Security Directory

K

KulturPass

kulturpass.de

0

KulturPass is a German government-supported cultural initiative aimed at providing 18-year-old youths in Germany with a digital budget to access a wide range of cultural offerings such as books, concerts, cinema, and music. The platform is accessible via a web portal and mobile apps, facilitating budget redemption and promoting media literacy through a dedicated toolkit. The website is professionally designed, mobile-optimized, and integrates social media channels to engage its target audience effectively. Technically, it leverages TYPO3 CMS with modern JavaScript libraries and frameworks, ensuring a stable and accessible user experience. Security posture is solid with HTTPS and cookie consent mechanisms, although some security headers could be enhanced. Privacy compliance is strong, reflecting GDPR adherence with clear policies and consent management. Overall, the site demonstrates high trustworthiness and professionalism, supporting its role as a government cultural program.

B

Berliner Ukulele Festival

berliner-ukulele-festival.de

0

The Berliner Ukulele Festival website represents a small cultural event organizer focused on Ukulele music festivals in Berlin, Germany. Established in 2016, the festival has become a recognized event within the German-speaking Ukulele community. The website is built on WordPress with a modern tech stack including WooCommerce, Yoast SEO, and Borlabs Cookie for consent management. The site is well-branded, mobile-optimized, and provides rich visual content including professional photography. However, it lacks explicit privacy and terms of service pages, and does not provide direct contact information or security incident response details. The SSL configuration is excellent, and no major vulnerabilities or suspicious patterns were detected. Overall, the site is trustworthy and professional but could improve compliance and security transparency.

M

Musikhaus Jörgensen

musikhaus-joergensen.de

0

Musikhaus Jörgensen is a well-established music retail business based in Düsseldorf, Germany, founded in 1930. The company specializes in selling music notes, books, various musical instruments including string, wind, percussion, electronic instruments, and digital pianos, with a premium partnership for Yamaha Clavinova products. The website serves as an informational and contact portal with links to an external online shop and partner sites. Technically, the site is built on WordPress with jQuery and uses Matomo for analytics, indicating a moderate level of digital maturity. The site is accessible, mobile-optimized, and professionally designed, though it lacks some advanced accessibility features and cookie consent mechanisms. Security posture is adequate with HTTPS enabled but lacks explicit security headers and formal security policies. Overall, the site is trustworthy and credible for its business domain but could improve compliance and security transparency.

W

Wagnerepiano

wagnerepiano.com

0

Wagnerepiano operates a niche business specializing in designer digital piano wings (Flügel) that are portable, stylish, and equipped with solar modules for autonomous use. The company targets musicians, bands, and private users seeking mobility and aesthetic enhancement for their digital pianos. The website is professionally designed using WordPress with the Divi theme and includes multimedia content such as images and videos to showcase the product. Contact information and certifications related to innovation competence are clearly presented, enhancing business credibility. Technically, the website employs modern web technologies and plugins, ensuring good performance and SEO optimization. Security posture is solid with HTTPS enabled, though some security headers are missing and no explicit cookie consent mechanism is present. WHOIS data is incomplete, which slightly reduces trust but does not outweigh the professional presentation and clear contact details. Overall, the website is a reliable and well-maintained digital presence for a small manufacturing business in Germany.

C

Cantus-Riedel Berlin

cantus-riedel.de

0

Cantus-Riedel Berlin is a well-established music retail business operating since 1910 in Berlin-Charlottenburg. The company offers a broad range of music-related products including sheet music, instruments, accessories, classical CDs, and merchandise. It also hosts events such as workshops and concerts, targeting musicians, composers, music teachers, and music enthusiasts. The business model combines a physical store with an online shop presence, positioning it as a trusted local retailer with a strong community focus. Technically, the website is built on WordPress using the Twenty Twelve theme, enhanced with jQuery and Matomo analytics for visitor tracking. The site is moderately optimized for performance and mobile devices, with good SEO and basic accessibility features. However, there is room for improvement in security headers and privacy compliance, particularly regarding cookie consent mechanisms. From a security perspective, the site uses HTTPS and does not expose sensitive information or vulnerable libraries. Nonetheless, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. The use of Matomo analytics without a cookie consent banner indicates partial GDPR compliance. Overall, the security posture is adequate but could be strengthened with additional best practices. The overall risk assessment is low given the nature of the business and the absence of critical vulnerabilities or suspicious indicators. Strategic recommendations include implementing security headers, adding cookie consent, publishing security and incident response policies, and maintaining regular updates to the CMS and plugins to enhance security and compliance.

M

Musikhaus Hogrebe

musikhaus-hogrebe.de

0

Musikhaus Hogrebe is a small retail music store located in Aachen, Germany, specializing in musical instruments, accessories, and sheet music. The business was newly established in 2018 and operates both a physical storefront and an online presence linking to a partner e-commerce platform. The website is built on WordPress and uses Matomo analytics, reflecting a moderate level of digital maturity with some privacy awareness. The site is well-structured, mobile-optimized, and provides clear contact information, enhancing user trust and engagement. From a security perspective, the website benefits from HTTPS encryption and does not expose sensitive data. However, it lacks important security headers and does not provide explicit security policies or incident response information. There is no cookie consent mechanism, which is a compliance gap under GDPR regulations. The WHOIS data shows no privacy protection, consistent with a legitimate retail business, though registrant details are minimal. Overall, the website presents a professional and trustworthy front for a local music retailer but would benefit from enhanced security practices and improved privacy compliance. Strategic improvements in security headers, cookie consent, and transparency around data protection would strengthen the site's security posture and regulatory adherence.

