Security Directory

M

media touch

mediatouch.de

0

media touch is a German technology company operating a website powered by TYPO3 CMS, targeting German-speaking users. The company appears to provide digital technology services, though specific services are not detailed in the provided content. The website uses modern frontend technologies including Bootstrap and jQuery, and integrates Usercentrics for GDPR-compliant cookie consent management. Hosting is provided by Schlundtech, a German hosting provider, consistent with the website's regional focus. Security posture is moderate with HTTPS enabled and consent management in place, but lacks explicit privacy policies, terms of service, and security headers. Contact information and incident response details are not present, limiting transparency and trust. Overall, the website is professionally designed and mobile-optimized but could improve in privacy and security disclosures.

M

MINT

mint-frauen-bw.de

0

The website mint-frauen-bw.de represents a regional initiative in Baden-Württemberg, Germany, focused on promoting women in STEM (MINT) careers. It provides educational measures, workshops, and career planning support targeting women interested in STEM fields. The site is built on WordPress using the Avada theme and includes SEO and accessibility features, indicating a moderate level of digital maturity. Security posture is generally good with HTTPS enforced and cookie consent implemented, but lacks explicit privacy policies, terms of service, and security headers. Contact information is not readily available, which may impact user trust and compliance. Overall, the site is professional and trustworthy for its purpose but could improve in privacy and security transparency.

H

Hochschulallianz für Angewandte Wissenschaften (HAWtech)

hawtech.de

0

HAWtech is a German university alliance focused on applied sciences and engineering education, uniting six leading universities of applied sciences. The website serves as an information portal for students, researchers, and industry partners, emphasizing collaboration in teaching, research, and innovation. Technically, the site is built on TYPO3 CMS with modern JavaScript frameworks and includes privacy-compliant cookie consent and analytics via Matomo. Security posture is solid with HTTPS and no visible vulnerabilities, though formal security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and well-maintained, supporting the alliance's mission effectively.

explorhino is a German educational science center focused on interactive learning experiences for children, families, and schools. It offers hands-on exhibits, workshops, courses, and events designed to engage young learners in science and technology. The website reflects a well-structured and professionally designed platform that supports its educational mission with clear navigation and relevant content. Technically, the site is built on WordPress with modern plugins for SEO, event management, and GDPR compliance, ensuring a good digital maturity level. Security posture is solid with HTTPS enforced and cookie consent mechanisms in place, though there is room for improvement in security headers and incident response transparency. Overall, the site is trustworthy, compliant with privacy regulations, and provides clear contact information and social media presence.

S

Viele Hochschulen. Ein Ziel. Ihr Weiterkommen.

suedwissen.de

0

The website www.suedwissen.de serves as an educational platform focused on providing information about multiple universities and supporting educational advancement, primarily targeting students and prospective university attendees in Germany. The site features a modern technical infrastructure utilizing JavaScript frameworks such as Vue.js, with Cookiebot managing cookie consent and Matomo for analytics, hosted on bunny.net's infrastructure. While the site demonstrates good design quality and user experience with mobile optimization, it lacks explicit privacy policies, terms of service, and contact information, which are critical for compliance and user trust. Security posture is moderate, with no detected security headers or incident response policies, indicating room for improvement in security best practices. Overall, the site is safe for general audiences and does not contain adult or questionable content.

G

Graduate Campus Hochschule Aalen

learniac.org

0

Graduate Campus Hochschule Aalen operates as a professional continuing education provider offering a range of courses primarily in technology, business, and digital transformation. The platform leverages modern online delivery methods including live-online sessions and e-learning modules, targeting professionals seeking flexible and compact learning formats. The website is built on TYPO3 CMS and integrates cookie consent management and analytics tools, reflecting a moderate to advanced digital maturity. Security posture is solid with HTTPS and consent mechanisms, though lacks published privacy and security policies. Overall, the site presents a trustworthy and professional educational service with room for improvement in compliance documentation and security transparency.

T

Taxmaster

taxmaster.de

0

Taxmaster.de is an educational website focused on providing a Master of Taxation degree and tax consultancy training in Germany. The site targets students and professionals interested in taxation, offering dual qualifications. The business operates in the education sector with a niche focus on taxation studies. The website is built on TYPO3 CMS and integrates modern technologies such as Google reCAPTCHA, Cookiebot for consent management, and Google Tag Manager for analytics. The technical infrastructure is solid with good mobile optimization and moderate performance. Security posture is adequate with HTTPS enforced and consent mechanisms in place, though some security headers and explicit policies could be improved. Privacy compliance is strong, with comprehensive cookie policies and GDPR adherence. Overall, the site is professional, trustworthy, and well-positioned within its market niche.

G

Graduate Campus Hochschule Aalen

graduatecampus.de

0

Graduate Campus Hochschule Aalen is a reputable educational institution specializing in professional continuing education and part-time study programs including Bachelor and Master degrees, certificates, and courses primarily in technology, business, and IT sectors. The website reflects a strong market position in Germany with a focus on flexible learning formats such as blended learning, online, and on-campus options. The institution leverages modern digital tools including TYPO3 CMS, Google Tag Manager, and Usercentrics for consent management, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and consent mechanisms in place, though explicit security policies and incident response contacts are absent. Overall, the website is professional, trustworthy, and well-optimized for user experience and SEO.

