116117-termine.de

0

The website www.116117-termine.de serves as the official appointment booking platform for statutory health insured patients in Germany, operated under the auspices of the Kassenärztliche Bundesvereinigung (KBV). It provides a trusted and user-friendly service for booking, viewing, and canceling medical appointments with general practitioners and specialists. The platform is recognized as a Stiftung Warentest Testsieger in 2021, underscoring its market credibility and user trust. The target audience is primarily German statutory health insured patients seeking quick and reliable access to healthcare appointments. Technically, the website is built on the TYPO3 CMS framework, leveraging modern web technologies including JavaScript and CSS. It integrates Matomo analytics with a clear cookie consent mechanism, ensuring compliance with GDPR and privacy best practices. The site demonstrates good mobile optimization, accessibility, and SEO practices, contributing to a positive user experience. Hosting appears to be managed by kv.digital GmbH, a technology partner closely affiliated with the KBV. From a security perspective, the site enforces HTTPS and employs cookie consent for tracking, minimizing privacy risks. However, explicit security headers such as Content Security Policy and HSTS are not evident, and no formal security or incident response policies are published. No vulnerabilities or exposed sensitive data were detected in the analysis. The WHOIS data is limited but does not raise concerns, and the domain appears legitimate and consistent with the official nature of the service. Overall, the website presents a professional, secure, and privacy-conscious platform that effectively supports its public healthcare mission. Strategic improvements could include publishing a security policy, adding security headers, and providing clearer contact information for incident response. These enhancements would further strengthen trust and compliance in an increasingly regulated digital environment.

P

Pageflow

pageflow.io

0

Pageflow is a Germany-based SaaS platform specializing in multimedia storytelling and digital publishing. It offers an intuitive cloud-based content management system that enables users to upload various digital formats and create interactive web stories with ease. The platform targets media professionals, journalists, and organizations seeking to deliver engaging multimedia content across devices. Pageflow has a solid market presence with notable clients and a reputation for quality digital journalism solutions. Technically, the website employs modern web technologies including Video.js, React-like frameworks, and privacy-focused analytics (Plausible). It is optimized for performance, accessibility, and SEO, with a responsive design ensuring excellent user experience on all devices. Security-wise, the site enforces HTTPS, uses GDPR-compliant cookie consent, and avoids exposing sensitive data, though explicit security headers and incident response contacts could be improved. Overall, the domain appears legitimate despite privacy-protected WHOIS data, consistent with industry norms for SaaS providers. The website scores highly on content quality, technical implementation, and security posture, making it a trustworthy and professional digital publishing solution.

M

Messe München GmbH

bauma.de

0

The bauma.de website represents the official online presence of the bauma trade fair, the world's leading exhibition for construction, mining, and building machinery. Managed by Messe München GmbH, the site serves a global audience of exhibitors, visitors, and journalists, providing comprehensive information about the event, including dates, exhibitor directories, programs, and visitor services. The business model centers on event organization and industry networking, positioning bauma as a key innovation and market platform in the manufacturing and transportation sectors. Technically, the website employs modern web technologies such as JavaScript ES modules, web components, and cloud-based hosting via Amazon Cloudfront and Azure Elastic Cloud, ensuring fast performance and excellent mobile optimization. Security posture is strong with HTTPS enforcement, security headers, and GDPR-compliant cookie consent mechanisms, although explicit security policies and incident response contacts are not prominently published. Overall, the site is professional, trustworthy, and well-aligned with industry standards, with no detected vulnerabilities or suspicious elements.

D

Deutscher Säge- und Holzindustrie Bundesverband e. V. (DeSH)

holzkongress.de

0

The Deutscher Holzkongress website serves as a professional platform for the annual wood industry congress organized by the Deutscher Säge- und Holzindustrie Bundesverband e. V. (DeSH). It targets industry professionals, policymakers, and stakeholders in the wood and forestry sectors, providing detailed event information, speaker profiles, news updates, and sponsorship opportunities. The site is well-branded and consistent with the organization's identity, reflecting a medium-sized, established industry event in Germany. Technically, the site is built on WordPress with modern plugins for SEO, user management, and content presentation. It employs HTTPS and a cookie consent mechanism but lacks explicit privacy and terms of service pages, as well as security headers, which are areas for improvement. The security posture is moderate with no detected vulnerabilities or WAF blocking. Overall, the site is professional, trustworthy, and safe for general audiences.

L

Lohosopo - Vertrieb für Ferienunterkünfte und Dmos

lohospo.de

0

Lohospo is a small German company specializing in sales and software solutions for vacation rentals, hotels, and destination management organizations (DMOs). Their website presents a professional image with clear business focus on hospitality sector services including booking software and channel management. The company leverages WordPress with the Divi theme and integrates SEO and analytics tools to support their digital presence. While the technical infrastructure is modern and performance is moderate, the site lacks published privacy and terms of service policies, which impacts compliance and trust. Security posture is generally good with HTTPS and anti-spam measures, but could be improved with additional security headers and published policies. Overall, the website is accessible, well-branded, and targets B2B hospitality clients effectively.