B

Bauer & Hieber

bauer-hieber.com

0

Bauer & Hieber is a well-established German retailer specializing in music sheets and related products, with a history spanning over 100 years. The company operates multiple physical branches and an online shop, targeting musicians and music enthusiasts primarily in Germany. Their website is built on WordPress and includes a blog partnership with MusiKosmos, enhancing their content offering. Technically, the site uses standard web technologies including jQuery and Matomo for analytics, but lacks advanced security headers and cookie consent mechanisms. Security posture is moderate with HTTPS enabled but missing some best practices. The absence of WHOIS data raises concerns about domain registration legitimacy, which impacts overall trustworthiness. Privacy policy is present and GDPR compliant, but cookie consent and incident response information are missing. Overall, the website provides relevant business content but could improve in technical and security aspects to enhance trust and compliance.

L

Leipziger Messe GmbH

leipziger-buchmesse.de

0

Leipziger Buchmesse is a major cultural and media event organizer based in Germany, hosting the prominent Leipzig Book Fair which connects readers, authors, publishers, and media companies. The website reflects a well-established event with a strong market position in the German-speaking book and media industry. The site offers comprehensive information for exhibitors, visitors, and media professionals, supported by a professional design and consistent branding. Technically, the site uses modern JavaScript libraries, consent management tools, and Google Tag Manager for analytics, with good mobile optimization and accessibility features. Security posture is solid with HTTPS and consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is trustworthy, professional, and serves its audience effectively.

M

MVB GmbH

mvb-online.de

0

MVB GmbH operates as a central digital infrastructure and media service provider for the book industry, serving publishers, bookstores, self-publishers, and service providers primarily in Germany and internationally. The company offers a broad portfolio of platforms and media formats designed to improve visibility and connectivity within the book market. Their website reflects a professional and consistent brand presence with a focus on digital innovation and industry networking. Technically, the site employs modern frameworks such as Bootstrap and FontAwesome, integrates Google Tag Manager for analytics, and uses a third-party cookie consent mechanism, indicating a mature digital infrastructure. Security posture is adequate with HTTPS enforced and consent management in place, but lacks explicit security policies, incident response contacts, and security headers, which are areas for improvement. Overall, the domain registration data aligns well with the business identity, supporting legitimacy and trustworthiness.

B

Bündnis StrukturWandeln

struktur-wandeln.de

0

Bündnis StrukturWandeln is a small non-profit civil society alliance focused on structural change in the Central German mining region. The website serves as an informational and advocacy platform targeting regional stakeholders and activists. Technically, the site is built on WordPress using modern block editor technologies and includes Matomo analytics for visitor tracking. The site is accessible, mobile-optimized, and uses HTTPS, but lacks visible privacy and cookie policies, which impacts compliance. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. WHOIS data is minimal and domain status is unusual, which reduces trustworthiness. Overall, the site is functional but could improve in privacy compliance and security best practices.

C

CivixX – Werkstatt für Zivilgesellschaft

civinews.de

0

CivixX – Werkstatt für Zivilgesellschaft is a small non-profit organization based in Leipzig, Germany, specializing in consulting and supporting civil society initiatives, sustainable development, and citizen participation projects. The organization collaborates closely with local governments and regional partners, providing services such as coaching, moderation, networking, and educational material development. Their website reflects a professional and consistent brand image, with clear navigation and comprehensive project descriptions tailored to their target audience of local authorities and civil society stakeholders. Technically, the website is built on WordPress with a modern tech stack including jQuery, Owl Carousel, and Matomo for analytics, indicating a privacy-conscious approach. The site is mobile-optimized and performs moderately well, with good SEO and accessibility basics. Security practices include HTTPS enforcement and email obfuscation, though some security headers are missing and no explicit security or incident response policies are published. Overall, the security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is strong, featuring a comprehensive privacy and cookie policy with a consent mechanism. The domain registration data aligns well with the website content and business location, supporting legitimacy. No adult or questionable content is present, making the site safe for general audiences. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and maintaining regular updates to WordPress and plugins to sustain security and compliance.

frogblog.tv is a multilingual landing page associated with ENERGETIX GmbH & CO.KG, a German company operating in the energy sector. The site serves primarily as a language selection portal directing users to German, English, and French subdomains, indicating an international or European audience focus. The business model appears to be content or community engagement related to energy topics, though the landing page itself contains minimal content. Technically, the website is very basic with no detected CMS, scripts, or analytics tools. The site uses simple CSS for basic mobile responsiveness but lacks advanced SEO and accessibility features. No security headers or HTTPS status were identified from the provided data, and no privacy or cookie policies are present, indicating low digital maturity. From a security perspective, the domain is registered transparently to a legitimate German company with a long registration history, which supports trustworthiness. However, the lack of security best practices such as DNSSEC, HTTPS enforcement, and security headers reduces the overall security posture. No incident response or vulnerability disclosure information is available. Overall, the website is functional but minimal, with significant room for improvement in content richness, security, privacy compliance, and technical sophistication. Strategic recommendations include implementing HTTPS, publishing privacy and cookie policies, adding security headers, and enhancing content and navigation to improve user experience and trust.

B

Beisheim Stiftung

beisheim-stiftung.com

0

Beisheim Stiftung is a non-profit foundation operating primarily in Germany and Switzerland, providing funding and support for various projects. The website serves as an informational portal offering downloadable resources such as funding criteria and application guidelines. The foundation targets applicants and partners interested in its funding programs. Technically, the website is built using the Nuxt.js framework and integrates Cookiebot for cookie consent management, ensuring compliance with privacy regulations. The site employs HTTPS and uses Piwik Analytics for visitor statistics, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent mechanisms, but lacks visible security headers and explicit security policies. The absence of WHOIS data and contact information slightly reduces trustworthiness. Overall, the website is professional and functional but could improve transparency and security documentation.

