Security Directory

B

Büchergilde Gutenberg

buechergilde.de

0

Büchergilde Gutenberg is a well-established German book community and cooperative founded in 1924, offering curated book subscription boxes, an online bookshop, and literary events. The website reflects a professional and consistent brand presence targeting German-speaking book lovers and literature enthusiasts. Technically, the site uses modern frameworks such as Next.js and React, with good mobile optimization and SEO practices. Security posture is adequate with HTTPS enabled but lacks visible security headers and formal privacy or cookie policies. No incident response or vulnerability disclosure information is provided, which could be improved to enhance trust and compliance. Overall, the domain and website appear legitimate and consistent with the business history and sector.

Arbeit und Kultur Saarland gGmbH is a well-established non-profit organization dedicated to supporting cultural actors and projects in the Saarland region of Germany. The organization provides advisory services, project initiation, funding, and networking opportunities to foster a vibrant cultural scene. Their website reflects a professional and consistent brand presence with a focus on cultural events and community engagement. Technically, the site is built on the ProcessWire CMS with modern frameworks like UIkit and includes cookie consent mechanisms to comply with GDPR. Security posture is moderate with HTTPS usage and cookie consent but lacks visible advanced security headers or incident response policies. The domain registration data is minimal but consistent with a non-profit hosted on generic servers. Overall, the website is trustworthy, safe, and well-suited for its target audience.

E

Eugen Pfeifer GmbH

klimapfeifer.de

0

Eugen Pfeifer GmbH is a medium-sized German company specializing in climate technology, including planning, installation, and operation of climate, air, and refrigeration systems. The company targets both industrial and private customers, emphasizing tailored solutions for air conditioning and industrial refrigeration. Their market position is that of an experienced regional specialist with a focus on quality and customer service. Technically, the website is built on Joomla CMS with Bootstrap and jQuery, offering a modern and responsive user experience, though some accessibility and SEO improvements are possible. Security posture is solid with HTTPS and cookie consent mechanisms, but lacks advanced security headers and incident response information. Overall, the site is professional and trustworthy, though contact information is not explicitly presented on the homepage, which could be improved for better business credibility.

The Gesellschaft für Medienförderung Saarland – Saarland Medien – mbH is a regional media promotion company based in Saarland, Germany, focusing on supporting film, games, and media location development. The website clearly communicates its business focus and upcoming liquidation status effective January 1, 2025. The target audience includes media professionals, filmmakers, game developers, and regional stakeholders. The business operates primarily as a public sector entity providing funding, networking, and promotional services within the media industry. Technically, the website is built on WordPress using Visual Composer, Bootstrap 4, and several common plugins such as Events Manager and Contact Form 7. The site is served over HTTPS with good SSL configuration, though it lacks advanced security headers and cookie consent mechanisms. Performance and mobile optimization are moderate to good, with basic accessibility and SEO features. From a security perspective, the site employs HTTPS and some security plugins but lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected. Privacy compliance is basic, with a privacy policy present but no cookie consent banner. Overall, the website is professional, trustworthy, and suitable for its business purpose, though improvements in security headers, privacy compliance, and incident response transparency are recommended to enhance its security posture and regulatory adherence.

S

Südwestrundfunk

swr.de

0

Südwestrundfunk (SWR) is a large regional public broadcasting organization serving the German states of Baden-Württemberg and Rheinland-Pfalz. The website www.swr.de serves as a comprehensive portal for news, radio, television, and online media content including live streams and event calendars. The site targets a general audience interested in regional and national news, culture, sports, and lifestyle content. Technically, the website employs modern web technologies such as ES6 JavaScript modules, lazy loading, and integrates analytics tools like Chartbeat and Piano Analytics, indicating a mature digital infrastructure. Security posture is strong with HTTPS enforced and no visible sensitive data exposure, though explicit security headers and vulnerability disclosures are not evident. Privacy compliance is limited in the visible content, lacking explicit privacy and cookie policies or consent mechanisms. Overall, the site is professional, trustworthy, and well-branded, consistent with a public media entity.

P

PFPRO IT Services

pfproit.de

0

PFPRO IT Services is a small German IT company based in Saarbrücken, specializing in professional web development, IT consulting, and support services. Founded in 2008, the company offers a range of services including consulting, custom web application development, IT support, remote maintenance, and emergency IT services. They also provide a cloud-based industry solution called PFPRO Cloud R6 targeting sectors like gastronomy and entertainment. The website is well-structured, professionally designed, and targets both businesses and private users in the local region. The company maintains an active presence on LinkedIn, Xing, and GitHub, enhancing its professional credibility. Technically, the website employs a modern technology stack including Bootstrap, FontAwesome, jQuery, Owl Carousel, and Matomo for analytics, combined with Usercentrics for GDPR-compliant cookie consent management. The site is mobile-optimized and uses HTTPS with good SSL configuration. However, explicit security headers are not detected, and no dedicated security policy or incident response information is provided. The website demonstrates good privacy compliance and moderate user tracking through Matomo. From a security perspective, the site shows a solid baseline with HTTPS and consent management but lacks advanced security headers and documented incident response processes. No vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data aligns well with the website's business claims, showing consistent registration information and domain age appropriate for the company's founding date. Overall, PFPRO IT Services presents a trustworthy and professional online presence with good technical implementation and privacy compliance. Strategic improvements could include enhancing security headers, publishing a security policy, and providing incident response contacts to further strengthen trust and security posture.