H

Holidu Hosts GmbH

bookiply.com

0

Bookiply is a vacation rental management platform focused on helping hosts maximize bookings and reduce administrative workload. It operates primarily in Europe and is part of the Holidu Group, a recognized entity in the hospitality sector. The website offers a comprehensive suite of services including property listing, channel management, and personal support for hosts. The company targets vacation rental owners and agencies, providing an all-in-one solution to increase visibility and revenue. Technically, the website is built using modern web technologies such as React and Next.js, hosted on AWS in Ireland, and integrates multiple analytics and marketing tools including Google Analytics, Hotjar, and Facebook Pixel. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, employs standard security headers, and uses cookie consent mechanisms aligned with GDPR requirements. However, explicit security policies and incident response contacts are not publicly disclosed, which could be improved. The WHOIS data is unavailable, likely due to privacy protection, which slightly impacts trust but is mitigated by the professional presentation and detailed imprint. Overall, Bookiply presents a trustworthy and professional online presence with strong compliance and technical maturity. Strategic improvements in transparency around security policies and incident response would enhance its security posture and trustworthiness further.

Horizons by heise is a well-established German conference platform focusing on digital transformation, AI, data-driven organizations, and the future of work. It is backed by the reputable heise medien group and targets decision-makers and digital change agents. The website provides comprehensive event information, speaker profiles, and additional content such as podcasts and online meetups. Technically, the site uses modern JavaScript libraries like Swiper and Fancybox, and employs Matomo for privacy-conscious analytics. The hosting is consistent with the domain's WHOIS data, indicating a legitimate and professional setup. Security posture is good with HTTPS enforced and no visible vulnerabilities, though the site lacks some security headers and a cookie consent mechanism. Overall, the site is professional, trustworthy, and well-positioned in its niche.

R

RedaktionsNetzwerk Deutschland

rnd.de

0

RedaktionsNetzwerk Deutschland (RND) operates a major German news media website providing current news, videos, podcasts, and subscription-based content under the RND+ brand. The site targets a broad general audience interested in politics, economy, culture, and other topical areas. The business model is primarily media publishing with monetization through subscriptions and advertising. Technically, the website uses modern web technologies including React, Google Tag Manager, and a consent management platform to comply with GDPR. The presence of a paywall system (Piano/Tinypass) indicates a mature digital subscription infrastructure. Security posture is good with HTTPS enforced and consent mechanisms in place, though explicit security policies and vulnerability disclosures are not found. Overall, the site is professional, well-branded, and trustworthy with no signs of malicious or adult content.

L

Start – Landesgartenschau Bad Nenndorf 2026

landesgartenschau-badnenndorf.de

0

The website for Landesgartenschau Bad Nenndorf 2026 serves as an informational portal for a regional garden exhibition event in Germany. It provides visitors with event dates, planning updates, and engagement opportunities. The site is built on Joomla CMS and uses modern frontend libraries such as Swiper and Fancybox, indicating a moderate level of technical maturity. However, the absence of privacy and cookie policies, as well as explicit contact information, suggests gaps in compliance and user trust facilitation. Security posture is basic, with no visible security headers or incident response contacts. Overall, the site is functional and informative but would benefit from enhanced privacy, security, and contact transparency to improve trust and compliance.

B

Bundesinstitut für Öffentliche Gesundheit (BIÖG)

kindergesundheit-info.de

0

The website kindergesundheit-info.de is an authoritative German government-backed portal operated by the Bundesinstitut für Öffentliche Gesundheit (BIÖG). It provides comprehensive, scientifically grounded information and resources on child health and development for children aged 0 to 6 years. The portal targets parents, healthcare professionals, and community workers, offering materials such as brochures, infographics, films, and practical tools like the U-Termin-Rechner for appointment scheduling. The business model is non-commercial, focusing on public health education and support. Technically, the site is built on TYPO3 CMS, employs Matomo for privacy-conscious analytics, and demonstrates good mobile optimization, accessibility, and SEO practices. The infrastructure appears stable and well-maintained, with local hosting of analytics in Germany and no detected blocking or WAF interference. The site uses HTTPS with excellent SSL configuration, though it lacks some security headers and explicit published security policies. From a security and privacy perspective, the website shows strong GDPR compliance with a clear privacy policy, cookie consent banner, and anonymized data collection. However, it lacks explicit incident response contacts, vulnerability disclosure mechanisms, and security policy documentation. No exposed vulnerabilities or suspicious domains were detected, and no commercial tracking or advertising networks are present. Overall, the site is trustworthy, professional, and safe for general audiences, particularly parents and professionals seeking child health information. Strategic improvements could include publishing security policies, adding security headers, and providing explicit incident response contacts to enhance transparency and security posture.