S

Studierendenwerk Ulm

studierendenwerk-ulm.de

0

Studierendenwerk Ulm is a non-profit public institution dedicated to supporting the social needs of students in Ulm and surrounding academic institutions. The organization provides a broad range of services including student housing, cafeteria and food services, financial aid consulting (notably BAföG), psychosocial and legal counseling, childcare support, and services for international students. The website reflects a well-established regional leader in student social services with a clear focus on accessibility and comprehensive support. Technically, the website is built on WordPress with common plugins such as Events Manager and AIOSEO, leveraging jQuery and RoyalSlider for interactive elements. The site is served over HTTPS with a Content-Security-Policy header, indicating a good baseline security posture. Performance is moderate with good mobile optimization and basic accessibility features. SEO practices are adequately implemented with proper meta tags and structured data. Security-wise, the site benefits from HTTPS and some security headers but lacks others like HSTS and X-Frame-Options. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is partial; while a comprehensive privacy policy is present, no cookie consent mechanism was found, which may pose GDPR compliance risks. Contact information is available, though no direct company emails are exposed on the site. Overall, the website is trustworthy, professional, and well-aligned with its mission. Strategic improvements in privacy compliance and security headers would enhance its security posture and regulatory adherence.

B

Bosch Building Automation GmbH

gfr.de

0

Bosch Building Automation GmbH, formerly GFR mbH, is a subsidiary of the Bosch Group specializing in innovative building automation solutions focused on comfort, efficiency, and sustainability. The company leverages Bosch's strong brand and technological expertise to serve facility managers, building owners, and energy managers primarily in Germany. Their offerings include system automation, room automation, building management software, and related services. The website is professionally designed, well-structured, and provides comprehensive information about their portfolio and corporate identity. Technically, the site uses modern web technologies including Google Tag Manager and Qualtrics for analytics and surveys, with good mobile optimization and accessibility. Security posture is solid with HTTPS and consent management, though explicit security policies and incident response details are absent. WHOIS data is unavailable, which slightly reduces transparency but does not detract significantly from trust given the strong Bosch affiliation and professional presentation. Overall, the site demonstrates a mature digital presence aligned with Bosch's corporate standards.

N

Net at Work GmbH

netatwork.de

0

Net at Work GmbH is a German technology company specializing in Microsoft solutions such as Microsoft 365, Teams, Security, SharePoint, and Exchange. The company positions itself as an experienced Microsoft Solutions Partner, offering consulting, migration, managed services, and change management to enable modern, secure digital workplaces. Their website reflects a professional and consistent brand image targeting business customers seeking Microsoft-based collaboration and security solutions. Technically, the website is built on WordPress with a modern theme and plugins, including Borlabs Cookie for GDPR-compliant cookie consent and Google Analytics for tracking. Security posture is good with HTTPS and cookie consent, but lacks visible advanced security headers and explicit security policies. Privacy compliance is partial due to missing explicit privacy and terms of service pages. WHOIS data is minimal but consistent with the business location and domain usage. Overall, the website is professional, trustworthy, and well-maintained, with room for improvement in privacy transparency and security documentation.

W

WInTO GmbH – Wirtschafts-, Innovations- und Tourismusförderung Oberhavel GmbH

youlab.de

0

youlab.de is the official website for the youlab career and educational fair organized by WInTO GmbH, serving the Oberhavel region in Germany. The site provides comprehensive information about the event, including exhibitor registration, apprenticeship opportunities, and media impressions. It targets students, young job seekers, and local companies, positioning itself as the largest career orientation fair in the region. The business model focuses on event organization and promotion, supported by local government and industry partners. Technically, the website is built on a modern stack including HTML5, CSS3, JavaScript, and uses Cookiebot for consent management and Matomo for analytics. The CMS appears to be Redaxo, inferred from media URL patterns. The site is hosted on servers indicated by the nameservers your-server.de and second-ns.de. Performance and mobile optimization are good, with basic accessibility and SEO features implemented. From a security perspective, the site enforces HTTPS and uses a cookie consent mechanism with blocking mode. No critical vulnerabilities or exposed sensitive data were detected. However, security headers are not explicitly observed in the provided data, and no published security or incident response policies were found. Privacy compliance is strong, with a clear privacy policy and cookie management aligned with GDPR requirements. Overall, the website is professional, trustworthy, and well-suited for its educational purpose. Recommendations include enhancing security headers, publishing incident response and vulnerability disclosure policies, and continuing to monitor third-party scripts for security risks.

W

WInTO GmbH

gruenderservice-oberhavel.de

0

WInTO GmbH operates the Gründerservice Oberhavel website, providing comprehensive support and consulting services for business founders in the Oberhavel region of Germany. The company focuses on guiding entrepreneurs through orientation, planning, implementation, and consolidation phases of business establishment. The website serves as a regional government-related platform to foster a startup-friendly environment with clear contact points and event information. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, Font Awesome icons, and Swiper.js for UI components. Cookie consent is managed via Cookiebot, ensuring GDPR compliance, and user analytics are handled through Matomo with cookies disabled to enhance privacy. The site is mobile-optimized and presents a professional design with good navigation clarity. From a security perspective, the site uses HTTPS and integrates cookie consent mechanisms, but lacks explicit security headers and published security policies or incident response information. No vulnerabilities or suspicious elements were detected in the content or WHOIS data. The domain registration information is minimal but consistent with the business claims. Overall, the website is a trustworthy, professional resource for its target audience, with moderate technical sophistication and good privacy compliance. Strategic improvements in security headers, incident response transparency, and SEO could further enhance its posture and user trust.

