Security Directory

The website gemeinsamgesund-hessen.de represents a regional health promotion program "teamw()rk für Gesundheit und Arbeit" in Hessen, Germany, focused on improving health and social participation for unemployed individuals. It is funded by the GKV-Bündnis für Gesundheit and coordinated by HAGE, collaborating with local job centers and community partners. The site provides detailed program information, team contacts, and a variety of health-related offerings both online and in-person. Technically, the site uses modern frameworks such as UIkit and Flatpickr, with interactive SVG maps and a cookie consent mechanism, indicating a moderate to good digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks explicit security policies and headers. Overall, the site is professional, trustworthy, and compliant with GDPR, serving a non-profit healthcare and social inclusion mission.

F

FIGGE+SCHUSTER AG

figge-schuster.de

0

FIGGE+SCHUSTER AG is a Munich-based internet agency specializing in high-quality websites and online presences for medium-sized companies, with over 20 years of experience. Their core competencies include website relaunches, Weblication CMS development, SEO, Google Ads, film and video production, and corporate design. The company targets clients primarily in the German-speaking region, focusing on complex industries such as healthcare, real estate, and technology. The website reflects a professional and consistent brand image with comprehensive content and clear navigation. Technically, the site is built on the Weblication CMS platform, uses modern JavaScript libraries, and integrates etracker analytics. Mobile optimization and SEO practices are well implemented, though accessibility is basic. Security posture is good with HTTPS and cookie consent mechanisms, but lacks explicit security policies or incident response information. WHOIS data is consistent with the business profile, and no suspicious patterns were detected. Overall, the website is trustworthy, professional, and compliant with GDPR requirements.

S

Sparkassen- und Giroverband Hessen-Thüringen (SGVHT)

mein-fahrtwind.de

0

Mein Fahrtwind is a promotional website operated by the Sparkassen- und Giroverband Hessen-Thüringen (SGVHT), a public financial association in Germany. The site hosts a contest offering participants the chance to win one of eight electric scooters, targeting residents of Hessen, Thüringen, and parts of Rheinland-Pfalz. The website is professionally designed with comprehensive legal and privacy documentation, reflecting a strong commitment to GDPR compliance and user data protection. The contest employs a double opt-in mechanism to ensure participant consent and data accuracy. Technically, the site uses modern web technologies including Google Tag Manager, Matomo analytics, Adobe Typekit fonts, and a cookie consent management system. Hosting is managed via DomainControl, indicating a professional infrastructure. The site is mobile-optimized and accessible, with good SEO practices. Security measures include HTTPS and IP masking in analytics, though HTTP security headers are not explicitly detected. From a security perspective, the site demonstrates good practices with no visible vulnerabilities or exposed sensitive data. Privacy policies are detailed and transparent, including a named data protection officer contact. No incident response or vulnerability disclosure policies are found, which could be areas for improvement. Overall, the site presents a low risk profile with strong compliance and trust indicators. Strategically, the site effectively supports the SGVHT's marketing and public engagement goals, leveraging digital tools to promote sustainable mobility. The integration of multiple marketing and tracking tools is balanced with user privacy considerations, positioning the organization as responsible and trustworthy in its digital presence.

The website du-machst-uns-aus.de appears to be a recruiting platform related to SGVHT, targeting job seekers in Germany. The site is built on TYPO3 CMS and incorporates a comprehensive cookie consent mechanism via Cookiebot, indicating awareness of privacy compliance requirements. However, the absence of a dedicated privacy policy, terms of service, and contact information limits its compliance and trustworthiness. Technically, the site uses modern technologies and is hosted on German servers, but SEO is minimal and the site is set to noindex, reducing discoverability. Security posture is moderate with HTTPS implied and cookie consent implemented, but lacks visible security headers or incident response information. Overall, the site is functional but requires improvements in privacy disclosures, contact transparency, and SEO to enhance credibility and compliance.

S

Sparkassen in Hessen und Thüringen

ps-los-sparen.de

0

The website www.ps-los-sparen.de represents a regional lottery savings product offered by the Sparkassen financial institutions in Hessen and Thüringen, Germany. The business model combines savings with lottery participation, offering cash and prize draws while supporting social projects. The site targets local savers and lottery participants, positioning itself as a trusted regional financial service with strong branding consistency aligned with the Sparkassen group. Technically, the site is built on Concrete CMS with modern frontend technologies including jQuery, Bootstrap, and Vue.js. It employs Matomo analytics for privacy-conscious user tracking and integrates a cookie consent mechanism, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and privacy-respecting analytics, though explicit security headers and published security policies are absent. The site is accessible without WAF or blocking mechanisms and shows no signs of malicious content or vulnerabilities. Overall, the website demonstrates good content quality, technical implementation, and business credibility, suitable for its regional financial service role.

S

Sparkassen- und Giroverband Hessen-Thüringen (SGVHT)

finanzen-mit-daniel-jung.de

0

The website 'finanzen-mit-daniel-jung.de' is an educational platform focused on financial literacy, primarily targeting students and educators in the Hessen and Thüringen regions of Germany. It is operated under the auspices of the Sparkassen- und Giroverband Hessen-Thüringen, a reputable financial association. The site offers a series of well-structured, easy-to-understand videos and learning materials to enhance financial knowledge. The partnership with Sparkassen and the inclusion of the Sparkassen-SchulService platform reinforce its credibility and regional relevance. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates Google Tag Manager and Matomo for analytics, alongside a GDPR-compliant cookie consent mechanism. The site is hosted on servers indicated by the nameservers 'your-server.de' and related domains, suggesting a professional hosting environment. The site is mobile-optimized and demonstrates good SEO and accessibility practices, though some improvements in accessibility and security headers could be made. From a security perspective, the site uses HTTPS with strong SSL configuration and implements cookie consent for privacy compliance. No critical vulnerabilities or exposed sensitive data were detected. Privacy policies and terms of service are comprehensive and clearly presented, with a designated data protection officer contact provided. The site does not employ a vulnerability disclosure policy, which could be considered for future enhancement. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. It effectively serves its educational mission with professional content and transparent governance. Strategic recommendations include enhancing HTTP security headers, formalizing a vulnerability disclosure process, and improving accessibility features to further strengthen the site's security and user experience.