H

Hessischer Gründerpreis – Die Auszeichnung 🏆

hessischer-gruenderpreis.de

0

The Hessischer Gründerpreis website represents a well-established regional business award platform focused on startups and business successors in Hessen, Germany. It provides visibility, networking, media exposure, and professional support to companies in their first five years of operation or succession. The platform is backed by reputable partners and sponsors, including financial institutions, industry associations, and government bodies, enhancing its credibility and market position. Technically, the website is built on Joomla CMS with modern front-end frameworks like UIkit and uses common analytics and consent management tools such as Google Analytics, Google Tag Manager, and Usercentrics. The site is mobile-optimized, accessible, and SEO-friendly, with structured data implemented for enhanced search engine understanding. From a security perspective, the site enforces HTTPS and includes CSRF tokens, but lacks explicit security headers like Content-Security-Policy and X-Frame-Options. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is strong, with clear privacy and cookie policies and consent mechanisms in place. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance, making it a reliable digital presence for the Hessischer Gründerpreis initiative.

H

htp GmbH

htp.net

0

htp GmbH is a regional telecommunications provider serving the Hannover metropolitan area and surrounding cities in Germany. The company offers bundled services including highspeed internet, fixed-line telephone, mobile LTE plans, fiber optic connectivity, and security solutions. The website reflects a professional and customer-focused business with clear product offerings and local presence. Technically, the site is built on TYPO3 CMS with modern web technologies, good mobile optimization, and accessibility features. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though some HTTP security headers could be improved. The WHOIS data is unavailable, which slightly reduces trust but the website's professionalism and business consistency support legitimacy. Overall, the site scores well on content quality, technical implementation, security, privacy compliance, and business credibility.

A

aha - Zweckverband Abfallwirtschaft Region Hannover

aha-region.de

0

The website www.aha-region.de represents the regional public waste management authority 'aha - Zweckverband Abfallwirtschaft Region Hannover' in Germany. It provides comprehensive waste disposal services for private households and businesses, including container services, recycling, composting, and special waste management. The site targets a broad audience including residents and commercial customers within the Hannover region. The business model is focused on public service delivery in the environmental sector, positioning itself as a key regional player in waste management and sustainability. Technically, the website is built on TYPO3 CMS, a robust open-source content management system, and integrates modern tools such as Google Tag Manager, Google Analytics, and Cookiebot for cookie consent management. The site is hosted on German servers (htp-tel.de) and demonstrates moderate performance with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured data. From a security perspective, the site enforces HTTPS and employs cookie consent mechanisms, indicating a commitment to user privacy and data protection. However, explicit security headers and detailed security policies are not evident in the provided data. No vulnerabilities or exposed sensitive data were detected. The absence of a published privacy policy or terms of service page is a notable gap in compliance documentation. Overall, the website is professional, trustworthy, and safe for general audiences. It effectively communicates its public service mission but could improve transparency by publishing comprehensive privacy and security policies and providing clear contact information. Strategic recommendations include enhancing security headers, incident response readiness, and compliance documentation to strengthen trust and regulatory adherence.

S

Sophienklinik GmbH

sophienklinik.de

0

Sophienklinik GmbH operates as a modern private hospital in Hannover, Germany, specializing in multimodal pain therapy and other healthcare services. It is positioned as one of the largest and oldest private hospitals in Germany, offering comprehensive medical care through a network of specialist doctors. The website reflects a professional healthcare provider targeting patients and medical professionals, emphasizing quality management and certifications. Technically, the website is built on WordPress with a robust plugin ecosystem including Yoast SEO, Defend WP Firewall, and Complianz GDPR for privacy compliance. The site is mobile-optimized, accessible, and SEO-friendly, with moderate performance. Security posture is strong with HTTPS enforced and firewall protections, though some security headers are not explicitly detected. Privacy compliance is well addressed with clear cookie consent and a comprehensive privacy policy. No critical vulnerabilities or suspicious content were found. Overall, the website presents a trustworthy and professional digital presence for the healthcare provider.

C

CITIPOST GmbH

citipost.de

0

CITIPOST GmbH operates as a regional postal and logistics service provider in Germany, serving multiple cities through a network of subsidiaries and partner sites. The company focuses on affordable and punctual delivery services nationwide, targeting both business and private customers. The website reflects a professional presence with clear navigation and a localized branch finder feature, supporting customer engagement. Technically, the site is built on WordPress with common plugins such as LayerSlider and Contact Form 7, and integrates a consent management platform to comply with GDPR requirements. The site is mobile optimized and uses HTTPS, but lacks some advanced security headers and explicit incident response information. Overall, the security posture is moderate with room for improvement in formal security policies and header implementation. The domain WHOIS data is minimal but consistent with German hosting infrastructure, supporting legitimacy. No adult or questionable content is present, making the site safe for general audiences.

LAFRENTZ Baugesellschaft mbH is a specialized construction company based in Hannover, Germany, focusing on park deck renovation, building waterproofing, flood protection, and road marking services. The company targets commercial, public, and private clients with comprehensive services from planning to maintenance. Their market position is that of a niche specialist in construction waterproofing and related services within Germany. The website is professionally designed, mobile-optimized, and provides clear navigation and detailed service descriptions, supporting their business credibility. Technically, the site is built on the 1&1 IONOS Website Editor platform, using modern JavaScript libraries and CDN services, with moderate performance and basic accessibility features. Security posture is adequate with HTTPS enforced but lacks explicit security headers and published security policies. Privacy compliance is weak due to the absence of a privacy policy and terms of service pages, though a cookie consent mechanism is present. Contact information is limited to a phone number with no email or social media links. WHOIS data lacks detailed registrant information, slightly reducing trust but not contradicting the business claims. Overall, the website is a good representation of a small specialized construction business with room for improvement in privacy and security transparency.

