Security Directory

C

Coparion

coparion.vc

0

Coparion is a German venture capital fund specializing in investments in young technology companies. The website presents a professional and comprehensive overview of their investment philosophy, portfolio, and team. They emphasize long-term partnerships, pragmatic investment strategies, and support for startups in Germany with capital and expertise. Technically, the site is built on Drupal 10 with Bootstrap and uses Cookiebot for cookie consent, indicating a modern and privacy-aware infrastructure. Security posture is good with HTTPS and cookie consent, though explicit security policies and incident response details are not published. Overall, the website reflects a credible, professional investment firm with a strong market position in the German tech startup ecosystem.

C

Cherry Ventures

cherry.vc

0

Cherry Ventures is a well-established European venture capital firm founded in 2012, with offices in Berlin, London, and Stockholm. The firm focuses on early-stage investments in technology startups across diverse sectors including SaaS, mobility, gaming, and space technology. Their team comprises former entrepreneurs and operators with experience in scaling companies like Zalando and Spotify, positioning them as trusted partners for founders. The website reflects a professional and modern digital presence, leveraging Next.js and Sanity CMS for content management and performance optimization. Analytics are implemented via Plausible, indicating a privacy-conscious approach to user tracking. Security posture is strong with HTTPS enforcement and modern security headers, although explicit privacy and cookie policies are absent, representing an area for compliance enhancement. No direct contact information or incident response policies are publicly disclosed, which could be improved to increase transparency and trust. Overall, the website and domain registration data align well with the company's business claims, supporting a high legitimacy score.

B

Bayern Kapital

bayernkapital.de

0

Bayern Kapital is a well-established venture capital investor focused on innovative, technology-oriented startups and companies in Bavaria, Germany. With nearly 30 years of experience and over 320 investments, they manage assets of approximately 700 million Euros. Their investment range spans from early seed funding to later stage growth investments, supporting companies with ticket sizes from 250,000 to 25 million Euros. The website reflects a professional and consistent brand image, targeting ambitious technology startups and scaleups seeking capital and network support in Bavaria. Technically, the website is built on TYPO3 CMS, leveraging modern web technologies and integrating Usercentrics for consent management and Piwik PRO for analytics. The site is mobile optimized, accessible, and SEO-friendly, hosted likely on Your-Server.de infrastructure. Security posture is good with HTTPS enforced and consent mechanisms in place, though explicit security policies and headers could be improved. No blocking mechanisms or WAF challenges were detected, allowing full content access. However, explicit privacy policy and terms of service pages were not found in the provided content, which could be a compliance gap. Contact information is primarily via a contact form, with no direct emails or phone numbers visible. Overall, the site demonstrates a high level of professionalism, trustworthiness, and compliance with privacy regulations. Strategic recommendations include publishing detailed privacy and security policies, enhancing security headers, and providing vulnerability disclosure information to improve transparency and trust further.

A

Auxxo

auxxo.de

0

Auxxo is a specialized venture capital fund focusing on pre-seed and seed stage investments in female (co-)founded startups across Europe. The website presents a professional and consistent brand image, targeting female entrepreneurs seeking early-stage funding. The technical infrastructure is based on WordPress CMS with modern plugins such as Yoast SEO and Usercentrics for cookie consent, hosted on German servers. While the site is well-designed and mobile-optimized, it lacks explicit privacy and terms of service pages, as well as visible contact information, which impacts its privacy compliance and business credibility scores. Security posture is adequate with HTTPS enabled but could be improved by adding security headers and publishing security policies.

A

Atlantic Labs

atlanticlabs.de

0

Atlantic Labs is a venture capital firm focused on supporting mission-driven founders working on transformative technology ventures. Their business model centers on early-stage investment and partnership, providing capital, tools, and networks to help startups grow in sectors such as Digital Health, Future of Work, Machine Learning, Decentralized Networks, Mobility, and Industrial Applications. The company positions itself as an important player in the technology investment space in Germany. Technically, the website is built using modern JavaScript frameworks like Vue.js and Nuxt.js, indicating a contemporary digital infrastructure with good mobile optimization and SEO practices. However, the site lacks explicit privacy, cookie, and security policies, which impacts its privacy compliance and security posture. No security headers or incident response information were found, suggesting room for improvement in security best practices. Overall, the website is professional and trustworthy but would benefit from enhanced transparency and security features.

A

Acton Capital

actoncapital.com

0

Acton Capital is a growth-focused venture capital firm investing in startups at Series A and beyond, primarily in Europe and Canada. The company emphasizes partnering with mission-driven founders to develop tailored growth strategies, focusing on sustainable and meaningful business success rather than hype. Their portfolio includes notable companies across sectors such as SaaS, marketplace, cyber security, health, logistics, and B2C. The website reflects a professional and modern digital presence built on Webflow, with good performance and mobile optimization. Security posture is solid with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies. The absence of WHOIS registration data is a concern but does not detract significantly from the overall legitimacy given the business maturity and content quality. Strategic improvements in privacy compliance and security headers would enhance trust and compliance.

1

10x Group

10x.group

0

10x Group is a venture capital firm focused on investing in founders across Europe and Silicon Valley, with a portfolio spanning growth, late-stage, and early-stage companies through its 10x Founders and FLEX Capital funds. The website presents a professional and consistent brand image, showcasing a broad portfolio of companies with successful IPOs and exits, indicating a strong market position. Technically, the site uses modern web technologies including jQuery, ScrollReveal, Google Analytics, and Hotjar, providing a moderate level of digital maturity with good mobile optimization and user experience. Security posture is adequate with HTTPS implied, but lacks visible security headers and formal privacy or cookie policies, which are areas for improvement. Overall, the site is safe, business-focused, and trustworthy, though the absence of WHOIS data due to TLD limitations slightly reduces transparency.