M

mediacampus-frankfurt

mediacampus-frankfurt.de

0

Mediacampus Frankfurt is an established educational institution specializing in seminars, training, and educational programs for the book trade and media industry in Germany. The website presents a professional and well-structured platform offering a variety of courses, webinars, and training sessions targeting professionals, newcomers, and specialists in publishing and media sectors. The institution maintains a strong social media presence and provides detailed event information, enhancing its market position as a key player in media education. Technically, the website employs modern web technologies including JavaScript, Algolia Search for site search functionality, and Google Tag Manager for analytics, which is loaded conditionally upon cookie consent. The site is hosted on Anexia servers, uses HTTPS with good SSL configuration, and is optimized for mobile devices with good accessibility and SEO practices. However, some security headers are not explicitly detected, and no explicit security or incident response policies are published. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and privacy-aware analytics loading. No vulnerabilities or exposed sensitive data were found in the provided content. The WHOIS data aligns with the business claims, showing consistent domain registration and hosting. Privacy and cookie policies are not explicitly found in the provided content, which is a compliance gap. Overall, the site is safe, professional, and trustworthy with room for improvement in privacy disclosures and security policy transparency.

A

Amnesty International Deutschland e.V.

amnesty-international.de

0

Amnesty International Deutschland e.V. operates this website as a portal for local groups and districts within the German section of Amnesty International. The site serves as an informational hub linking to the main Amnesty International Germany website and providing resources for groups interested in establishing their own web presence. The organization is a well-established non-profit focused on human rights advocacy with a medium-sized presence in Germany. Technically, the website is built on WordPress with a moderate tech stack including jQuery and several plugins for enhanced user experience. The site is mobile-optimized and accessible, though content quality is basic and primarily informational. Security posture is adequate with HTTPS enabled and no visible vulnerabilities, but lacks advanced security headers and explicit incident response or vulnerability disclosure mechanisms. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is trustworthy and legitimate, but could benefit from enhanced security and privacy features.

N

NETHINKS GmbH

nethinks.com

0

NETHINKS GmbH is a well-established German IT and telecommunications service provider founded in 2004. The company specializes in network solutions, VoIP, web and mail hosting, and professional IT infrastructure consulting. Positioned as a manufacturer-neutral partner, NETHINKS serves business clients with tailored, future-proof communication and IT infrastructure solutions. Their market presence is reinforced by partnerships with major technology vendors and an ISO 27001 certification, underscoring their commitment to security and quality. Technically, the website is built on WordPress using WPBakery Page Builder and integrates Borlabs Cookie for GDPR-compliant cookie management. The site employs modern web technologies including jQuery and Google Tag Manager for analytics and marketing. Hosting and domain registration are managed by Vautron Rechenzentrum AG, a reputable provider. The website demonstrates good mobile optimization, SEO practices, and accessibility features, though some security headers are missing. From a security perspective, NETHINKS shows a mature posture with HTTPS enforced, cookie consent mechanisms, and ISO 27001 certification. However, there is room for improvement in publishing explicit incident response contacts and security.txt files. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear policies and consent management in place. Overall, NETHINKS GmbH presents a trustworthy and professional online presence with solid business credibility and technical implementation. The risk profile is low, but enhancing security headers and incident response transparency would further strengthen their security posture.

S

Schinkels

schinkels-brauhaus.de

0

Schinkels is a regional German brewery and hospitality business offering craft beers, a restaurant experience, and event hosting services. The company emphasizes quality, sustainability, and creating memorable moments for its customers. Their website is professionally designed using WordPress with SEO and event management plugins, providing a rich user experience and structured event data. Security posture is good with HTTPS and cookie consent mechanisms, though explicit privacy and security policies are missing. Overall, the site reflects a mature digital presence suitable for their business model and target audience.

K

Keyweb AG

keymachine.de

0

Keyweb AG is a well-established German technology company specializing in custom-built dedicated servers and hosting services. With over 20 years of experience and TÜV certification, the company offers high-performance, sustainable server solutions tailored to business needs. Their close partnership with Keymachine Server Manufaktur enables rapid and flexible server manufacturing, supporting a broad range of IT infrastructure and hosting services. The website reflects a professional and trustworthy business with clear contact channels and comprehensive service offerings. Technically, the site uses modern web technologies including Bootstrap and JavaScript, is mobile-optimized, and performs well. Security posture is strong with HTTPS, cookie consent, and secure forms, though explicit security policies and incident response contacts are not published. Overall, the domain and WHOIS data align with the company's history and legitimacy, supporting a high trust level.

WebThinker GmbH is a small German technology service provider specializing in web design, online marketing, web development, tracking, analysis, and consulting. The company holds reputable certifications such as Google Partner and Shopware Partneragentur, positioning it well in the digital services market. Their website reflects a professional and consistent brand image with excellent content quality and user experience. Technically, the site is built on WordPress with modern frameworks and plugins, optimized for SEO and mobile use. Security posture is good with HTTPS and cookie consent mechanisms, though additional security headers and policies could enhance protection. Overall, the business demonstrates legitimacy and trustworthiness with clear contact information and positive customer testimonials.