Ü

ÜSTRA

uestra.de

0

ÜSTRA operates as a regional public transportation provider in Hannover, Germany, offering bus and tram services along with timetable and ticketing information. The website is built on TYPO3 CMS and integrates specialized public transport widgets, reflecting a mature digital infrastructure. The site is well-designed, mobile-optimized, and provides a good user experience for its target audience of local commuters and visitors. Security posture is adequate with HTTPS and nonce usage, but lacks explicit security headers and published security policies. Privacy compliance is limited due to missing visible privacy and cookie policies. Overall, the domain registration and WHOIS data align with the business claims, indicating legitimacy and trustworthiness.

G

GOP Entertainment-Group

variete.de

0

GOP Entertainment-Group operates a network of variety theaters across Germany, offering live shows featuring artists, comedians, and entertainers. The company targets a broad audience including families and general entertainment seekers, positioning itself as a leading player in the German hospitality and live entertainment sector. The website is built on TYPO3 CMS and integrates modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and TikTok Pixel, demonstrating a mature digital infrastructure. Security posture is adequate with HTTPS and cookie consent mechanisms, though it lacks explicit security policies and incident response information. Overall, the site is professional, content-rich, and trustworthy, supporting a large-scale entertainment business.

D

DB SCHENKER

dbschenker.de

0

DB SCHENKER is a global leader in logistics, transport, and supply chain management, offering a broad range of services including digital services, land, air, and sea transport, contract logistics, packaging systems, and customs services. The company recently merged with DSV, enhancing its market position as a worldwide leading logistics provider. The website reflects a mature, enterprise-level business with a strong focus on professional service delivery and sustainability. Technically, the website employs modern JavaScript frameworks and integrates with Adobe Experience Platform and other marketing and analytics tools, indicating a high level of digital maturity. Security posture is strong with HTTPS enforcement and Content-Security-Policy headers, though additional headers and a security.txt file could improve security transparency. Overall, the site is well-designed, mobile-optimized, and provides comprehensive business and career information, supporting a high trustworthiness rating.

D

Dextro Energy

dextro-energy.com

0

Dextro Energy is a well-established German company specializing in sports nutrition products, particularly dextrose-based energy supplements for endurance and fitness athletes. The company operates a professional e-commerce platform built on Shopify, offering a range of products alongside content such as a magazine and a sports team sponsorship. Their market position is solid with a history dating back to 2005, targeting primarily German-speaking customers interested in sports and fitness nutrition. The website demonstrates good branding consistency and trust signals including customer ratings and GDPR compliance. Technically, the site leverages modern Shopify infrastructure, integrates multiple marketing and analytics tools, and employs Cloudflare for security and performance. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is strong with HTTPS enforced and GDPR-compliant cookie consent mechanisms, although explicit security headers could be improved. No critical vulnerabilities or suspicious activities were detected. Overall, the site presents a trustworthy and professional digital presence aligned with its business goals.

The website www.rossmann.de is currently inaccessible beyond a security challenge page that verifies the browser before granting access. Rossmann is a well-known retail company operating primarily in Germany, specializing in consumer goods and drugstore products. The site content is blocked by a Web Application Firewall or similar security mechanism, preventing full content and policy analysis. The technical infrastructure shows use of JavaScript and strict Content-Security-Policy headers, with hosting likely managed via netnames.net nameservers. Security posture is moderate due to the presence of CSP but limited by lack of accessible content and policies. Overall, the site is protected but lacks publicly accessible privacy, cookie, or contact information in the analyzed content.

ERDINGER Weissbräu operates a professional website focused on promoting its non-alcoholic beer product line, ERDINGER Alkoholfrei, targeting adults over 16 years old and sports enthusiasts. The site features product showcases, athlete sponsorships, and links to an official fan shop. The technical infrastructure is modern, leveraging Next.js and React frameworks, with embedded multimedia content enhancing user engagement. However, the site lacks explicit privacy and cookie policies, and no contact information or security policies are readily available, which may impact user trust and compliance. Security posture is moderate with no detected blocking or WAF challenges, but missing security headers and incident response contacts are areas for improvement. Overall, the website is professionally designed and consistent with the brand's market position but would benefit from enhanced privacy and security disclosures.

E

enercity AG

enercity.de

0

enercity AG is a large, established German energy provider with a history dating back to 1825. The company offers a broad portfolio of energy-related services including electricity, gas, solar solutions, heating, water supply, telecommunications, and electromobility. It serves a wide audience including private customers, businesses, and municipalities primarily in Germany, with a strong regional focus on Hannover. The website reflects a mature digital presence with modern technologies such as React and Next.js, and implements GDPR-compliant consent management. Multiple industry awards and high customer ratings reinforce its market position and trustworthiness. Security posture is solid with HTTPS and consent mechanisms, though explicit security policies and incident response contacts are not publicly detailed. Overall, the website is professional, user-friendly, and compliant with privacy regulations, supporting enercity's reputation as a reliable energy partner.

C

Continental AG

continental.de

0

Continental AG is a leading global automotive supplier and tire manufacturer headquartered in Germany. The company focuses on innovation for safe, connected, and sustainable mobility, offering products and solutions primarily for automotive manufacturers and industrial customers. The website reflects a mature digital presence with comprehensive information for investors, job seekers, partners, and customers. Technically, the site is built on TYPO3 CMS and integrates modern tools such as Google Tag Manager and consent management for GDPR compliance. Security posture is strong with HTTPS enforced and content security policies in place, although additional headers could enhance protection. The absence of public WHOIS data is noted but likely due to privacy protection, not detracting from the site's legitimacy. Overall, Continental AG's website demonstrates professionalism, compliance, and a robust corporate identity.