K

Kassenärztliche Bundesvereinigung (KBV)

116117.de

0

The website www.116117.de is the official patient service platform operated by the Kassenärztliche Bundesvereinigung (KBV) in Germany, providing comprehensive medical on-call services, appointment booking, and healthcare information. It serves as a critical public healthcare resource, offering 24/7 telephone medical advice and digital tools such as symptom assessment and doctor search. The platform is well-positioned as the national gateway for non-emergency medical assistance, targeting patients across Germany. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript with jQuery, hosted on Akamai CDN infrastructure for performance and reliability. The site is mobile-optimized, accessible, and SEO-friendly, with multilingual support and accessibility features such as sign language and easy language options. Privacy and cookie consent mechanisms are robustly implemented, reflecting compliance with GDPR requirements. From a security perspective, the site enforces HTTPS and employs cookie consent banners but lacks explicit security headers and public security policies or incident response disclosures. No vulnerabilities or sensitive data exposures were detected in the content. The WHOIS data and hosting details align with a legitimate, professionally managed government healthcare service domain. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, with minor recommendations to enhance security headers and publish security policies. The risk profile is low, making it a reliable and safe resource for healthcare information and services in Germany.

C

CM4all GmbH

cm4all.com

0

CM4all GmbH operates a mature software platform specializing in web application and website building solutions, primarily targeting small businesses and partners such as hosting providers and telecommunications companies. The company is part of the we22 group and has a strong market presence with millions of users worldwide. Their offerings include white-label web builders, hosting platforms, and service tools, supported by expert consulting and 24/7 support. Technically, the website is built on TYPO3 CMS with modern frontend frameworks like Bootstrap and jQuery, delivering a responsive and professional user experience. Security posture is moderate with secure form handling and GDPR compliance evident, but lacks visible security headers and explicit incident response policies. The absence of WHOIS registration data raises concerns about domain legitimacy, though the website content and business information appear consistent and trustworthy. Overall, the site demonstrates good digital maturity but would benefit from enhanced security practices and domain registration transparency.

W

we22

we22.com

0

we22 is a German-based technology company specializing in software development, platform operations, and consulting services aimed at empowering small businesses through digital transformation. Their offerings include scalable website software, hosting, domain management, CRM integration, and white-label services, positioning them as a market leader in website creation and online marketing solutions for small enterprises. The company leverages a strong partner ecosystem including major industry and telecommunications firms to enhance its market reach and service quality. Technically, the website is built on TYPO3 CMS with modern frontend frameworks and integrates Google Tag Manager for analytics. The site is well-designed, mobile-optimized, and GDPR compliant with clear cookie consent mechanisms and multiple contact forms integrated with Salesforce. Security posture is moderate with room for improvement in HTTP security headers and published security policies. WHOIS data is missing, which reduces domain trustworthiness and should be verified. Overall, the website and business present a professional and credible digital presence with a solid foundation for growth and customer engagement.

S

Stadtwerke Rheinfelden (Baden)

stadtwerke-rheinfelden.de

0

Stadtwerke Rheinfelden (Baden) is a regional municipal utility company providing essential water and heat supply services to the Rheinfelden community in Germany. The website clearly communicates their role as a reliable local service provider focused on citizen welfare. Their business model is that of a municipal utility, serving residential and commercial customers with sustainable and efficient energy and water solutions. The site features clear navigation, relevant content, and partner affiliations that reinforce their local market position. Technically, the website is built on the cEasy CMS platform and incorporates modern JavaScript libraries such as jQuery and Slick Carousel for UI elements. It uses Matomo for privacy-conscious analytics and includes accessibility features and mobile optimization. Hosting is managed via domaincontrol.com DNS, typical for small to medium enterprises. Performance is moderate with good SEO and metadata implementation. From a security perspective, the site enforces HTTPS and implements cookie consent mechanisms aligned with GDPR. However, it lacks a publicly available security policy and incident response contacts, which are recommended for enhanced transparency and trust. No critical vulnerabilities or exposed sensitive data were detected. The WHOIS data is minimal but consistent with the business identity, supporting legitimacy. Overall, the website presents a professional and trustworthy digital presence for a small municipal utility. Strategic improvements include publishing a dedicated security policy, incident response information, and enhancing security headers to strengthen the security posture further.

A

Abfallwirtschaft Landkreis Lörrach

abfallwirtschaft-loerrach-landkreis.de

0

Abfallwirtschaft Landkreis Lörrach is a government-operated waste management service provider serving the Landkreis Lörrach region in Germany. The website offers comprehensive information on waste collection schedules, container ordering, recycling, hazardous waste disposal, and related public services. It targets residents and businesses within the local jurisdiction, providing essential public service functions with a focus on environmental sustainability and regulatory compliance. The site is well-structured with clear navigation and relevant content tailored to its audience.