F

fib Oberhavel

fib-oberhavel.de

0

fib Oberhavel is a regional workforce information office operating under the WInTO GmbH umbrella, focused on supporting companies, schools, and higher education institutions in the Oberhavel district of Germany. It provides coordination, networking, and advisory services to address the growing demand for skilled workers in the region. The website presents a professional and content-rich platform with clear navigation and responsive design, targeting local businesses, students, and educational institutions. Technically, the site uses modern front-end technologies including Font Awesome, Bootstrap, and Cookiebot for consent management, alongside Matomo for privacy-conscious analytics. Security posture is solid with HTTPS and cookie consent mechanisms, though security headers and explicit policies could be improved. Overall, the site demonstrates a good balance of usability, privacy compliance, and business credibility, suitable for a government-affiliated entity.

fairplaid.org is a German crowdfunding platform specializing in sports projects, enabling sports clubs and athletes to raise funds for their initiatives. The platform has been operational since 2012, indicating a mature presence in its niche market. The website is well designed with good content relevance and user experience, targeting sports organizations and individuals in Germany. The technical infrastructure leverages modern JavaScript frameworks and integrates multiple analytics and marketing tools while maintaining user privacy through cookie consent and IP anonymization. Security posture is solid with HTTPS enforced and domain registration protections in place, though improvements such as enabling DNSSEC and adding security headers could enhance resilience. Privacy compliance is strong with a comprehensive privacy policy and cookie consent mechanism, but the absence of terms of service and explicit security policies is noted. Overall, the site demonstrates a professional and trustworthy online presence with moderate to good technical and security maturity.

T

TARGOBANK

targobank.de

0

TARGOBANK is a well-established German financial institution offering a broad range of banking products including loans, accounts, cards, savings, investments, and insurance. The website targets private, business, and corporate customers with a strong emphasis on flexible, customer-centric financial solutions. The bank maintains a significant physical presence with approximately 340 branches and complements this with a robust digital platform featuring online banking and mobile apps. The site content is professional, comprehensive, and well-structured, reflecting a mature business model in the banking sector. Technically, the website employs modern web technologies including asynchronous JavaScript, CSS, and uses third-party services such as Google Tag Manager and TagCommander for analytics and consent management. The site is hosted on a CDN, ensuring moderate to good performance and excellent mobile optimization. Accessibility features and SEO best practices are well implemented. From a security perspective, the site enforces HTTPS, includes multiple security headers, and integrates a consent management platform to comply with GDPR. No critical vulnerabilities or exposed sensitive data were detected. However, explicit incident response contacts and vulnerability disclosure mechanisms like security.txt are not found, representing an area for improvement. Overall, the website demonstrates a high level of professionalism, security, and compliance suitable for a large financial institution. Strategic recommendations include enhancing transparency around security incident response and vulnerability disclosure to further strengthen trust and security posture.

V

VGH Stiftung

nsks.de

0

The website www.nsks.de represents the Niedersächsische Sparkassenstiftung (NSKS) and the VGH Stiftung, two cultural foundations focused on promoting arts, music, museums, monument preservation, and sustainability projects in Lower Saxony, Germany. The platform serves as an information hub for cultural awards, events, and funding opportunities, targeting cultural institutions, artists, and the general public interested in regional culture. The business model is non-profit, emphasizing cultural support and community engagement. Technically, the website is built on WordPress with a modern tech stack including Bootstrap for responsive design, Yoast SEO for search optimization, and Borlabs Cookie for cookie consent management. Hosting is provided via DomainDiscount24, and the site uses HTTPS with a good SSL configuration. The site is moderately performant and well-optimized for mobile devices, though accessibility features are basic. From a security perspective, the site benefits from HTTPS and cookie consent mechanisms but lacks visible security headers and explicit privacy policies. No vulnerability disclosures or incident response contacts are present, which could be improved to enhance trust and compliance. No WAF or blocking mechanisms were detected, and no adult or questionable content is present, making the site safe for general audiences. Overall, the website is professional and trustworthy, with good content quality and business credibility. However, improvements in privacy policy publication, security headers, and contact information would strengthen its security posture and compliance with GDPR requirements.

C

CELLEHEUTE.DE | Nachrichten für Stadt und Landkreis Celle

celleheute.de

0

The website www.celleheute.de appears to be a small-scale local news or information portal based in Germany, built using the Wix platform. The site uses standard Wix hosting and scripts, including Google Tag Manager and Facebook Pixel for analytics and tracking. However, the website lacks critical privacy and cookie policies, contact information, and security policies, which impacts its overall trustworthiness and compliance posture. The content quality is minimal based on the provided HTML snapshot, and no structured data or Open Graph metadata is present to enhance SEO or social sharing. Technically, the site benefits from HTTPS and Wix's hosting infrastructure but lacks advanced security headers and accessibility features.

W

Westermann Gruppe

antolin.de

0

Antolin by Westermann Gruppe is a well-established educational platform focused on promoting reading skills among students from grades 1 to 10. The platform offers a vast database of quizzes related to children's and youth literature, enabling self-directed learning and performance tracking. The website is professionally designed, mobile-optimized, and provides comprehensive content relevant to its target audience of students, teachers, parents, and libraries. The business model revolves around licensing and subscriptions for schools, with free trial options available. Recognized certifications and awards enhance its market credibility. Technically, the website employs a modern tech stack including jQuery, Flexslider, and Piwik (Matomo) for analytics, with responsive design and good SEO practices. However, some security best practices such as security headers and cookie consent mechanisms are missing or not detected, which could be improved to enhance GDPR compliance and security posture. The site uses HTTPS and disables cookies in analytics to protect user privacy. From a security perspective, the site shows a moderate security maturity with no visible vulnerabilities or exposed sensitive data. The absence of a published security policy or incident response contact limits transparency. The WHOIS data is partially consistent but lacks detailed registrant information, though no suspicious patterns are detected. Overall, the domain and website appear legitimate and trustworthy. Strategically, the platform should focus on improving privacy compliance by implementing cookie consent banners, publishing security policies, and adding incident response contacts. Enhancing security headers and conducting regular security audits would further strengthen its security posture. These improvements will support trust and compliance in the education sector, ensuring continued growth and user confidence.