A

ADAC Niedersachsen/Sachsen-Anhalt e.V.

adac-niedersachsen-sachsen-anhalt.de

0

ADAC Niedersachsen/Sachsen-Anhalt e.V. operates as a regional club focused on mobility, motorsport, tourism, and traffic safety within the German states of Niedersachsen and Sachsen-Anhalt. The organization provides a variety of services including motorsport events, tourism activities, traffic safety programs, and member support. The website reflects a well-established regional presence with consistent branding and a clear target audience of club members and regional residents interested in mobility and motorsport. Technically, the site is built on TYPO3 CMS with modern front-end technologies such as jQuery, Bootstrap, and carousel plugins, offering a good user experience with mobile optimization and SEO best practices. Security-wise, the site enforces HTTPS, uses GDPR-compliant cookie consent, and avoids exposing sensitive data, though it lacks explicit security policies or incident response contacts. Overall, the website is professional, trustworthy, and compliant with privacy regulations, supporting the organization's credibility and regional leadership.

The Silvesterlauf Hannover website represents a well-established regional sports event organizer, eichels GmbH, focusing on running and triathlon events in Hannover, Germany. The site provides comprehensive event information, registration options, news updates, and media content, targeting athletes and local community members interested in active year-end celebrations and related sports activities. The business model centers on event management and community engagement with a strong local presence and partnerships with other regional sports events. Technically, the website is built on TYPO3 CMS and leverages common web technologies such as jQuery, Bootstrap, and Font Awesome. It demonstrates good mobile optimization and SEO practices, although performance is moderate. The site uses HTTPS with a solid SSL configuration and employs basic security best practices like email obfuscation and cookie consent mechanisms. However, it lacks advanced security headers and explicit security or incident response policies. From a security perspective, the site is generally secure with no visible vulnerabilities or exposed sensitive data. Privacy compliance is addressed with a GDPR-compliant privacy policy and cookie banner. Contact information is transparent and complete, enhancing business credibility. No suspicious or malicious content was detected, and the site is free from WAF or blocking mechanisms, allowing full content access. Overall, the website scores well on content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a trustworthy and professional platform for its target audience.

The website sportscheck.com is a retail and event promotion platform focused on running events, specifically the SportScheck RUN Hannover 2025. It targets a general audience interested in sports and running, offering event participation options and related sports equipment. The site uses modern web technologies including React and various JavaScript tracking libraries, indicating a moderate level of digital maturity. However, the absence of visible privacy and cookie policies, as well as missing WHOIS registration data, suggests gaps in compliance and transparency. Security posture appears average with no explicit security headers detected in the provided data, and no evidence of vulnerabilities or exposed sensitive data. Overall, the site is functional and professional but would benefit from enhanced privacy compliance and security hardening.

E

eichels GmbH

triathlon-hannover.de

0

Triathlon Hannover is a regional sports event organizer specializing in triathlon and running events in Hannover, Germany. The company, eichels GmbH, manages multiple annual events including the Hannover Triathlon, Steinhuder Meer Triathlon, and other running competitions, targeting athletes and sports enthusiasts. The website serves as an information hub for participants and spectators, offering event details, registration, results, and media content. The business model revolves around event organization, sponsorships, and participant fees, positioning itself as a well-established regional player with consistent branding and a professional online presence. Technically, the website is built on TYPO3 CMS and employs a range of established front-end libraries such as jQuery, Bootstrap, and Font Awesome. The site demonstrates good mobile optimization and SEO practices, though some libraries are outdated which could pose security risks. Performance is moderate with a clean, navigable structure and clear content presentation. The site uses HTTPS and implements cookie consent mechanisms, reflecting GDPR compliance awareness. From a security perspective, the site uses HTTPS and obfuscates email addresses to reduce spam. However, it lacks explicit security headers like Content-Security-Policy and HSTS, and uses older JavaScript libraries that may have vulnerabilities. No incident response or security policy pages are found, indicating room for improvement in security maturity. No signs of tracking or analytics services were detected, suggesting minimal user tracking. Overall, the website is trustworthy, professionally maintained, and compliant with basic privacy regulations. The domain registration data aligns well with the business identity, supporting legitimacy. Strategic recommendations include updating libraries, implementing security headers, and publishing security policies to enhance trust and security posture.

E

eichels GmbH

steinhudermeer-triathlon.de

0

The Steinhuder Meer Triathlon website is a professionally managed platform dedicated to organizing and promoting a regional triathlon event in Steinhude, Germany. Operated by eichels GmbH, the site provides comprehensive event information, registration capabilities, results publication, and media galleries targeting athletes and sports enthusiasts. The business operates within the event management sector with a clear focus on triathlon sports, maintaining a strong regional presence and partnerships with relevant sponsors and related events. Technically, the website leverages TYPO3 CMS along with modern frontend libraries such as Bootstrap, jQuery, and Slick Carousel to deliver a responsive and user-friendly experience. The site is well-optimized for mobile devices and includes SEO best practices, although some accessibility features could be enhanced. Hosting details are not explicitly disclosed, but the site uses HTTPS with a strong SSL configuration, ensuring secure data transmission. From a security perspective, the website enforces HTTPS and employs email obfuscation to protect contact information. However, it lacks explicit HTTP security headers and does not provide a public security policy or incident response contacts, which are areas for improvement. No vulnerabilities or suspicious content were detected, and the site complies with GDPR requirements, including a cookie consent mechanism and privacy policy. Overall, the website demonstrates a solid security posture and business credibility with clear contact information and legal disclosures. The domain registration data is consistent and trustworthy, supporting the legitimacy of the business. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving accessibility features to further strengthen the site's security and compliance posture.