H

Holzbau-Offensive Baden-Württemberg

holzbauoffensivebw.de

0

The Holzbau-Offensive Baden-Württemberg website is a well-established government initiative promoting sustainable and climate-friendly construction using wood. It serves as an information hub offering details on funding, practical support, education, research, and events related to wood construction in the Baden-Württemberg region. The site targets architects, engineers, planners, and public sector stakeholders, positioning Baden-Württemberg as a leader in sustainable building practices. Technically, the site employs modern web technologies including Yii Framework, Bootstrap, jQuery, and Slick Carousel, ensuring a responsive and accessible user experience. Security measures such as HTTPS and CSRF tokens are implemented, though some HTTP security headers could be improved. Privacy compliance is strong with a clear cookie consent mechanism and a comprehensive privacy policy. No critical vulnerabilities or suspicious elements were detected, and the domain registration data aligns well with the website's governmental purpose, supporting high legitimacy and trustworthiness.

M

Ministerium für Ernährung, Ländlichen Raum und Verbraucherschutz Baden-Württemberg

efre-bw.de

0

The EFRE Baden-Württemberg website serves as the official regional government portal for the European Regional Development Fund (EFRE) in the German state of Baden-Württemberg. It provides comprehensive information on funding programs, project examples, current news, and guidance for applicants. The site targets a broad audience including citizens, businesses, and public institutions interested in regional development funding. The portal is well-positioned as a trusted government resource, supported by official branding and EU co-funding acknowledgments. Technically, the website employs a modern technology stack including jQuery, Matomo analytics, and custom CMS solutions tailored for Baden-Württemberg's government portals. It demonstrates good mobile optimization, accessibility compliance, and moderate performance. The hosting and DNS infrastructure aligns with regional academic and government networks, enhancing trustworthiness. From a security perspective, the site enforces HTTPS, uses captcha mechanisms to prevent automated abuse, and implements cookie consent in line with GDPR requirements. While no explicit security policy or incident response contacts are published, the site shows good baseline security hygiene with no visible vulnerabilities or exposed sensitive data. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include publishing a dedicated security policy, enhancing security headers, and providing incident response contacts to further strengthen trust and security maturity.

H

Haufe-Lexware GmbH & Co. KG

lexware.de

0

Lexware, a division of the Haufe Group since 1993, is a leading German software provider specializing in business and accounting software for self-employed individuals, freelancers, and small to medium-sized enterprises. The company offers a comprehensive suite of products including invoicing, bookkeeping, payroll, e-invoicing, and integrated business banking solutions. With over one million customers and multiple industry certifications, Lexware holds a strong market position as a trusted provider in the German SME software market. The website reflects a mature digital presence with modern technologies, strong branding, and extensive customer engagement features.

IT-Atelier is a small German engineering office specializing in media and information technology, offering IT coordination, management consulting, web-based software applications, and internet services primarily targeting businesses and public sector organizations such as municipalities. The company has over two decades of experience since its founding in 2003 and operates with a local/regional focus in Leipzig, Germany. The website content is basic but relevant, providing clear contact information and a concise description of services. Technically, the site uses legacy technologies such as jQuery 1.4.4 and basic CSS styling with some mobile optimization. There is no evidence of modern CMS or advanced frameworks. Security posture is moderate but limited by the use of outdated libraries and lack of visible security headers or HTTPS status information. No privacy or cookie policies are published, indicating compliance gaps. Overall, the domain registration data is consistent with the business claims, supporting legitimacy.

B

Bayerische Botanische Gesellschaft e.V.

bbgev.de

0

The Bayerische Botanische Gesellschaft e.V. is a long-established non-profit botanical society based in Munich, Germany, founded in 1890. The organization focuses on the scientific study and conservation of Bavaria's native flora, offering members educational programs, excursions, and publications. The website serves as an informational portal for members and interested parties, highlighting the society's history, activities, and protected areas it manages. Technically, the site is built on the Wix platform, leveraging Wix's Thunderbolt framework and standard web technologies. While the site is functional and professionally presented, mobile optimization and accessibility are basic, and there is room for improvement in SEO and privacy compliance. Security posture is adequate with HTTPS and standard headers, but lacks explicit security policies or incident response contacts. Overall, the site is trustworthy and suitable for its audience but could benefit from enhanced privacy and security features.

M

MVB GmbH

vlb.de

0

MVB GmbH operates the VLB (Verzeichnis Lieferbarer Bücher), a central platform for automated exchange of product information in the German-speaking book industry. The website serves key stakeholders including bookstores, publishers, self-publishers, and service providers, offering services such as order clearing (IBU), reference databases, and subscription discounts. The platform holds a strong market position as an authoritative source in its sector. Technically, the website employs modern web technologies including Bootstrap, Owl Carousel, and Google Tag Manager, hosted on Anexia infrastructure. It features responsive design, good SEO, and accessibility standards, with a cookie consent mechanism ensuring privacy compliance. The site is well-structured and professionally designed, providing a positive user experience. From a security perspective, the site uses HTTPS with good SSL configuration and no visible vulnerabilities or exposed sensitive data. However, it lacks explicit security policy pages, incident response contacts, and vulnerability disclosure mechanisms, which are recommended for enhanced security posture. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR. The WHOIS data aligns with the business entity, reinforcing legitimacy. Strategic improvements in security transparency and incident response readiness would further strengthen the platform's reliability.