D

Discover-Culture

discover-culture.com

0

Discover-Culture is a small media company based in Germany, specializing in digital cultural tours, VR experiences, and interactive cultural media. The website offers digital tours and cultural films accessible without restrictions after purchase, targeting a general audience interested in culture and art. The business model is primarily e-commerce focused on digital content delivery. Technically, the website is built on WordPress with WooCommerce, integrating modern marketing and analytics tools such as Google Tag Manager, Facebook Pixel, and HubSpot. Hosting is via Amazon AWS infrastructure, ensuring reliable performance and scalability. Security posture is good with HTTPS enforced and domain transfer protection, though the absence of DNSSEC and explicit security headers suggests room for improvement. Privacy compliance is partial, with a cookie policy and consent mechanism present but lacking explicit privacy and terms of service pages. Overall, the website is professional, well-branded, and functional, with moderate trustworthiness and a solid technical foundation.

P

Prosegur Deutschland

prosegur.de

0

Prosegur Deutschland is a leading security and cash management service provider in Germany, specializing in secure transportation and handling of physical and digital assets. The company positions itself as the market leader in Germany, serving B2B clients including banks, public institutions, and enterprises. Their comprehensive service portfolio includes cash management outsourcing, cash deposit solutions, technical services, and high-security storage. Technically, the website employs modern tracking and consent management tools, hosted on a reputable CDN provider (Akamai), and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though there is room for improvement in security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, supporting Prosegur's strong market presence.

F

Flüchtlingsrat RLP e.V.

civi-kune-rlp.de

0

civi kune RLP is a non-profit project operated by Flüchtlingsrat RLP e.V., focusing on refugee support, community engagement, and volunteer coordination in the German state of Rheinland-Pfalz. The website serves as an informational hub providing news, event updates, and resources for volunteers and refugees. It maintains a consistent brand identity aligned with its parent organization and regional government partners. Technically, the site is built on WordPress, leveraging standard web technologies and hosted by Manitu GmbH. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though it lacks some advanced security headers and formal security policies. Privacy compliance is partially met with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, serving its community-focused mission effectively.

P

Paulo Fernandes & André Kleegräfe GbR

u21.de

0

U21 mediendesign is a small, owner-operated media design agency based in Hannover, Germany, founded in 1999. The company specializes in responsive web design, Typo3 CMS implementations, SEO, SEA, and app programming, targeting businesses seeking professional digital presence solutions in the Hannover region. Their market position is that of an established regional player with over two decades of experience, offering comprehensive digital services with a focus on quality and client trust. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies such as jQuery, FontAwesome, Google reCAPTCHA, and Typekit fonts. The hosting is managed via kasserver.com, and the site demonstrates good mobile optimization, accessibility, and SEO practices. Performance is moderate, with room for optimization. The site includes a cookie consent mechanism and uses Matomo analytics with transparent data retention policies. From a security perspective, the site enforces HTTPS and uses reCAPTCHA for form protection. Cookie consent is granular and GDPR compliant. However, explicit security headers are not detected, and no dedicated security or incident response policies are published. No vulnerabilities or exposed sensitive data were found. The WHOIS data aligns with the business claims, showing a consistent domain age and hosting setup. Overall, the website presents a professional, trustworthy, and compliant digital presence with minor areas for security and technical enhancement. The risk level is low, with recommendations to improve security headers, publish security policies, and consider vulnerability disclosure mechanisms to further strengthen trust and compliance.

S

Störungsauskunft.de

xn--strungsauskunft-9sb.de

0

Störungsauskunft.de is a specialized German website providing real-time information on utility outages including electricity, gas, water, district heating, and street lighting. It serves end consumers in Germany by offering outage maps and reporting tools, positioning itself as a niche information portal in the energy sector. The website leverages modern web technologies such as Angular and Google Maps API to deliver an interactive and responsive user experience. Security posture is solid with HTTPS and standard security headers implemented, though it lacks explicit incident response and vulnerability disclosure mechanisms. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the site is professional, trustworthy, and focused on delivering relevant utility outage information to its audience.

R

rapidmail

emailsys1a.net

0

Rapidmail operates as a German-based email marketing and servicedomain provider targeting businesses and marketers primarily in German-speaking regions. The website presents a professional but basic digital presence with a focus on servicedomain offerings. The technical infrastructure is standard, utilizing modern web fonts and CSS, hosted with DNS Made Easy, indicating a reliable DNS setup. However, the site lacks visible advanced frameworks or CMS indications. Security posture is minimal with no detected security headers or incident response information, and privacy compliance is not evident due to missing privacy and cookie policies. Overall, the site is accessible and safe but would benefit from enhanced security and compliance features to strengthen trust and regulatory adherence.

H

HANSAINVEST Hanseatische Investment-GmbH

hansainvest.de

0

HANSAINVEST Hanseatische Investment-GmbH is a leading German capital management company specializing in fund administration and comprehensive fund solutions across all relevant asset classes. The company positions itself as a trusted partner for fund partners and asset managers, offering services including insourcing and Luxembourg-based fund solutions through its subsidiary HANSAINVEST LUX S.A. The website is professionally designed, content-rich, and targets institutional investors and potential employees. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and frameworks, hosted by Schlund Technologies, and optimized for mobile devices. Security posture is strong with HTTPS and GDPR compliance via Usercentrics, though some security headers could be improved. No blocking or WAF challenges were detected, and the domain registration is consistent with the business claims, indicating a legitimate and trustworthy online presence.