S

Sozialhelden e.V.

wheelmap.org

0

Wheelmap.org is a non-profit platform operated by Sozialhelden e.V., focused on providing an online map to search, find, and mark wheelchair-accessible places worldwide. The platform leverages OpenStreetMap data and encourages community contributions to improve accessibility information. It targets users with mobility impairments and advocates for accessibility awareness. Technically, the website is built using modern frameworks such as React and Next.js, integrates Mapbox APIs, and uses Cloudflare and Fastly for DNS and CDN services. The site is mobile optimized and accessible, with good SEO practices. Security posture is strong with HTTPS and Content Security Policy implemented, though DNSSEC is not enabled and some security headers could be added. Privacy compliance is weak due to the absence of explicit privacy and cookie policies. Analytics is handled via Piwik/Matomo with disabled cookies, reflecting a privacy-conscious approach. Overall, the site is trustworthy and professionally maintained, but could improve transparency on privacy and incident response.

The website www.bebit-rheinfelden.de serves as a regional vocational orientation platform managed by WST Rheinfelden (Baden) GmbH. It provides students, companies, and schools with information on training opportunities, regional training companies, and vocational events. The site is positioned as a local educational resource with a focus on supporting regional workforce development. Technically, the site is built on the Contao Open Source CMS and uses modern JavaScript libraries such as jQuery and Rocksolid Slider. It implements HTTPS and a comprehensive cookie consent mechanism, reflecting a good level of digital maturity. Security measures include CSRF protection and cookie consent categories, though explicit security headers and incident response policies are not published. Overall, the site is professional, trustworthy, and compliant with GDPR requirements.

K

Komm.ONE

komm-one.net

0

Komm.ONE is a medium-sized IT service provider focused on delivering specialized solutions to municipal and state administrations in Baden-Württemberg, Germany. The company offers a range of services including consulting, cloud solutions, innovation management, and security services tailored for public sector clients. The website reflects a professional and consistent brand presence with clear navigation and relevant content targeted at government entities. Technically, the site employs a modern technology stack with popular JavaScript libraries and frameworks, ensuring good performance and mobile optimization. Security posture is solid with HTTPS enforced and domain transfer protections, though DNSSEC is not enabled and some security headers are missing. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism, leveraging Matomo analytics for privacy-conscious tracking. Overall, the domain registration details align well with the business profile, indicating legitimacy and trustworthiness.

K

Kraftfahrt-Bundesamt

kba.de

0

The Kraftfahrt-Bundesamt (KBA) website serves as the official digital presence of the German Federal Motor Transport Authority. It provides extensive information and services related to vehicle registration, driver licensing, type approvals, market surveillance, and statistical data. The site targets a broad audience including the general public, automotive professionals, and government entities. The business model is that of a government regulatory and administrative authority with a strong national presence in Germany. The website is well-structured, professionally designed, and consistent with government branding standards.

G

GKV-Spitzenverband

gkv-spitzenverband.de

0

The GKV-Spitzenverband website serves as the official portal for Germany's statutory health and long-term care insurance umbrella organization. It provides comprehensive information on health insurance, care insurance, policy updates, research, and services for insured persons and healthcare providers. The site is well-structured, professionally designed, and offers content in German and English, targeting insured individuals, healthcare professionals, policymakers, and the public. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and Matomo analytics with a strong emphasis on privacy and consent. Security posture is robust with HTTPS enforcement and cookie consent mechanisms, though formal security policies and incident response contacts are not explicitly published. Overall, the site reflects a mature digital presence consistent with a large, government-related healthcare entity.

L

Leyendecker HolzLand GmbH & Co. KG

leyendecker.de

0

Leyendecker HolzLand GmbH & Co. KG is a well-established wood specialist retailer and wholesaler based in Trier, Germany, with a history dating back to 1860. The company offers a broad range of wood products including flooring, doors, garden furniture, and wood-based materials, serving craftsmen, businesses, and end consumers primarily in the Rheinland-Pfalz, Saarland, and Luxembourg regions. Their market position is strong regionally, supported by a large physical exhibition and an online shop. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and consent management tools, ensuring good performance and mobile optimization. Security posture is solid with HTTPS, CSP headers, and privacy compliance mechanisms in place, though lacking a dedicated security policy or incident response information. Overall, the site is professional, trustworthy, and compliant with GDPR, with clear contact information and social media presence.

N

Neudeck

neudeck.de

0

Neudeck is a well-established German family-owned business specializing in the international import and distribution of semi-finished wood products. Founded in 1946, it operates with over 180 employees, multiple locations, and a significant logistics fleet, serving primarily B2B customers in the wood manufacturing and construction sectors. The company emphasizes sustainability through FSC and PEFC certifications and maintains a professional digital presence with a modern WordPress-based website featuring SEO optimizations and multimedia content. Technically, the website uses a mature tech stack including Bootstrap and Borlabs Cookie for GDPR compliance, with good mobile optimization and moderate performance. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and explicit security policies. Overall, the website reflects a credible and trustworthy business with a strong market position in the manufacturing sector.