M

MVB GmbH

mvb-online.com

0

MVB GmbH operates as a central technology and information provider in the book industry, offering digital platforms and media formats to publishers, booksellers, self-publishers, and service providers primarily in Germany and internationally. The company has a strong market position as a connector within the book industry, supported by a professional and content-rich website that reflects its business focus and international presence. Technically, the website employs modern web technologies including FontAwesome, Google Tag Manager, and a cookie consent management system, hosted on Anexia infrastructure. The site is mobile optimized and SEO friendly, providing a good user experience. Security posture is solid with HTTPS enforced and domain transfer protection, though improvements like DNSSEC and enhanced security headers are recommended. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. Overall, the domain registration data aligns well with the business claims, indicating a trustworthy and established entity.

P

Preiss Werbe- und Internetagentur

contao-themes-shop.de

0

The website www.contao-themes-shop.de represents Preiss Werbe- und Internetagentur, a small German company specializing in providing professional Contao CMS themes, templates, and extensions. Their business model focuses on e-commerce sales of digital products tailored for Contao CMS users, alongside offering custom theme development and support services primarily targeting agencies and businesses seeking customizable web solutions. The site is well-structured, with clear navigation and comprehensive legal and privacy documentation, reflecting a professional and trustworthy online presence. Technically, the website is built on the Contao Open Source CMS platform, utilizing modern JavaScript libraries such as jQuery, AOS, and mmenu for enhanced user experience and mobile responsiveness. Hosting is provided via kasserver.com, consistent with the domain's nameservers. Performance is moderate with good mobile optimization and basic accessibility features. The site employs secure form handling with CSRF tokens but lacks explicit HTTP security headers. From a security perspective, the site uses HTTPS and secure form tokens, indicating a baseline security posture. However, the absence of security headers and a formal security policy or incident response contact reduces the overall security maturity. Privacy compliance is strong with a comprehensive GDPR-compliant privacy policy, though no cookie consent mechanism is detected. Business credibility is high due to clear contact information, official Contao partner certifications, and consistent branding. Overall, the website presents a low-risk profile with good business credibility and technical implementation. Strategic improvements in security headers, cookie consent, and incident response documentation would enhance the security posture and compliance further.

Heitech Service GmbH is a small German web agency specializing in web design, hosting, and consulting services primarily for regional clients. Their website is professionally designed using the Contao CMS and offers hosting under the Lausitz-Hosting brand. The technical infrastructure includes modern JavaScript libraries and a cookie consent mechanism, indicating GDPR awareness. However, the absence of WHOIS registration data raises concerns about domain legitimacy. Security posture is moderate with HTTPS enabled but lacking security headers and explicit incident response information. Overall, the website is functional and trustworthy in appearance but requires verification of domain registration and enhanced security practices.

H

Human Rockstars

human-rockstars.com

0

Human Rockstars is a small coaching business based in Germany, specializing in systemic coaching, microdosing, and psychedelic integration. The website presents a professional and consistent brand with a strong focus on personal development and educational content, including a podcast featuring expert guests. The business targets individuals interested in microdosing and psychedelic experiences, offering personal and group coaching programs. Technically, the site is built on WordPress using Elementor and several plugins for SEO, cookie management, and podcasting. Security measures include HTTPS, reCAPTCHA on forms, and cookie consent mechanisms, though some security headers could be improved. Privacy policies are comprehensive and GDPR compliant. No direct contact emails or phone numbers are publicly listed, with contact primarily via a secured form. The domain registration is consistent with the business age and claims, enhancing trustworthiness.

I

INL – Privates Institut für Nachhaltige Landbewirtschaftung GmbH

nachhaltige-landbewirtschaftung.de

0

INL – Privates Institut für Nachhaltige Landbewirtschaftung GmbH is a specialized institute focused on measuring ecological sustainability in agriculture. With over 16 years of experience, the company offers consulting, certification, monitoring, and scientific services primarily targeting agricultural businesses, retailers, and environmental stakeholders in Germany. The website reflects a niche market position with a professional presentation and clear service offerings. Technically, the website is built on WordPress 6.8.2 with a modern plugin ecosystem including OpenLayers for mapping and WP Statistics for analytics. Hosting is provided by Cloudpit, and the site uses HTTPS with good SSL configuration. Mobile optimization and SEO are well addressed, though accessibility is basic. No major technical issues or vulnerabilities were detected in the visible content. From a security perspective, the site uses HTTPS and some security best practices but lacks explicit security headers and published security or incident response policies. No vulnerabilities or exposed sensitive data were found. Privacy compliance is supported by a privacy policy and cookie consent mechanism, aligning with GDPR requirements. Overall, the site presents a low risk profile with a good balance of content quality, technical implementation, and business credibility. Strategic improvements could focus on enhancing security headers, publishing incident response information, and adding direct contact details for security and data protection officers.

The Netzwerk Agrartechnik Sachsen website represents a regional competence network focused on agritech innovation and collaboration between Saxon companies and research institutions. The network aims to strengthen the competitiveness of the agricultural technology sector through knowledge transfer, workshops, and innovation forums. The website is built on WordPress with moderate technical sophistication, including SEO optimization and basic mobile responsiveness. Security posture is moderate with some gaps such as lack of DNSSEC and outdated JavaScript libraries. Privacy compliance is basic with a cookie consent banner but a minimal privacy policy lacking explicit GDPR statements. Contact information is clearly provided, enhancing business credibility. Overall, the site is professional and trustworthy but could improve security and compliance aspects.