E

ETHENEA Independent Investors S.A.

ethenea.link

0

ETHENEA Independent Investors S.A. operates as an independent asset management company specializing in multi-asset investment funds, targeting both private and professional investors primarily in Germany. The website presents a professional and well-structured digital presence, showcasing their key fund offerings such as Ethna Funds and HESPER FUND, along with ESG investment principles. The company positions itself as a strong, independent partner in asset management with a focus on capital preservation and growth across various risk profiles. Technically, the website leverages modern JavaScript libraries, cookie consent management tools, and Google Tag Manager for analytics, indicating a mature digital infrastructure. Security posture is solid with HTTPS enforced and GDPR-compliant cookie consent mechanisms, although explicit security headers and incident response information are not evident. The absence of WHOIS data reduces domain registration transparency but does not detract significantly from the overall legitimacy given the professional content and compliance indicators. Strategic recommendations include enhancing security headers, publishing a vulnerability disclosure policy, and improving contact information visibility to strengthen trust and compliance further.

3

3Q GmbH

3q.video

0

3Q GmbH is a German-based technology company specializing in professional video streaming and hosting solutions. Their platform offers a comprehensive suite of services including live streaming, video hosting, webcasting, video analytics, and AI-powered video optimization. Positioned as a GDPR-compliant and ISO 27001 certified provider, 3Q targets businesses and organizations requiring secure, scalable, and flexible video infrastructure primarily in Europe but also worldwide. The company operates its own infrastructure, ensuring data sovereignty and reliability. Technically, the website demonstrates a mature digital presence with modern web technologies such as HTML5, JavaScript, HubSpot integration, and Cookiebot for consent management. The proprietary 3Q video player and content delivery network underline their technical capabilities. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a high level of digital maturity. From a security perspective, 3Q maintains strong practices including HTTPS enforcement, security headers, GDPR compliance, and ISO 27001 certification. No critical vulnerabilities or exposed sensitive data were detected. However, the absence of a public vulnerability disclosure or incident response contact is noted as an area for improvement. Overall, 3Q GmbH presents a trustworthy, professional, and secure platform with strong compliance and business credibility. The website effectively communicates their offerings and supports user engagement through clear contact channels and marketing tools.

N

Naturpark Barnim

barnim-naturpark.de

0

Naturpark Barnim operates as a regional nature park jointly managed by Brandenburg and Berlin, focusing on nature conservation, environmental education, and tourism. The website serves as an informational portal for visitors and stakeholders, providing rich content about the park's landscapes, flora, fauna, and cultural heritage. Technically, the site is built on TYPO3 CMS, hosted by a professional hosting provider, and uses HTTPS for secure communication. However, it lacks explicit privacy and cookie policies, as well as visible contact information, which are important for compliance and user trust. Security posture is moderate with HTTPS enabled but missing security headers and vulnerability disclosure mechanisms. Overall, the site is professional, trustworthy, and well-branded but could improve in privacy compliance and security best practices.

CampusVital is a health and fitness initiative focused on supporting employees and members of the Campus Berlin-Buch community in Germany. The website offers a range of onsite and digital health promotion services including fitness courses, wellness programs, and a membership card. The organization collaborates with prominent research institutions and the Techniker Krankenkasse insurance provider, positioning itself as a trusted regional health partner. Technically, the website uses a moderately modern stack with Bootstrap and jQuery, integrates Matomo for analytics, and employs Klaro for cookie consent management, reflecting a reasonable level of digital maturity. Security posture is moderate with no visible security headers and unknown SSL configuration, suggesting room for improvement. Privacy compliance is supported by the presence of a privacy policy and cookie consent mechanism. Overall, the website is professional, well-branded, and trustworthy with no signs of malicious content or blocking mechanisms.

L

Lange Nacht der Wissenschaften (LNDW)

langenachtderwissenschaften.de

0

Lange Nacht der Wissenschaften (LNDW) is a well-established science event organizer based in Berlin, Germany, with a 25-year history. The website serves as an information hub for the event, targeting science enthusiasts, visitors, media, and partners. It provides event details, news, partner information, and newsletter subscription services. The organization appears to be a medium-sized entity operating in the education and non-profit sectors, with a strong local presence and community engagement. Technically, the website is built on TYPO3 CMS with modern front-end technologies such as Bootstrap and Swiper.js, ensuring good mobile responsiveness and accessibility. The site uses Matomo analytics configured for privacy by disabling cookies, and it implements a cookie consent banner compliant with GDPR requirements. Performance is moderate, with no major technical issues detected. From a security perspective, the site enforces HTTPS and employs privacy-conscious analytics. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were found. The WHOIS data aligns well with the website content, confirming legitimacy and consistent domain age. Overall, the website is professional, trustworthy, and compliant with privacy regulations, with room for improvement in security policy transparency and security header implementation.

H

Handeln JETZT!

handeln-jetzt.org

0

Handeln JETZT! is a German non-profit environmental project focused on empowering youth to implement projects related to biodiversity, climate, and climate justice. It provides financial support and mentorship through a network of project buddies. The website is well-structured, content-rich, and targets young people interested in environmental activism. Technically, the site uses modern JavaScript libraries and analytics tools with privacy compliance mechanisms such as Usercentrics CMP and CAPTCHA on forms. Security posture is good with HTTPS enforced, but lacks explicit security headers and WHOIS transparency. Overall, the site is trustworthy and professionally maintained, supported by recognized environmental youth organizations and federal funding.