Z

Zweckverband eGo-Saar

vergabe.saarland

0

The website vergabe.saarland serves as the official electronic procurement platform for the Saarland region in Germany, operated by Zweckverband eGo-Saar. It provides public sector entities such as cities, municipalities, and state administration with a centralized platform to publish tenders and manage electronic submissions. The platform targets businesses and contractors interested in public procurement within Saarland, offering services like digital download of tender documents and electronic bid submission. The site is well-branded with official logos and maintains a professional appearance consistent with government standards. Technically, the website is built on WordPress 6.8.3 with common web technologies such as jQuery and Slick Carousel for UI components. Hosting is provided by plusserver.com, and the site uses HTTPS with a valid SSL certificate. Cookie consent is implemented with an opt-in mechanism for Google Analytics and Facebook Ads, reflecting a good level of privacy compliance. However, some security headers are missing or misconfigured, such as an empty Content-Security-Policy and lack of DNSSEC, which slightly reduce the security posture. From a security perspective, the site enforces HTTPS and uses clientTransferProhibited status on the domain to prevent unauthorized transfers. The WHOIS data aligns well with the website's governmental purpose, showing consistent registration details. No signs of malware, phishing, or suspicious activity were detected. The cookie consent mechanism and privacy policy indicate GDPR compliance, but no explicit security policy or incident response information is published. Overall, vergabe.saarland is a legitimate, regionally focused government procurement platform with good content quality and business credibility. Security practices are adequate but could be improved by enabling DNSSEC, configuring security headers properly, and publishing security policies. The site is safe for general audiences and does not contain any adult or questionable content.

The website www.saarland.de is currently inaccessible due to a 403 Forbidden error page indicating that a security service or WAF is blocking access. The page content is minimal and only displays a block message without any business or contact information. The domain appears to be a legitimate German government domain based on its .de TLD and nameservers pointing to teresto.net, likely a hosting or DNS provider. However, the lack of accessible content prevents a full assessment of the website's business model, services, or compliance posture. Technically, the site uses basic CSS and font resources but no advanced frameworks or analytics are detected. Security headers and SSL configuration cannot be evaluated due to the block. Overall, the site’s security posture is unclear but the presence of a WAF indicates some level of protection. Privacy and compliance documentation are absent from the accessible content.

F

FITKO

115.de

0

The website www.115.de serves as the official German government service portal providing citizens with a centralized phone number (115) to access administrative information and services from federal, state, and local authorities. It targets the general public in Germany, offering comprehensive support for a wide range of administrative topics. The site is well-positioned as a trusted, nationwide service with over 71 million reachable citizens and multiple service centers. The content is professionally curated, accessible, and includes features for easy language and sign language support. Technically, the site is built on the TYPO3 CMS platform, leveraging modern web technologies such as Matomo for privacy-compliant analytics and Cookiebot for consent management. The site demonstrates good mobile optimization, accessibility, and SEO practices. The use of consent-based tracking and blocking mechanisms reflects a mature approach to privacy compliance. From a security perspective, the site enforces HTTPS and integrates cookie consent mechanisms to manage user privacy. While explicit security headers are not fully visible in the provided data, the overall posture is good with no evident vulnerabilities or exposed sensitive data. However, the site lacks publicly available security policies or incident response contacts, which could be improved. Overall, www.115.de is a high-quality, trustworthy government service website with strong privacy and usability features. It is recommended to enhance security transparency by publishing security policies and implementing comprehensive security headers to further strengthen its security posture.

A

Antares Project GmbH

antares.net

0

Antares Project GmbH is a German company specializing in advancing digital education through its Edupool platform, which facilitates easy and fast lesson planning and a marketplace for educational media and apps. The company has a strong presence across all German federal states and is used by a majority of schools in Germany. Supported by partnerships with major educational publishers and Deutsche Telekom AG, as well as funding from the EU and regional government, Antares positions itself as a key player in the digital education sector. Technically, the website is built on modern web technologies using Webflow CMS and includes minimal but effective analytics via Plausible, indicating a moderate level of digital maturity. Security posture is adequate with HTTPS implied, but lacks advanced security headers and explicit policies. Privacy compliance is reasonable with a privacy policy present but no cookie consent mechanism. Overall, the website is professional, trustworthy, and well-aligned with its business goals.

M

Medienberatung NRW

bildungsmediathek-nrw.de

0

Bildungsmediathek NRW is a regional educational media platform serving schools and educators in North Rhine-Westphalia, Germany. It offers a wide range of educational media, apps, and materials to support teaching and learning. The platform is supported by governmental and regional bodies, ensuring a trusted and authoritative source of educational content. The website is professionally designed with clear navigation and a strong focus on accessibility and user experience. Technically, it employs modern web technologies including JavaScript frameworks and privacy-focused analytics, hosted likely on specialized educational cloud infrastructure. Security posture is good with HTTPS enforced and no visible vulnerabilities, though some security headers could be improved. Privacy compliance is strong with clear privacy and terms policies, but lacks a cookie consent mechanism. Overall, the site is trustworthy, well-maintained, and serves its educational mission effectively.

G

GEOMAR Helmholtz-Zentrum für Ozeanforschung Kiel

geomar.de

0

GEOMAR Helmholtz-Zentrum für Ozeanforschung Kiel is a prominent German research institution specializing in oceanographic and climate research. The website serves as a comprehensive platform for scientific information, research programs, expeditions, and public outreach. It targets researchers, students, policymakers, and the general public interested in marine and climate sciences. Affiliated with the Helmholtz Association, GEOMAR holds a strong market position in the education and government research sectors. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries such as jQuery and Slick Slider, providing a responsive and accessible user experience. The site demonstrates good SEO practices and mobile optimization, though performance is moderate. Security posture is solid with HTTPS enforced and some security headers present, but could be improved by adding more comprehensive headers and visible incident response policies. Overall, the site is trustworthy and professional, with clear branding and consistent content quality. However, it lacks a visible cookie consent mechanism and explicit security contact information, which are areas for improvement. The domain registration data aligns well with the website content, reinforcing legitimacy and trustworthiness.