The website reuse-rlp.de is a non-profit platform dedicated to promoting and facilitating the practice of reuse in the construction sector within Rheinland-Pfalz, Germany. It targets professionals and stakeholders interested in sustainable construction and reuse practices. The platform provides information about actors and buildings involved in reuse, as well as specialist information relevant to the sector. The site is well-branded and presents content in German with a clear and consistent design. Technically, the website is built using modern technologies such as SvelteKit and employs Matomo analytics with DoNotTrack enabled, reflecting a moderate level of digital maturity and privacy awareness. The site appears to be mobile-optimized and offers a good user experience with clear navigation. However, there is a lack of visible security headers and no explicit SSL configuration data was provided, which suggests room for improvement in security hardening. From a security perspective, the site does not expose sensitive data and uses privacy-conscious analytics, but it lacks critical compliance elements such as privacy and cookie policies, contact information for incident response, and vulnerability disclosure mechanisms. The WHOIS data indicates the domain is likely affiliated with an academic or regional institution, supporting its legitimacy. Overall, the security posture is moderate but could be enhanced by implementing standard security headers, privacy documentation, and contact channels. The overall risk assessment is moderate with no critical issues detected. Strategic recommendations include adding privacy and cookie policies to improve GDPR compliance, implementing security headers to harden the site, providing clear contact information for security incidents, and establishing a vulnerability disclosure policy. These steps will enhance trust, compliance, and security culture, supporting the platform's mission and user confidence.

H

Start - Hannover sauber! Gemeinsam für eine schöne Stadt.

hannover-sauber.de

0

The website www.hannover-sauber.de represents a community-driven initiative focused on promoting cleanliness and beautification in the city of Hannover, Germany. The site serves as a platform for residents and community members to engage in activities aimed at maintaining a clean urban environment. The business model is non-commercial and primarily community-oriented, with a small scale and local focus. The website was first published in 2021 and uses WordPress CMS with the Divi theme, supplemented by various plugins for enhanced functionality such as event management, testimonials, and social media feeds. From a technical perspective, the site employs modern web technologies including HTTPS, Google Fonts, Cookiebot for cookie consent, and Google Analytics for visitor tracking with IP anonymization. The site is mobile-optimized and demonstrates good SEO practices. However, there is room for improvement in accessibility and performance optimization. The technical stack is typical for small to medium WordPress sites, leveraging popular plugins and themes. Security posture is moderate with HTTPS enabled and bot protection via Google reCAPTCHA. Cookie consent is actively managed through Cookiebot, indicating awareness of privacy regulations. However, the absence of security headers and lack of explicit privacy and security policies reduce the overall security maturity. No vulnerability disclosure or incident response information is provided, which could be a concern for transparency and trust. Overall, the website is safe for general audiences, with no adult or questionable content detected. The lack of detailed contact information and formal policies slightly impacts business credibility and privacy compliance scores. Strategic recommendations include adding privacy and security policies, implementing security headers, and providing clear contact channels for incident response. These steps would enhance trustworthiness and compliance with data protection regulations.

S

STATION UG (haftungsbeschränkt)

station-frankfurt.de

0

STATION UG (haftungsbeschränkt) operates a regional digital platform serving the FrankfurtRheinMain startup and innovation ecosystem. The website provides news, event information, programs, awards, and networking opportunities targeting startups, innovators, and ecosystem participants in the region. The business positions itself as a central hub for regional startup support and information dissemination. Technically, the site is built on WordPress with modern plugins such as Yoast SEO, Revolution Slider, and WP Jobsearch, hosted by Raidboxes. It employs Google Analytics for visitor tracking and Mailchimp for newsletter management. The site is mobile-optimized and SEO-friendly, with a consistent brand presence and active social media channels. Security posture is good with HTTPS enforced and cookie consent implemented, though some security headers could be improved. No critical vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, though it lacks explicit terms of service and a security policy page.

K

KIZ | Kommunikations- und Innovations-Zentrum

kiz.de

0

KIZ | Kommunikations- und Innovations-Zentrum is a well-established German company specializing in career coaching, business consulting, and support for self-employment. With over 28 years of experience, it offers services such as job and career coaching, startup and business coaching, and digital projects including online programs. The website is professionally designed, content-rich, and targets individuals seeking professional development and entrepreneurial support primarily in Germany. Technically, the site is built on TYPO3 CMS, uses modern JavaScript libraries, and integrates consent management and analytics tools, reflecting a mature digital infrastructure. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and explicit policies could be improved. Privacy compliance is good with a clear privacy policy and cookie consent mechanism. Overall, the site is trustworthy and credible with no signs of suspicious activity or content safety concerns.

S

Sparkassen-Finanzgruppe Hessen-Thüringen

sfg-ht.de

0

The Sparkassen-Finanzgruppe Hessen-Thüringen website represents a large regional financial services group operating in Germany's Hessen and Thüringen regions. The group offers a broad range of financial products and services including banking, insurance, building finance, and asset accumulation, supported by a workforce of over 19,900 employees. The website is professionally designed, consistent in branding, and targets a general audience including customers and potential employees. Technically, the site is built on Concrete CMS and leverages modern JavaScript libraries such as jQuery and Swiper.js, with media assets hosted on Cloudinary. It integrates Matomo for analytics and cookiefirst.com for GDPR-compliant cookie consent management, along with accessibility enhancements via eyeAble.js. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security headers and incident response information are absent. No privacy policy or terms of service pages were detected in the provided content, which is a compliance gap. Overall, the site is trustworthy, safe, and well-positioned in its market segment.

H

Hofheim

hofheim.de

0

Hofheim am Taunus operates an official municipal website providing comprehensive information and services to residents, visitors, and local stakeholders. The site covers a broad range of topics including culture, tourism, politics, administration, and community life, positioning itself as the primary digital interface for the city. The website is built on TYPO3 CMS, a robust open-source content management system, and demonstrates good technical maturity with responsive design and structured data for SEO and accessibility. Security posture is adequate with HTTPS enabled and no exposed sensitive data, though improvements are recommended in security headers and privacy compliance documentation. Overall, the website reflects a trustworthy and professional government presence with clear contact information and consistent branding.