E

EVH GmbH & Co. KG

evholz.de

0

EVH GmbH & Co. KG operates as a purchasing alliance for wood dealers in Germany, established in 2012 and part of the hagebau group. The company focuses on optimizing purchasing conditions and supporting its members through a network of over 50 sales locations and more than 100 supplier relationships. The website reflects a professional business presence targeting wood dealers and suppliers, emphasizing collaboration and market strength. Technically, the website is built on the Contao CMS platform, utilizing jQuery and Rocksolid Slider for interactive elements. It is hosted with INWX and uses HTTPS with proper session and CSRF protections. The site is mobile-optimized with basic accessibility and SEO features, though some security headers could be improved. From a security perspective, the site enforces HTTPS and includes a GDPR-compliant cookie consent mechanism. However, explicit security policies and incident response contacts are not present. No vulnerabilities or suspicious elements were detected. WHOIS data aligns well with the business information, supporting domain legitimacy. Overall, the website presents a trustworthy and professional image with good privacy compliance and moderate technical sophistication. Recommendations include enhancing security headers, adding explicit security policies, and expanding analytics and marketing transparency for improved digital maturity.

L

Ludwig & Co

ludwig-holz.de

0

Ludwig & Co is a well-established German company specializing in the import and trade of wood products, particularly for construction and packaging. With over 100 years of experience, the company positions itself as a leading expert in the wood industry, offering a range of products including Sperrholz/LUCOply, Nadelschnittholz, and Sibirische Lärche. The website reflects a professional and consistent brand image, emphasizing sustainability certifications such as FSC® and PEFC. Technically, the site is built on Joomla CMS with modern UIkit framework and includes GDPR-compliant cookie consent mechanisms. Security practices include HTTPS enforcement and email obfuscation, though some HTTP security headers are not explicitly detected. Contact information is comprehensive, listing multiple experts with direct phone and email contacts. No social media or analytics tracking is evident, indicating a privacy-conscious approach.

H

Holz-Tusche GmbH & Co. KG

holztusche.de

0

Holz-Tusche GmbH & Co. KG is a medium-sized, established family business in Germany specializing in high-quality wood-based materials and innovative services for the construction and manufacturing sectors. The company operates a professional e-commerce platform built on Shopware 6, offering a wide range of wood products including panels, doors, and construction timber. Their market position is supported by partnerships with reputable suppliers such as Egger, Finsa, and Resopal. Technically, the website employs modern JavaScript libraries, integrates advanced search via Fact Finder, and uses analytics tools like Google Tag Manager and PostHog, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and error monitoring via Sentry, though additional security headers and explicit policies could enhance compliance and trust. Overall, the site is well-structured, mobile-optimized, and trustworthy, targeting B2B customers in the wood materials industry.

C

Carl Götz

carlgoetz.de

0

Carl Götz is a medium-sized German company specializing in the retail and distribution of wood products and related construction materials. The website presents a comprehensive catalog of products including panels, wood construction materials, flooring, doors, and garden-related items, targeting both business and private customers. The company maintains multiple physical locations and offers digital services such as customer login, configurators, and sample services. Technically, the website is built on the Shopware CMS platform, uses modern web technologies including Google reCAPTCHA and Google Tag Manager, and is hosted on a reliable DNS provider. Security posture is good with HTTPS enforced and CSRF protection on forms, though additional security headers and policies could enhance protection. Privacy compliance is basic with a cookie consent mechanism but lacks a visible privacy policy or terms of service. Overall, the website is professional, trustworthy, and well-structured, with room for improvement in privacy and security transparency.

hagebau Handelsgesellschaft für Baustoffe mbH & Co. KG operates a well-established cooperative retail and wholesale business specializing in building materials and home improvement products primarily in Germany. The website presents a professional and content-rich platform featuring specialist trade, retail, career opportunities, and press information, targeting both business partners and end customers. The company is positioned as a major player in its sector with a large operational footprint and active engagement through news and job postings. Technically, the site is built on CoreMedia CMS, employs modern tracking and consent management tools like Usercentrics and eTracker, and uses structured data for SEO and business transparency. Security posture is good with HTTPS and domain transfer protections, though DNSSEC is not enabled and security policies are not publicly disclosed. Overall, the site is trustworthy, well-maintained, and compliant with GDPR cookie consent requirements.

D

Der Holzring GmbH

holzring.de

0

Der Holzring GmbH operates as a cooperative service provider focused on process optimization, intelligent performance remuneration, and fostering successful networking between shareholders and suppliers. The company positions itself as a trusted intermediary enhancing business relationships within the wood supply sector. The website reflects a medium-sized enterprise based in Germany, offering consulting and optimization services with a clear business model centered on collaboration and efficiency. Technically, the site is built on TYPO3 CMS, leveraging modern web technologies such as Bootstrap and jQuery, hosted likely on Your-Server.de infrastructure. The site is mobile-optimized and demonstrates good SEO and accessibility practices. Security posture is solid with HTTPS enforced and privacy-conscious analytics implementation, though some security headers could be improved. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-maintained, supporting the company's business credibility and digital maturity.