N

NAJU (Naturschutzjugend im NABU)

trashbusters.de

0

Trashbusters.de is a German non-profit youth environmental campaign website operated under the umbrella of NAJU, the youth organization of NABU. The site focuses on mobilizing youth and environmental activists to combat plastic pollution through cleanup actions, political engagement, and educational initiatives. The website is well-branded, consistent, and provides relevant content for its target audience. Technically, it is built on the Jimdo Creator CMS platform, leveraging jQuery UI and third-party widgets such as POWr.io and Google Maps. The site is mobile-optimized and uses HTTPS with cookie consent mechanisms, reflecting good privacy compliance. However, explicit contact information and formal security or incident response policies are not present, which limits direct communication and security transparency. Overall, the site is trustworthy and professionally maintained, suitable for its non-profit mission.

T

travel-to-nature

travel-to-nature.de

0

travel-to-nature is a specialized German tour operator offering unique nature and wildlife travel experiences worldwide, focusing on sustainable and conservation-linked tourism since 1997. The website reflects a mature digital presence with a professional design, clear navigation, and comprehensive content targeting nature enthusiasts, bird watchers, photographers, families, and groups. Technically, the site is built on TYPO3 CMS, uses modern JavaScript modules, and integrates advanced analytics and consent management tools, indicating a good level of digital maturity. Security posture is solid with HTTPS enforced and cookie consent implemented, though explicit security headers and incident response policies are not published. Overall, the site is trustworthy, compliant with GDPR, and provides a positive user experience.

Y

YAEZ GmbH

yaez.com

0

YAEZ GmbH is a German communication agency specializing in talent communication, education communication, and future-oriented topics. The company targets businesses, associations, and institutions seeking innovative communication solutions to shape the future. The website is professionally designed, multilingual (German and English), and features a strong social media presence across Instagram, Twitter, LinkedIn, and TikTok. The business model focuses on providing specialized communication services with a niche market position in future topics and personal marketing. Technically, the website is built on WordPress with modern plugins such as Yoast SEO and WPML, ensuring excellent SEO, mobile optimization, and user experience. Security posture is good with HTTPS and cookie consent mechanisms, but lacks explicit security policies and incident response contacts. The absence of WHOIS registration data is a concern and should be investigated further to confirm domain legitimacy. Overall, the site presents a trustworthy and professional image with room for improvement in transparency and security documentation.

N

N&B Stiftung

nb-stiftung.de

0

N&B Stiftung is a small German non-profit foundation focused on supporting young people through education, community engagement, and funding innovative ideas. The website clearly communicates its mission to empower youth by fostering talents and providing opportunities for personal development. The foundation appears to be recently established in 2020, consistent with the domain registration date. Technically, the website is built on WordPress using Elementor and Yoast SEO, with Borlabs Cookie managing GDPR-compliant cookie consent. The site is well-structured, mobile-optimized, and uses HTTPS with good SSL configuration. Security practices include cookie consent and no visible exposed sensitive data, though additional security headers could enhance protection. Contact information is clearly provided, including company emails and phone numbers, supporting business credibility. No terms of service or explicit security policies are published, which could be improved. Overall, the website is professional, trustworthy, and compliant with privacy regulations, serving its target audience effectively.

R

Roche

roche.de

0

Roche Deutschland is a leading healthcare company focused on innovative medicines, diagnostics, and digital health technologies. The website reflects a mature digital presence built on modern frameworks such as React and Gatsby, with integration of advanced marketing and analytics tools including OneTrust for cookie consent, Google Tag Manager, and Adobe Launch. The site is well-structured, mobile-optimized, and professionally designed, targeting patients, healthcare professionals, and partners. Security posture is strong with HTTPS enforcement and security headers, though explicit security policies and incident response contacts are not published. Privacy compliance is partially demonstrated through cookie consent but lacks a clearly linked privacy policy or terms of service. WHOIS data confirms domain legitimacy and consistency with the corporate identity. Overall, the website is trustworthy and professional, with room for improvement in transparency and compliance documentation.

K

Klaus Tschira Stiftung gGmbH

klaus-tschira-stiftung.de

0

The Klaus Tschira Stiftung gGmbH is a well-established German non-profit foundation founded in 1995, focusing on promoting natural sciences, mathematics, and computer science through education, research, and science communication. The foundation targets a broad audience including children, students, educators, and researchers, offering both operational projects and funding opportunities. Their market position is strong within the German MINT education and research sector, supported by a professional and content-rich website. Technically, the site is built on WordPress with modern front-end technologies and uses Matomo analytics with GDPR-compliant consent mechanisms. Hosting is provided by INWX, a reputable German registrar and hosting provider. Security posture is good with HTTPS enforced and privacy-respecting analytics, though security headers are not explicitly detected and no incident response or vulnerability disclosure policies are published. Overall, the website is professional, trustworthy, and compliant with privacy regulations, making it a reliable digital presence for the foundation.

D

Dietmar Hopp Stiftung GmbH

dietmar-hopp-stiftung.de

0

The Dietmar Hopp Stiftung GmbH is a well-established non-profit foundation based in Germany, focused on funding projects in medicine, education, social welfare, youth sports, and climate protection within the Rhein-Neckar metropolitan region. Founded by Dietmar Hopp, co-founder of SAP, the foundation leverages significant resources to support community and philanthropic initiatives. The website presents a professional and consistent brand image, targeting non-profit organizations and beneficiaries in the region. The business model centers on grant-making and social impact, positioning the foundation as a key regional philanthropic actor. Technically, the website is built on the TYPO3 CMS platform, utilizing modern frontend technologies such as Bootstrap, jQuery, and FontAwesome. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Performance is moderate, with no major technical issues detected. SEO and accessibility features are basic but functional. From a security perspective, the site enforces HTTPS and implements a cookie consent mechanism with opt-in options for statistics and marketing cookies, demonstrating good privacy compliance. However, no explicit security policies or incident response contacts are publicly disclosed. No vulnerabilities or exposed sensitive data were found in the HTML content. The WHOIS data is consistent and supports the legitimacy of the domain and organization. Overall, the website is trustworthy, professionally maintained, and compliant with GDPR requirements. Strategic recommendations include enhancing security headers, publishing security and incident response policies, and improving SEO and accessibility features to further strengthen the site's security posture and user trust.