E

Enactus Mannheim e.V.

enactus-mannheim.com

0

Enactus Mannheim e.V. is a German student-led non-profit organization dedicated to fostering entrepreneurship and social innovation. The organization focuses on developing social startups that address ecological and social challenges, aligning their projects with the United Nations Sustainable Development Goals. Their target audience primarily includes university students, social entrepreneurs, and corporate partners who support their mission through funding and expertise. The website reflects a well-structured and professional digital presence, emphasizing community, sustainability, and entrepreneurship. Technically, the website is built on the Webflow platform, utilizing modern web technologies such as Google Fonts, Google Analytics, reCAPTCHA, and various JavaScript libraries for enhanced user experience and interactivity. Hosting is provided by Webflow's CDN, ensuring fast load times and good mobile optimization. Privacy compliance is addressed through GDPR-aligned privacy and cookie policies, including a consent banner. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms from abuse. However, there is a lack of explicit security headers and no visible incident response or security policy documentation, which could be improved. The absence of WHOIS domain registration data is a notable concern, potentially impacting trust and transparency. Overall, the website presents a credible and professional front for Enactus Mannheim, but improvements in domain transparency, security policy communication, and explicit contact information would enhance trustworthiness and compliance.

T

thinc! e.V.

thinc.de

0

thinc! e.V. is a student-led non-profit initiative at the University of Mannheim focused on fostering entrepreneurship among students. The organization offers a comprehensive suite of programs including mentoring, incubator support, workshops, and networking events to empower aspiring entrepreneurs. Their market position is strengthened by strong university affiliation and partnerships with reputable companies, positioning them as a key player in the regional startup ecosystem. Technically, the website is built on the Webflow platform, leveraging modern web technologies such as Google Fonts, Usercentrics for consent management, and Google Tag Manager for analytics. The site is well-optimized for performance, mobile responsiveness, and accessibility, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS and uses a consent management platform to comply with privacy regulations. However, it lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms, which are areas for improvement to enhance trust and compliance. Overall, the website presents a professional, trustworthy, and well-maintained digital presence with minor gaps in formal security documentation. Strategic enhancements in security transparency and contact information would further solidify their credibility and compliance posture.

Q-Summit is a prominent startup conference based in Germany, focused on connecting entrepreneurs, investors, and innovators. The website showcases a professional event with a strong lineup of speakers, partners, and networking opportunities scheduled for April 2026. The business model revolves around event organization and community building within the startup ecosystem. Technically, the site is built on Webflow with integrations for analytics and marketing tools such as Google Tag Manager and Mailchimp, ensuring a modern and responsive user experience. Security posture is generally good with HTTPS enforced, though the absence of security headers and cookie consent mechanisms suggests room for improvement. The lack of WHOIS data for the domain raises some concerns about registration transparency, but the professional presentation and reputable partners mitigate these concerns to some extent. Overall, the site is trustworthy and well-positioned in its market niche.

P

PALATINA Business Angels Rhein-Neckar e.V.

palatina-angels.de

0

PALATINA Business Angels Rhein-Neckar e.V. is a non-profit association founded in 2020 focused on supporting innovative and scalable startups in the Rhein-Neckar region through early-stage financing and mentoring by experienced entrepreneurs and investors. The organization has established a strong regional presence with over 180 startups supported and offers numerous events and networking opportunities. Technically, the website is built on WordPress with modern plugins for SEO, membership management, event handling, and cookie consent, reflecting a mature digital infrastructure. Security posture is solid with HTTPS and cookie consent mechanisms, though additional security headers and incident response information could enhance protection. Overall, the site is professional, trustworthy, and compliant with GDPR, serving its target audience effectively.

M

MARS – Center for Entrepreneurship

launchtomars.de

0

MARS – Center for Entrepreneurship is a university-affiliated startup support center based at Technische Hochschule Mannheim, Germany. Founded in 2020, it provides free entrepreneurial support, coaching, courses, workspace, and networking opportunities primarily to university members, alumni, and select external participants. The website is well-structured, professionally designed, and optimized for SEO and mobile devices, reflecting a mature digital presence. Technically, it is built on WordPress with modern plugins and follows good security practices including HTTPS and cookie consent mechanisms. However, it lacks explicit security policies and incident response contacts, which could be improved. Overall, the site is trustworthy, compliant with GDPR, and safe for general audiences.

S

Stadt Mannheim

mannheim.de

0

The website www.mannheim.de serves as the official digital portal for the city of Mannheim, Germany. It provides comprehensive information and services related to municipal administration, citizen services, economic development, culture, education, tourism, and career opportunities. The site targets residents, businesses, tourists, and public service users, positioning itself as a key government resource with a broad service offering. The content is well-structured, multilingual, and accessible, reflecting a mature digital presence for a large municipal entity. Technically, the website is built on Drupal 10, utilizing modern web technologies such as Matomo for analytics, SVG icons, and slick carousel for UI elements. The site demonstrates good performance, mobile optimization, and accessibility features. Security is robust with HTTPS enforced, multiple security headers present, and consent-based tracking mechanisms implemented. However, explicit security policies and incident response contacts are not prominently published, and no vulnerability disclosure or security.txt files were found. Overall, the security posture is strong with no detected vulnerabilities or suspicious activity. Privacy compliance is well addressed with clear privacy and cookie policies and user consent mechanisms. The business credibility is high, supported by official domain registration, consistent branding, and transparent contact information. The site is safe for general audiences with no adult or questionable content. Strategically, the site could enhance trust and security culture by publishing dedicated security policies and incident response information, and by implementing a vulnerability disclosure program. Regular audits of third-party scripts and form input sanitization are recommended to maintain security integrity.