F

Fressnapf

fressnapf.com

0

Fressnapf is a large retail company specializing in pet supplies, serving primarily the German market. The website presents a professional design with good mobile optimization and moderate performance. The technical infrastructure includes Adobe Tag Manager for marketing and analytics purposes, and the domain is hosted with EuroDNS, indicating a stable hosting environment. However, the website lacks visible privacy and cookie policies, security headers, and explicit contact information, which are critical for compliance and trust. The WHOIS data is consistent with a legitimate business, showing no privacy protection or suspicious registration patterns. Overall, the site demonstrates a moderate digital maturity but requires improvements in security and privacy compliance to enhance trust and regulatory adherence.

U

Universitätsklinikum Leipzig

wirsindukl.de

0

The website 'wirsindukl.de' serves as the official recruitment portal for Universitätsklinikum Leipzig, the largest hospital in Leipzig, Germany. It provides comprehensive information about job opportunities, benefits, career development, and international recruitment. The site targets healthcare professionals and applicants seeking employment or training in medical and administrative fields. The business is well-positioned in the healthcare sector with recognized certifications and a strong employer brand. Technically, the site is built on GravCMS, uses modern JavaScript libraries like jQuery and Swiper.js, and implements GDPR-compliant cookie consent mechanisms. The site is mobile-optimized, accessible, and SEO-friendly. Security posture is good with HTTPS enforced and secure forms, though it lacks explicit security policy and incident response information. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable resource for prospective employees.

V

Vautron Rechenzentrum AG (Registrar)

die-zukunft.eu

0

Die-zukunft.eu is a German-language political media platform focused on fostering debates about the future of Europe and the European Union. It operates as a non-profit media outlet providing blog articles, podcasts, e-papers, and event information primarily targeting German-speaking European citizens interested in left-wing political discourse. The platform is positioned as a niche player in the political media landscape with a consistent brand and good content quality. Technically, the website is built on WordPress with modern plugins for SEO, page building, and privacy-respecting analytics (Matomo). The site is hosted by a reputable provider and uses HTTPS with a cookie consent mechanism compliant with GDPR. Security posture is good but could be improved by adding more HTTP security headers and a vulnerability disclosure mechanism. Overall, the website is safe, professional, and trustworthy with no adult or explicit content detected.

N

nd - Journalismus von links

dasnd.de

0

nd-aktuell.de is a German left-wing political news media website operated under a cooperative business model. It offers news articles, podcasts, newsletters, and subscription services targeting politically engaged readers interested in progressive perspectives on politics, society, culture, and sports. The website is well-branded, professionally designed, and provides rich content with clear navigation and multiple engagement channels including social media and donation options. Technically, the site runs on a custom CMS (KONTEXT-CMS) with legacy jQuery and modern consent management tools, hosted by SINMA. It uses Matomo analytics for privacy-friendly tracking and implements GDPR-compliant cookie consent. Security posture is good with HTTPS enforced, but lacks explicit security headers and published security policies. Contact information is primarily via web forms and cooperative site links, with no direct emails or phone numbers found. Advertising is present but limited to programmatic ads and Facebook Pixel tracking. Overall, the site is trustworthy, safe, and well-positioned in its niche media market.

D

Deniz, Gebauer, Junk, Langhammer GbR

warenform.de

0

WARENFORM GbR is a small, established German agency founded in 2001 specializing in communication solutions, design, and custom software development primarily for NGOs, political entities, unions, and media organizations. Their service offerings include consulting, corporate design, website development, print materials, event communication, and bespoke software applications. The company maintains a professional online presence with a well-structured website built on the KONTEXT-CMS platform, leveraging modern JavaScript libraries and Matomo analytics with privacy-conscious configurations. Security posture is solid with HTTPS and Content-Security-Policy headers, though improvements are recommended in cookie consent and formal security policies. Contact information is transparent and complete, including a published PGP key for secure communication. Overall, the website reflects a trustworthy and credible business with a moderate technical maturity and good compliance with privacy regulations.

T

troet.cafe

troet.cafe

0

troet.cafe operates as the largest German-speaking Mastodon instance, providing a federated social networking platform for users to connect, share, and explore content within the Fediverse. The platform emphasizes community engagement and social interaction without advertising or algorithmic interference. Technically, the site is built on Mastodon version 4.3.8, leveraging modern web technologies including React and WebSockets for real-time communication. The site is mobile-optimized and presents a consistent, professional design with good navigation and content relevance. Security-wise, the site enforces HTTPS and uses script integrity attributes, but lacks some advanced security headers and explicit incident response policies. Privacy compliance is partially met with a privacy policy present, but no cookie consent mechanism is detected. Overall, the domain is privacy protected in WHOIS, which is typical for such platforms, and the site shows no signs of blocking or WAF interference, indicating good accessibility and trustworthiness.

S

sinma GmbH

sinma.de

0

sinma GmbH is a small German telecommunications company specializing in providing full-service internet solutions tailored for business customers. Their offerings include fiber optic leased lines, DSL with fixed IPs, web hosting, server housing, virtual servers, backup solutions, VPN networks, and related services such as domain management and firewalls. The company emphasizes high availability and security in their network solutions and has been operating since 1991, indicating a long-standing presence in the market. The website reflects a professional and consistent brand image with clear navigation and relevant business content targeting German business clients. From a technical perspective, the website employs basic web technologies including JavaScript and CSS without modern frameworks or CMS detected. The site is moderately optimized for performance and accessibility but lacks advanced mobile optimization. There is no evidence of analytics or tracking scripts, which suggests minimal user tracking. However, the absence of security headers and explicit SSL/TLS information indicates room for improvement in technical security measures. Security posture evaluation reveals gaps such as missing privacy and cookie policies, lack of security headers, and limited contact information. No incident response or vulnerability disclosure information is provided, which could impact trust and compliance. The WHOIS data shows partial consistency with the website's claims but lacks detailed registrant information, limiting full legitimacy verification. Overall, the site is accessible without WAF or blocking mechanisms, and content safety is rated safe with no adult or questionable content. The overall risk assessment suggests the company maintains a moderate security and compliance posture suitable for its business scale but should prioritize implementing privacy policies, enhancing security headers, and expanding contact information to improve trust and regulatory compliance. Strategic recommendations include publishing comprehensive privacy and cookie policies with consent mechanisms, enforcing HTTPS with proper security headers, and establishing clear incident response and vulnerability disclosure channels.