D

Die Siedlung Saarbrücken

siedlung-saarbruecken.de

0

Die Siedlung Saarbrücken operates as a municipal housing provider for the city of Saarbrücken, Germany, offering rental apartments through a transparent and fair process. The website serves as a portal for current housing offers and provides a registration option for notifications about new listings. The target audience is local residents seeking affordable housing solutions. The business model is focused on public sector housing management with a medium-sized operational scale. Technically, the website uses basic HTML and CSS with custom fonts but lacks advanced frameworks or CMS indications. The site is moderately optimized for performance and mobile use but lacks accessibility and SEO enhancements. No analytics or tracking technologies were detected, indicating a privacy-conscious or minimalistic approach. From a security perspective, the site lacks visible security headers and published policies such as privacy or cookie policies, which are critical for GDPR compliance. No contact information or incident response channels are provided, limiting transparency and user trust. The domain registration data is consistent with the business's geographic and operational profile, supporting legitimacy. Overall, the website is functional and provides relevant content but requires improvements in privacy compliance, security posture, and user contact transparency to enhance trust and regulatory adherence.

F

Fachagentur Nachwachsende Rohstoffe e. V. (FNR)

waldklimafonds.de

0

The Waldklimafonds website serves as an authoritative information portal for the German forest climate fund initiative, operated by the Fachagentur Nachwachsende Rohstoffe e. V. (FNR). It provides comprehensive resources including project databases, research updates, events, and educational materials aimed at promoting sustainable forest management and climate adaptation. The site targets researchers, policymakers, forest managers, and environmentally conscious citizens. The business model is government-funded and non-profit, positioning the site as a trusted source within the forestry and environmental sectors in Germany. Technically, the website is built on TYPO3 CMS, a robust and widely used content management system for institutional websites. It employs modern JavaScript libraries such as jQuery and Slick Carousel for interactive elements and uses Matomo analytics with cookies disabled to respect user privacy. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Hosting appears to be managed by German providers, consistent with the site's governmental affiliation. From a security perspective, the website enforces HTTPS and avoids exposing sensitive data. However, it lacks explicit security headers and does not publish a security policy or incident response contacts. Privacy compliance is good with a comprehensive privacy policy present, but no cookie consent mechanism is implemented. Overall, the security posture is solid but could be improved by adding security headers and formal policies. The overall risk assessment is low, with no signs of malicious activity or vulnerabilities. Strategic recommendations include implementing cookie consent, adding security headers, publishing security and incident response policies, and enhancing transparency to further build trust. The website demonstrates a high level of professionalism, trustworthiness, and alignment with its governmental and non-profit mission.

B

BDEW Bundesverband der Energie- und Wasserwirtschaft e.V.

bdew.de

0

BDEW Bundesverband der Energie- und Wasserwirtschaft e.V. is a leading German industry association representing over 2,000 companies in the energy and water sectors, including electricity, natural gas, heating, and water/wastewater. The organization serves as a key partner for policymakers, industry stakeholders, and the public by providing industry positions, data, publications, and events. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional branding consistent with its market position. Technically, the site employs modern web technologies including Bootstrap, jQuery, Google Tag Manager, and Usercentrics for consent management, indicating a commitment to privacy compliance and user experience. Hosting is managed via DomainControl DNS services, and the site shows good mobile optimization and SEO practices. Performance is moderate, with lazy loading and carousel features enhancing usability. From a security perspective, the site uses HTTPS and integrates consent management but lacks visible security headers and explicit security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. However, the absence of terms of service and vulnerability disclosure pages suggests areas for improvement. Overall, the website is trustworthy, professionally maintained, and aligned with the organization's business goals. Strategic recommendations include enhancing security headers, publishing explicit security and incident response policies, and adding vulnerability disclosure mechanisms to strengthen security posture and trust.

A

Aktionsbündis Faire Verlage

aktionsbuendnis-faire-verlage.com

0

Aktionsbündis Faire Verlage (FAIRLAG) is a small, non-profit advocacy organization focused on promoting fair publishing practices for authors in German-speaking countries. The website provides educational content, contract evaluation guidance, and warnings against pay-to-publish models. Supported by reputable authors' associations, it serves as a trusted resource for authors seeking fair treatment in publishing. Technically, the site is built on WordPress with common plugins and demonstrates good content quality and user experience, though some technical and security enhancements are recommended. The security posture is adequate with HTTPS enabled but lacks advanced security headers and incident response information. WHOIS data is missing, which raises some legitimacy concerns, but the professional content and partner links mitigate this risk. Overall, the site is a valuable resource with room for technical and compliance improvements.