A

A&J HOLZZENTRUM – Andresen & Jochimsen GmbH & Co. KG

holzzentrum.de

0

A&J HOLZZENTRUM – Andresen & Jochimsen GmbH & Co. KG operates a specialized retail and online shop business focused on wood products, building materials, doors, and garden supplies primarily serving the Hamburg region in Germany. The company positions itself as Hamburg's largest selection provider in this sector, targeting both B2C and B2B customers. Their business model combines physical retail with an integrated e-commerce platform, leveraging Shopware technology to deliver a comprehensive shopping experience. Technically, the website is built on the Shopware CMS platform, enhanced with modern JavaScript libraries such as jQuery and integrated with marketing and customer service tools like Google Tag Manager, Superchat, and Trusted Shops widgets. The hosting is managed via 1&1 IONOS, with consistent domain registration and DNS configurations. The site demonstrates good mobile optimization, SEO practices, and basic accessibility features, supporting a positive user experience. From a security perspective, the website enforces HTTPS, employs standard security headers, and integrates CAPTCHA on forms to mitigate automated abuse. While no critical vulnerabilities or exposed sensitive data were detected, the absence of a dedicated security policy or incident response contact suggests room for improvement in transparency and preparedness. Privacy and cookie policies are present and include consent mechanisms, aligning with GDPR requirements. Overall, the website presents a trustworthy and professional front with solid business credibility and technical implementation. The risk profile is low, with recommendations focusing on enhancing security documentation, incident response readiness, and accessibility compliance to further strengthen the security posture and user trust.

Alois Denzel KG operates as one of the largest wood wholesalers in southern Germany, providing a wide range of wood products and services to customers in trade, industry, and craftsmanship. Founded in 1938, the company has grown into a large enterprise with extensive warehousing and a dedicated fleet of trucks, emphasizing sustainability and customer-centric service. Their website reflects a mature digital presence with comprehensive product information, online tools, and certifications that reinforce their market position. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and Contact Form 7, ensuring good SEO and user experience. The site is mobile-optimized, accessible, and integrates Matomo for privacy-conscious analytics. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the security posture is strong with no evident vulnerabilities or exposed sensitive data. The domain registration data aligns well with the business claims, supporting legitimacy and trustworthiness. The site is safe for general audiences with no adult or questionable content. Strategic recommendations include enhancing security headers, adding explicit security policies, and considering a vulnerability disclosure policy to further strengthen trust. This analysis indicates a professionally managed business website with strong compliance and security awareness, suitable for its industry and customer base.

H

Holz Adrian

holz-adrian.de

0

Holz Adrian operates as a wood wholesaler and retailer primarily serving the construction, craft, and industrial sectors in Germany. The company offers a broad range of wood products including construction timber, parquet, doors, stairs, and garden wood products. Their market position is that of a regional supplier with a focus on B2B customers. The website is built on WordPress with WooCommerce, indicating a mature e-commerce infrastructure. Plugins for search, anti-spam, and cookie consent are implemented, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS enabled and anti-spam measures in place, but lacks advanced security headers and explicit privacy or terms policies, which are areas for improvement. Overall, the website is professional and trustworthy, but could enhance compliance and security transparency.

D

DigiShop GmbH

kloepfer.de

0

Klöpfer Holzhandel operates a professional B2B e-commerce platform specializing in wood and wood-related construction materials, targeting professional tradespeople and commercial customers primarily in Germany. The website offers a comprehensive product catalog, planning tools, and customer account management features, positioning itself as a leading provider in the German wood trade market. Technically, the site uses a modern JavaScript stack with Bootstrap, jQuery, Slick Slider, and a ColdFusion backend, hosted likely on Deutsche Telekom infrastructure. The site is mobile-optimized and provides a good user experience with clear navigation and product categorization. Security posture is solid with HTTPS and cookie consent mechanisms, though it lacks explicit security headers and published privacy or terms policies. No WAF or blocking mechanisms were detected, and no suspicious or adult content is present. Overall, the site is professional, trustworthy, and well-structured but could improve privacy transparency and security header implementation.

D

DigiShop GmbH

weltholz.de

0

Weltholz is a German-based wood import company specializing in high-quality timber and exclusive wood products for wholesale and retail customers. The website presents a professional and well-structured platform targeting B2B clients such as large and wood dealers. It offers a comprehensive product catalog, marketing support, and online tools like a terrace planner. Technically, the site uses a custom ColdFusion backend with modern frontend libraries including jQuery, Bootstrap, and Slick Slider, integrated with HubSpot and Google Analytics for marketing and analytics. The security posture is solid with HTTPS and cookie consent mechanisms, though security headers are not explicitly detected and could be improved. Privacy compliance is strong with clear policies and consent management. Overall, the site is trustworthy, well-branded, and professionally maintained.