D

Deniz, Gebauer, Junk, Langhammer GbR

warenform.net

0

WARENFORM GbR is a small German agency founded in 2001 specializing in communication solutions, design, and custom software development. Their client base includes political representatives, NGOs, unions, media, and companies, positioning them as a niche provider with a strong portfolio and trusted reputation. The website reflects a professional and consistent brand image with comprehensive service descriptions and client references. Technically, the site uses a custom CMS (KONTEXT-CMS) with a modern but somewhat dated JavaScript stack including jQuery and various plugins. Hosting appears to be managed by a partner IT company, o.open.de. Security posture is strong with HTTPS, Content-Security-Policy headers, and privacy-conscious Matomo analytics implementation. However, the site lacks an explicit cookie consent mechanism and formal incident response contact details. Overall, the site is well-maintained, trustworthy, and compliant with GDPR requirements.

B

BioCologne e.V.

biocologne.de

0

BioCologne e.V. is a specialized network organization based in Cologne, Germany, focused on fostering the biotechnology and life sciences sector through technology transfer, startup support, and industry networking. The website positions BioCologne as a central hub connecting companies, research institutions, investors, and other stakeholders to promote innovation and economic growth in the region. The business model centers on facilitating collaboration and providing resources such as job boards and events to support career development and entrepreneurship in biotech. Technically, the website is built on the Webflow platform, leveraging modern web technologies including jQuery, Google Fonts, and Google reCAPTCHA for form security. The site demonstrates good mobile optimization and SEO practices, though performance is moderate. The technical infrastructure is suitable for a small to medium-sized organization with a focus on content delivery and user engagement. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but lacks visible security headers and explicit security or incident response policies. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism was detected, which may pose GDPR compliance risks. Contact information is clearly provided, enhancing trustworthiness. Overall, the website is professional, trustworthy, and well-aligned with the organization's mission. Security and privacy practices could be improved to enhance compliance and resilience. The domain appears legitimate and consistent with the business claims, though WHOIS data is limited. Strategic recommendations include implementing cookie consent, adding security headers, and publishing incident response contacts to strengthen security posture and compliance.

B

BioCampus Cologne & RTZ Köln

rtz.de

0

BioCampus Cologne & RTZ Köln operate as high-tech innovation hubs and incubators located in Cologne, Germany, providing infrastructure and community support for startups, scaleups, and corporates in DeepTech, HighTech, and STEM fields. The website reflects a medium-sized organization focused on fostering a vibrant ecosystem with over 70 knowledge-based companies. Their services include office spaces, laboratories, workshops, and event areas, supporting growth and networking. Technically, the website is built on Webflow CMS with modern web technologies such as jQuery and Google reCAPTCHA, hosted on a CDN with HTTPS enforced. Security posture is solid with encrypted connections and bot protection but lacks some advanced security headers and explicit incident response information. Privacy compliance is partially met with a comprehensive privacy policy but missing cookie consent mechanisms. Overall, the site is professional, well-branded, and trustworthy with active community engagement through events and job postings.

B

BioCampus Cologne & RTZ Köln

biocampus-rtz.de

0

BioCampus Cologne & RTZ Köln operates as a regional technology park and incubator hub in Cologne, Germany, providing infrastructure and community support for over 70 innovative companies primarily in DeepTech, HighTech, and STEM fields. The website reflects a medium-sized, well-branded organization focused on fostering startup growth and corporate innovation through office, lab, and event spaces. Technically, the site is built on Webflow with modern web technologies including jQuery and Google services, offering a good user experience and mobile optimization. Security posture is solid with HTTPS and reCAPTCHA integration, though improvements in security headers and cookie consent mechanisms are recommended. Overall, the site is professional, trustworthy, and serves its target audience effectively.

B

Berlin Buch

berlin-buch.com

0

Berlin Buch is a well-established biomedical and healthcare cluster located in Berlin, Germany, with a history dating back over 100 years in medical research and clinical care. The website serves as a portal to the cluster's institutes, companies, and services, targeting healthcare professionals, researchers, and the general public interested in health and biomedical innovation. The business model focuses on fostering collaboration and innovation within the life sciences sector, supported by reputable partners and EU funding. Technically, the website uses a modern but traditional tech stack including jQuery, Bootstrap, and Matomo analytics configured for privacy. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is adequate with HTTPS and domain transfer protection, but lacks DNSSEC and security headers, and does not provide explicit security or incident response policies. Privacy compliance is partially met with a privacy policy and GDPR-respecting analytics, but lacks a cookie consent mechanism. Overall, the website is professional, trustworthy, and serves its audience well, though improvements in security headers and privacy transparency are recommended.

Z

Zukunftsorte Berlin

zukunftsorte.berlin

0

Zukunftsorte Berlin is a well-established platform founded in 2014 that connects economic and scientific stakeholders across 11 innovation locations in Berlin. The website serves as an informational and networking hub, showcasing companies, research institutes, and events that drive Berlin's future-oriented economy. Technically, the site is built on WordPress with a modern tech stack including accessibility and multilingual support, and uses Matomo for analytics, reflecting a mature digital infrastructure. Security-wise, the site enforces HTTPS and employs domain transfer protections, but could improve by enabling DNSSEC and adding advanced security headers. Privacy compliance is strong with a comprehensive privacy and cookie policy and consent mechanisms in place. Overall, the website is professional, trustworthy, and well-positioned as a regional innovation promoter.