D

DeepTechHub

deep-tech-hub.de

0

DeepTechHub is a regional ecosystem platform dedicated to fostering the growth of deep tech startups in north-western Baden-Württemberg, Germany. It acts as a collaborative hub connecting universities, researchers, industry experts, and entrepreneurs to promote innovation and entrepreneurship in deep technology. The website presents a professional and consistent brand image, emphasizing community building, coordination, and talent matchmaking as core services. Technically, the site is built on WordPress with modern SEO and contact form plugins, hosted by agenturserver, and optimized for mobile and accessibility. Security posture is solid with HTTPS and secure forms, though lacking explicit security policies and headers. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page. Overall, the site is trustworthy and well-positioned within its niche ecosystem.

B

Baden-Württemberg Stiftung

ki-garage.de

0

KI-Garage is a regional program operated by the Baden-Württemberg Stiftung focused on fostering the AI startup ecosystem in Baden-Württemberg, Germany. It supports technology transfer from AI research to startups, offers events, mentoring, and networking opportunities to AI scientists, startups, and economic actors. The website is professionally designed using TYPO3 CMS, with good mobile optimization and accessibility. It integrates multimedia content and maintains GDPR compliance through a consent management platform. Security posture is solid with HTTPS and basic security best practices, though some advanced headers and explicit security policies are absent. Contact is primarily via a web form, with no direct emails or phone numbers published. Overall, the site is trustworthy, well-branded, and serves a clear non-profit innovation mission.

M

mg: mannheimer gründungszentren gmbh

next-mannheim.de

0

NEXT MANNHEIM is a professionally managed startup ecosystem platform focused on supporting entrepreneurs and startups in Mannheim, Germany. It operates as a 100% subsidiary of Innovationsstadt Mannheim, providing infrastructure, consulting, networking, and event spaces tailored to various startup communities including female entrepreneurs and international founders. The website reflects a strong regional market position with comprehensive services and active community engagement. Technically, the site is built on WordPress with modern plugins and frameworks, ensuring good performance and SEO optimization. Security posture is solid with HTTPS and some security headers, though improvements are recommended in CSP and incident response transparency. Overall, the site is trustworthy and well-maintained, with minor gaps in privacy compliance and security policy disclosures.

G

Global Certification and Consulting Centre (GCCC)

gccc-exist.de

0

The Global Certification and Consulting Centre (GCCC) is a government-affiliated organization established in 2024 under the German Federal Ministry for Economic Affairs and Energy (BMWE). It serves as a central hub to support international start-up teams by providing certification, consultancy, and visa facilitation services, particularly related to the EXIST Business Start-up Grant and other similar funding programs. The GCCC acts as a liaison between German Missions Abroad, immigration authorities, universities, and research institutions to streamline start-up visa issuance and support innovative entrepreneurship in Germany. The website is professionally designed, multilingual, and provides comprehensive information tailored to entrepreneurs, official institutions, and start-up networks.

R

RH-Webdesign

rh-webdesign.com

0

RH-Webdesign is a specialized freelance business led by Robin Humpert, focusing on Shopware 6 e-commerce development. With over 10 years of experience, the company offers custom themes, modules, and online shop setup services targeting entrepreneurs and businesses seeking professional e-commerce solutions. The website is well-branded, professional, and clearly communicates its services and expertise, supported by strong trust indicators such as a Shopware Extension Partner badge and excellent customer reviews. Technically, the site uses modern frameworks like Bootstrap and jQuery, with Matomo analytics configured to disable cookies, reflecting a privacy-conscious approach. However, the absence of a cookie consent mechanism and explicit security policies are areas for improvement. Security posture is solid with HTTPS and domain transfer protections, but could benefit from enhanced security headers and published incident response information. Overall, the site is trustworthy, technically sound, and well-positioned in its niche, with moderate room for compliance and security enhancements.

K

Kreuzberger Lebensbrücke gGmbH

kreuzberger-lebensbruecke.de

0

The website www.wald-bruecke.de represents Kreuzberger Lebensbrücke gGmbH, a German non-profit organization focused on social integration by providing employment and training opportunities for youth, disabled, and disadvantaged individuals. The business model relies on sales of office and hygiene products, as well as specialized blind products, to fund its social projects. The site is well-structured, professionally designed, and targets a German-speaking audience interested in social welfare and integration services. Technically, the site runs on WordPress with standard plugins like Yoast SEO and CookieYes for cookie consent management. Hosting is provided by Cloudpit, as indicated by the nameservers. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, but lacks explicit security headers and incident response contact details. The site contains some suspicious hidden content related to online casinos, which may be SEO spam or misplaced text, slightly impacting trust. Overall, the site is functional, compliant with GDPR, and trustworthy for its intended audience.

Digitalcourage is a well-established German non-profit organization founded in 1987, dedicated to promoting digital rights, privacy, and democracy in the digital age. The organization operates with a strong community focus, relying on donations and volunteer work, and is known for organizing the annual BigBrotherAwards since 2000. Their website reflects a professional and privacy-respecting approach, with no tracking or cookie consent mechanisms, emphasizing transparency and user respect. Technically, the website is built on Drupal 11, using modern web technologies and is hosted via Schlundtech. It demonstrates good mobile optimization, accessibility, and SEO practices. Security posture is strong with HTTPS enforced and no evident vulnerabilities, though some security headers could be improved. The WHOIS data aligns well with the organization's history and legitimacy. Overall, Digitalcourage's website is a trustworthy, content-rich platform serving activists and the general public interested in digital rights. It maintains high standards of privacy and security, with clear calls to action for membership, donations, and participation. The site integrates several related services and partner domains, enhancing its ecosystem and outreach.

G

Gesellschaft für Freiheitsrechte e.V.

freiheitsrechte.org

0

Gesellschaft für Freiheitsrechte e.V. (GFF) is a German non-profit organization dedicated to defending fundamental and human rights through legal means. Established in 2015, it has built a reputable position in the human rights advocacy sector, focusing on strategic litigation, public education, and policy influence. The website reflects a professional and consistent brand image, targeting activists, legal professionals, and supporters of civil liberties. Technically, the site employs modern web technologies with good mobile optimization and accessibility, though some security enhancements like DNSSEC and security headers could be improved. The security posture is solid with HTTPS and domain transfer protections, but lacks explicit incident response or security policy disclosures. Overall, the site is trustworthy, transparent, and well-aligned with its mission.