B

Bundesagentur für Arbeit

arbeitsagentur.de

0

The Bundesagentur für Arbeit website serves as the official digital portal for Germany's federal employment agency, providing comprehensive services including job search, unemployment benefits, career counseling, and support for families, people with disabilities, and immigrants. The site is well-positioned as a national government entity with a large enterprise scale, offering a broad range of public services to citizens and businesses alike. The content is professionally curated, accessible, and highly relevant to its target audience. Technically, the website employs modern web technologies such as React and Next.js, ensuring fast performance and excellent mobile optimization. The use of Matomo analytics reflects a commitment to privacy-conscious user tracking. The site is hosted on German infrastructure with secure HTTPS enforcement and demonstrates good SEO and accessibility practices. From a security perspective, the site benefits from ISO 27001 certification, indicating a mature information security management system. Security best practices are observed, including secure communication channels and cookie consent mechanisms. However, explicit incident response and vulnerability disclosure policies are not publicly available, representing an area for improvement. Overall, the website presents a low-risk profile with strong business credibility and compliance posture. Strategic recommendations include publishing clear security incident response information, adding a security.txt file, and enhancing transparency around security contacts to further strengthen trust and security culture.

H

Handelsverband Hessen

hvhessen.de

0

Handelsverband Hessen is a regional trade association representing retail businesses in Hessen, Germany. The organization focuses on strengthening the competitiveness of its members by providing tailored support and fostering a vibrant trade community. The website reflects a professional and consistent brand image, targeting retail businesses and stakeholders within the Hessen region. Technically, the site is built on the Weblication® CMS platform, featuring responsive design and modern web fonts, but lacks advanced security headers and visible privacy compliance documentation. Security posture is moderate with room for improvement in policy transparency and technical safeguards. Overall, the site is trustworthy and well-positioned within its market niche but should enhance privacy and security practices to align with GDPR and industry standards.

T

Techniker Krankenkasse

tk.de

0

Techniker Krankenkasse (TK) is a leading statutory health insurance provider in Germany, offering comprehensive health coverage, digital health services, and personalized member support. The website reflects a mature digital presence with a strong focus on user experience, accessibility, and privacy compliance. The technical infrastructure leverages modern web technologies and a custom design system, hosted on reliable infrastructure with Versatel. Security posture is solid with HTTPS, CSRF protection, and a consent manager, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-aligned with the business's market position.

W

WOA

woa.de

0

WOA is a German advertising agency specializing in integrated communication services including web design, events, PR, and classical advertising. The company targets businesses seeking comprehensive marketing and communication solutions primarily in the German regions of Wiesbaden, Frankfurt, Hamburg, and central Hesse. Their website reflects a professional and consistent brand image with a clear presentation of services and client references. Technically, the website is built on Joomla CMS with Yootheme templates and uses modern web technologies such as UIkit, Google Tag Manager, and HubSpot integrations. The site is mobile optimized and includes standard SEO and accessibility features, though some accessibility aspects could be improved. Performance is moderate with no critical technical issues detected. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms compliant with GDPR. However, explicit security headers are missing, and no dedicated security or incident response policies are published. The site uses multiple third-party marketing and analytics tools, which are managed with user consent. No vulnerabilities or suspicious domains were detected. Overall, WOA presents a trustworthy and professional online presence with good privacy compliance and a solid technical foundation. Strategic improvements in security headers and incident response transparency would enhance their security posture further.

H

Hochschulen Fresenius GmbH

hs-fresenius.de

0

Hochschulen Fresenius GmbH is a large, well-established private higher education institution in Germany, founded in 1848. It offers a broad range of Bachelor and Master degree programs across multiple disciplines including Chemistry, Biology, Business, Media, Health, Social Sciences, and Fashion & Design. The university serves over 17,000 students with flexible study options including full-time, part-time, on-campus, and online formats. The website reflects a professional and modern digital presence, leveraging WordPress CMS, SEO best practices, and cookie consent management via Usercentrics. Hosting is provided by Adacor, with consistent DNS and SSL configurations ensuring secure access. However, explicit privacy and security policies are not readily visible, and security headers are not detected, indicating room for improvement in security posture. Overall, the website is trustworthy, well-branded, and compliant with basic GDPR cookie consent requirements.

B

Bürgschaftsbank Hessen GmbH

bb-h.de

0

Bürgschaftsbank Hessen GmbH operates as a regional financial guarantor in Hessen, Germany, providing guarantees and financing support to businesses, founders, and successors in cooperation with banks and Sparkassen. The website presents a professional and consistent brand image, targeting business clients in the finance sector. The company offers a range of guarantee products including classical guarantees, express guarantees, leasing guarantees, and specialized funds like Hessenfonds and Agrarbürgschaft. Technically, the website is built on WordPress with the Enfold theme, enhanced by Yoast SEO and Borlabs Cookie for privacy compliance. Hosting and DNS services are provided via Cloudflare, ensuring good performance and security. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and explicit privacy policies are lacking. Analytics are conducted via eTracker, indicating moderate user tracking. Overall, the site is well-structured, mobile-optimized, and trustworthy, though improvements in privacy transparency and security headers are recommended.