C

Cluster Gesundheitswirtschaft Berlin-Brandenburg

healthcapital.de

0

HealthCapital is a regional cluster organization representing the healthcare and life sciences sector in the Berlin-Brandenburg area of Germany. The website serves as a platform to promote networking, innovation, and business development within this sector, targeting industry stakeholders, startups, researchers, and investors. It provides resources such as reports, event calendars, and newsletters to support its community. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes a GDPR-compliant consent management system. Security posture is solid with HTTPS enforced and minimal tracking, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and well-aligned with its business purpose.

B

Berlin Partner

berlin-partner.de

0

Berlin Partner is a government-affiliated economic and technology promotion agency focused on supporting business growth, innovation, and investment in Berlin. The organization provides tailored business services, networking opportunities, and consulting to companies, investors, and scientific institutions in one of Germany's most dynamic economic regions. The website reflects a professional and consistent brand presence with multilingual support and a focus on accessibility and user experience. Technically, the site is built on TYPO3 CMS, hosted on Colt infrastructure, and employs modern frontend technologies including jQuery and Flexslider. Privacy compliance is addressed through an embedded consent manager and a comprehensive privacy policy. Security posture is adequate with HTTPS enforced and no visible vulnerabilities, though additional security headers and published policies could enhance trust. Overall, the website is well-maintained, trustworthy, and serves its target audience effectively.

C

Campus Berlin-Buch GmbH

berlinbiocube.de

0

BerlinBioCube is a specialized startup center focused on providing modern laboratory and office spaces for biotech and medtech companies within the Campus Berlin-Buch ecosystem. The website presents a professional image with clear business offerings, including event series to foster collaboration between science and industry. The technical infrastructure is modern, leveraging Bootstrap, jQuery, Video.js, and a privacy-conscious analytics solution (Matomo). Security posture is adequate with HTTPS and cookie consent implemented, though additional security headers and policies could enhance protection. Overall, the website is trustworthy, well-branded, and serves its target audience effectively.

C

CAMPUSart

campusart.berlin

0

CAMPUSart is a cultural and educational initiative that uniquely combines art, science, and nature on the Campus Berlin-Buch. The website offers visitors both physical and virtual tours of exhibitions, including art installations, scientific history, and botanical displays. Supported by institutional partners such as the MDC and Lotto Stiftung, CAMPUSart targets a general audience interested in cultural enrichment and scientific exploration. The business model revolves around providing educational content and events that enhance public engagement with the campus environment. Technically, the website employs a modern tech stack including Bootstrap 5 for responsive design, jQuery for interactivity, Video.js for media handling, and Matomo for privacy-conscious analytics. The site is mobile-optimized and provides a cookie consent mechanism via Klaro, reflecting a moderate level of digital maturity. However, some security best practices such as HTTP security headers and explicit incident response contacts are not evident. From a security perspective, the site is accessible without WAF or blocking mechanisms, uses HTTPS (implied by URL), and implements cookie consent, but lacks visible security headers and vulnerability disclosures. The WHOIS data is privacy protected, which is common for cultural projects, and no suspicious patterns were detected. Overall, the security posture is moderate with room for improvement in headers and incident response transparency. The overall risk assessment is low, with the site presenting no adult or explicit content, and serving a clear educational purpose. Strategic recommendations include enhancing security headers, publishing incident response contacts, and improving SEO and accessibility features to strengthen trust and compliance.

V

vıvis Konferenzen - TK Verlag

vivis.de

0

vivis.de is a professional website representing 'vıvis Konferenzen - TK Verlag', a small-sized German company specializing in organizing conferences and publishing related to waste management and environmental technology. With a history spanning approximately 50 years, the company holds a reputable position in the energy and environmental sector, offering specialized conferences and high-quality publications. The website is well-structured, content-rich, and targets professionals and stakeholders in the circular economy and environmental technology fields. Technically, the site is built on WordPress using modern tools like Elementor and Astra theme, with Google Tag Manager integrated for analytics. Security posture is adequate with HTTPS enabled, but lacks explicit security headers and cookie consent mechanisms, which are recommended for GDPR compliance. No blocking or WAF interference was detected, allowing full content accessibility. Overall, the site demonstrates good business credibility and technical maturity, though improvements in privacy compliance and security best practices are advised.

H

HAMMEL Recyclingtechnik GmbH

hammel.de

0

HAMMEL Recyclingtechnik GmbH is a German-based manufacturer specializing in recycling and shredding machinery, serving industrial clients and waste management sectors. The company offers a range of products including primary and secondary shredders, screening and sorting technology, processing plants, and services such as used equipment sales, rentals, and transportation. The website reflects an established medium-sized business with international reach and multilingual support. Technically, the site is built on Joomla CMS with Gantry 5 framework and uses popular plugins like Revolution Slider. The hosting is provided by kasserver.com, and the site uses HTTPS with good SSL configuration. Security posture is moderate but could be improved by implementing security headers and publishing security policies. Privacy compliance is limited, lacking cookie consent mechanisms and GDPR indicators. Overall, the website is professional, well-branded, and trustworthy, though it would benefit from enhanced privacy and security practices.

d & d Brandschutzsysteme GmbH is a German company specializing in comprehensive fire protection and detection solutions tailored to specific applications. Their offerings include planning, implementation, and maintenance of fire alarm systems, stationary fire extinguishing systems, and specialized solutions, including high-end flame and gas detection systems from Det-Tronics. The company targets industrial sectors such as recycling, data centers, server environments, and lithium-ion battery systems, positioning itself as a trusted service provider with a focus on quality and safety. Technically, the website is built on the Contao Open Source CMS platform, utilizing modern web technologies such as jQuery, Bootstrap, FontAwesome, and Usercentrics for cookie consent management. The site is mobile-optimized with good accessibility and basic SEO features. Analytics are implemented via Google Tag Manager and Google Analytics, with appropriate privacy compliance mechanisms in place. From a security perspective, the site enforces HTTPS and uses cookie consent tools but lacks explicit security headers and documented security policies or incident response contacts. No vulnerabilities or suspicious content were detected. WHOIS data confirms domain legitimacy with consistent registration details and no privacy protection, supporting trustworthiness. Overall, the website presents a professional and trustworthy digital presence for a small-sized specialized business in the energy and manufacturing sectors, with room for improvement in security policy transparency and technical security hardening.