A

Antifaschistisches Bildungszentrum und Archiv Göttingen e.V.

antifaschistisches-archiv.org

0

The Antifaschistisches Bildungszentrum und Archiv Göttingen e.V. is a small non-profit organization based in Germany focused on antifascist education, archiving, and activism. The website serves as a platform for educational content, event announcements, archival access, and publications related to right-wing extremism and antifascist efforts. It targets researchers, activists, and the general public interested in these topics. The organization maintains a consistent brand presence and provides encrypted contact forms to enhance privacy and security. Technically, the website is built on WordPress 6.8.3 with a modern tech stack including Matomo for analytics and several plugins for GDPR compliance and media management. Hosting is provided by InterNetX GmbH, and the site uses HTTPS with good SSL configuration. The site is moderately performant, mobile-optimized, and has good SEO and accessibility basics. From a security perspective, the site employs HTTPS, encrypted contact forms, and a cookie consent mechanism, but lacks explicit security headers and a published security policy or vulnerability disclosure. No critical vulnerabilities or exposed sensitive data were found. Privacy compliance is strong with clear privacy and cookie policies in German, aligned with GDPR requirements. Overall, the website is trustworthy, professionally maintained, and serves its non-profit educational mission effectively. Strategic recommendations include enhancing security headers, publishing a security.txt file, and expanding incident response documentation to further improve security posture and trust.

I

Institut für Lehrerfort- und -weiterbildung (ILF Mainz)

ilf-mainz.de

0

The Institut für Lehrerfort- und -weiterbildung (ILF Mainz) is a well-established non-profit educational institute focused on providing professional development and certification programs for teachers and pedagogical staff in the Rheinland-Pfalz and Saarland regions of Germany. The institute operates under the umbrella of a charitable company supported by multiple (Erz-)Diözesen, reflecting its strong regional and religious affiliations. The website clearly targets educators and school leadership personnel, offering a broad range of training services including in-house and online courses. Technically, the website is built on a modern WordPress platform with up-to-date plugins and libraries, ensuring a stable and maintainable infrastructure. The site demonstrates good mobile optimization, accessibility, and SEO practices, although some accessibility features could be enhanced. The use of HTTPS and cookie consent mechanisms indicates a commitment to user privacy and security. From a security perspective, the site employs HTTPS with a good SSL configuration but lacks some advanced security headers and explicit security or incident response policies. No vulnerabilities or exposed sensitive data were detected in the provided content. Privacy compliance is strong, with a comprehensive privacy policy and cookie consent, aligning with GDPR requirements. Overall, the ILF Mainz website presents a trustworthy, professional, and secure online presence appropriate for its educational mission. Strategic improvements in security headers, incident response transparency, and accessibility would further strengthen its posture.

E

Erziehungswissenschaftliches Fort- und Weiterbildungsinstitut der Evangelischen Kirchen in Rheinland-Pfalz

efwi.de

0

The Erziehungswissenschaftliches Fort- und Weiterbildungsinstitut der Evangelischen Kirchen in Rheinland-Pfalz (EFWI) is a small, regionally focused non-profit educational institute dedicated to supporting teachers and pedagogical professionals through training, consulting, and specialized seminars. The website clearly targets educators in Rheinland-Pfalz, Germany, offering a variety of professional development opportunities aligned with current educational challenges and research. The business model is service-oriented, focusing on educational enrichment and church-affiliated community support. The website is well-branded and consistent with the organization's mission and regional focus. Technically, the website is built on the TYPO3 CMS platform, leveraging modern frontend technologies such as Bootstrap 4, jQuery, and FontAwesome. The site demonstrates good mobile optimization and SEO practices, with a moderate performance profile. Hosting is managed via DomainControl, consistent with the domain's WHOIS data. The technical infrastructure supports a professional and accessible user experience. From a security perspective, the site uses HTTPS with an excellent SSL configuration, but lacks visible security headers and a cookie consent mechanism, which are recommended for compliance and enhanced security posture. No vulnerabilities or exposed sensitive data were detected. The absence of a published security policy or incident response contact limits transparency in security management. Overall, the security posture is good but could be improved with additional best practices. The overall risk assessment is low, with no blocking or WAF detected, no suspicious content, and a trustworthy domain registration. Strategic recommendations include implementing a cookie consent banner, adding security headers, publishing a security policy, and considering a vulnerability disclosure mechanism to enhance compliance and trust.

S

ScaDS.AI Dresden/Leipzig

scads.de

0

ScaDS.AI Dresden/Leipzig is a German government-funded research center specializing in scalable data analytics, artificial intelligence, and big data. It operates as a permanent research facility with strong ties to TU Dresden and Leipzig University, positioning itself as a key player among Germany's AI competence centers. The website reflects a mature digital presence with comprehensive content targeting researchers, students, professionals, and the general public interested in AI and data science. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses several plugins for enhanced functionality, including Contact Form 7 and Yoast SEO. The site is mobile-optimized, accessible, and SEO-friendly, though performance is moderate. Security posture is good with HTTPS enforced and no obvious vulnerabilities, but lacks DNSSEC and some security headers. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism. Overall, the site is trustworthy and professionally maintained, supporting its academic and research mission.

S

ScaDS.AI

scads.ai

0

ScaDS.AI Dresden/Leipzig is a government-funded German research center specializing in scalable data analytics, artificial intelligence, and big data. It operates as a permanent research facility with strong academic partnerships with TU Dresden and Leipzig University. The center offers interdisciplinary research, graduate education, consulting, and public engagement through its Living Lab. The website reflects a mature digital presence with professional design and comprehensive content tailored to researchers, students, and professionals in AI and data science. Technically, the site is built on WordPress with modern frameworks like Bootstrap and uses common plugins for forms and media display. Security posture is solid with HTTPS and domain transfer protections, though improvements are recommended in DNSSEC and security headers. Privacy compliance is good with a clear privacy policy but lacks cookie consent mechanisms. Overall, the site is trustworthy, well-maintained, and aligned with its academic and governmental mission.