B

Bundesministerium für Bildung und Forschung

bne-portal.de

0

The BNE-Portal is an official German government platform managed by the Bundesministerium für Bildung und Forschung (BMBF) dedicated to promoting education for sustainable development (Bildung für nachhaltige Entwicklung - BNE). It serves as a comprehensive resource hub offering educational materials, news, event calendars, and information on funding opportunities. The portal targets educators, learners, policymakers, and the general public interested in sustainability education. Technically, the site is built on the Government Site Builder CMS, employs modern web standards, and is optimized for accessibility and mobile devices. Security-wise, the site uses HTTPS and provides a cookie consent mechanism with anonymized analytics via Matomo, but lacks explicit security policies or incident response contacts. Overall, the site demonstrates a strong professional and trustworthy presence consistent with a government educational service.

D

Deutscher Gründerpreis für Schüler:innen

dgp-schueler.de

0

The Deutscher Gründerpreis für Schüler:innen is a German educational initiative focused on promoting entrepreneurship education among students, primarily targeting those in the 9th grade and above, as well as teachers and Sparkasseninstitutes. The initiative organizes competitions, provides educational materials, and fosters practical learning experiences to sensitize young people to economic topics and entrepreneurial self-employment. The website is professionally designed, well-structured, and consistent with the brand's mission, supported by recognized partners such as Sparkasse, ZDF, Porsche, and others. Technically, the website employs modern web standards including HTML5, CSS3, and JavaScript, with embedded YouTube videos and Google Tag Manager for analytics. The site appears to be built on TYPO3 CMS, indicated by URL patterns and asset naming conventions. Performance and mobile optimization are good, with accessibility features implemented. Privacy compliance is strong, featuring a cookie consent banner and a comprehensive privacy policy aligned with GDPR requirements. From a security perspective, the site uses HTTPS with good SSL configuration and anonymizes IP addresses in analytics. However, no explicit security headers were detected in the HTML content, and there is no visible incident response or vulnerability disclosure information. No critical vulnerabilities or exposed sensitive data were found. The domain WHOIS data is consistent with the website's purpose, supporting legitimacy. Overall, the website presents a low-risk profile with a solid security posture and good privacy compliance. Strategic recommendations include enhancing security headers, publishing incident response contacts, and adding a security.txt file to improve vulnerability disclosure transparency.

D

Deutscher Sparkassen- und Giroverband

planspiel-boerse.de

0

Planspiel Börse is an educational platform operated under the auspices of the Deutscher Sparkassen- und Giroverband, offering Europe's largest stock market simulation game targeted at students and pupils. The website presents a professional and consistent brand image with a focus on financial education and engagement through interactive competitions. Technically, the site leverages modern frameworks such as Next.js and React, ensuring good mobile optimization and accessibility. However, the absence of explicit privacy and cookie policies, as well as missing security headers, indicates room for improvement in compliance and security posture. Overall, the domain registration data aligns well with the website's German educational focus, supporting its legitimacy.

funny-frisch.de is the official website of funny-frisch, a leading German snack brand known for its salty snack products. The site is branded under the parent company Intersnack Deutschland SE and positions itself as a market leader with a strong consumer focus in Germany. The website offers product information, brand storytelling, and consumer engagement through social media and campaigns. Technically, the site is built on the Contao CMS platform and uses modern JavaScript libraries such as jQuery, Slick Slider, and WOW.js to deliver a responsive and visually appealing user experience. The site is mobile optimized and SEO friendly, with clear navigation and professional design. Security-wise, the site uses HTTPS with good SSL configuration and avoids exposing sensitive data. However, it lacks visible security headers and explicit cookie consent mechanisms, which are important for GDPR compliance. No direct contact emails or phone numbers are published, with contact primarily via a web form. Overall, the website is trustworthy, professional, and safe for general audiences, with room for improvement in privacy compliance and security transparency.

M

Mondelez International

fcmilka.de

0

The website fcmilka.de serves as a promotional platform for the Milka brand's campaign in partnership with the Bundesliga football league. It offers consumers opportunities to participate in contests and win prizes by entering codes from Milka products. The site targets football fans and Milka consumers primarily in Germany, leveraging strong brand partnerships and official licensing to enhance engagement. The business model focuses on marketing and brand promotion through interactive fan experiences and contests. Technically, the website is built using modern web technologies including React and Next.js, hosted behind Cloudflare's CDN and security services. It employs Google Tag Manager and cookie consent tools to manage analytics and privacy compliance. The site is well-optimized for mobile devices, performs well, and follows good SEO and accessibility practices. From a security perspective, the site enforces HTTPS, uses security headers, and avoids exposing sensitive data. However, it lacks explicit security policy documentation and incident response contacts, which could be improved. Privacy compliance is strong with clear links to comprehensive privacy and cookie policies managed by Mondelez International. Overall, the website presents a low-risk profile with high legitimacy due to its association with a major global brand. Strategic recommendations include publishing a dedicated security policy, adding vulnerability disclosure information, and enhancing incident response visibility to further strengthen trust and compliance.