V

Verband der Metall- und Elektro-Unternehmen Hessen (HESSENMETALL)

hessenmetall.de

0

HESSENMETALL is a prominent industry association representing employers in the metal, electrical, and IT sectors in Hessen, Germany. The organization provides comprehensive services including labor relations, legal advice, workforce development, digital transformation support, and innovation facilitation. It holds a strong market position as a leading regional network for over 200,000 employment relationships in the region's M+E industry. The website reflects a professional and well-structured digital presence with member portals and extensive content tailored to its audience of employers and industry stakeholders. Technically, the site is built on the Contao CMS platform, utilizing modern JavaScript libraries such as jQuery and Swiper.js, and integrates analytics tools like Matomo and Google Tag Manager. Accessibility features are enhanced by the inclusion of eyeAble tools. The site is mobile-optimized and demonstrates good SEO practices with proper metadata and structured navigation. From a security perspective, the website enforces HTTPS and employs secure login forms with CSRF tokens. While explicit security headers are not fully visible in the HTML, the overall SSL configuration is good. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place, aligning with GDPR requirements. Overall, the website presents a low-risk profile with a high degree of professionalism and trustworthiness. Strategic recommendations include enhancing security headers, increasing transparency around incident response contacts, and maintaining up-to-date CMS and third-party components to mitigate potential vulnerabilities.

IKEA Deutschland GmbH & Co. KG operates a comprehensive retail website offering affordable furniture and home accessories tailored for the German market. The site provides extensive product categories, planning services, and customer support, positioning IKEA as a leading furniture retailer in Germany. The website is well-branded, professionally designed, and optimized for mobile and accessibility, reflecting a mature digital presence. Technically, the site employs modern web technologies including JavaScript frameworks, cookie consent management via OneTrust, and A/B testing with Optimizely, ensuring a robust user experience. Security posture is strong with HTTPS enforcement and standard security headers, though explicit security policies and incident response details are not publicly disclosed. Privacy compliance is well addressed with clear cookie and privacy policies, including GDPR adherence and a consent mechanism. The absence of WHOIS data limits domain registration trust analysis, but the overall site quality and brand reputation strongly indicate legitimacy. No adult or questionable content is present, making the site safe for general audiences.

B

Benner Holding

benner-holding.com

0

Benner Holding is a well-established German family-owned holding company founded in 1882, with diversified business interests spanning real estate, trade, agriculture, energy, and hospitality sectors. The company emphasizes long-term investments and diversification to maintain stability even during economic downturns. The website reflects a professional corporate presence with clear business sector segmentation and leadership visibility, notably CEO Dr. Dominik Benner. Technically, the site is built on WordPress using Elementor and Yoast SEO, indicating a modern and maintainable infrastructure. The site is mobile-optimized and SEO-friendly but lacks some advanced accessibility features. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks DNSSEC and security headers, and no explicit security or incident response policies are published. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professional but could improve in security and privacy transparency.

C

corosys technologies GmbH

corosys.com

0

corosys technologies GmbH is a German-based industrial company specializing in the development and delivery of complete process systems and engineering plants for the beverage, chemical, pharmaceutical, and food industries. The company operates through multiple subsidiaries, each focusing on specific sectors such as beverage technology, chemical and pharma technology, food technology, and filtration consulting. Their market position is that of a specialized B2B engineering and manufacturing provider with a strong focus on process technology solutions. The website reflects a professional and consistent brand image targeting industrial clients in Germany and possibly broader European markets. Technically, the website employs modern frontend technologies including Bootstrap, jQuery, and FontAwesome, with analytics powered by Matomo and security features such as Cloudflare Turnstile captcha for form protection. The site is mobile-optimized and includes GDPR-compliant cookie consent mechanisms, indicating a mature digital presence. Security posture is adequate with best practices observed in form protection and privacy compliance, though there is room for improvement in publishing explicit security policies and enhancing HTTP security headers. The WHOIS data is notably missing or inaccessible, which raises questions about domain registration legitimacy; however, the website content and contact information appear legitimate and professional. Overall, the site scores well on content quality, technical implementation, and privacy compliance, with a moderate security posture and good business credibility.

I

iocto GmbH

iocto.com

0

iocto GmbH is a German company specializing in industrial measurement technology and automation, established since 1984. The company positions itself as an expert in its field, targeting industrial clients requiring precise measurement and automation solutions. The website reflects a mature digital presence built on WordPress with modern SEO and analytics integrations, indicating a moderate to high level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though some improvements such as enabling DNSSEC and publishing a security.txt file could enhance trust and compliance. Overall, the website is professional, compliant with GDPR, and trustworthy, supporting iocto's market position as a reliable industrial technology provider.

T

Taunus Sparkasse

taunussparkasse.de

0

Taunus Sparkasse is a regional German savings bank offering a comprehensive range of financial services including online banking, accounts, credit cards, loans, investments, insurance, and real estate services. The website targets both private and corporate customers with a strong focus on accessibility, user experience, and digital service delivery. The bank maintains a strong local market position with trusted brand recognition and multiple customer contact channels including phone, chat, and video consultations. Technically, the site is built on modern web technologies and a robust CMS platform (Adobe Experience Manager), optimized for mobile and accessibility compliance. Security posture is strong with HTTPS enforcement, session management, and cookie consent mechanisms, though explicit security headers could be further confirmed. Privacy policies and cookie management are comprehensive and GDPR compliant. Overall, the site demonstrates high professionalism, trustworthiness, and digital maturity.

G

GROOVE im GOP Artistical-Theater Essen

groove-show.de

0

The website groove-show.de serves as an informational and ticket reservation platform for the GROOVE Artistical-Theater in Essen, Germany. It targets general audiences interested in live theatrical performances, positioning itself as a niche entertainment provider. The site is built using the Framer platform and hosted on Hetzner servers, employing modern web technologies including Google Tag Manager and Matomo for analytics. While the site demonstrates good design quality, mobile optimization, and SEO practices, it lacks critical compliance documents such as privacy and terms of service policies. Security posture is moderate with HTTPS enabled but missing key security headers and incident response information. Overall, the site is functional and professional but would benefit from enhanced compliance and security measures.