T

timum GmbH

timum.de

0

timum GmbH operates a specialized SaaS platform focused on automated appointment coordination and online booking solutions tailored for the real estate sector, including real estate agents, property managers, and facility management professionals. The company positions itself as a PropTech innovator with integrations into major real estate platforms and CRM systems, offering scalable solutions from basic to professional tiers. The website content is professionally presented, targeting German-speaking markets with localized versions for Switzerland and English-speaking users. Technically, the site is built on WordPress with modern frameworks and hosted on AWS infrastructure, ensuring reliable performance and good mobile optimization. Security posture is solid with HTTPS enforced and privacy compliance evident through GDPR-aligned policies and cookie consent mechanisms. However, explicit security policies and incident response contacts are not publicly disclosed. Overall, the site demonstrates a mature digital presence with strong business credibility and trust indicators, suitable for its niche market.

H

Hüttig & Rompf GmbH

huettig-rompf.de

0

Hüttig & Rompf GmbH is a well-established German company specializing in personalized real estate financing advisory services. Founded in 1988 and part of the Bilthouse Gruppe, the company offers customers access to financing offers from over 500 banks and extensive partnership networks with real estate distributors. Their website demonstrates a mature digital presence with modern technologies such as Nuxt.js and TYPO3 CMS, and integrates consent management and analytics tools to ensure privacy compliance. Security posture is solid with HTTPS and Cloudflare DNS, though explicit security policies and incident response contacts are not published. Overall, the company presents a professional and trustworthy image with comprehensive content and user-friendly navigation.

J

Justhome

justhome.co

0

Justhome is a German-based online platform specializing in home financing and construction loan advisory services. Founded in 2015, the company targets individuals seeking to finance their new homes, offering guidance even for those with limited savings. The website is professionally designed, mobile-optimized, and provides clear information about its services, positioning itself as a niche player in the real estate financing sector in Germany. Technically, the site leverages modern web technologies including Next.js and React, hosted on Azure CDN, ensuring good performance and user experience. It integrates multiple analytics and marketing tools such as Google Analytics, HubSpot, Hotjar, and Taboola, with a comprehensive cookie consent mechanism that aligns with GDPR requirements. Security-wise, the site enforces HTTPS, has domain transfer locks, and uses cookie consent for privacy compliance, though it lacks DNSSEC and some advanced security headers. Overall, the website is safe, trustworthy, and compliant with privacy regulations, but could enhance its security posture by adding a security.txt file and incident response contacts.

W

Website-Check

website-check.de

0

Website-Check is a German legal-tech company specializing in automated compliance solutions for websites and online shops, including legally compliant texts, cybersecurity checks, and cookie consent tools. The company positions itself as a trusted partner for businesses seeking to maintain GDPR compliance and cybersecurity hygiene with minimal effort, leveraging AI technology and expert legal support. The website is professionally designed using WordPress and Elementor, optimized for SEO and mobile devices, and features clear navigation and strong branding consistency. Technically, the site uses modern plugins and frameworks, hosted via DomainDiscount24, with HTTPS enabled and a good security posture. However, explicit privacy and cookie policies are not clearly found in the provided content, and no direct contact information is visible, which slightly impacts privacy compliance and user trust. Overall, the domain registration data aligns well with the website's claims, indicating legitimacy and trustworthiness.

O

Ogulo GmbH

ogulo.com

0

Ogulo GmbH operates a specialized real estate technology business focused on providing floor plan cameras and 3D virtual tours to real estate professionals. The company, founded in 2012 and based in Germany, offers innovative visualization tools that simplify the creation of up-to-date floor plans and immersive 3D tours with minimal effort. Their market position is that of a niche provider catering to real estate marketing needs, leveraging modern web technologies and integrations with marketing platforms like HubSpot. Technically, the website is built on WordPress using the Divi theme, hosted on Amazon AWS infrastructure. The site employs several HubSpot scripts for marketing automation and analytics, along with Facebook Ads Pixel for retargeting. The site is mobile optimized with good SEO practices and structured data implementation, though accessibility features are basic. Performance is moderate, with room for optimization. From a security perspective, the site uses HTTPS with a valid SSL certificate and domain status locks to prevent unauthorized changes. However, DNSSEC is not enabled, and no security headers were detected in the provided data. There is no visible privacy policy, cookie consent mechanism, or incident response information, which are important for GDPR compliance and user trust. The absence of vulnerability disclosure or security.txt files suggests limited transparency in security practices. Overall, the website is professional and trustworthy with a solid business foundation and technical setup. The main risks relate to privacy compliance gaps and security best practices that could be improved to enhance user trust and regulatory adherence. Strategic recommendations include enabling DNSSEC, publishing privacy and cookie policies, adding security headers, and establishing clear incident response and vulnerability disclosure channels.

M

MaklerWerft - Webseiten für Immobilienmakler

maklerwerft.de

0

MaklerWerft Beratungsgesellschaft mbH operates a professional website offering specialized digital marketing and web solutions for real estate agents in Germany. Their services include website systems, CRM automation, SEO, SEA strategies, and content marketing tailored to the real estate sector. The company positions itself as an expert niche provider with a strong focus on client success and digital transformation in real estate marketing. Technically, the website is built on WordPress using the Enfold theme, integrates privacy-compliant analytics via Matomo, and employs Cloudflare DNS services, reflecting a mature digital infrastructure. Security posture is strong with HTTPS, security headers, and consent management, though explicit privacy and security policy pages are missing. Overall, the site is professional, well-structured, and optimized for SEO and mobile use, targeting real estate professionals and property owners. The domain registration data aligns with the business claims, indicating legitimacy and consistency.