M

Metropolregion Rhein-Neckar GmbH

educon.live

0

educon.live is a German educational platform and event series organized by Metropolregion Rhein-Neckar GmbH, focusing on bringing together innovators and thought leaders in education. It hosts events such as Bildungsgipfel, Bildungscafés, and Bildungshackathons to foster collaboration and innovation in the education sector. The platform is supported by prominent partners including BASF, SAP, and several foundations, positioning it as a key regional player in educational development. Technically, the website is built on WordPress using Elementor and several plugins for SEO, event management, and cookie consent. The site is well-structured, mobile-optimized, and employs modern web technologies. Privacy compliance is strong with GDPR-aligned policies and explicit cookie consent mechanisms. Security posture is good with HTTPS enforced and no obvious vulnerabilities, though some security headers could be improved. Overall, educon.live demonstrates a mature digital presence with professional content and strong business credibility. The lack of publicly available WHOIS data is mitigated by the clear organizational branding and partner endorsements. No security or content safety concerns were identified, making it a trustworthy platform in its domain. Strategic recommendations include enhancing security headers, publishing explicit security policies, and maintaining regular updates to plugins and CMS to sustain security and compliance.

B

birdingtours GmbH

birdingtours.de

0

birdingtours GmbH operates as Germany's leading specialist in birdwatching travel, offering a wide range of guided tours across Germany, Europe, Africa, Asia, and the Americas. The company targets both novice and experienced birdwatchers, providing expert-led tours, educational content, and a dedicated shop for birdwatching equipment. Their market position is strong within the niche ecotourism and nature travel sector, supported by partnerships with conservation organizations and a loyal customer base. Technically, the website is built on TYPO3 CMS with modern JavaScript libraries and integrates standard marketing and analytics tools with user consent mechanisms. Security posture is solid with HTTPS enforced and consent management implemented, though explicit security headers could be improved. Overall, the website is professional, trustworthy, and compliant with GDPR requirements, reflecting a mature digital presence for a medium-sized travel business.

NABU|naturgucker is a reputable non-profit platform dedicated to nature observations, biodiversity data collection, and community engagement in environmental conservation. The website serves as a comprehensive repository of nature images, videos, and species data, targeting nature enthusiasts, researchers, and conservationists primarily in Germany. The platform is affiliated with NABU, a well-known German nature conservation organization, enhancing its credibility and market position. Technically, the website is built on a custom IntraWeb framework with modern JavaScript libraries including jQuery, Bootstrap, and Google Maps API integration for interactive mapping features. Hosting is provided by 1&1 IONOS, ensuring stable infrastructure. While the site performs moderately and offers basic mobile optimization, there is room for improvement in accessibility and SEO practices. From a security perspective, the site enforces HTTPS, employs security headers, and uses nonce attributes in scripts to mitigate risks. No critical vulnerabilities or exposed sensitive data were detected. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a strong commitment to user data protection. Overall, the website presents a professional and trustworthy digital presence with a solid security posture and compliance framework. Strategic enhancements in mobile responsiveness, security monitoring, and SEO could further strengthen its digital maturity and user experience.

N

NAJU (Naturschutzjugend im NABU)

naju.de

0

NAJU (Naturschutzjugend im NABU) is Germany's largest children and youth environmental organization affiliated with NABU. It focuses on biodiversity, climate protection, and environmental education through various programs, camps, and activism projects. The website reflects a well-established non-profit with a large membership base and strong community engagement. Technically, the site is built on the Jimdo Creator CMS platform, utilizing legacy jQuery and several third-party widgets, with moderate performance and good mobile optimization. Security posture is solid with HTTPS and cookie consent mechanisms, though improvements in security headers and library updates are recommended. Privacy compliance is strong, with comprehensive GDPR-aligned policies and transparent contact information. Overall, the site is professional, trustworthy, and safe for general audiences.

S

swissnet ICT GmbH

swissnet.de

0

swissnet ICT GmbH is a medium-sized German IT system house and telecommunications provider specializing in tailored ICT solutions for business clients, including IT infrastructure, security, services, and telephony. The company targets medium to enterprise businesses, offering scalable and integrated communication and IT solutions. Their market position is that of a regional specialist with a strong emphasis on quality and certifications such as ISO 27001 and ISO 9001. Technically, the website is built on WordPress with modern plugins and frameworks, optimized for SEO and mobile use, and employs security best practices including HTTPS and CAPTCHA protections. Security posture is solid with room for improvement in explicit security headers and incident response transparency. Overall, the website is professional, trustworthy, and compliant with GDPR, providing comprehensive contact and support options.

Festo Inc. is a globally recognized enterprise specializing in industrial automation technology and training services. The company operates a comprehensive multilingual and multinational website infrastructure, serving a broad industrial customer base worldwide. Their digital presence reflects a mature and professional business with a strong emphasis on localized content and compliance with international data protection regulations such as GDPR. Technically, the website leverages modern web technologies including React.js and integrates a professional consent management platform (Didomi) to manage user privacy preferences effectively. Security posture is strong with HTTPS enforcement, domain transfer protection, and a well-managed domain registration history, although DNSSEC is not enabled. The absence of explicit security policies or incident response contacts suggests room for improvement in transparency and security communication. Overall, the website is well-designed, user-friendly, and trustworthy, supporting Festo's position as a leader in the manufacturing and automation sector.