S

Sportec Solutions

sportec-solutions.de

0

Sportec Solutions is a joint venture between Deltatre and the DFL Gruppe, specializing in sports data analysis and sports technology. The company positions itself as an innovation leader in these sectors, targeting sports organizations, broadcasters, and technology partners primarily in Germany. The website reflects a professional and consistent brand image with a focus on technology-driven sports solutions. Technically, the site is built on WordPress with modern plugins and hosted on Amazon AWS infrastructure, indicating a mature digital presence. Security posture is adequate with HTTPS enabled and domain registration protections in place, though improvements such as enabling DNSSEC and adding security headers are recommended. Privacy compliance is partial, with cookie consent mechanisms present but lacking a visible privacy policy or terms of service. Overall, the site is trustworthy and professionally maintained but would benefit from enhanced transparency and security practices.

S

Sportcast GmbH

sportcast.de

0

Sportcast GmbH is a specialized media production company focused on live TV production for the Bundesliga and 2. Bundesliga football leagues. As a subsidiary of the DFL Deutsche Fußball Liga, it holds a leading position in the German sports broadcasting market, producing over 600 games per season. The company leverages modern technology and a skilled workforce to deliver high-quality sports content to millions of fans worldwide. The website reflects a professional and consistent brand image with clear contact information and multilingual support. Technically, the site is built on TYPO3 CMS, hosted likely on AWS infrastructure, and demonstrates good performance and mobile optimization. Security posture is solid with HTTPS and no visible vulnerabilities, though some security headers and policies could be improved. Privacy compliance is adequate with accessible privacy and cookie policies, though no explicit consent mechanism was detected. Overall, the site is trustworthy and well-maintained, supporting the company's business credibility and market presence.

DFL Digital Sports GmbH is a subsidiary of Deutsche Fußball Liga GmbH, focused on digital content creation and media production for the Bundesliga, Germany's premier football league. The company operates from Cologne with a medium-sized team and freelancers, delivering innovative digital experiences to football fans and partners. The LinkedIn profile reflects a professional and active organization with strong branding and consistent content updates. Technically, the company leverages the LinkedIn platform for its online presence, utilizing modern web technologies and video streaming capabilities. The website is well-optimized for performance, mobile, and accessibility, with good SEO practices. Security posture is strong, with HTTPS enforced and standard security headers implied. No vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are managed by LinkedIn, ensuring GDPR compliance and user consent mechanisms. Overall, the risk profile is low given the use of a reputable platform and professional content. Recommendations include maintaining security best practices and monitoring third-party scripts. The domain linkedin.com is a trusted platform, though WHOIS data for linkedin.com is not publicly available here, the legitimacy of the company page is unquestioned.

B

Bundesliga International GmbH

bundesliga-international.com

0

Bundesliga International GmbH operates as the global marketing and media rights arm of the Bundesliga, Germany's premier football league. The company focuses on international sales of media rights, commercial partnerships, and marketing initiatives to engage football fans worldwide. The website reflects a professional and consistent brand presence aligned with the parent company DFL Deutsche Fußball Liga. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses Google Tag Manager for analytics. Security posture is good with HTTPS and cookie consent implemented, though security headers are not evident and could be improved. The absence of WHOIS data for the domain is a notable anomaly, raising questions about domain registration transparency despite the site's legitimacy and official branding. Overall, the site is well-structured, GDPR compliant, and serves its business purpose effectively.

D

Deutsche Fußball Liga GmbH

bundesliga.com

0

The website represents the official digital presence of the Bundesliga, Germany's premier professional football league. It offers comprehensive sports content including live scores, news, match highlights, and club information, targeting football fans and sports media worldwide. The site is professionally designed with consistent branding and high-quality content, reflecting its position as a leading sports media entity. Technically, the site leverages modern web technologies such as Angular framework, Google Tag Manager for analytics, and Dynatrace for performance monitoring. It is hosted likely on AWS infrastructure, optimized for fast loading and excellent mobile responsiveness. The site employs robust security measures including HTTPS, security headers, and cookie consent mechanisms, indicating a mature digital infrastructure. Security posture is strong with no evident vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. However, no explicit contact information or incident response channels are publicly visible, which could be improved for transparency. Overall, the website is trustworthy, secure, and professionally maintained, though the lack of WHOIS data introduces some uncertainty about domain registration details. Strategic recommendations include enhancing visible contact and security incident response information and maintaining regular security audits to uphold the high security standards.