G

German Customer Awards

germancustomerawards.com

0

German Customer Awards is a German-based award program recognizing the top 500 companies annually for excellence in customer satisfaction, quality, and service. Founded in 2023, it positions itself as a reputable and transparent awards entity with a clear evaluation methodology based on 7 main criteria and 131 subcriteria. The website is professionally designed using Webflow, with good mobile optimization and clear navigation. It integrates modern tracking and consent management tools, reflecting a moderate level of digital maturity. Security posture is adequate with HTTPS and cookie consent but lacks advanced security headers and explicit security policies. Contact information is provided, though no physical address or security incident contacts are found. Overall, the site is trustworthy and business credible with room for security and compliance enhancements.

U

Uzin Utz Tools GmbH & Co.KG

pajarito-tools.com

0

Pajarito is a German manufacturer specializing in high-quality professional tools for painters, drywall installers, and plasterers, with a history dating back to 1923. The company emphasizes precision, durability, and reliability, offering a comprehensive product range made entirely in Germany. Their market position is strong within the professional trades sector, supported by a well-structured website and active social media presence. Technically, the website is built on TYPO3 CMS, leveraging modern frontend technologies and analytics tools such as Google Analytics and Matomo, ensuring good performance and user experience across devices. Security posture is solid with HTTPS and cookie consent mechanisms, though explicit security policies and incident response contacts are not found. The absence of WHOIS data for the domain raises some concerns but may be explained by the use of a subdomain or privacy measures. Overall, the website is professional, trustworthy, and compliant with GDPR requirements.

S

Servicestelle der Initiative Klischeefrei

klischee-frei.de

0

The website www.klischee-frei.de represents the Servicestelle der Initiative Klischeefrei, a German non-profit initiative dedicated to promoting gender-neutral career and study choices. It serves a broad audience including youth, parents, educators, and career counselors by providing educational resources, events, and a network of partner organizations. The initiative is supported by government entities and well-established partners, positioning it as a credible and trusted source in the education sector. Technically, the website employs modern web technologies including HTML5, CSS3, JavaScript, and integrates Matomo analytics for privacy-conscious user tracking. The site is mobile-optimized, accessible, and SEO-friendly, with a professional design and clear navigation. Hosting details are not explicit, but the domain uses stable nameservers consistent with a legitimate German educational initiative. From a security perspective, the site enforces HTTPS and uses secure form submissions. However, it lacks visible security headers and explicit incident response or security policy disclosures. Privacy compliance is strong with a comprehensive privacy policy and cookie policy, though no explicit cookie consent mechanism is present. No contact emails or phone numbers are directly listed, relying instead on contact forms. Overall, the website demonstrates a high level of professionalism, trustworthiness, and compliance suitable for its educational and governmental audience. Strategic improvements in security headers, incident response transparency, and cookie consent would further enhance its security posture and privacy compliance.

S

Schule ohne Rassismus – Schule mit Courage

schule-ohne-rassismus.org

0

Schule ohne Rassismus – Schule mit Courage is Germany's largest school network dedicated to promoting human dignity, anti-racism, and democratic culture among students and educators. With over 4,800 member schools and more than 1.5 million students involved, the organization provides networking, educational materials, and events to foster inclusive school environments. The website is professionally designed, mobile-optimized, and rich in relevant content, targeting schools and educational stakeholders primarily in Germany. Technically, the site is built on WordPress with WooCommerce for e-commerce functionalities, uses modern JavaScript libraries, and implements strong SEO and accessibility practices. Security posture is good with HTTPS enforced and cookie consent mechanisms in place, though some security headers and explicit policies could be improved. The WHOIS data is unavailable or malformed, which slightly reduces domain trustworthiness, but the organization's transparency, social media presence, and compliance with GDPR indicate legitimacy. Overall, the site presents a trustworthy, well-maintained digital presence for a non-profit educational network.

D

Deutsches Rotes Kreuz e.V. - Jugendrotkreuz

humanitaereschule.de

0

The website humanitaereschule.de represents the Jugendrotkreuz (Youth Red Cross) campaign under the Deutsches Rotes Kreuz e.V., focused on certifying schools as "Humanitäre Schule" to promote humanitarian values among students aged 16 and above. The campaign has been active since 2004 and offers structured educational programs including the "h.e.l.p." simulation and humanitarian projects culminating in certification and awards. The site is well-branded, professionally designed, and targets educational institutions in Germany. Technically, it is built on TYPO3 CMS, uses modern JavaScript libraries, and is hosted behind Cloudflare, ensuring good performance and security. Privacy compliance is addressed with visible cookie consent and a privacy policy, though explicit security policies and incident response contacts are absent. Overall, the site is trustworthy, secure, and serves its educational mission effectively.

TaskCards is an online platform developed and operated by the German company dSign Systems GmbH, providing teachers and educational institutions a GDPR-compliant tool to share tasks and information with students. The platform supports creation and publication of digital pinboards (Pinnwände) containing text, images, links, and attachments, accessible privately or publicly. The service targets educational institutions, companies, clubs, and private users, emphasizing data privacy and German server hosting. Technically, the website is built using modern JavaScript frameworks including Vue.js and Quasar, hosted likely on German infrastructure (keymachine.de). The site is moderately performant, mobile-optimized, and structured with clear navigation. However, some SEO and accessibility features could be improved. No CMS or third-party analytics/tracking services were detected. Security posture is moderate with GDPR compliance and minimal personal data collection as key strengths. However, no explicit security headers or cookie consent mechanisms were found, and no published security or incident response policies exist. The domain WHOIS data aligns well with the business claims, showing consistent German hosting and no privacy protection, supporting legitimacy. Overall, TaskCards presents a trustworthy, well-structured educational platform with good privacy focus but could enhance security practices and transparency to improve trust and compliance further.