Glassdoor is a prominent technology company offering an online platform for job seekers and employers, focusing on job listings, company reviews, and salary information. The website analyzed is the German localized domain (glassdoor.de), currently presenting a Cloudflare security challenge page that blocks direct content access. This indicates the use of advanced security measures to protect against bots and malicious traffic. The technical infrastructure leverages Cloudflare services including Turnstile CAPTCHA and Google Analytics for traffic analysis. However, the current page lacks visible privacy, cookie, or terms of service policies, and no contact or security incident response information is provided on this challenge page. The security posture is difficult to fully assess due to content blocking, but the use of Cloudflare suggests a baseline of security best practices. Overall, the site is legitimate and consistent with the Glassdoor brand but limited in accessible content for full analysis.

F

Frank Carius

msxfaq.de

0

MSXFAQ is a specialized knowledge resource and FAQ website focused on Microsoft Exchange, Skype for Business, Teams, Office 365, and Outlook technologies. It serves a professional and expert audience primarily in Germany, providing technical guides, news updates, and tools related to Microsoft enterprise communication platforms. The website is authored and maintained by Frank Carius, with a long operational history dating back to 2004, indicating a stable and trusted source of information in its niche. Technically, the website uses a straightforward HTML/CSS/JavaScript stack with Google Tag Manager for analytics. It is hosted with domain control services typical for small to medium-sized websites. The site is moderately optimized for mobile and SEO, with basic accessibility features. Security practices include HTTPS enforcement, iframe embedding prevention, and privacy-conscious referrer policies, though there is room for improvement in security headers and explicit vulnerability disclosure. The security posture is solid for a content-focused site, with no detected vulnerabilities or exposed sensitive data. Privacy compliance is basic, with privacy and cookie policies present but lacking active consent mechanisms. Contact information is limited to a contact form, with no direct emails or phone numbers visible. Social media presence is active across multiple platforms, enhancing trust and engagement. Overall, MSXFAQ presents a professional, trustworthy, and technically sound resource for its target audience. Strategic improvements in privacy compliance, security policy transparency, and incident response readiness would further enhance its security posture and user trust.

P

Pro-Linux

pro-linux.de

0

Pro-Linux is a well-established German online magazine focused on Linux, Open Source, and related technologies. It offers a broad range of content including news, articles, workshops, program version updates, job listings, and community forums. The site targets technology enthusiasts, IT professionals, and developers primarily in the German-speaking market. Its business model revolves around content publishing supported by advertising and community engagement. The website is hosted by Schlundtech and uses a proprietary CMS (nb3 system v1.6). The technical infrastructure is moderate with standard web technologies and Google AdSense for monetization. Security posture is adequate with HTTPS enabled and secure login forms, but lacks advanced security headers and explicit incident response policies. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected, which may pose GDPR compliance risks. Overall, the site is credible and trustworthy with a strong niche presence but could improve in privacy and security practices.

B

Bixa TechnoConsulting

bixa.cc

0

Bixa TechnoConsulting is a small German technology consulting company specializing in IT services such as virtualization, server migration, Drupal hosting, and Microsoft Exchange Server consulting. The website serves as a technical blog and service portal targeting IT professionals and businesses seeking specialized IT consulting. The company positions itself as a niche provider with expertise in Linux, Drupal, and Microsoft technologies. Technically, the website is built on Drupal CMS with jQuery and integrates Google Analytics for visitor tracking. The site is accessible over HTTPS but lacks modern security headers and explicit privacy or cookie policies, indicating room for improvement in security and compliance. The content is primarily technical and professional, with no adult or questionable material detected. Overall, the website demonstrates moderate digital maturity with basic mobile optimization and accessibility features. Security posture is average due to missing headers and lack of explicit incident response or security policies. The domain uses privacy protection for WHOIS data, which is common for small consultancies but limits transparency. Strategic recommendations include implementing security headers, adding privacy and cookie policies, improving contact information visibility, and enhancing compliance with GDPR requirements.

L

LamaPoll

lamapoll.com

0

LamaPoll is a German-based company providing a professional online survey tool designed for businesses, research institutes, public sector entities, as well as students and educators. The platform emphasizes ease of use, versatility, and strong data protection compliance, including GDPR adherence. With over 10,000 companies using their service, LamaPoll holds a strong market position in Germany, supported by multiple certifications such as ISO 27001, TISAX AL2, and BSI security validations. Their business model is SaaS-based, offering both paid licenses and free access for students, focusing on secure, customizable, and responsive survey solutions. Technically, the website uses a mature technology stack including jQuery and Matomo analytics configured for privacy (no cookies). The site is well-optimized for mobile devices, accessible, and SEO-friendly. Hosting is supported by Google Domains DNS infrastructure, with all servers located in Germany, ensuring compliance with local data protection laws. Security posture is strong, with full HTTPS enforcement, end-to-end encryption, one-way encryption for sensitive data, and regular penetration testing. However, some improvements could be made by adding explicit security headers and publishing a security.txt file. Privacy compliance is excellent, with clear privacy and cookie policies, no third-party trackers, and GDPR-aligned data handling. Overall, LamaPoll presents a trustworthy, professional, and secure online survey platform with a strong focus on data protection and user privacy. The website quality and business credibility are high, making it a reliable choice for organizations needing compliant survey solutions.

N

NETZSIEGER - Vertrauen ist gut, Vergleichen ist besser!

netzsieger.de

0

Netzsieger.de is a German-language online platform specializing in product comparisons and expert reviews across various categories including software, electronics, household goods, and business services. The website positions itself as a trusted source for consumers seeking detailed and practical advice to aid purchasing decisions. The platform features a well-structured navigation system and a cookie consent mechanism compliant with GDPR requirements, indicating a moderate level of digital maturity. Technically, the site employs modern web technologies such as Google Analytics and Google Tag Manager for analytics and tracking, custom fonts, and responsive design elements to ensure usability across devices. While the site is accessible and performs moderately well, there is room for improvement in accessibility and security headers implementation. From a security perspective, the website uses HTTPS and has implemented cookie consent, but lacks visible security policies, incident response contacts, and vulnerability disclosure mechanisms. No critical vulnerabilities or exposed sensitive data were detected in the provided content. The WHOIS data is limited and partially consistent, which slightly reduces trustworthiness but does not indicate malicious intent. Overall, Netzsieger.de presents a professional and trustworthy platform for product comparison, with recommendations to enhance privacy transparency, security posture, and contact availability to further strengthen user trust and compliance.