K

König-Brauerei GmbH

koenig.de

0

König-Brauerei GmbH operates the König Pilsener brand, a well-established brewery in Germany under the Bitburger Braugruppe umbrella. The website showcases their beer products, brewery tours, and fan engagement activities, targeting adult consumers with responsible marketing including age verification. The digital infrastructure is modern, leveraging Next.js and React, with integrated consent management and analytics tools. Security posture is strong with HTTPS, security headers, and no visible vulnerabilities, though dedicated security policies and incident response contacts are absent. Overall, the site is professional, compliant with GDPR, and trustworthy, supporting a medium-sized hospitality business.

H

HACON

hafas.de

0

HACON is a medium-sized company specializing in digital mobility solutions, offering platforms and systems for Mobility as a Service, ticketing, operator business products, and transport planning. As a part of Siemens Mobility since 2017, HACON holds a strong market position in the transportation technology sector. The website reflects a professional and consistent brand image, targeting mobility service providers and transport operators. Technically, the site is built on TYPO3 CMS, employs modern JavaScript, and integrates Cookiebot for GDPR-compliant cookie consent, alongside Matomo for privacy-friendly analytics. Security posture is solid with HTTPS and consent mechanisms, though security headers and explicit incident response policies are absent. Overall, the site is trustworthy, well-structured, and compliant with privacy regulations, supporting HACON's business credibility and digital maturity.

G

Göttingen Marketing GmbH

einkaufen-in-goettingen.de

0

The website 'Einkaufen in Göttingen' is a professionally developed local city marketing platform operated by Göttingen Marketing GmbH. It serves as a comprehensive shopping and event guide for residents and visitors of Göttingen, focusing on retail, gastronomy, cultural events, and city services. The platform leverages modern web technologies including WordPress and Elementor, with integrations for maps and user consent management, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, cookie consent, and no visible vulnerabilities, although formal security policies and incident response information are absent. Overall, the site is trustworthy, well-branded, and compliant with GDPR requirements, making it a reliable resource for its target audience.

G

Goettingen Marketing GmbH

gaenseliesel-fest.de

0

The website www.gaenseliesel-fest.de is a professionally designed WordPress site promoting the Pro City Gänseliesel Fest, a family-friendly city festival in Göttingen, Germany. It provides detailed event information, application forms for festival roles, FAQs, and multimedia galleries, targeting local residents and visitors interested in cultural events. The site uses modern web technologies including WordPress 6.8.3 and Elementor, ensuring good mobile optimization and accessibility. Security posture is solid with HTTPS enabled and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is partial, with a privacy policy present but lacking a cookie consent mechanism. Contact information is provided via official email and forms, enhancing business credibility. Overall, the site is trustworthy, well-maintained, and suitable for its community event purpose.

S

SWB Bus und Bahn

swb-busundbahn.de

0

SWB Bus und Bahn is a large regional public transportation provider based in Bonn, Germany, operating bus and tram services with a focus on sustainable mobility and customer service. The company is part of the SWB Konzern group and offers a variety of ticketing options, real-time traffic updates, and mobility apps. The website is built on TYPO3 CMS and integrates modern technologies such as Google Tag Manager and Owl Carousel, providing a good user experience with mobile optimization and accessibility features. Security posture is strong with HTTPS enforced and cookie consent mechanisms in place, though explicit security policies and incident response contacts are not published. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

B

Bundesstadt Bonn

bonn-macht-mit.de

0

Bonn-macht-mit.de is the official citizen participation portal for the city of Bonn, Germany. It provides a platform for residents to engage in local government decisions, participate in surveys, and stay informed about events and initiatives. The website is well-branded with official city logos and offers comprehensive information about ongoing participatory projects, targeting a broad audience including youth. Technically, the site is built on Drupal 10, uses Matomo for privacy-respecting analytics, and incorporates modern web technologies such as Font Awesome and CookiesJSR for cookie management. The site is mobile-optimized and accessible, with clear navigation and professional design. Security-wise, the site enforces HTTPS, respects Do Not Track settings, and implements cookie consent mechanisms, though it lacks some advanced security headers and a published security policy. Overall, the domain registration data aligns well with the website content and hosting, indicating legitimacy and trustworthiness.

The website 'Bonn hilft Cherson' is a humanitarian aid initiative led by the city of Bonn in partnership with the NGO Help – Hilfe zur Selbsthilfe e.V. It focuses on raising donations to support medical aid and infrastructure rebuilding in the Ukrainian city of Cherson. The site is well-structured, professionally designed, and provides comprehensive information about the project, donation methods, and partner organizations. The target audience includes citizens of Bonn, local organizations, and donors interested in humanitarian support. Technically, the website is built on TYPO3 CMS and uses modern web technologies including Bootstrap for responsive design. The site is mobile-optimized and SEO-friendly, though some accessibility features are basic. Hosting appears to be managed via German hosting providers, with no signs of blocking or WAF interference. From a security perspective, the site uses HTTPS and does not expose sensitive data. However, it lacks explicit security headers and a cookie consent mechanism, which are recommended for GDPR compliance. No incident response or vulnerability disclosure policies are published, which could be improved to enhance trust and security posture. Overall, the website scores well on content quality, business credibility, and technical implementation, with minor penalties for privacy and security policy gaps. It represents a trustworthy and professional platform for humanitarian fundraising and awareness.