B

BBS-Betriebe

bbs-betriebe.de

0

The website bbs-betriebe.de serves as a login portal primarily for businesses and external users associated with a school scheduling system. It provides access to schedules, class books, and trainee information, targeting a niche educational audience in Germany. The platform is built using RapidWeaver CMS with Bootstrap and jQuery, offering basic mobile responsiveness and user navigation. While the site includes essential privacy and cookie consent mechanisms, it lacks comprehensive contact information, terms of service, and advanced security policies. Security posture is moderate with HTTPS enabled but missing critical security headers and using an outdated jQuery version, which could expose vulnerabilities. Overall, the site is functional for its intended educational business use but would benefit from enhanced security and clearer business transparency.

C

CPS-Datensysteme GmbH

virtueller-stundenplan.org

0

Virtueller Stundenplan is a German educational platform focused on providing students and school staff with digital timetable management, class plans, and administrative tools such as sick leave reporting. The platform supports login via email/password and integrates with Microsoft Office365 for authentication, targeting primarily German-speaking students and educational institutions. The website is built using RapidWeaver CMS with Bootstrap and jQuery, offering a responsive and user-friendly interface. While the technical infrastructure is adequate for its purpose, there is room for improvement in security practices, such as enabling DNSSEC and implementing security headers. The domain registration is consistent and transparent, registered under CPS-Datensysteme GmbH since 2020, which aligns with the business age and purpose. Overall, the website demonstrates moderate technical maturity and business credibility but lacks comprehensive privacy and security policies.

B

Berufsbildende Schulen Cuxhaven

bbs-cux.eu

0

The website bbs-cux.eu serves as the login portal for the Berufsbildende Schulen Cuxhaven, a vocational educational institution in Germany. It utilizes the IServ platform to provide authenticated access to school-related digital services for students, teachers, and staff. The site is professionally designed with consistent branding and clear navigation, targeting its educational audience effectively. The business model centers on providing secure digital access to educational resources and administrative tools. Technically, the site employs standard web technologies including HTML5, CSS, and JavaScript, integrated within the IServ platform. The infrastructure appears stable with moderate performance and good mobile optimization. Hosting and domain registration are managed through reputable providers, ensuring reliable availability. However, some modern security headers and cookie consent mechanisms are absent, indicating room for technical and compliance improvements. From a security perspective, the site enforces HTTPS and uses secure login forms with password visibility toggles, reflecting basic security hygiene. No critical vulnerabilities or exposed sensitive data were detected. Nonetheless, the absence of explicit security headers and vulnerability disclosure policies suggests a moderate security posture. Privacy compliance is partially met with a privacy policy present but lacking cookie consent and detailed data protection officer information. Overall, the website is trustworthy and professionally maintained, suitable for its educational purpose. Strategic enhancements in security headers, privacy compliance, and incident response transparency would further strengthen its security and regulatory posture.

B

basemap.de

basiskarte.com

0

basemap.de is a German-focused official cartographic service provider offering a range of modern map products including vector and raster services, 3D geodata visualization, and flexible cartographic solutions. The website is professionally designed using WordPress and modern plugins, targeting government agencies, GIS professionals, and businesses requiring authoritative geospatial data. The technical infrastructure is solid, leveraging a reputable hosting provider and modern web technologies, with good mobile optimization and SEO practices. Security posture is strong with HTTPS enforced and no visible vulnerabilities, though improvements are recommended in security headers and incident response transparency. Privacy compliance is adequate with a privacy policy present but lacks cookie consent mechanisms. Overall, the site is trustworthy and well-positioned in its niche.

O

openfellas GmbH

openfellas.de

0

openfellas GmbH is a well-established German company specializing in Odoo ERP consulting and implementation services. With over 15 years of experience and more than 250 successful projects, they position themselves as a trusted Odoo Gold Partner in the German-speaking market. Their services span ERP consulting, Odoo system implementation, financial consulting, and digital transformation solutions. The website targets businesses seeking tailored ERP solutions, emphasizing professionalism and customer success stories. Technically, the site is built on the Odoo CMS platform, leveraging Cloudflare for DNS and CDN services, and integrates Google Tag Manager for analytics and marketing. The site is mobile-optimized with good SEO and accessibility practices. Security-wise, the site enforces HTTPS and uses domain transfer protection but lacks some advanced security headers and a published security policy. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

H

Häussler GmbH

haeussler.de

0

Häussler GmbH is a well-established German company specializing in the rental of high-quality gastronomy and event equipment, including cutlery, glasses, tableware, linens, furniture, buffet and banquet supplies, and coffee culture products. Founded in 1991, the company serves both business and private clients, focusing on large-scale events such as trade fairs, weddings, and corporate anniversaries. Their market position is strong with a reputation for quality and reliability, supported by two related brands: Häussler Leihservice and dishcounter, which extend their service offerings in the event rental space. Technically, the website employs a modern but basic tech stack including jQuery, Bootstrap, AOS for animations, and Google Maps API. The site is mobile-optimized and well-structured, though some external resources are loaded over HTTP, which could cause mixed content issues. No CMS was detected, and hosting is provided by a German hosting provider consistent with the company’s location. From a security perspective, the site lacks visible security headers and a cookie consent mechanism, which impacts privacy compliance. No forms or sensitive data collection points were found, reducing immediate risk exposure. The WHOIS data aligns with the company’s claimed history and location, supporting legitimacy. Overall, the security posture is moderate but could be improved by enforcing HTTPS on all resources and adding security headers. The overall risk assessment is low, with recommendations focusing on improving security best practices, privacy compliance, and technical modernization to enhance trust and user experience.