M

mbr-rlp-nord.de

mbr-rlp-nord.de

0

The website mbr-rlp-nord.de serves as a regional support and advisory platform focused on combating right-wing extremism, racism, and antisemitism in the northern Rheinland-Pfalz region of Germany. It targets engaged civil society actors, organizations, and institutions, providing assistance in dealing with extremist activities and promoting democratic values. The site is hosted on WordPress.com, leveraging standard WordPress technologies and plugins, with a moderate performance and good mobile optimization. Security posture is solid due to HTTPS and managed hosting, but lacks explicit security headers and formal policies. Privacy compliance is weak, with no visible privacy or cookie policies, and no contact information for data protection or incident response. Overall, the site is trustworthy and professional but would benefit from enhanced compliance and security transparency.

A

Arbeit und Leben DGB/VHS e.V.

politische-jugendbildung.blog

0

The website politische-jugendbildung.blog is a German-language blog dedicated to political youth education, operated by the non-profit organization Arbeit und Leben DGB/VHS e.V. It provides current information, practical examples, materials, and event announcements related to political youth education. The platform targets professionals in political youth education, child and youth welfare, and civil society actors. The business model is non-profit educational content dissemination with a medium-sized organizational footprint, founded in 2017. Technically, the site is built on Joomla CMS with the Yootheme Pro template and UIkit framework, leveraging jQuery and FontAwesome for UI elements. It uses Matomo analytics for privacy-conscious visitor tracking and implements GDPR-compliant cookie consent mechanisms. The site is mobile-optimized and accessible with good SEO practices. From a security perspective, the site enforces HTTPS, uses clientTransferProhibited domain status, and has cookie consent mechanisms. However, DNSSEC is not enabled, and no security.txt or vulnerability disclosure page is present. Content security policies are not explicitly detected. Overall, the security posture is good but could be improved with DNSSEC and explicit security headers. Overall, the website is trustworthy, professionally maintained, and compliant with privacy regulations. It does not expose sensitive contact information directly but provides a contact form. No adult or questionable content is present, making it safe for general audiences.

A

Arbeit und Leben gGmbH

berufssprachkurse-mainz.info

0

The website berufssprachkurse-mainz.info represents a vocational language course offering operated by Arbeit und Leben gGmbH under commission from the German Federal Office for Migration and Refugees (BAMF). The courses target migrants and individuals seeking to improve their German language skills for professional integration and recognition, particularly in healthcare professions. The site is hosted on WordPress.com and uses standard WordPress technologies with Jetpack and other common plugins. The content is professionally presented with relevant images and course descriptions, targeting a German-speaking audience. Technically, the site is well-structured, mobile-optimized, and uses HTTPS, but lacks some advanced security headers and a visible privacy policy page. No contact emails or phone numbers are directly provided on the main pages, which slightly reduces transparency. The WHOIS data is privacy protected by Identity Digital Inc., which is common and justified for this type of non-profit educational site. Overall, the site is legitimate, secure, and serves its educational purpose effectively.

A

Arbeit und Leben gGmbH

door-rlp.info

0

DOOR is a German non-profit project operated by Arbeit und Leben gGmbH, focused on providing volunteer interpreting services in social contexts such as medical, educational, and public service environments. The project is government funded and aims to facilitate communication for people with different languages by offering qualified volunteer interpreters. The website is hosted on WordPress.com and uses standard WordPress technologies and plugins. It is accessible, mobile-optimized, and provides clear contact information but lacks privacy and cookie policies, which are important for compliance. Security posture is moderate with HTTPS enforced but missing security headers. WHOIS data is privacy protected, which is typical for such non-profit projects. Overall, the website is trustworthy and serves its intended audience effectively.

H

Haus der Sprachmittlung

haus-der-sprachmittlung.de

0

Haus der Sprachmittlung is a non-profit organization based in Rheinland-Pfalz, Germany, focused on advancing and professionalizing language mediation services. Operating under the umbrella of Arbeit und Leben gGmbH and commissioned by the Ministry for Family, Women, Culture and Integration (MFFKI), it provides resources, events, and software to support qualified language mediators and stakeholders in the social sector. The website is well-structured, professionally designed, and targets various actors involved in language mediation including mediators, clients, and commissioning bodies. Technically, the site is built on TYPO3 CMS with embedded Vimeo videos and uses an outdated jQuery version, which presents a security concern. The hosting is via a reputable German provider, Schlund Technologies. Security posture is moderate with HTTPS enabled but lacking visible security headers and modern JavaScript libraries. Privacy compliance is partial with a privacy policy present but no cookie consent mechanism detected. Contact information is clear and trustworthy, enhancing business credibility. Overall, the site is a reliable resource for language mediation in the region with room for technical and security improvements.

G

Gesellschaft für Innovation und Unternehmensförderung mbH

ewerk-sb.de

0

E Werk Saarbrücken operates as a specialized event location housed in a historic industrial building, offering a large versatile hall for various event types including concerts, congresses, and corporate functions. The company is positioned regionally with a unique ambiance that appeals to event organizers seeking a distinctive venue. The website is professionally designed, leveraging WordPress CMS with modern plugins and technologies to provide a responsive, accessible, and SEO-optimized user experience. Security posture is strong with HTTPS enforcement and cookie consent mechanisms, though some security headers could be improved. Privacy compliance is well addressed with a comprehensive privacy policy and cookie management. Overall, the site reflects a credible and trustworthy business with clear contact information and professional branding.