D

Deutsche Stiftung für Engagement und Ehrenamt

d-s-e-e.de

0

The Deutsche Stiftung für Engagement und Ehrenamt is a German non-profit foundation dedicated to strengthening volunteer engagement through diverse funding, networking, consulting, and educational programs. It holds a significant position in the national landscape of volunteer support, offering digital formats, events, and direct assistance to volunteers and organizations. The website reflects a mature digital infrastructure built on WordPress with modern plugins and SEO tools, ensuring good performance and accessibility. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, although some security headers could be improved. The domain registration data aligns well with the organization's identity, enhancing trustworthiness. Overall, the site is professional, compliant with GDPR, and serves its target audience effectively.

The Deutsche Stiftung für Engagement und Ehrenamt operates the DSEE Lernportal, a dedicated educational platform aimed at supporting volunteers and engaged individuals in non-profit organizations. The portal offers a variety of learning resources including courses, webinars, and video content focused on topics such as digitalization, financing, member recruitment, and organizational management. The platform is positioned as a trusted resource within the German volunteer sector, providing free access to educational materials and fostering community growth. Technically, the website is built on the Totara LMS platform, which is based on Moodle, utilizing modern JavaScript libraries such as YUI and jQuery, and includes accessibility and mobile optimization features. The infrastructure supports a good user experience with moderate performance and solid SEO practices. The site enforces HTTPS and employs secure session management, though it lacks some advanced security headers and a formal security policy page. From a security perspective, the site demonstrates a good posture with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. However, there is no explicit incident response or vulnerability disclosure information available. The domain registration aligns well with the organization's identity, enhancing trustworthiness. Overall, the DSEE Lernportal is a professionally maintained, secure, and privacy-conscious platform serving the non-profit volunteer community in Germany. Strategic improvements in security policy transparency and incident response readiness could further strengthen its security posture and user trust.

Smart LGT GmbH is a German-based company specializing in AI and automation consulting and software development. Founded in 2015, the company offers tailored AI strategy consulting, software development for large language model applications, consulting services, and process automation solutions targeting businesses seeking to innovate with AI technologies. The website is professionally designed using the Hugo static site generator and includes modern iconography and responsive design, indicating a moderate level of digital maturity. Contact information is clearly provided, but no social media presence or interactive forms are present. Security posture is moderate with domain transfer protection enabled but lacks DNSSEC and security headers. Privacy compliance is partially addressed with a privacy policy but no cookie consent mechanism. Overall, the website presents a trustworthy and legitimate business presence with room for improvement in security and privacy practices.

K

Kanzlei Dr. Peter Unmüßig

kanzlei-unmuessig.de

0

Kanzlei Dr. Peter Unmüßig is a small, regionally established German law firm specializing in traffic law, labor law, inheritance law, tenancy law, administrative offenses, insurance law, and civil law. The firm operates from a main office in Gundelfingen with multiple branch offices, and is a member of the Apraxa cooperative network of law firms. The website provides comprehensive legal service information, attorney biographies, and detailed privacy and legal disclaimers, targeting private clients and businesses seeking legal representation. Technically, the website uses legacy jQuery and standard HTML/CSS with moderate performance and basic mobile optimization. Security posture is moderate with no HTTPS or security headers explicitly confirmed, and an outdated jQuery version poses a potential risk. Privacy compliance is strong with a detailed GDPR-compliant privacy policy, though no cookie consent mechanism is present. Overall, the site is professional and trustworthy but would benefit from technical and security updates.

F

Funkhaus Freiburg

baden.fm

0

baden.fm is a regional media broadcaster serving Freiburg and the Südbaden region in Germany, offering radio streaming, news, event tips, and ticket sales. The website is professionally designed with consistent branding and targets local residents and listeners. Technically, the site uses a modern tech stack including WordPress CMS, JavaScript libraries such as Swiper.js and Video.js, and analytics tools like Matomo and Google Tag Manager. Security posture is adequate with HTTPS enforced and bot protection via hCaptcha, but lacks explicit security headers and documented security policies. Privacy compliance is weak due to missing privacy and cookie policies and absence of consent mechanisms. Overall, the site is trustworthy and legitimate, with domain registration data consistent with the business identity.

A

Academy of Sports GmbH

academyofsports.de

0

Academy of Sports GmbH is a reputable German educational institution specializing in flexible, state-certified distance learning programs primarily in fitness, nutrition, coaching, sport management, and e-sports. Established in 2005, it offers over 50 accredited courses targeting professionals and individuals seeking career advancement or personal development in health and sports sectors. The company holds multiple certifications and awards, reinforcing its market position as a trusted provider in the education sector. Technically, the website employs modern web technologies including jQuery, Google Tag Manager, and Salesforce integrations, hosted on a reliable infrastructure with domain control by GoDaddy. The site is well-optimized for mobile and accessibility, with good SEO practices and a professional design that supports user engagement and navigation. From a security perspective, the site enforces HTTPS, uses security best practices, and avoids exposing sensitive data. However, it lacks explicit security policies and a vulnerability disclosure mechanism, which could be improved. Privacy compliance is strong with clear GDPR-aligned policies and cookie consent mechanisms. Overall, the website presents a low-risk profile with strong business credibility, good technical implementation, and solid privacy compliance. Strategic recommendations include enhancing security transparency and adding formal incident response documentation to further strengthen trust and resilience.