V

Verband Deutscher Mineralbrunnen e.V. (VDM)

vdm-bonn.de

0

The Verband Deutscher Mineralbrunnen e.V. (VDM) is a German industry association representing the economic and political interests of the mineral water sector. It serves approximately 150 small and medium-sized mineral water bottling companies, producing over 500 mineral water varieties and numerous medicinal waters. The association acts as a key employer advocate and provides political communication, public relations, and member services. The website is professionally designed using WordPress with modern plugins and SEO optimization, providing a rich user experience and mobile responsiveness. Privacy and cookie compliance are well implemented with Borlabs Cookie and a comprehensive privacy policy. Security posture is solid with HTTPS and secure form handling, though some security headers could be improved. No critical vulnerabilities or blocking mechanisms were detected. Overall, the site reflects a trustworthy, professional organization with a strong digital presence.

G

Genossenschaft Deutscher Brunnen eG

gdb.de

0

The Genossenschaft Deutscher Brunnen eG (GDB) is a German cooperative serving the mineral water industry by providing pool management, consulting, and a broad product portfolio including reusable bottles and packaging. The website reflects a mature, professional organization with a clear focus on sustainability and member services. Technically, the site is built on TYPO3 CMS, hosted likely by NetCologne, and demonstrates good mobile optimization and SEO practices. Security posture is solid with HTTPS and cookie consent mechanisms, though some security headers and explicit policies could be improved. Overall, the site is trustworthy, well-branded, and provides comprehensive contact and legal information.

D

Dialog Natürliches Mineralwasser

dialog-mineralwasser.de

0

Dialog Natürliches Mineralwasser operates an informational website focused on natural mineral water, its quality, sustainability, and related environmental topics. The site targets consumers interested in water quality and sustainability, providing educational content, industry news, and a newsletter subscription service. The business model centers on advocacy and information dissemination within the mineral water sector in Germany. Technically, the website is built on WordPress, leveraging common plugins such as Yoast SEO, Contact Form 7, and Google Analytics integrations. Hosting is provided by 1&1 IONOS as inferred from nameservers. The site demonstrates good mobile optimization, moderate performance, and solid SEO practices. Security posture is adequate with HTTPS enforced and cookie consent implemented, though additional security headers and explicit security policies are absent. No vulnerabilities or exposed sensitive data were detected. Overall, the website is professional, trustworthy, and compliant with GDPR requirements. Recommendations include enhancing security headers, publishing a security policy, and providing incident response contacts to improve trust and security maturity.

S

SCHIESSER

schiesser.com

0

SCHIESSER is a well-established German underwear brand with a strong online retail presence through its official website. The site offers a broad range of underwear products, targeting consumers seeking quality apparel with convenient online shopping features such as customer accounts and store locators. The website is professionally designed, multilingual, and optimized for mobile devices, reflecting a mature digital infrastructure. Technically, it leverages modern e-commerce platforms (OXID eShop), integrates multiple analytics and personalization tools, and implements GDPR-compliant privacy and cookie consent mechanisms. Security posture is strong with HTTPS enforcement and security headers, though public security policies and incident response contacts are not explicitly provided. The absence of WHOIS data is a notable anomaly but does not detract significantly from the overall legitimacy given the brand's established market presence. Strategic recommendations include enhancing transparency around security policies and incident response, and maintaining vigilance on third-party script security.

S

Stadt Leipzig

leipzig.de

0

The website www.leipzig.de serves as the official digital portal for the city of Leipzig, Germany, providing comprehensive information and services to residents, tourists, and businesses. It is positioned as a large government entity portal offering a wide range of municipal services including administration, social services, culture, economy, environment, and urban development. The site is well-branded, professionally designed, and highly accessible, certified with BITV 90+ standards. It targets a broad audience including citizens, families, tourists, and enterprises. Technically, the site is built on TYPO3 CMS with modern frontend technologies such as Bootstrap and jQuery, hosted likely by Deutsche Telekom infrastructure. The site demonstrates good performance, mobile optimization, and SEO practices. It integrates cookie consent mechanisms and GDPR-compliant privacy policies, reflecting a mature digital infrastructure. From a security perspective, the site enforces HTTPS, uses cookie consent, and shows no signs of exposed sensitive data or vulnerable libraries. However, explicit security headers and incident response policies are not prominently documented, suggesting room for improvement in security transparency and vulnerability disclosure. Overall, the site is trustworthy, professional, and compliant with relevant regulations, with a strong security posture and excellent user experience. Strategic recommendations include enhancing security header implementation, publishing a security policy, and adding a vulnerability disclosure mechanism to further strengthen trust and security culture.

W

webgo GmbH

webgo.de

0

webgo GmbH is a German-based web hosting and online services provider established in 2004, offering a comprehensive portfolio including web hosting, virtual and dedicated servers, domain registration, website builders with AI features, and online marketing tools. The company positions itself as a performance-driven and environmentally conscious hosting provider, leveraging 100% green energy and emphasizing customer support availability year-round. Their market position is reinforced by multiple awards such as the Stiftung Warentest rating and the German Customer Award, indicating strong customer satisfaction and product quality. Technically, the website employs modern web technologies including Alpine.js, FontAwesome, hCaptcha for bot protection, and Microsoft Clarity for analytics. The site is built on the Statamic CMS platform, optimized for fast performance, mobile responsiveness, and accessibility. Security best practices are observed with HTTPS enforcement, comprehensive security headers, and no visible vulnerabilities or exposed sensitive data. From a security posture perspective, webgo demonstrates a mature approach with strong SSL configuration and bot mitigation. However, explicit security policies, incident response details, and vulnerability disclosure mechanisms are not publicly available, representing areas for improvement. Privacy compliance is well addressed with clear privacy and cookie policies, including consent mechanisms aligned with GDPR requirements. Overall, webgo presents a trustworthy and professional online presence with a high degree of business credibility and technical maturity. The domain registration data, while limited due to DENIC privacy restrictions, aligns with the company's German market focus and business claims. No signs of malicious activity or content safety concerns are detected, making webgo a reliable hosting provider in its sector.