A

Auto verkaufen leicht gemacht!

autohierverkaufen.de

0

Autohierverkaufen.de is a German-focused online platform facilitating the sale of cars with services including quick vehicle valuation, immediate payment via bank transfer, and fast deregistration. The website targets individual car sellers in Germany and positions itself as a stress-free, efficient car selling solution. Technically, the site employs modern JavaScript technologies, integrates Google Analytics and Google Ads for marketing and tracking, and uses Cookiebot for cookie consent management. The hosting is provided by 1&1 IONOS, inferred from the nameservers. Security-wise, the site uses HTTPS but lacks visible security headers and formal security policies. Privacy compliance is partial, with cookie consent present but no privacy policy or terms of service pages found. Overall, the site is accessible, professionally designed, and mobile-optimized but would benefit from enhanced security and compliance documentation.

Kommunity GmbH & Co. KG is a small, established IT service provider based in Hannover, Germany, with over 25 years of experience. The company specializes in IT consulting, support, security, and offers specialized software solutions such as tomedo® Praxissoftware for medical practices. Their website reflects a professional and consistent brand image, targeting local businesses and medical practices seeking reliable IT infrastructure and Apple software solutions. The business model focuses on providing comprehensive IT services and software tailored to the healthcare sector and general IT needs.

V

VisionConnect GmbH

visionconnect.de

0

VisionConnect GmbH is a well-established digital media agency based in Hannover, Germany, founded in 1995. The company specializes in providing comprehensive digital solutions including TYPO3 CMS, Wordpress, e-commerce shops, SEO, and web marketing services. Their market position is strong with over 25 years of experience and a portfolio of reputable clients across various sectors. The website reflects a professional and consistent brand image, targeting businesses and institutions seeking digital transformation and web development services. Technically, the site is built on TYPO3 CMS with integrations of Wordpress and uses Matomo for privacy-conscious analytics. The site is mobile-optimized, accessible, and SEO-friendly, demonstrating a mature digital infrastructure. Security posture is good with HTTPS enforced and privacy-respecting analytics, though some security headers could be improved and a formal security policy is absent. Overall, the website is trustworthy, professional, and compliant with GDPR, with clear contact information and transparent cookie consent mechanisms.

D

DiG Plus GmbH

dig-berlin.de

0

DiG Plus GmbH is a Berlin-based design and communication agency specializing in political and social themes with over 20 years of experience. The company offers services including campaign design, publishing, and product development, targeting political organizations, social campaigns, and non-profits. The website reflects a professional and consistent brand presence with detailed project showcases and clear contact information. Technically, the site uses standard web technologies such as HTML5, CSS3, jQuery, and Bootstrap icons, with moderate performance and good mobile optimization. Security posture is moderate with basic best practices like email obfuscation and meta referrer policy, but lacks advanced security headers and HTTPS confirmation. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism. Overall, the site is safe, professional, and trustworthy with room for security and privacy improvements.

O

one4vision GmbH

one4vision.saarland

0

one4vision GmbH is a specialized IT consulting firm focused on barrier-free web design using TYPO3 CMS and secure network infrastructure solutions. The company serves primarily municipal and public sector clients in Saarland and Luxembourg, offering a comprehensive range of IT services including hosting, connectivity, and network security. Their website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the site is built on TYPO3 CMS with integration of modern libraries such as jQuery and Matomo for analytics, demonstrating a moderate level of digital maturity. Privacy compliance is well addressed through a comprehensive privacy policy and a cookie consent mechanism that respects GDPR requirements. Security posture is solid with HTTPS enforced and no visible vulnerabilities, although the absence of explicit security policies and incident response information suggests room for improvement. Overall, the website presents a trustworthy and credible business presence with good technical implementation and privacy practices.

N

Netzwerkagentur Saarland by one4vision GmbH

netzwerkagentur-saarland.de

0

Netzwerkagentur Saarland, operating as the technical division of one4vision GmbH, is a well-established IT service provider in the Saarland region of Germany. With over two decades of experience, the company specializes in hosting, network management, security, cloud services, and IT support primarily targeting public sector clients and small to medium-sized enterprises. The website reflects a professional and comprehensive presentation of their services, emphasizing reliability and regional expertise. Technically, the website is built on TYPO3 CMS with modern frameworks such as Bootstrap 5 and jQuery, ensuring good mobile responsiveness and accessibility. The hosting environment is secure, leveraging a certified data center in Germany, and the site employs Matomo analytics configured with privacy-respecting settings. The technical implementation is solid, with no visible vulnerabilities or exposed sensitive data. From a security perspective, the site enforces HTTPS and likely includes standard security headers, though explicit policies such as incident response or vulnerability disclosure are not published. Privacy policies are comprehensive and GDPR compliant, but the absence of a cookie consent mechanism is a minor compliance gap. Contact information is available, including a phone number and remote support via TeamViewer, enhancing user trust. Overall, the website and domain exhibit high legitimacy and trustworthiness, with consistent WHOIS data and alignment between business claims and technical infrastructure. The site scores well across content quality, technical implementation, security posture, privacy compliance, and business credibility, making it a reliable and professional digital presence for the company.

S

Seedshirt

seedshirt.de

0

Seedshirt is a German-based e-commerce platform specializing in print-on-demand merchandising solutions. It enables users such as fundraisers, artists, influencers, and groups to create and sell custom apparel and products via crowdfunding campaigns or white-label shops without upfront costs or risks. The platform integrates production, sales, and shipping, positioning itself as a reliable partner with a significant user base. Technically, the website is built on Webflow and leverages modern analytics and marketing tools including Google Analytics, Google Tag Manager, and Facebook Pixel, with Cloudflare providing DNS and likely CDN services. The site demonstrates good GDPR compliance with a comprehensive cookie consent mechanism and privacy policy. Security posture is solid with HTTPS enforced and anonymized analytics, though explicit security policies and incident response contacts are absent. Overall, the site is professional, trustworthy, and well-optimized for user experience and marketing.