R

Robinson Club GmbH

robinson.com

0

Robinson Club GmbH operates a hospitality business focused on resort holidays catering to families, couples, and singles. Their offerings include sports, childcare, wellness, and entertainment events, positioning them as a well-established player in the holiday resort market primarily in Germany. The website is built on TYPO3 CMS with modern web technologies including PWA support and uses third-party marketing tools such as Optimizely for optimization and Gigya for user engagement. Social media presence is strong and verified, enhancing brand trust. From a technical perspective, the website demonstrates moderate to good performance with mobile optimization and SEO best practices. Security posture is adequate with HTTPS enforced and no visible sensitive data exposure, but lacks explicit security headers and published security policies. Privacy compliance is weak due to absence of privacy and cookie policies and consent mechanisms, which is a notable gap given GDPR requirements. WHOIS data is missing or unavailable, which reduces domain trustworthiness and raises questions about domain registration transparency. However, the website content and official social media links support legitimacy. Overall, the site is professionally designed and functional but requires improvements in privacy compliance and security transparency to enhance trust and regulatory adherence.

Kontakt Stiftung is a German non-profit foundation focused on promoting science, research, education, volunteerism, and sports-related community projects. The foundation collaborates with partners such as the Deutscher Schwimm-Verband and trainersuchportal.de to foster social cohesion through sports and education. The website is professionally designed using modern front-end technologies and is mobile-optimized, providing a good user experience and clear navigation. Contact information is prominently displayed, enhancing business credibility. Technically, the site is built with the Hugo static site generator and uses popular libraries like Bootstrap and jQuery, indicating a modern and maintainable infrastructure. Security posture is adequate with HTTPS usage, but lacks explicit security headers and a cookie consent mechanism, which are recommended for improved compliance and protection. Overall, the site is trustworthy, safe, and well-aligned with its non-profit mission.

A

ats Elektronik GmbH

atsonline.de

0

ats Elektronik GmbH is a German technology company specializing in secure communication and safety technology solutions. Their website presents a professional image with detailed service offerings in areas such as 5G, TETRA, MOTOTRBO/DMR radio technology, security systems, system solutions for energy, transport, public safety, and military sectors, as well as research projects and training. The company targets security professionals and enterprises requiring advanced communication and safety solutions. The website is well-structured, multilingual (German and English), and includes comprehensive contact information and policies, reflecting a mature digital presence. Technically, the website uses a proprietary CMS (sethora.de Synapsis CMS), integrates modern JavaScript libraries including jQuery and MediaElement.js, and leverages Google Maps API for location services. Hosting is provided by Hetzner Online GmbH, a reputable German hosting provider. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are adequate with proper meta tags and structured navigation. Security posture is decent with HTTPS enforced and cookie consent implemented. However, no explicit security policy or incident response information is published, and security headers are absent. The WHOIS data shows an anomalous future domain creation date, which is likely an error but reduces trustworthiness. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional and trustworthy with minor security and compliance gaps. Strategic improvements in security transparency and WHOIS data accuracy are recommended to enhance credibility and risk posture.

E

Evangelische Hochschule Ludwigsburg

eh-ludwigsburg.de

0

Evangelische Hochschule Ludwigsburg is a state-recognized university of applied sciences affiliated with the Evangelical Church in Württemberg, Germany. The institution offers a broad range of bachelor and master programs primarily in social work, pedagogy, and theology, with a strong emphasis on practical application and international orientation. The website reflects a well-established academic institution with a clear focus on education, research, and community engagement. The target audience includes prospective and current students, academic staff, and partners in social and church-related sectors. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as Bootstrap and jQuery, and integrates third-party services like Google Analytics 4 and YouTube for enhanced user engagement. The site is mobile-optimized, accessible, and SEO-friendly, providing a professional user experience. Privacy and cookie compliance are robust, featuring a detailed cookie consent mechanism and clear privacy policies aligned with GDPR requirements. From a security perspective, the site enforces HTTPS and employs cookie management best practices. While explicit security headers like Content-Security-Policy are not visibly declared, the overall security posture is strong with no evident vulnerabilities or exposed sensitive data. The WHOIS data is minimal but consistent with the domain's educational purpose, and no suspicious patterns were detected. Overall, the website demonstrates a mature digital presence with high content quality, good technical implementation, and strong privacy compliance. Strategic recommendations include enhancing security headers, publishing a security policy, and maintaining regular audits of third-party scripts to sustain security and trust.

Wasserverbandstag e.V. is a well-established German non-profit association focused on water management and operational planning through its member associations primarily in Bremen, Niedersachsen, and Sachsen-Anhalt. The website serves as an information hub offering services, publications, and event information to its members and stakeholders. The organization has a strong regional presence with a history spanning over 75 years, reflecting stability and trust within its sector. Technically, the website is built on TYPO3 CMS, leveraging common web technologies such as jQuery and Bootstrap, providing a responsive and user-friendly experience. Security measures include RSA encryption for login forms, but the absence of explicit security headers and cookie consent mechanisms indicates room for improvement in compliance and security hardening. Overall, the site is professional, trustworthy, and serves its target audience effectively.

L

Landessportbund Nordrhein-Westfalen e. V.

vibss.de

0

The website www.vibss.de serves as an information and advisory portal for sports clubs primarily in the German state of Nordrhein-Westfalen. Operated by the Landessportbund Nordrhein-Westfalen e. V., a non-profit organization, it offers comprehensive resources on club management, sports practice, legal matters, and digital transformation including AI assistance. The site is well-positioned as a regional leader in supporting sports associations with a clear focus on practical and legal guidance. Technically, the site is built on the TYPO3 CMS platform, integrates Google Analytics and Tag Manager for tracking and search functionalities, and is hosted likely via Deutsche Telekom infrastructure. The website demonstrates good mobile optimization, structured navigation, and professional branding consistency. Security-wise, the site enforces HTTPS, implements GDPR-compliant cookie consent mechanisms, and avoids exposing sensitive data, though it lacks explicit security policies or incident response contacts. Overall, the site is trustworthy, compliant, and serves its target audience effectively.

Vereinshelden is a well-established non-profit organization focused on supporting volunteer engagement in sports within Niedersachsen, Germany. The website serves as a comprehensive platform offering funding, consulting, training, and recognition services to sports clubs and volunteers. It holds a strong regional market position supported by partnerships with key sports organizations and government entities. The digital infrastructure is based on WordPress with modern plugins and themes, ensuring good SEO, accessibility, and mobile responsiveness. Security posture is solid with HTTPS and cookie consent mechanisms, though some improvements in security headers and incident response policies are recommended. Overall, the website demonstrates high professionalism, trustworthiness, and compliance with GDPR requirements.

S

Stiftung Nationale Anti Doping Agentur Deutschland

gemeinsam-gegen-doping.de

0

GEMEINSAM GEGEN DOPING is a German government-supported non-profit network focused on anti-doping education and prevention in sports. It operates under the Stiftung Nationale Anti Doping Agentur Deutschland and collaborates with national and international partners such as NADA, WADA, and the German Olympic Sports Confederation. The website serves as an information hub offering workshops, e-learning, quizzes, and community engagement to promote clean sports. Technically, the site is built on TYPO3 CMS with modern JavaScript integrations, uses hCaptcha for form security, and employs Matomo for analytics with a strong emphasis on privacy compliance via Cookiebot. Security posture is solid with HTTPS and spam protection, though some security headers could be improved. Overall, the site is professional, trustworthy, and well-optimized for accessibility and SEO.

The Niedersächsisches Institut für Sportgeschichte e.V. (NISH) is a specialized non-profit institute dedicated to documenting and researching the sports history of Lower Saxony and surrounding regions. Founded in 1981 and supported by the LandesSportBund Niedersachsen, it offers extensive archival resources, a specialized library, and collections related to various sports disciplines. The website serves as an information hub for sports clubs, educational institutions, researchers, and enthusiasts. Technically, the site is built on WordPress with standard plugins for contact forms, newsletters, and cookie management, providing a moderate performance and good mobile optimization. Security posture is solid with HTTPS enforced and cookie consent implemented, though security headers and incident response information are lacking. Overall, the site is professional, trustworthy, and compliant with GDPR requirements, with clear contact details and transparent policies.

Freiwilligendienste im Sport is a non-profit organization based in Germany focused on promoting voluntary social engagement in sports, primarily targeting young people. The organization facilitates various volunteer service formats, including domestic and international projects, providing educational and orientation opportunities in the sports sector. Their website is professionally designed, accessible, and provides clear information and contact details, supporting their mission effectively. Technically, the site uses ProcessWire CMS with modern frontend libraries and includes accessibility features and cookie consent mechanisms, reflecting a mature digital presence. Security posture is adequate with HTTPS and cookie consent but lacks explicit security headers and documented policies. Overall, the site is trustworthy and well-positioned within its niche, though improvements in security documentation and terms of service could enhance compliance and user trust.

The Meldestelle Sportmanipulation website serves as an official German government-related platform dedicated to combating manipulation in sports competitions and betting fraud. It provides a secure and anonymous whistleblower system, supported by a reputable law firm, to encourage fair play and integrity in sports. The site targets sports enthusiasts, athletes, and the general public interested in maintaining fairness in sports. The business model is a state-mandated reporting and advisory service, positioning itself as a trusted authority in the niche of sports integrity. Technically, the website is built using the Government Site Builder CMS, employs modern web standards including HTML5, CSS3, and JavaScript, and integrates Matomo for web analytics with a clear cookie consent mechanism. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a moderate to good digital maturity. Hosting details are not explicit, but HTTPS is enforced, ensuring secure communications. From a security perspective, the site demonstrates good practices such as HTTPS enforcement and cookie consent with opt-out options. However, no explicit security headers were detected in the provided data, and there is no published security or incident response policy. No vulnerabilities or exposed sensitive data were found. The absence of a vulnerability disclosure policy or security.txt file suggests room for improvement in transparency and incident handling readiness. Overall, the website is professional, trustworthy, and compliant with GDPR, with clear contact information and official branding. The WHOIS data is minimal but does not raise significant concerns given the governmental nature of the site. Recommendations include publishing formal security policies, adding security headers, and establishing a vulnerability disclosure mechanism to enhance security posture and user trust.

TuS Glarum is a local German sports club offering a wide range of sports and fitness activities for all age groups, including gymnastics, ball sports, dance, and rehabilitation programs. The website serves as an information portal for members and the local community, providing schedules, news, and contact details. The club maintains an active presence on social media platforms such as Facebook and Instagram, enhancing community engagement. Technically, the website is built on the Clansphere CMS platform, utilizing standard web technologies including HTML, CSS, and JavaScript. It employs legacy components such as FCKeditor and Ajax scripts. The site is hosted via INWX nameservers, indicating a German hosting provider. Performance and mobile optimization are moderate, with basic accessibility and SEO features implemented. From a security perspective, the website lacks visible security headers and modern security policies. The use of an outdated editor and absence of cookie consent mechanisms highlight areas for improvement. The email address is obfuscated to reduce spam, but no explicit incident response or security policy pages are present. The domain WHOIS data is consistent and transparent, supporting the legitimacy of the site. Overall, the website is functional and trustworthy for its community sports purpose but would benefit from enhanced security measures, privacy compliance improvements, and modernization of technical components to reduce risk and improve user trust.